$ rpki-client -vvf rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/323430363a343563303a3a2f33322d3332203d3e203634333030.roa File: 323430363a343563303a3a2f33322d3332203d3e203634333030.roa (raw, json) Hash identifier: 1M4q1NFllsSsvSfNvwTitiKk8jnGm1cKfR4Eial5H4E= Subject key identifier: DD:70:A8:A0:22:73:39:3E:2D:25:69:69:FF:B4:F1:73:8E:E5:6B:CE Certificate issuer: /CN=04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4 Certificate serial: 090194FE20255380E4CEE45E0B22157852897488 Authority key identifier: 04:DB:47:55:C7:5A:83:1C:D9:18:17:E6:A9:B7:E4:E1:ED:2D:F2:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/323430363a343563303a3a2f33322d3332203d3e203634333030.roa Signing time: Sun 03 May 2026 03:13:15 +0000 ROA not before: Sun 03 May 2026 03:08:15 +0000 ROA not after: Sun 02 May 2027 03:13:15 +0000 asID: 64300 IP address blocks: 2406:45c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.crl rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:01:94:fe:20:25:53:80:e4:ce:e4:5e:0b:22:15:78:52:89:74:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4 Validity Not Before: May 3 03:08:15 2026 GMT Not After : May 2 03:13:15 2027 GMT Subject: CN=DD70A8A02273393E2D256969FFB4F1738EE56BCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:84:de:55:ef:65:36:7d:09:b9:17:56:17:36: 8a:df:4a:7e:f9:20:a2:24:7e:7e:3f:23:00:23:ff: 63:17:e0:2f:4c:7c:07:ed:57:ee:06:30:44:c2:1b: bc:fb:75:51:4b:3d:ed:82:19:bd:54:8a:76:5e:c7: cc:83:08:8d:35:bb:5c:e4:20:26:39:da:ec:b1:90: bb:0a:4a:4a:4b:02:2c:d8:67:ac:8a:f9:02:d3:84: f3:89:0d:98:f9:c2:d5:20:9b:da:3c:30:88:73:04: 7d:27:5f:74:de:c6:73:4f:2e:c0:66:7d:e5:90:d4: 70:92:78:e5:f4:75:e2:56:e6:f4:ae:d9:8a:9e:f2: 70:e4:68:0c:df:d9:f0:8b:2a:a6:9d:6e:25:92:0f: 91:eb:3e:90:3d:da:01:0a:b6:e9:0b:83:d9:a6:0d: 7e:43:a6:48:dd:2d:5f:1e:c3:65:40:bb:b3:9c:ad: a5:6d:4e:00:22:45:d8:82:e5:79:8d:0d:d8:99:29: 55:68:5b:51:4d:6a:65:22:22:f8:d4:bd:18:2e:b9: b1:0b:56:0f:13:c3:8c:4f:d6:b7:b8:d3:a2:ef:bd: ba:6e:5c:37:8c:a6:54:f6:67:12:60:b6:5b:55:3d: 5c:b9:05:b7:71:21:50:dc:6f:1d:2f:e6:5b:fb:a3: 8c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:70:A8:A0:22:73:39:3E:2D:25:69:69:FF:B4:F1:73:8E:E5:6B:CE X509v3 Authority Key Identifier: keyid:04:DB:47:55:C7:5A:83:1C:D9:18:17:E6:A9:B7:E4:E1:ED:2D:F2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DB4755C75A831CD91817E6A9B7E4E1ED2DF2D4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/323430363a343563303a3a2f33322d3332203d3e203634333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:45c0::/32 Signature Algorithm: sha256WithRSAEncryption 