$ rpki-client -vvf rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa File: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (raw, json) Hash identifier: qd7L3Ietl/ythiF1v/evymxuReB0q3gMulxwNnwRr60= Subject key identifier: 91:57:C4:D1:86:90:B1:82:4D:A7:3B:29:5B:26:DB:46:35:70:04:64 Certificate issuer: /CN=0D2802EC43905EEA387602B994B8B579041C8507 Certificate serial: E770A027CD93CEE5BAB31FF0264C79799D7B44 Authority key identifier: 0D:28:02:EC:43:90:5E:EA:38:76:02:B9:94:B8:B5:79:04:1C:85:07 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0D2802EC43905EEA387602B994B8B579041C8507.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa Signing time: Sun 03 May 2026 03:13:12 +0000 ROA not before: Sun 03 May 2026 03:08:12 +0000 ROA not after: Sun 02 May 2027 03:13:12 +0000 asID: 138822 IP address blocks: 2404:a4c0:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/0D2802EC43905EEA387602B994B8B579041C8507.crl rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/0D2802EC43905EEA387602B994B8B579041C8507.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0D2802EC43905EEA387602B994B8B579041C8507.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e7:70:a0:27:cd:93:ce:e5:ba:b3:1f:f0:26:4c:79:79:9d:7b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D2802EC43905EEA387602B994B8B579041C8507 Validity Not Before: May 3 03:08:12 2026 GMT Not After : May 2 03:13:12 2027 GMT Subject: CN=9157C4D18690B1824DA73B295B26DB4635700464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:80:f9:46:b3:ad:69:7f:e9:39:22:79:1a:61: 83:e4:9b:2f:18:0a:c2:ff:80:8c:0a:cc:9d:4a:16: 5b:60:a3:11:41:e4:13:5d:0c:a2:f9:7d:94:af:8b: 9a:9f:70:64:e2:1f:44:24:18:c8:f3:85:ab:d5:0a: 38:db:d5:ae:66:bf:96:9d:6b:ab:83:9d:2c:42:a3: cb:9c:e9:14:6d:bc:9d:36:fc:f6:95:07:da:24:27: 3b:cc:b1:73:02:ea:a5:b5:50:e7:55:d8:9f:ef:d6: 8b:11:ae:36:7b:f8:b1:dd:55:46:cb:7f:38:49:03: d6:eb:e9:5a:1c:3f:ea:83:71:ea:35:cf:b9:fe:8c: 7e:07:88:1c:39:95:5d:dc:76:1a:a5:1f:0a:b5:3b: 10:06:9b:62:6c:c8:1d:3a:2f:0f:d7:b5:64:f8:72: 1d:79:56:b7:9e:0f:84:28:a6:d9:c1:48:04:ae:8d: 4c:dd:c9:2e:6b:71:d0:62:b3:a8:92:51:ef:f6:10: ad:9b:eb:b0:38:ed:47:17:f9:9b:d2:70:3e:19:a3: a0:13:b6:fb:87:e8:e2:7d:4b:44:be:a9:7a:0e:a5: 7f:46:14:05:7c:cc:3f:e6:85:a7:42:e4:c2:93:2f: 9f:8b:5f:3a:5e:dd:31:fe:f0:30:d1:23:e4:c0:d5: 9e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:57:C4:D1:86:90:B1:82:4D:A7:3B:29:5B:26:DB:46:35:70:04:64 X509v3 Authority Key Identifier: keyid:0D:28:02:EC:43:90:5E:EA:38:76:02:B9:94:B8:B5:79:04:1C:85:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/0D2802EC43905EEA387602B994B8B579041C8507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0D2802EC43905EEA387602B994B8B579041C8507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a4c0:face::/48 