$ rpki-client -vvf rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/323430333a396663303a3a2f33322d3438203d3e20313338303730.roa File: 323430333a396663303a3a2f33322d3438203d3e20313338303730.roa (raw, json) Hash identifier: ul2O2y/d0f5tNVWkMLvre71muhXGfgnlzO8D5D2e4HI= Subject key identifier: FA:48:F9:7B:CC:4E:28:D5:C9:8D:F2:D7:CD:78:28:BE:41:4F:C4:88 Certificate issuer: /CN=4916565C52234EF87B2101E4B733E4674131F669 Certificate serial: 60FBB6E9106D6A2511E660F3D400D92534982880 Authority key identifier: 49:16:56:5C:52:23:4E:F8:7B:21:01:E4:B7:33:E4:67:41:31:F6:69 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4916565C52234EF87B2101E4B733E4674131F669.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/323430333a396663303a3a2f33322d3438203d3e20313338303730.roa Signing time: Sun 03 May 2026 03:11:06 +0000 ROA not before: Sun 03 May 2026 03:06:06 +0000 ROA not after: Sun 02 May 2027 03:11:06 +0000 asID: 138070 IP address blocks: 2403:9fc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/4916565C52234EF87B2101E4B733E4674131F669.crl rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/4916565C52234EF87B2101E4B733E4674131F669.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4916565C52234EF87B2101E4B733E4674131F669.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:fb:b6:e9:10:6d:6a:25:11:e6:60:f3:d4:00:d9:25:34:98:28:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4916565C52234EF87B2101E4B733E4674131F669 Validity Not Before: May 3 03:06:06 2026 GMT Not After : May 2 03:11:06 2027 GMT Subject: CN=FA48F97BCC4E28D5C98DF2D7CD7828BE414FC488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:79:04:63:69:09:89:03:64:11:83:95:59:ac: 96:aa:8f:ba:b8:85:dc:38:da:2a:81:93:16:27:11: b2:f2:41:7b:2d:db:79:d9:1d:36:5a:49:22:c6:aa: ef:36:c9:f8:fc:72:0b:e3:72:8a:0f:09:0e:bc:c8: fa:5c:f4:40:b2:6d:ff:c3:24:de:95:67:42:ae:38: fa:98:65:b4:d4:98:76:5f:07:71:15:b2:27:9b:12: a7:3b:6e:fe:b0:73:aa:c3:a1:49:d8:e0:67:84:54: ac:13:33:ff:23:6d:bc:7f:84:94:ac:3b:9d:00:42: 5b:b0:f9:53:17:58:f2:03:49:4b:b6:98:c4:3d:71: f8:fc:4c:11:a9:8f:8e:90:75:fe:ea:e8:72:27:1a: 25:5f:65:1a:d6:e6:74:1d:38:22:97:d6:b4:d6:ed: 5e:43:88:88:77:52:a5:09:b2:13:de:f5:a4:15:4e: f4:15:9d:31:cf:7c:6a:cd:98:06:b0:6a:9d:3e:4a: da:6f:51:87:4d:97:83:fa:9b:c3:e1:a7:6b:1c:54: 0f:02:04:8d:76:0f:8b:13:93:dd:7a:1b:75:fd:5d: 55:99:9d:bc:13:e1:32:0c:93:d6:59:85:9c:b3:a6: 2e:46:5d:8b:fb:2c:5f:c8:23:7d:07:a5:f3:8e:d9: cf:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:48:F9:7B:CC:4E:28:D5:C9:8D:F2:D7:CD:78:28:BE:41:4F:C4:88 X509v3 Authority Key Identifier: keyid:49:16:56:5C:52:23:4E:F8:7B:21:01:E4:B7:33:E4:67:41:31:F6:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/4916565C52234EF87B2101E4B733E4674131F669.