3d:ae:76:f8:51:e8:39:8c:c2:3e:64:1d:7d:c5:a0:41:e0:1d: 52:2f:8f:02:a5:f0:42:4f:7e:d7:6d:af:0e:ed:36:40:d6:df: 26:61:53:6d:2e:42:d8:cb:be:2b:a4:ae:b2:07:6b:4b:e8:e9: 18:f0:85:a9:43:0f:c7:53:f9:16:ee:e5:1d:ba:03:c2:ae:68: 01:e6:33:0c:0b:99:6a:8a:27:16:35:cc:7e:b3:09:c8:7c:c7: d1:16:31:51:d6:1d:ed:68:a2:42:99:c3:a3:6b:83:0b:3b:4b: d5:d2:64:cd:ec:a0:aa:f4:b1:74:12:a1:54:8e:f6:61:a9:06: 3e:d7:b9:84:fb:91:8f:07:52:01:12:2b:c4:c0:ec:ff:ad:98: 6a:ea:ea:3d:c2:c0:15:e7:47:c0:a8:f6:7c:b5:c8:2b:2a:5c: 74:49:b0:68:18:49:34:74:90:1f:52:ed:81:62:3e:0f:95:da: 69:cc:90:a0:b6:3e:a9:d5:d2:ad:8c:e7:06:20:70:d1:27:df: 76:df:cd:8e:3a:35:c3:ff:8b:71:5e:9b:71:e0:fb:33:63:46: ee:a5:34:46:a7:ea:30:79:3b:e5:4e:e0:f1:62:53:41:0d:ed: b8:0a:a5:fa:c9:89:aa:26:a6:6d:96:7b:cf:54:ed:d6:9b:c7: 03:b2:f2:ca -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUCQGU/iAlU4DkzuReCyIVeFKJdIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREQjQ3NTVDNzVBODMxQ0Q5MTgxN0U2QTlCN0U0RTFF RDJERjJENDAeFw0yNjA1MDMwMzA4MTVaFw0yNzA1MDIwMzEzMTVaMDMxMTAvBgNV BAMTKERENzBBOEEwMjI3MzM5M0UyRDI1Njk2OUZGQjRGMTczOEVFNTZCQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdhN5V72U2fQm5F1YXNorfSn75 IKIkfn4/IwAj/2MX4C9MfAftV+4GMETCG7z7dVFLPe2CGb1UinZex8yDCI01u1zk ICY52uyxkLsKSkpLAizYZ6yK+QLThPOJDZj5wtUgm9o8MIhzBH0nX3TexnNPLsBm feWQ1HCSeOX0deJW5vSu2Yqe8nDkaAzf2fCLKqadbiWSD5HrPpA92gEKtukLg9mm DX5DpkjdLV8ew2VAu7OcraVtTgAiRdiC5XmNDdiZKVVoW1FNamUiIvjUvRguubEL Vg8Tw4xP1re406LvvbpuXDeMplT2ZxJgtltVPVy5BbdxIVDcbx0v5lv7o4wpAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU3XCooCJzOT4tJWlp/7Txc47la84wHwYDVR0j BBgwFoAUBNtHVcdagxzZGBfmqbfk4e0t8tQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTQzMDRiNjQtMjg5OS00ODMwLTljM2MtMzc1ODRhMzI3ZTFlLzAvMDREQjQ3NTVD NzVBODMxQ0Q5MTgxN0U2QTlCN0U0RTFFRDJERjJENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNERCNDc1NUM3NUE4MzFDRDkxODE3RTZBOUI3RTRFMUVEMkRG MkQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U0MzA0YjY0LTI4OTktNDgzMC05 YzNjLTM3NTg0YTMyN2UxZS8wLzMyMzQzMDM2M2EzNDM1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM2MzQzMzMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBkXAMA0GCSqGSIb3 DQEBCwUAA4IBAQA9rnb4Ueg5jMI+ZB19xaBB4B1SL48CpfBCT37Xba8O7TZA1t8m YVNtLkLYy74rpK6yB2tL6OkY8IWpQw/HU/kW7uUdugPCrmgB5jMMC5lqiicWNcx+ swnIfMfRFjFR1h3taKJCmcOja4MLO0vV0mTN7KCq9LF0EqFUjvZhqQY+17mE+5GP B1IBEivEwOz/rZhq6uo9wsAV50fAqPZ8tcgrKlx0SbBoGEk0dJAfUu2BYj4Pldpp zJCgtj6p1dKtjOcGIHDRJ992382OOjXD/4txXptx4PszY0bupTRGp+oweTvlTuDx YlNBDe24CqX6yYmqJqZtlnvPVO3Wm8cDsvLK -----END CERTIFICATE-----Generated at Wed May 13 11:50:21 2026 by rpki-client