$ rpki-client -vvf rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: V4hLtf66ABiKe0ICwJF0FFgtDIiwxiUTJgx6ebSEKO8= Subject key identifier: 9D:E8:54:17:65:FF:9E:AB:3D:22:B4:12:2C:19:CE:86:0E:EA:DA:89 Certificate issuer: /CN=E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E Certificate serial: 28FAB4519C0FA2805B47C86ECFBC29F2A8207714 Authority key identifier: E6:60:3C:08:B5:CF:1A:CE:E1:C7:3D:33:C6:00:D4:F4:FD:F5:DC:2E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa Signing time: Sun 03 May 2026 03:13:33 +0000 ROA not before: Sun 03 May 2026 03:08:33 +0000 ROA not after: Sun 02 May 2027 03:13:33 +0000 asID: 139417 IP address blocks: 2404:cac0:babe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.crl rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fa:b4:51:9c:0f:a2:80:5b:47:c8:6e:cf:bc:29:f2:a8:20:77:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E Validity Not Before: May 3 03:08:33 2026 GMT Not After : May 2 03:13:33 2027 GMT Subject: CN=9DE8541765FF9EAB3D22B4122C19CE860EEADA89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:5e:21:fb:9f:fd:d1:51:7e:b0:d4:1d:60: a8:08:54:c1:d4:ce:09:70:bb:61:ce:a3:64:b1:a4: ce:74:92:28:4a:b3:3c:8d:89:92:1f:a4:7d:a9:70: 86:72:50:cf:72:3c:08:2c:a8:54:32:12:49:2d:44: ee:ea:52:54:c5:36:c2:7e:d8:82:b5:4f:7a:d2:cc: 0b:c2:67:b7:06:bd:dd:68:eb:10:d7:f8:be:4d:c3: ad:48:e0:49:80:df:27:fe:96:ed:8b:b4:33:88:9c: 53:95:0e:3d:f1:7a:5c:b5:e9:82:98:c3:53:04:ec: a9:4f:e8:d2:3e:64:8f:9e:8b:4b:3e:00:6b:f8:ce: de:45:75:53:dc:1d:69:fb:98:f7:97:04:7e:9a:f2: 74:02:30:72:80:25:aa:52:39:b4:8a:75:46:c2:c6: 32:9c:53:59:57:a2:00:3b:ff:3f:f5:23:4e:9d:c6: 8e:a8:f6:d6:b9:ae:ca:23:50:e9:23:73:e6:03:39: f2:07:d8:a6:13:30:42:b3:ae:88:3b:ed:f4:6c:c2: ac:ec:69:03:66:d7:ae:d3:38:38:0d:cd:d1:f6:ab: 1e:47:ed:21:c0:b1:e9:60:00:8a:3f:09:f5:14:06: 7d:fe:f0:2e:ff:da:59:2a:3d:66:15:6c:23:73:3d: 96:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E8:54:17:65:FF:9E:AB:3D:22:B4:12:2C:19:CE:86:0E:EA:DA:89 X509v3 Authority Key Identifier: keyid:E6:60:3C:08:B5:CF:1A:CE:E1:C7:3D:33:C6:00:D4:F4:FD:F5:DC:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E6603C08B5CF1ACEE1C73D33C600D4F4FDF5DC2E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:babe::/48 Signature Algorithm: sha256WithRSAEncryption 24:33:1c:48:51:c5:e4:4c:49:08:f4:7c:4e:04:66:df:52:34: dd:89:20:19:9d:84:95:62:0f:0b:e0:f1:84:9c:fe:01:41:fb: