$ rpki-client -vvf rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: Rb1vwl7xBvreW0PY1qwrBXFG1LSoaanfgcBs0qRPwiM= Subject key identifier: 65:15:5B:B7:CA:7F:A8:DA:6A:55:7E:E1:09:13:F3:4D:D4:8F:E2:C9 Certificate issuer: /CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Certificate serial: 73465F0EE02BFC7A28EE4EDBBE2C472A7801A84F Authority key identifier: C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa Signing time: Sun 03 May 2026 03:12:46 +0000 ROA not before: Sun 03 May 2026 03:07:46 +0000 ROA not after: Sun 02 May 2027 03:12:46 +0000 asID: 137329 IP address blocks: 2402:4840:2113::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:46:5f:0e:e0:2b:fc:7a:28:ee:4e:db:be:2c:47:2a:78:01:a8:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6F0EA3F498965C7361B5EBC2E891630AD2F39BA Validity Not Before: May 3 03:07:46 2026 GMT Not After : May 2 03:12:46 2027 GMT Subject: CN=65155BB7CA7FA8DA6A557EE10913F34DD48FE2C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:a5:03:dc:6f:15:5f:8c:7d:c3:ef:3c:48: af:87:d1:2a:32:41:d4:6d:9a:60:b8:fe:e8:5b:9a: 79:3f:63:5c:c2:26:98:26:76:df:69:5d:c6:0c:ff: 49:8b:a8:d9:9c:9b:14:8a:46:dc:b5:40:1a:89:77: 63:1c:e2:27:eb:f3:11:f4:96:e7:e4:34:e9:0f:d9: 81:0a:37:e2:ac:a9:74:3f:8f:fd:c6:ea:ac:af:93: 15:4f:8c:d5:00:bf:c1:ee:cb:1f:04:ed:81:3f:cb: 77:5a:46:50:1c:a4:38:b3:e4:c0:d5:37:63:41:fd: f9:b0:4b:7a:02:bc:06:84:c7:84:06:51:1a:07:b2: 19:1d:48:8d:73:7c:91:00:3d:58:1c:b9:30:39:1b: ef:69:ed:7d:04:33:39:9b:8e:4d:8f:d3:47:8b:5c: 0d:3c:cf:8f:4e:54:cd:7b:35:59:4e:c2:33:7c:1e: 6c:e0:9c:41:89:2c:2f:77:e5:d1:a7:d7:00:a0:5d: e1:48:35:36:e4:d0:6a:a9:75:38:c1:6a:ae:23:82: 5b:2d:5c:b1:2a:39:2d:fb:03:cf:18:1a:61:e5:c5: e5:b4:91:3c:9f:f7:b9:95:58:6d:96:64:21:e1:41: 54:b8:07:b4:97:87:df:69:bc:48:e4:2b:e4:f9:b0: fb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:15:5B:B7:CA:7F:A8:DA:6A:55:7E:E1:09:13:F3:4D:D4:8F:E2:C9 X509v3 Authority Key Identifier: keyid:C6:F0:EA:3F:49:89:65:C7:36:1B:5E:BC:2E:89:16:30:AD:2F:39:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C6F0EA3F498965C7361B5EBC2E891630AD2F39BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:2113::/48 Signature Algorithm: sha256WithRSAEncryption 7a:a5:73:53:c2:9c:7d:75:9d:b8:c3:8d:4a:ac:50:b6:c2:7b: 36:b1:81:73:05:32:e9:4e:a2:41:e7:96:ac:14:55:5c:ea:a0: 25:58:43:7e:0d:31:74:70:33:52:05:13:5f:a8:bd:9b:2f:10: 