$ rpki-client -vvf rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a313164353a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a313164353a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: fFde4o8Yc2e0Go1H0mxy5Fv7aXbaJ0D5/miP1jSxlEc= Subject key identifier: 67:51:AC:23:60:9B:29:83:FF:3F:72:AA:DE:A8:96:64:22:77:67:9C Certificate issuer: /CN=E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E Certificate serial: 41E9273F892C80C728552E4E831D4F756AF6C37F Authority key identifier: E6:60:3C:08:B5:CF:1A:CE:E1:C7:3D:33:C6:00:D4:F4:FD:F5:DC:2E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a313164353a3a2f34382d3438203d3e20313339343137.roa Signing time: Sun 03 May 2026 03:13:34 +0000 ROA not before: Sun 03 May 2026 03:08:34 +0000 ROA not after: Sun 02 May 2027 03:13:34 +0000 asID: 139417 IP address blocks: 2404:cac0:11d5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.crl rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e9:27:3f:89:2c:80:c7:28:55:2e:4e:83:1d:4f:75:6a:f6:c3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E Validity Not Before: May 3 03:08:34 2026 GMT Not After : May 2 03:13:34 2027 GMT Subject: CN=6751AC23609B2983FF3F72AADEA896642277679C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5d:a9:5e:f8:ea:1e:e5:96:33:a5:e4:20:71: 2f:37:52:a0:1e:c4:54:7a:9c:3d:b5:6c:df:d6:46: cc:07:48:a5:59:d6:78:87:81:5a:7d:3f:39:8c:33: 98:6e:06:90:71:2f:eb:c4:2d:f5:1b:c9:24:c9:5d: 7f:20:d2:87:df:31:ca:67:c2:7a:74:43:28:4a:e1: 69:7d:b9:71:d1:fa:e5:bc:81:d0:9d:c8:70:3f:e0: 50:fc:19:02:a0:a4:b7:2d:60:e4:27:7d:e7:a5:da: 9c:5c:55:02:a6:ab:8b:8c:a4:86:07:03:72:96:80: 21:42:fb:20:4d:ec:fe:85:e9:ca:b7:c0:ea:14:c4: 77:74:90:60:1c:9b:10:91:1f:ec:10:91:5c:af:19: 6c:fa:75:ec:d2:8c:4b:b4:c4:5c:75:db:d2:fe:6d: 09:2f:b6:22:52:5d:47:63:53:a1:64:4d:a0:81:61: 22:82:9d:6f:2a:e0:e5:21:55:ff:ff:71:11:04:33: 6c:5f:bc:c5:1d:38:b0:d1:bc:7d:99:9e:9d:7d:e1: 49:cf:cd:4a:82:cd:95:2d:04:13:a7:13:09:1f:79: 2f:59:25:08:ba:77:04:29:59:cd:53:64:d3:45:93: 3d:11:e9:3b:10:41:1e:98:d6:bc:f2:21:4c:72:0a: 53:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:51:AC:23:60:9B:29:83:FF:3F:72:AA:DE:A8:96:64:22:77:67:9C X509v3 Authority Key Identifier: keyid:E6:60:3C:08:B5:CF:1A:CE:E1:C7:3D:33:C6:00:D4:F4:FD:F5:DC:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a313164353a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:11d5::/48 Signature Algorithm: sha256WithRSAEncryption