$ rpki-client -vvf rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: L43zAN6Sd67DjqaPuwdnmij65SSf4KEAFvEekY/X/7c= Subject key identifier: DC:46:8B:93:35:B8:DD:A3:70:FC:1E:7E:26:E3:C8:1C:2C:18:8F:A8 Certificate issuer: /CN=E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E Certificate serial: 0C463A8924F242127B26ED932C6D3412B7333509 Authority key identifier: E6:60:3C:08:B5:CF:1A:CE:E1:C7:3D:33:C6:00:D4:F4:FD:F5:DC:2E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa Signing time: Sun 03 May 2026 03:13:32 +0000 ROA not before: Sun 03 May 2026 03:08:32 +0000 ROA not after: Sun 02 May 2027 03:13:32 +0000 asID: 139417 IP address blocks: 2404:cac0:1a5b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.crl rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:46:3a:89:24:f2:42:12:7b:26:ed:93:2c:6d:34:12:b7:33:35:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E Validity Not Before: May 3 03:08:32 2026 GMT Not After : May 2 03:13:32 2027 GMT Subject: CN=DC468B9335B8DDA370FC1E7E26E3C81C2C188FA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:fa:88:fd:6a:a8:c6:9b:15:b8:3a:da:67:fc: c4:36:52:bb:86:98:f0:5d:c6:88:92:e5:3a:76:d1: 77:71:61:4d:e0:36:14:47:c7:56:62:1c:5d:65:ca: f9:71:90:f7:fc:4c:c8:14:97:6d:c3:10:20:2f:29: b3:cd:a1:b2:9d:5d:cb:bb:be:3c:58:a2:4a:32:c5: ea:43:7d:07:ee:ac:57:3d:27:3b:89:84:b1:d0:6d: 0a:93:f8:c9:2f:df:93:f4:9a:52:9f:72:02:9a:df: aa:46:6f:11:6c:97:c7:36:30:82:2a:84:c4:6c:10: 43:b3:f1:2d:b4:c1:08:83:ed:fe:2b:14:d2:44:52: 73:3d:5c:eb:b8:70:45:a8:da:af:0b:a4:37:c6:c9: a5:b7:2c:d7:44:cd:5c:aa:1b:76:4a:34:41:35:91: bc:77:1a:5d:ef:cf:13:df:c0:58:16:cf:03:65:f5: 21:02:63:1b:a4:33:aa:28:ae:5a:7f:59:d6:cc:b1: 28:36:e8:1c:59:c9:d1:fa:4a:ef:76:f5:cf:26:95: 01:88:3a:0d:25:6e:a7:f7:bf:1c:83:54:3a:5c:87: f9:35:13:44:68:dd:fa:fb:c0:93:70:fb:48:40:46: a4:5a:62:45:2c:01:b7:f3:7b:4b:34:4e:e2:e2:3d: 63:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:46:8B:93:35:B8:DD:A3:70:FC:1E:7E:26:E3:C8:1C:2C:18:8F:A8 X509v3 Authority Key Identifier: keyid:E6:60:3C:08:B5:CF:1A:CE:E1:C7:3D:33:C6:00:D4:F4:FD:F5:DC:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:1a5b::/48 Signature Algorithm: sha256WithRSAEncryption bb:0e:c4:27:fd:45:0a:ac:48:12:9d:a6:f3:45:e1:54:03:06: d1:3b:ab:81:61:2e:46:da:d7:86:c3:10:a4:52:e2:88:e4:98: