$ rpki-client -vvf rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: b7MqQswSey4K5hmbI2rjkWbB+4sKAE/SpanbXH6ESDU= Subject key identifier: 3E:E7:B0:B8:2C:7F:51:A0:E8:CA:A1:8A:B6:CC:E2:E1:14:8D:2B:66 Certificate issuer: /CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Certificate serial: 24C65320F986D682B13061134C90BE11283273CD Authority key identifier: C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa Signing time: Sun 03 May 2026 03:12:45 +0000 ROA not before: Sun 03 May 2026 03:07:45 +0000 ROA not after: Sun 02 May 2027 03:12:45 +0000 asID: 137329 IP address blocks: 2402:4840:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:c6:53:20:f9:86:d6:82:b1:30:61:13:4c:90:be:11:28:32:73:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Validity Not Before: May 3 03:07:45 2026 GMT Not After : May 2 03:12:45 2027 GMT Subject: CN=3EE7B0B82C7F51A0E8CAA18AB6CCE2E1148D2B66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:eb:56:73:f8:c9:ac:6f:7a:a8:b8:96:d0:d7: 15:c5:75:d6:f1:9f:c3:39:af:fe:7a:55:c6:8d:fa: 76:53:9c:05:5a:fc:b9:90:45:34:19:de:a4:81:3e: e2:cd:5e:29:be:ad:35:db:c4:6d:4d:33:ed:bb:43: e2:2d:0c:d3:35:a6:40:5c:73:99:27:13:3b:fe:f0: 31:27:98:f2:62:1c:38:cc:29:fb:7a:c9:1b:41:38: ea:37:12:8d:f3:21:1f:92:94:62:f5:83:31:eb:ab: e5:ed:03:36:5e:08:04:40:bb:5b:29:0e:13:32:08: ce:f3:a3:89:ae:73:35:5d:73:50:6d:14:9f:58:e0: d6:11:10:a3:09:cf:e7:9d:99:a5:32:1c:73:84:09: 41:41:f5:f8:16:38:ac:88:4a:68:1c:3f:ee:e9:c1: 61:18:42:c3:4b:71:59:47:a0:ab:61:35:b0:55:08: 5a:00:7b:9f:50:05:77:9b:89:27:5b:d7:f1:6e:12: 35:51:b4:38:3f:e4:9a:99:2a:c8:a3:19:ad:dc:50: ed:33:72:5a:46:18:aa:be:2d:2b:86:b3:39:1e:e9: 26:d2:e8:bc:39:6a:c0:2b:09:5a:f9:0b:f4:e4:36: 41:b5:a0:a5:83:d9:96:0c:a0:2d:5d:dc:79:32:b6: 24:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E7:B0:B8:2C:7F:51:A0:E8:CA:A1:8A:B6:CC:E2:E1:14:8D:2B:66 X509v3 Authority Key Identifier: keyid:C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:2003::/48 Signature Algorithm: sha256WithRSAEncryption a3:74:ac:8f:be:61:d9:16:23:24:d6:97:03:ea:ed:84:5e:39: 4d:cc:2a:2f:e4:13:cc:fd:5e:76:8c:c0:ef:bf:86:93:2e:6d: 54:80:3b:a1:a1:6f:12:0a:19:90:ff:0b:6d:7b:55:a1:96:c0: 1e:94:d7:4e:42:ef:8c:4c:e9:1f:da:a7:dd:33:4c:f7:56:86: bf:f9:02:c6:d9:c5:fb:b8:3b:3e:68:2d:c4:49:b4:7e:d3:21: fc:34:a8:dc:3c:10:f3:6c:7c:fb:8b:75:7a:de:14:24:2e:eb: bf:c2:fd:3b:52:c4:0f:53:44:60:79:b9:68:db:6b:1d:5c:9d: 49:4e:af:6a:6b:30:20:61:f5:7e:b8:bb:50:54:ba:d6:a5:da: 71:71:41:c4:55:de:db:7f:a6:72:61:ff:f9:7b:0b:bf:27:f8: 9d:df:2a:11:89:f4:dd:c4:ef:c9:f5:73:4a:7a:65:3e:fb:b7: 5c:1e:ed:de:5c:da:b6:37:ab:b7:4f:2c:94:50:99:05:df:c3: 8d:85:bd:62:fc:9c:21:f7:88:25:91:08:58:b6:af:3e:18:25: c5:e6:5e:11:26:49:22:9e:ba:ba:74:a8:e9:0a:5d:5d:a8:af: ba:ef:ce:5e:02:2e:48:87:08:6c:29:60:0a:36:f2:e5:9b:f2: bf:7f:ba:cd -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJMZTIPmG1oKxMGETTJC+ESgyc80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZGMEVBM0Y0OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBB RDJGMzlCQTAeFw0yNjA1MDMwMzA3NDVaFw0yNzA1MDIwMzEyNDVaMDMxMTAvBgNV BAMTKDNFRTdCMEI4MkM3RjUxQTBFOENBQTE4QUI2Q0NFMkUxMTQ4RDJCNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ61Zz+Mmsb3qouJbQ1xXFddbx n8M5r/56VcaN+nZTnAVa/LmQRTQZ3qSBPuLNXim+rTXbxG1NM+27Q+ItDNM1pkBc c5knEzv+8DEnmPJiHDjMKft6yRtBOOo3Eo3zIR+SlGL1gzHrq+XtAzZeCARAu1sp DhMyCM7zo4muczVdc1BtFJ9Y4NYREKMJz+edmaUyHHOECUFB9fgWOKyISmgcP+7p wWEYQsNLcVlHoKthNbBVCFoAe59QBXebiSdb1/FuEjVRtDg/5JqZKsijGa3cUO0z clpGGKq+LSuGszke6SbS6Lw5asArCVr5C/TkNkG1oKWD2ZYMoC1d3HkytiQJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUPuewuCx/UaDoyqGKtszi4RSNK2YwHwYDVR0j BBgwFoAUxvDqP0mJZcc2G168LokWMK0vObowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTE3YmQ1MDItNDJjMi00MDBkLWEyYWQtZDE3NTQzNjVhNDVkLzAvQzZGMEVBM0Y0 OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBBRDJGMzlCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNkYwRUEzRjQ5ODk2NUM3MzYxQjVFQkMyRTg5MTYzMEFEMkYz OUJBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzIzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAIAMwDQYJKoZIhvcNAQELBQADggEBAKN0rI++YdkWIyTWlwPq7YReOU3MKi/k E8z9XnaMwO+/hpMubVSAO6GhbxIKGZD/C217VaGWwB6U105C74xM6R/ap90zTPdW hr/5AsbZxfu4Oz5oLcRJtH7TIfw0qNw8EPNsfPuLdXreFCQu67/C/TtSxA9TRGB5 uWjbax1cnUlOr2prMCBh9X64u1BUutal2nFxQcRV3tt/pnJh//l7C78n+J3fKhGJ 9N3E78n1c0p6ZT77t1we7d5c2rY3q7dPLJRQmQXfw42FvWL8nCH3iCWRCFi2rz4Y JcXmXhEmSSKeurp0qOkKXV2or7rvzl4CLkiHCGwpYAo28uWb8r9/us0= -----END CERTIFICATE-----Generated at Wed May 13 12:18:07 2026 by rpki-client