3b:08:3f:62:ee:ad:08:e6:90:29:75:72:bd:5a:d4:e7:03:15: e3:ae:2b:8e:89:fa:b3:04:77:3a:1d:91:3e:4a:48:73:5c:52: de:21:c6:bb:f3:00:92:4c:62:4a:fe:09:79:7d:0a:b4:2d:ba: b2:96:03:ee:3e:cd:ed:c6:1e:b6:b4:f0:8b:55:44:78:7a:4a: 62:ab:9e:2a:dc:59:8a:22:cc:45:d3:03:27:77:e1:ca:3f:b2: 96:ed:01:d5:99:73:a6:73:41:c5:0d:2e:90:74:44:3e:04:b6: 7f:1a:15:cf:1d:f5:d2:2e:68:f1:bc:4e:08:5e:f5:4b:70:d4: 84:34:c0:62:50:59:fd:b9:8c:88:74:99:99:40:00:04:f0:2e: 81:d6:0c:26:22:88:9a:3b:d1:36:36:04:4f:fb:f2:d7:92:ff: 4d:e3:29:c3:fa:2f:e9:f8:fc:d7:5f:10:83:99:48:bd:a4:63: 24:11:9d:07:2e:91:97:e8:59:8d:12:56:7e:fe:fb:b1:0e:66: 55:41:8e:19 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUc0ZfDuAr/Hoo7k7bvixHKngBqE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzZGMEVBM0Y0OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBB RDJGMzlCQTAeFw0yNjA1MDMwMzA3NDZaFw0yNzA1MDIwMzEyNDZaMDMxMTAvBgNV BAMTKDY1MTU1QkI3Q0E3RkE4REE2QTU1N0VFMTA5MTNGMzRERDQ4RkUyQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkXKUD3G8VX4x9w+88SK+H0Soy QdRtmmC4/uhbmnk/Y1zCJpgmdt9pXcYM/0mLqNmcmxSKRty1QBqJd2Mc4ifr8xH0 lufkNOkP2YEKN+KsqXQ/j/3G6qyvkxVPjNUAv8Huyx8E7YE/y3daRlAcpDiz5MDV N2NB/fmwS3oCvAaEx4QGURoHshkdSI1zfJEAPVgcuTA5G+9p7X0EMzmbjk2P00eL XA08z49OVM17NVlOwjN8HmzgnEGJLC935dGn1wCgXeFINTbk0GqpdTjBaq4jglst XLEqOS37A88YGmHlxeW0kTyf97mVWG2WZCHhQVS4B7SXh99pvEjkK+T5sPtHAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUZRVbt8p/qNpqVX7hCRPzTdSP4skwHwYDVR0j BBgwFoAUxvDqP0mJZcc2G168LokWMK0vObowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTE3YmQ1MDItNDJjMi00MDBkLWEyYWQtZDE3NTQzNjVhNDVkLzAvQzZGMEVBM0Y0 OTg5NjVDNzM2MUI1RUJDMkU4OTE2MzBBRDJGMzlCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNkYwRUEzRjQ5ODk2NUM3MzYxQjVFQkMyRTg5MTYzMEFEMkYz OUJBLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzIzMTMxMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAIRMwDQYJKoZIhvcNAQELBQADggEBAHqlc1PCnH11nbjDjUqsULbCezaxgXMF MulOokHnlqwUVVzqoCVYQ34NMXRwM1IFE1+ovZsvEDsIP2LurQjmkCl1cr1a1OcD FeOuK46J+rMEdzodkT5KSHNcUt4hxrvzAJJMYkr+CXl9CrQturKWA+4+ze3GHra0 8ItVRHh6SmKrnircWYoizEXTAyd34co/spbtAdWZc6ZzQcUNLpB0RD4Etn8aFc8d 9dIuaPG8Tghe9Utw1IQ0wGJQWf25jIh0mZlAAATwLoHWDCYiiJo70TY2BE/78teS /03jKcP6L+n4/NdfEIOZSL2kYyQRnQcukZfoWY0SVn7++7EOZlVBjhk= -----END CERTIFICATE-----Generated at Wed May 13 13:00:37 2026 by rpki-client