$ rpki-client -vvf rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: iJb9QcIXFf/J61e9yCkZx9QNnRbjKruYKVGZUGMx/oE= Subject key identifier: B1:ED:81:7A:65:38:B0:10:C4:AE:76:3D:5B:69:C9:E5:F6:71:21:A0 Certificate issuer: /CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Certificate serial: 0238B9B4A2F97EAC842341349FB16C888BE07F25 Authority key identifier: C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa Signing time: Sun 03 May 2026 03:12:47 +0000 ROA not before: Sun 03 May 2026 03:07:47 +0000 ROA not after: Sun 02 May 2027 03:12:47 +0000 asID: 137329 IP address blocks: 2402:4840:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:38:b9:b4:a2:f9:7e:ac:84:23:41:34:9f:b1:6c:88:8b:e0:7f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Validity Not Before: May 3 03:07:47 2026 GMT Not After : May 2 03:12:47 2027 GMT Subject: CN=B1ED817A6538B010C4AE763D5B69C9E5F67121A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e4:ae:51:98:98:6b:3d:20:5b:b6:f2:dc:a5: 83:7a:36:c6:d7:61:e2:c1:16:db:58:70:54:07:5c: 01:7d:54:61:b6:a9:a5:ae:11:bc:15:dc:09:e2:ef: 2f:b1:ec:3b:a6:21:ef:72:90:f3:5c:67:63:e6:16: 5d:2e:65:02:87:a3:ac:c3:2d:a6:b5:6b:9d:b4:4d: 51:70:87:74:59:6f:58:e1:6b:b0:6d:10:a7:be:d2: 70:42:d8:60:51:a1:e1:7f:0e:29:b7:05:70:00:0c: 51:68:b2:a8:97:05:d7:c3:40:74:81:c6:20:21:b0: 3e:83:50:26:01:56:aa:37:4e:29:61:58:1c:b3:c9: ca:35:8b:db:18:d4:20:99:05:51:50:6a:06:94:b9: 90:18:42:0a:85:8e:ab:8b:2c:fb:b6:77:b3:d2:fb: d4:49:f5:7d:0d:2d:d6:5d:71:7d:25:96:7b:1e:55: b7:02:19:ff:54:3a:0a:02:0a:af:91:12:e4:0d:68: 4f:96:92:65:b5:3c:89:41:7d:d6:09:ad:1f:ed:80: 0d:f0:ea:6a:de:f5:e6:88:42:05:c8:77:05:1c:5a: c0:03:6a:b0:7b:79:0a:23:62:d3:85:dc:8c:7f:9e: 8c:7f:b5:13:eb:76:3b:7f:7a:67:f0:81:6e:23:5e: df:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:ED:81:7A:65:38:B0:10:C4:AE:76:3D:5B:69:C9:E5:F6:71:21:A0 X509v3 Authority Key Identifier: keyid:C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:1::/48 Signature Algorithm: sha256WithRSAEncryption d1:08:88:2f:fb:ef:cd:10:03:a4:05:e8:21:ab:34:8a:bd:2d: 0f:ed:ce:9f:0d:0c:20:2d:90:04:61:a8:fb:31:9e:77:64:dd: c1:90:29:aa:c4:ac:e0:09:f4:70:63:c5:b9:f2:03:f5:53:bb: c7:31:75:4d:be:2b:08:29:8d:97:4a:5a:42:b4:c2:ea:4f:62: 3c:e2:77:93:39:b0:ab:3e:fd:7b:6c:96:9c:8c:fa:c6:39:c8: 4c:73:27:18:77:53:05:f9:79:c8:e7:49:e4:71:9f:5b:27:5a: a6:60:cb:1b:e9:16:eb:94:c3:0d:3f:2f:d9:5b:b6:d2:04:d7: 8d:85:fb:0e:bf:90:85:d9:c2:6f:35:2a:2c:ba:05:be:89:51: 78:76:fa:76:0d:8f:67:ed:2f:56:f3:fd:cc:53:86:79:81:5f: f3:b3:97:df:2f:ee:de:27:5c:04:83:2c:a4:ad:b8:86:f2:2e: a3:5a:a6:18:e0:05:59:e4:be:f1:db:e4:18:ff:20:08:0d:f9: 7e:df:15:6e:fe:da:59:df:0c:f9:b6:fd:67:4f:25:8d:f1:2b: 79:a8:24:08:85:c4:b7:b1:12:48:69:09:bd:ba:90:bd:56:10: da:6e:7a:78:9c:35:de:a7:8f:e8:7a:31:de:6e:e9:a0:1b:8f: 68:01:85:ba -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAji5tKL5fqyEI0E0n7FsiIvgfyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZGMEVBM0Y0OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBB RDJGMzlCQTAeFw0yNjA1MDMwMzA3NDdaFw0yNzA1MDIwMzEyNDdaMDMxMTAvBgNV BAMTKEIxRUQ4MTdBNjUzOEIwMTBDNEFFNzYzRDVCNjlDOUU1RjY3MTIxQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq5K5RmJhrPSBbtvLcpYN6NsbX YeLBFttYcFQHXAF9VGG2qaWuEbwV3Ani7y+x7DumIe9ykPNcZ2PmFl0uZQKHo6zD Laa1a520TVFwh3RZb1jha7BtEKe+0nBC2GBRoeF/Dim3BXAADFFosqiXBdfDQHSB xiAhsD6DUCYBVqo3TilhWByzyco1i9sY1CCZBVFQagaUuZAYQgqFjquLLPu2d7PS +9RJ9X0NLdZdcX0llnseVbcCGf9UOgoCCq+REuQNaE+WkmW1PIlBfdYJrR/tgA3w 6mre9eaIQgXIdwUcWsADarB7eQojYtOF3Ix/nox/tRPrdjt/emfwgW4jXt8bAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUse2BemU4sBDErnY9W2nJ5fZxIaAwHwYDVR0j BBgwFoAUxvDqP0mJZcc2G168LokWMK0vObowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTE3YmQ1MDItNDJjMi00MDBkLWEyYWQtZDE3NTQzNjVhNDVkLzAvQzZGMEVBM0Y0 OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBBRDJGMzlCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNkYwRUEzRjQ5ODk2NUM3MzYxQjVFQkMyRTg5MTYzMEFEMkYz OUJBLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAkhAAAEw DQYJKoZIhvcNAQELBQADggEBANEIiC/7780QA6QF6CGrNIq9LQ/tzp8NDCAtkARh qPsxnndk3cGQKarErOAJ9HBjxbnyA/VTu8cxdU2+KwgpjZdKWkK0wupPYjzid5M5 sKs+/XtslpyM+sY5yExzJxh3UwX5ecjnSeRxn1snWqZgyxvpFuuUww0/L9lbttIE 142F+w6/kIXZwm81Kiy6Bb6JUXh2+nYNj2ftL1bz/cxThnmBX/Ozl98v7t4nXASD LKStuIbyLqNaphjgBVnkvvHb5Bj/IAgN+X7fFW7+2lnfDPm2/WdPJY3xK3moJAiF xLexEkhpCb26kL1WENpuenicNd6nj+h6Md5u6aAbj2gBhbo= -----END CERTIFICATE-----Generated at Wed May 13 08:23:52 2026 by rpki-client