b9:9f:7e:50:bc:ae:57:76:3e:e2:74:68:68:ae:13:89:55:52: 5f:ad:86:f4:5a:bb:45:c8:b9:69:19:ad:09:8d:13:91:76:96: 52:55:c9:d8:73:de:74:84:57:95:95:67:4d:ff:8c:70:46:86: f5:d2:3c:5f:62:08:a5:c8:05:bb:8d:bc:cc:52:85:fd:41:30: 5d:98:5c:70:4d:5c:21:54:39:ca:33:2e:62:db:2b:34:e9:7a: 44:00:f0:a1:62:33:d8:29:ed:1b:6a:b1:93:08:3a:54:60:4f: 18:5b:54:83:cd:fb:4b:59:77:ae:c9:d0:78:0b:54:a0:28:b5: f1:c9:d7:b3:80:23:69:4c:41:57:5b:06:dd:4c:d0:02:b2:b8: 0a:58:85:42:e6:30:46:d0:bf:62:8f:cb:97:23:e8:d4:5d:ee: 0a:cf:c7:da:2e:86:a2:0d:e3:a5:f7:c3:7f:d7:64:e5:1a:93: 04:5f:53:8a:b0:6f:95:ab:f5:88:58:10:5f:59:14:23:19:42: 3a:ea:34:38:a1:6b:e0:0e:4a:33:0c:78:51:0c:d4:df:d1:5e: 53:2c:bb:42:03:1b:fc:6d:a8:f5:8b:b0:6f:6c:80:e3:07:4a: d7:18:75:f8:90:5d:b1:5a:29:47:16:a4:91:70:3e:6a:64:04: 44:4f:8c:7d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUQeknP4ksgMcoVS5Ogx1PdWr2w38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTY2MDNDMDhCNUNGMUFDRUUxQzczRDMzQzYwMEQ0RjRG REY1REMyRTAeFw0yNjA1MDMwMzA4MzRaFw0yNzA1MDIwMzEzMzRaMDMxMTAvBgNV BAMTKDY3NTFBQzIzNjA5QjI5ODNGRjNGNzJBQURFQTg5NjY0MjI3NzY3OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Xale+Ooe5ZYzpeQgcS83UqAe xFR6nD21bN/WRswHSKVZ1niHgVp9PzmMM5huBpBxL+vELfUbySTJXX8g0offMcpn wnp0QyhK4Wl9uXHR+uW8gdCdyHA/4FD8GQKgpLctYOQnfeel2pxcVQKmq4uMpIYH A3KWgCFC+yBN7P6F6cq3wOoUxHd0kGAcmxCRH+wQkVyvGWz6dezSjEu0xFx129L+ bQkvtiJSXUdjU6FkTaCBYSKCnW8q4OUhVf//cREEM2xfvMUdOLDRvH2Znp194UnP zUqCzZUtBBOnEwkfeS9ZJQi6dwQpWc1TZNNFkz0R6TsQQR6Y1rzyIUxyClNrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUZ1GsI2CbKYP/P3Kq3qiWZCJ3Z5wwHwYDVR0j BBgwFoAU5mA8CLXPGs7hxz0zxgDU9P313C4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTU0MTNmZjQtMjAyYi00OTk5LWI0NWQtNzNjOTcyZjEwMTE2LzAvRTY2MDNDMDhC NUNGMUFDRUUxQzczRDMzQzYwMEQ0RjRGREY1REMyRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNjYwM0MwOEI1Q0YxQUNFRTFDNzNEMzNDNjAwRDRGNEZERjVE QzJFLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhMzEzMTY0MzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAEdUwDQYJKoZIhvcNAQELBQADggEBALmfflC8rld2PuJ0aGiuE4lVUl+thvRa u0XIuWkZrQmNE5F2llJVydhz3nSEV5WVZ03/jHBGhvXSPF9iCKXIBbuNvMxShf1B MF2YXHBNXCFUOcozLmLbKzTpekQA8KFiM9gp7RtqsZMIOlRgTxhbVIPN+0tZd67J 0HgLVKAotfHJ17OAI2lMQVdbBt1M0AKyuApYhULmMEbQv2KPy5cj6NRd7grPx9ou hqIN46X3w3/XZOUakwRfU4qwb5Wr9YhYEF9ZFCMZQjrqNDiha+AOSjMMeFEM1N/R XlMsu0IDG/xtqPWLsG9sgOMHStcYdfiQXbFaKUcWpJFwPmpkBERPjH0= -----END CERTIFICATE-----Generated at Wed May 13 16:11:51 2026 by rpki-client