$ rpki-client -vvf rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: OFLt70pDWKG2Xy3FogGPliqkJbxysRRKjvAd5hCh7II= Subject key identifier: 71:B4:D5:CE:73:0F:47:28:29:CE:A8:D0:D9:44:F7:33:06:80:1A:15 Certificate issuer: /CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Certificate serial: 6BD7D603A465E9F78FEDEE96DD240C95463646D2 Authority key identifier: C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa Signing time: Sun 03 May 2026 03:12:48 +0000 ROA not before: Sun 03 May 2026 03:07:48 +0000 ROA not after: Sun 02 May 2027 03:12:48 +0000 asID: 137329 IP address blocks: 2402:4840:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d7:d6:03:a4:65:e9:f7:8f:ed:ee:96:dd:24:0c:95:46:36:46:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Validity Not Before: May 3 03:07:48 2026 GMT Not After : May 2 03:12:48 2027 GMT Subject: CN=71B4D5CE730F472829CEA8D0D944F73306801A15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:48:24:73:cd:86:67:c0:03:8c:46:50:77:d0: 51:95:ae:1a:74:d3:58:82:33:3d:6b:fd:0b:10:7d: 2f:f1:55:f6:a4:29:0d:12:37:b8:26:65:8c:2d:4e: 05:40:4c:b8:84:64:62:6c:95:a8:c3:7d:4f:14:e1: f3:cc:13:25:e1:d6:6e:d9:79:47:3f:e0:59:bf:b3: 90:73:a0:50:8b:e1:a5:5d:20:e9:6f:9f:31:8e:82: 95:c6:50:2a:c9:65:f0:9f:ea:12:4d:d6:1c:64:76: 3a:f0:94:1f:36:c9:c9:e4:f6:79:06:0b:49:08:8a: db:51:7b:c0:d3:c4:a0:40:b5:12:f7:7c:0d:d9:78: 15:c6:a7:45:f0:01:f7:5e:f2:20:d0:f0:bb:cc:a5: bf:a5:68:39:5d:39:a8:f3:e6:4e:ad:cd:27:4c:9c: 4c:bf:ac:c9:9a:99:4a:1d:fe:30:2f:15:77:63:53: 5e:b7:59:0c:a7:62:fc:64:3d:6c:4d:44:da:c9:2a: 6c:eb:19:c6:be:1d:92:01:7b:1e:17:25:13:65:1b: 2b:32:9f:2d:9f:63:a9:03:41:c2:1e:11:24:f9:b9: b5:f8:fb:d2:a3:6a:e5:de:9d:cc:52:1d:01:04:e2: 7c:fb:82:84:93:c2:5b:11:a6:1e:3e:40:b2:f8:f9: 9a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B4:D5:CE:73:0F:47:28:29:CE:A8:D0:D9:44:F7:33:06:80:1A:15 X509v3 Authority Key Identifier: keyid:C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:1003::/48 Signature Algorithm: sha256WithRSAEncryption 39:ea:b2:51:59:6d:78:7b:d1:ac:76:1e:75:74:d8:52:44:60: f2:b9:da:35:e0:77:44:8f:e1:96:f9:34:8b:f3:f4:80:93:d7: bb:7a:37:56:9e:c2:31:cc:52:48:d5:2b:64:f6:6c:c9:10:d2: 69:24:9c:56:8c:82:c8:ec:ce:86:1f:81:20:a6:3e:37:cb:72: bb:22:60:ae:f8:d3:7a:2a:c3:cd:a3:cd:9b:d4:6f:3c:63:21: 02:b7:44:51:f9:38:e2:14:af:9d:0c:7e:7d:28:91:c6:92:7e: c2:47:46:5b:84:ba:84:68:6a:01:aa:d9:82:3a:12:32:5f:61: ed:c6:1a:df:3e:56:79:11:19:b8:59:27:58:ed:61:a4:b7:e4: f8:89:cd:f4:b3:f7:56:57:56:f4:b8:3f:cc:fa:55:7a:3f:8f: d2:c5:99:fa:b2:4d:27:e5:5b:57:18:4a:67:9e:dc:a6:eb:88: 27:50:45:0e:e3:17:a9:c8:1b:7a:e1:a7:00:17:1e:b8:21:cd: c5:e7:8b:35:b5:19:5b:33:d4:ef:92:aa:a5:41:c2:62:e3:e1: b1:a3:d7:54:f9:d1:f0:71:ea:da:68:7f:23:53:2b:e4:37:ae: 1c:39:89:22:97:6b:5a:13:21:f6:61:c7:21:4c:11:c7:b6:dd: c9:ca:bf:f7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUa9fWA6Rl6feP7e6W3SQMlUY2RtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZGMEVBM0Y0OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBB RDJGMzlCQTAeFw0yNjA1MDMwMzA3NDhaFw0yNzA1MDIwMzEyNDhaMDMxMTAvBgNV BAMTKDcxQjRENUNFNzMwRjQ3MjgyOUNFQThEMEQ5NDRGNzMzMDY4MDFBMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQSCRzzYZnwAOMRlB30FGVrhp0 01iCMz1r/QsQfS/xVfakKQ0SN7gmZYwtTgVATLiEZGJslajDfU8U4fPMEyXh1m7Z eUc/4Fm/s5BzoFCL4aVdIOlvnzGOgpXGUCrJZfCf6hJN1hxkdjrwlB82ycnk9nkG C0kIittRe8DTxKBAtRL3fA3ZeBXGp0XwAfde8iDQ8LvMpb+laDldOajz5k6tzSdM nEy/rMmamUod/jAvFXdjU163WQynYvxkPWxNRNrJKmzrGca+HZIBex4XJRNlGysy ny2fY6kDQcIeEST5ubX4+9KjauXencxSHQEE4nz7goSTwlsRph4+QLL4+Zq/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUcbTVznMPRygpzqjQ2UT3MwaAGhUwHwYDVR0j BBgwFoAUxvDqP0mJZcc2G168LokWMK0vObowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTE3YmQ1MDItNDJjMi00MDBkLWEyYWQtZDE3NTQzNjVhNDVkLzAvQzZGMEVBM0Y0 OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBBRDJGMzlCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNkYwRUEzRjQ5ODk2NUM3MzYxQjVFQkMyRTg5MTYzMEFEMkYz OUJBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAEAMwDQYJKoZIhvcNAQELBQADggEBADnqslFZbXh70ax2HnV02FJEYPK52jXg d0SP4Zb5NIvz9ICT17t6N1aewjHMUkjVK2T2bMkQ0mkknFaMgsjszoYfgSCmPjfL crsiYK7403oqw82jzZvUbzxjIQK3RFH5OOIUr50Mfn0okcaSfsJHRluEuoRoagGq 2YI6EjJfYe3GGt8+VnkRGbhZJ1jtYaS35PiJzfSz91ZXVvS4P8z6VXo/j9LFmfqy TSflW1cYSmee3KbriCdQRQ7jF6nIG3rhpwAXHrghzcXnizW1GVsz1O+SqqVBwmLj 4bGj11T50fBx6tpofyNTK+Q3rhw5iSKXa1oTIfZhxyFMEce23cnKv/c= -----END CERTIFICATE-----Generated at Wed May 13 12:29:04 2026 by rpki-client