f2:ae:57:23:2b:99:62:f9:e7:e0:ff:9b:5f:ac:1e:46:e1:30: 18:47:0b:28:ce:5c:0b:cc:5c:02:21:e6:25:46:04:7c:cf:98: 5d:b5:54:12:f2:30:59:37:54:a6:1e:10:b5:91:3d:bf:85:80: 19:ee:6e:bb:51:44:d6:fa:79:02:10:af:aa:9f:b2:1d:7e:15: a3:ea:25:47:d1:a0:0b:e3:3f:76:88:ba:70:0e:b6:cc:a3:57: d6:69:1c:4b:ca:4c:d5:b4:8c:5d:ac:7a:65:86:27:35:76:0d: 8f:9c:51:8b:24:52:c5:61:36:ec:a5:82:bf:ef:31:61:da:63: 85:7a:18:70:f1:d8:04:32:0e:dc:0a:b6:89:aa:d7:3d:66:2b: 86:79:cf:88:7c:04:50:11:de:c0:28:cb:d2:18:5b:e3:ff:4c: 6a:68:33:af:4c:d6:41:08:ce:6f:c2:38:d3:7f:21:54:c4:88: eb:23:3d:31:e2:4b:bc:70:67:e5:ee:46:e2:81:c1:a7:eb:45: 96:8d:8e:62:28:f5:f5:fe:b0:04:b6:de:9e:47:a4:93:70:b1: 31:bd:41:d7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKPq0UZwPooBbR8huz7wp8qggdxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTY2MDNDMDhCNUNGMUFDRUUxQzczRDMzQzYwMEQ0RjRG REY1REMyRTAeFw0yNjA1MDMwMzA4MzNaFw0yNzA1MDIwMzEzMzNaMDMxMTAvBgNV BAMTKDlERTg1NDE3NjVGRjlFQUIzRDIyQjQxMjJDMTlDRTg2MEVFQURBODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHa14h+5/90VF+sNQdYKgIVMHU zglwu2HOo2SxpM50kihKszyNiZIfpH2pcIZyUM9yPAgsqFQyEkktRO7qUlTFNsJ+ 2IK1T3rSzAvCZ7cGvd1o6xDX+L5Nw61I4EmA3yf+lu2LtDOInFOVDj3xely16YKY w1ME7KlP6NI+ZI+ei0s+AGv4zt5FdVPcHWn7mPeXBH6a8nQCMHKAJapSObSKdUbC xjKcU1lXogA7/z/1I06dxo6o9ta5rsojUOkjc+YDOfIH2KYTMEKzrog77fRswqzs aQNm167TODgNzdH2qx5H7SHAselgAIo/CfUUBn3+8C7/2lkqPWYVbCNzPZZTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUnehUF2X/nqs9IrQSLBnOhg7q2okwHwYDVR0j BBgwFoAU5mA8CLXPGs7hxz0zxgDU9P313C4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTU0MTNmZjQtMjAyYi00OTk5LWI0NWQtNzNjOTcyZjEwMTE2LzAvRTY2MDNDMDhC NUNGMUFDRUUxQzczRDMzQzYwMEQ0RjRGREY1REMyRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNjYwM0MwOEI1Q0YxQUNFRTFDNzNEMzNDNjAwRDRGNEZERjVE QzJFLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjI2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAur4wDQYJKoZIhvcNAQELBQADggEBACQzHEhRxeRMSQj0fE4EZt9SNN2JIBmd hJViDwvg8YSc/gFB+/KuVyMrmWL55+D/m1+sHkbhMBhHCyjOXAvMXAIh5iVGBHzP mF21VBLyMFk3VKYeELWRPb+FgBnubrtRRNb6eQIQr6qfsh1+FaPqJUfRoAvjP3aI unAOtsyjV9ZpHEvKTNW0jF2semWGJzV2DY+cUYskUsVhNuylgr/vMWHaY4V6GHDx 2AQyDtwKtomq1z1mK4Z5z4h8BFAR3sAoy9IYW+P/TGpoM69M1kEIzm/CONN/IVTE iOsjPTHiS7xwZ+XuRuKBwafrRZaNjmIo9fX+sAS23p5HpJNwsTG9Qdc= -----END CERTIFICATE-----Generated at Wed May 13 15:37:20 2026 by rpki-client