c9:b1:fe:6d:7f:73:d8:62:48:3f:d9:70:f7:03:c4:cb:fc:5f: d3:f2:9b:fc:d6:ba:d6:1e:a2:b2:de:37:83:a7:fd:73:4c:e3: d5:a4:35:81:6f:f6:1c:99:2b:85:7a:9f:86:8d:9a:d7:c7:e7: e0:56:1b:be:87:89:d8:f2:db:35:f6:6f:38:21:7b:24:95:ba: 78:d6:f0:4f:3f:30:2a:ae:9d:0e:e6:dd:1e:a3:23:f1:f9:df: 8a:a5:f5:79:19:59:f0:37:87:75:bd:67:8b:23:96:b9:ec:fa: 21:18:da:f8:8c:9c:b1:55:e3:b9:0e:08:62:c3:a2:8e:81:c4: 76:31:77:f7:e6:d1:06:77:5e:57:ce:16:48:ad:30:76:27:82: 19:90:dd:1b:1c:74:93:c0:dd:46:86:7e:d2:ce:ba:17:7d:3a: fb:47:bd:89:dd:1a:fe:39:b3:73:50:0a:69:1c:71:08:b2:88: f2:31:a1:aa:26:38:e0:7f:8c:04:28:39:ec:2d:4c:89:b2:ef: d6:9e:c4:32:da:e1:c1:70:72:e3:70:80:81:be:01:04:82:5f: ad:60:5d:a1 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDEY6iSTyQhJ7Ju2TLG00ErczNQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTY2MDNDMDhCNUNGMUFDRUUxQzczRDMzQzYwMEQ0RjRG REY1REMyRTAeFw0yNjA1MDMwMzA4MzJaFw0yNzA1MDIwMzEzMzJaMDMxMTAvBgNV BAMTKERDNDY4QjkzMzVCOEREQTM3MEZDMUU3RTI2RTNDODFDMkMxODhGQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP+oj9aqjGmxW4Otpn/MQ2UruG mPBdxoiS5Tp20XdxYU3gNhRHx1ZiHF1lyvlxkPf8TMgUl23DECAvKbPNobKdXcu7 vjxYokoyxepDfQfurFc9JzuJhLHQbQqT+Mkv35P0mlKfcgKa36pGbxFsl8c2MIIq hMRsEEOz8S20wQiD7f4rFNJEUnM9XOu4cEWo2q8LpDfGyaW3LNdEzVyqG3ZKNEE1 kbx3Gl3vzxPfwFgWzwNl9SECYxukM6oorlp/WdbMsSg26BxZydH6Su929c8mlQGI Og0lbqf3vxyDVDpch/k1E0Ro3fr7wJNw+0hARqRaYkUsAbfze0s0TuLiPWNnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU3EaLkzW43aNw/B5+JuPIHCwYj6gwHwYDVR0j BBgwFoAU5mA8CLXPGs7hxz0zxgDU9P313C4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTU0MTNmZjQtMjAyYi00OTk5LWI0NWQtNzNjOTcyZjEwMTE2LzAvRTY2MDNDMDhC NUNGMUFDRUUxQzczRDMzQzYwMEQ0RjRGREY1REMyRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNjYwM0MwOEI1Q0YxQUNFRTFDNzNEMzNDNjAwRDRGNEZERjVE QzJFLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhMzE2MTM1NjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAGlswDQYJKoZIhvcNAQELBQADggEBALsOxCf9RQqsSBKdpvNF4VQDBtE7q4Fh Lkba14bDEKRS4ojkmMmx/m1/c9hiSD/ZcPcDxMv8X9Pym/zWutYeorLeN4On/XNM 49WkNYFv9hyZK4V6n4aNmtfH5+BWG76Hidjy2zX2bzgheySVunjW8E8/MCqunQ7m 3R6jI/H534ql9XkZWfA3h3W9Z4sjlrns+iEY2viMnLFV47kOCGLDoo6BxHYxd/fm 0QZ3XlfOFkitMHYnghmQ3RscdJPA3UaGftLOuhd9OvtHvYndGv45s3NQCmkccQiy iPIxoaomOOB/jAQoOewtTImy79aexDLa4cFwcuNwgIG+AQSCX61gXaE= -----END CERTIFICATE-----Generated at Wed May 13 16:16:52 2026 by rpki-client