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4916565C52234EF87B2101E4B733E4674131F669.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/323430333a396663303a3a2f33322d3438203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9fc0::/32 Signature Algorithm: sha256WithRSAEncryption 02:d3:54:b0:69:14:c5:ed:fe:2c:0d:dc:b9:c0:42:d0:77:a8: c1:33:5f:12:77:7f:b0:ec:77:58:75:c0:7c:bb:2a:b9:35:36: d7:0c:6e:a0:f6:3c:41:e9:a0:92:e0:7e:f5:ae:76:bc:98:d8: ce:90:4b:3a:9b:97:98:cc:31:c9:b3:46:3d:b3:16:af:e9:7f: ee:3e:8d:d5:36:1a:28:27:d7:41:f9:b0:65:5f:08:80:ae:05: 8f:ab:38:6e:b1:d3:82:5f:25:e9:c6:85:c9:a3:6f:69:99:3a: ab:3a:ec:73:1f:e7:63:84:97:1e:5c:36:08:3e:48:ce:b7:e0: 6b:32:c9:34:98:52:17:d4:c7:94:d2:75:cb:c8:cd:26:0e:7b: 7f:18:8e:40:1c:97:fd:95:1f:a8:c4:71:5d:d1:45:4e:ea:4b: 2e:d3:67:e2:fa:cf:2d:fd:0e:b3:a9:89:5b:aa:ef:b2:22:82: 1c:5b:83:ba:d5:3d:60:cc:49:7a:59:a4:dd:44:30:44:b9:e1: 18:ee:b5:16:22:8c:2a:2a:11:e7:13:4f:52:12:66:fc:2a:56: 05:84:ab:d9:01:5d:f3:ec:64:3a:7c:6f:b7:ed:de:54:56:ab: 1c:81:23:97:ce:4f:fb:c0:f7:9e:9c:e9:f6:db:98:09:a2:f2: cd:45:a0:0f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYPu26RBtaiUR5mDz1ADZJTSYKIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxNjU2NUM1MjIzNEVGODdCMjEwMUU0QjczM0U0Njc0 MTMxRjY2OTAeFw0yNjA1MDMwMzA2MDZaFw0yNzA1MDIwMzExMDZaMDMxMTAvBgNV BAMTKEZBNDhGOTdCQ0M0RTI4RDVDOThERjJEN0NENzgyOEJFNDE0RkM0ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCteQRjaQmJA2QRg5VZrJaqj7q4 hdw42iqBkxYnEbLyQXst23nZHTZaSSLGqu82yfj8cgvjcooPCQ68yPpc9ECybf/D JN6VZ0KuOPqYZbTUmHZfB3EVsiebEqc7bv6wc6rDoUnY4GeEVKwTM/8jbbx/hJSs O50AQluw+VMXWPIDSUu2mMQ9cfj8TBGpj46Qdf7q6HInGiVfZRrW5nQdOCKX1rTW 7V5DiIh3UqUJshPe9aQVTvQVnTHPfGrNmAawap0+StpvUYdNl4P6m8Php2scVA8C BI12D4sTk916G3X9XVWZnbwT4TIMk9ZZhZyzpi5GXYv7LF/II30HpfOO2c//AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU+kj5e8xOKNXJjfLXzXgovkFPxIgwHwYDVR0j BBgwFoAUSRZWXFIjTvh7IQHktzPkZ0Ex9mkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGFkNjdkNWYtNTcxMy00MTUzLTg3MWItMWIwMDhmN2ZmZGQyLzAvNDkxNjU2NUM1 MjIzNEVGODdCMjEwMUU0QjczM0U0Njc0MTMxRjY2OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80OTE2NTY1QzUyMjM0RUY4N0IyMTAxRTRCNzMzRTQ2NzQxMzFG NjY5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMyMzQzMDMzM2EzOTY2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDn8AwDQYJKoZI hvcNAQELBQADggEBAALTVLBpFMXt/iwN3LnAQtB3qMEzXxJ3f7Dsd1h1wHy7Krk1 NtcMbqD2PEHpoJLgfvWudryY2M6QSzqbl5jMMcmzRj2zFq/pf+4+jdU2Gign10H5 sGVfCICuBY+rOG6x04JfJenGhcmjb2mZOqs67HMf52OElx5cNgg+SM634GsyyTSY UhfUx5TSdcvIzSYOe38YjkAcl/2VH6jEcV3RRU7qSy7TZ+L6zy39DrOpiVuq77Ii ghxbg7rVPWDMSXpZpN1EMES54RjutRYijCoqEecTT1ISZvwqVgWEq9kBXfPsZDp8 b7ft3lRWqxyBI5fOT/vA956c6fbbmAmi8s1FoA8= -----END CERTIFICATE-----Generated at Wed May 13 14:50:23 2026 by rpki-client