Signature Algorithm: sha256WithRSAEncryption 71:a1:f8:00:4e:dd:0a:fa:f4:45:9d:8b:68:14:72:2e:cd:85: b6:74:2f:12:e8:72:6d:63:5a:7a:25:84:35:f6:3f:63:06:7f: d6:84:c3:77:68:83:57:5c:9e:4f:6f:72:38:6e:1a:4e:a8:93: 47:ad:0a:41:38:86:f2:25:5d:5a:25:c7:b6:67:8d:ba:09:9c: 9e:a6:53:c1:ac:97:66:b6:87:9d:60:8c:20:21:c0:ec:5e:b2: 45:07:8f:e9:6c:43:0b:bd:5b:aa:b3:a0:a0:90:06:bd:2a:4a: b3:7a:d8:d8:8e:ae:88:27:43:80:87:14:10:94:eb:2b:a1:32: 87:b1:df:54:32:f9:d3:b6:be:39:f9:dd:89:35:aa:41:d0:61: 7b:89:60:df:10:5e:50:d9:67:e0:9d:92:d3:a4:a1:d3:c4:4b: 81:de:92:84:1c:a9:3c:92:b8:b3:d8:36:fa:db:73:ce:dc:f2: 12:87:45:4d:03:53:25:e3:ce:d0:c3:27:1c:51:43:70:4b:c8: ad:1e:26:57:bd:a4:46:de:4f:35:30:36:e5:b1:19:7a:32:37: c1:ba:a2:a8:ff:81:8b:ab:3d:24:d3:28:21:68:d3:38:06:9e: a3:df:da:7e:98:84:d6:17:d3:27:39:00:85:8a:73:98:b7:81: a8:f7:1f:6f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAOdwoCfNk87lurMf8CZMeXmde0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQyODAyRUM0MzkwNUVFQTM4NzYwMkI5OTRCOEI1Nzkw NDFDODUwNzAeFw0yNjA1MDMwMzA4MTJaFw0yNzA1MDIwMzEzMTJaMDMxMTAvBgNV BAMTKDkxNTdDNEQxODY5MEIxODI0REE3M0IyOTVCMjZEQjQ2MzU3MDA0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmgPlGs61pf+k5InkaYYPkmy8Y CsL/gIwKzJ1KFltgoxFB5BNdDKL5fZSvi5qfcGTiH0QkGMjzhavVCjjb1a5mv5ad a6uDnSxCo8uc6RRtvJ02/PaVB9okJzvMsXMC6qW1UOdV2J/v1osRrjZ7+LHdVUbL fzhJA9br6VocP+qDceo1z7n+jH4HiBw5lV3cdhqlHwq1OxAGm2JsyB06Lw/XtWT4 ch15VreeD4QoptnBSASujUzdyS5rcdBis6iSUe/2EK2b67A47UcX+ZvScD4Zo6AT tvuH6OJ9S0S+qXoOpX9GFAV8zD/mhadC5MKTL5+LXzpe3TH+8DDRI+TA1Z5lAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUkVfE0YaQsYJNpzspWybbRjVwBGQwHwYDVR0j BBgwFoAUDSgC7EOQXuo4dgK5lLi1eQQchQcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTNiYmYxZGEtZTMxNy00OGVmLWFkNmQtZmU4YThiZjA4NDAwLzAvMEQyODAyRUM0 MzkwNUVFQTM4NzYwMkI5OTRCOEI1NzkwNDFDODUwNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRDI4MDJFQzQzOTA1RUVBMzg3NjAyQjk5NEI4QjU3OTA0MUM4 NTA3LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMyMzQzMDM0M2E2MTM0NjMzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMyMzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BKTA+s4wDQYJKoZIhvcNAQELBQADggEBAHGh+ABO3Qr69EWdi2gUci7NhbZ0LxLo cm1jWnolhDX2P2MGf9aEw3dog1dcnk9vcjhuGk6ok0etCkE4hvIlXVolx7ZnjboJ nJ6mU8Gsl2a2h51gjCAhwOxeskUHj+lsQwu9W6qzoKCQBr0qSrN62NiOrognQ4CH FBCU6yuhMoex31Qy+dO2vjn53Yk1qkHQYXuJYN8QXlDZZ+CdktOkodPES4HekoQc qTySuLPYNvrbc87c8hKHRU0DUyXjztDDJxxRQ3BLyK0eJle9pEbeTzUwNuWxGXoy N8G6oqj/gYurPSTTKCFo0zgGnqPf2n6YhNYX0yc5AIWKc5i3gaj3H28= -----END CERTIFICATE-----Generated at Wed May 13 02:26:29 2026 by rpki-client