$ rpki-client -vvf rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: mp5B+pIrXhiUbuMsr8cnEzazNDsLPTDUxozREK5677I= Subject key identifier: 68:DC:90:64:E3:1A:88:E5:87:5E:F6:B2:D9:38:97:6F:88:D4:0E:84 Certificate issuer: /CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Certificate serial: 618AA304BF6A2E3181557DC678BFAA28FDAA56A0 Authority key identifier: C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa Signing time: Sun 03 May 2026 03:14:14 +0000 ROA not before: Sun 03 May 2026 03:09:14 +0000 ROA not after: Sun 02 May 2027 03:14:14 +0000 asID: 38526 IP address blocks: 2405:3740:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8a:a3:04:bf:6a:2e:31:81:55:7d:c6:78:bf:aa:28:fd:aa:56:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Validity Not Before: May 3 03:09:14 2026 GMT Not After : May 2 03:14:14 2027 GMT Subject: CN=68DC9064E31A88E5875EF6B2D938976F88D40E84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:43:a0:da:f4:40:5a:bd:06:b0:91:df:e4:6d: b5:87:fc:8a:db:7c:f1:56:00:73:2b:b5:03:f2:08: 50:56:ff:d5:80:14:42:e8:45:d9:f0:5d:fc:e8:a3: bb:0c:0a:13:54:78:50:f2:ad:74:0c:ef:1b:7c:8b: 6a:eb:d8:e0:ff:0e:9c:d2:cb:64:38:77:52:76:8a: 74:ea:81:e2:f5:44:8c:1f:db:52:29:1f:89:18:b3: 6b:1c:69:1d:e8:ba:e0:d5:45:81:3f:b4:0c:3a:07: 0a:26:3e:dd:29:ca:2e:9d:eb:14:e0:a1:d1:04:d5: 33:59:e6:a9:ae:15:5f:a1:ae:ce:60:b0:5c:1c:73: 33:4b:6c:62:3c:b7:72:ac:20:6d:36:8b:29:7e:bc: 30:26:e2:40:1a:0c:09:08:17:a9:01:69:27:d8:df: 10:55:50:fb:2f:44:7a:0c:81:65:a9:b9:2d:6d:68: 54:79:b1:8b:be:cd:13:b9:c8:b3:e0:d5:d7:4e:d2: 56:84:d4:0f:0a:3e:92:c1:ea:8f:f2:c3:ad:0e:9b: 10:d6:6a:ce:43:d9:93:f5:31:d0:bc:b8:01:6b:8a: 92:60:34:1d:67:1f:7b:6d:11:2c:72:0a:78:48:bf: 50:91:77:96:e2:56:41:75:6a:c7:f1:6a:e8:d7:77: 22:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DC:90:64:E3:1A:88:E5:87:5E:F6:B2:D9:38:97:6F:88:D4:0E:84 X509v3 Authority Key Identifier: keyid:C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8000::/48 Signature Algorithm: sha256WithRSAEncryption 81:4f:af:64:ec:05:de:9c:42:74:d7:bb:20:b2:7f:bf:37:e4: cb:b1:a6:2d:66:39:c0:f4:ea:14:d5:c0:e0:e9:f3:62:2e:e1: 99:d4:e3:b2:f0:1c:88:06:cb:c8:c5:7d:85:a8:68:0f:66:61: 16:7f:7e:e1:66:22:93:b9:44:05:92:98:1f:d9:5f:2f:a6:c6: 06:29:6e:d9:a9:96:a5:f8:8a:62:7f:1f:b9:10:83:f6:5a:c2: d8:55:30:fe:a0:4e:97:54:d5:14:80:91:d3:3e:8e:a9:1d:b7: 7f:57:ce:55:11:23:72:99:a3:37:06:c5:a0:41:55:0b:0c:3c: 62:f4:4a:4f:31:33:c0:63:3d:14:54:94:6b:d7:b0:6f:66:1c: b8:07:4e:44:9d:f5:f0:5f:cc:7f:fd:c4:fb:7f:3e:99:7a:42: 36:0d:87:37:26:fd:5e:69:7d:62:4a:50:03:7f:f5:09:12:48: 1f:c6:5e:c8:a0:a6:b6:88:0c:09:24:6a:f4:e8:7b:57:b5:c1: 35:64:99:2b:56:9a:8b:61:e3:b6:13:84:ed:cd:20:aa:2b:2c: 3a:fc:44:b8:bb:58:2a:a4:82:6b:87:da:4d:b7:80:bd:97:60: b2:7b:36:0a:a7:c0:9a:02:2a:1b:d8:31:a4:10:e8:7a:e6:d1: 94:db:05:d8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYYqjBL9qLjGBVX3GeL+qKP2qVqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYzMkEwQ0Y0REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3 RTNDRkZENzAeFw0yNjA1MDMwMzA5MTRaFw0yNzA1MDIwMzE0MTRaMDMxMTAvBgNV BAMTKDY4REM5MDY0RTMxQTg4RTU4NzVFRjZCMkQ5Mzg5NzZGODhENDBFODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLQ6Da9EBavQawkd/kbbWH/Irb fPFWAHMrtQPyCFBW/9WAFELoRdnwXfzoo7sMChNUeFDyrXQM7xt8i2rr2OD/DpzS y2Q4d1J2inTqgeL1RIwf21IpH4kYs2scaR3ouuDVRYE/tAw6BwomPt0pyi6d6xTg odEE1TNZ5qmuFV+hrs5gsFwcczNLbGI8t3KsIG02iyl+vDAm4kAaDAkIF6kBaSfY 3xBVUPsvRHoMgWWpuS1taFR5sYu+zRO5yLPg1ddO0laE1A8KPpLB6o/yw60OmxDW as5D2ZP1MdC8uAFripJgNB1nH3ttESxyCnhIv1CRd5biVkF1asfxaujXdyLHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaNyQZOMaiOWHXvay2TiXb4jUDoQwHwYDVR0j BBgwFoAUxjKgz02n3ed8vKwfNnEWoH48/9cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTY1ZTc4MTAtNjdmNC00MWMyLTgwMzQtNDY1MjczM2I4ZGQyLzAvQzYzMkEwQ0Y0 REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3RTNDRkZENy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNjMyQTBDRjREQTdEREU3N0NCQ0FDMUYzNjcxMTZBMDdFM0NG RkQ3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIAAMA0GCSqGSIb3DQEBCwUAA4IBAQCBT69k7AXenEJ017sgsn+/N+TLsaYtZjnA 9OoU1cDg6fNiLuGZ1OOy8ByIBsvIxX2FqGgPZmEWf37hZiKTuUQFkpgf2V8vpsYG KW7ZqZal+Ipifx+5EIP2WsLYVTD+oE6XVNUUgJHTPo6pHbd/V85VESNymaM3BsWg QVULDDxi9EpPMTPAYz0UVJRr17BvZhy4B05EnfXwX8x//cT7fz6ZekI2DYc3Jv1e aX1iSlADf/UJEkgfxl7IoKa2iAwJJGr06HtXtcE1ZJkrVpqLYeO2E4TtzSCqKyw6 /ES4u1gqpIJrh9pNt4C9l2CyezYKp8CaAiob2DGkEOh65tGU2wXY -----END CERTIFICATE-----Generated at Wed May 13 13:01:04 2026 by rpki-client