$ rpki-client -vvf rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: bTFKtC5D0CKbmESlI6KEV52oNBXibxd+IfXIQq7WuZY= Subject key identifier: 8A:AB:C0:79:A6:9B:76:00:2C:BB:D7:97:D8:7F:C7:31:49:53:57:00 Certificate issuer: /CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Certificate serial: 233816CBF7C8CE1DC496DE797490445DA3C74F5B Authority key identifier: C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa Signing time: Sun 03 May 2026 03:14:10 +0000 ROA not before: Sun 03 May 2026 03:09:10 +0000 ROA not after: Sun 02 May 2027 03:14:10 +0000 asID: 38526 IP address blocks: 2405:3740:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:38:16:cb:f7:c8:ce:1d:c4:96:de:79:74:90:44:5d:a3:c7:4f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Validity Not Before: May 3 03:09:10 2026 GMT Not After : May 2 03:14:10 2027 GMT Subject: CN=8AABC079A69B76002CBBD797D87FC73149535700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:58:2f:56:27:b2:2f:72:88:bb:7c:54:c4:c3: e5:54:26:b8:02:64:87:d5:02:f3:a4:4b:e7:c7:22: cb:e2:60:a1:f2:cc:58:95:f6:1a:85:72:ac:c8:5a: 36:93:c0:71:51:cf:49:fd:ae:5b:c4:c8:dc:d4:3b: 7a:56:58:85:01:9a:4f:e7:da:0e:2c:19:3e:e1:90: 7a:f5:ce:8d:af:b6:a3:68:07:74:b7:1b:c4:a7:25: a2:dc:ea:92:b4:f7:a9:5a:cd:f1:33:c3:9d:3b:73: 68:5c:8f:bd:cf:84:d5:db:e7:74:c5:b2:21:db:0c: a1:5c:c7:da:da:c1:95:c4:7c:9a:0a:70:21:7e:69: de:69:b4:f3:cd:65:7b:7b:52:3c:79:d4:d9:30:f4: ef:08:a4:b3:b0:84:24:c9:9e:fc:d7:c3:7b:0a:bd: b2:3d:6e:3c:65:bb:7d:2b:b1:2f:14:77:8e:6c:19: a2:1f:11:19:16:88:5e:35:36:6a:fe:13:85:10:c1: a5:9f:5d:2a:28:73:07:8d:3f:74:3c:16:c0:cc:d6: 67:a1:32:2b:72:a4:00:b1:7f:f5:0f:df:78:43:af: 5d:64:c8:d8:bd:ac:d8:8d:98:33:26:6f:c9:fa:1d: 3a:37:aa:f6:f1:59:82:c5:85:32:01:2b:8d:bd:fc: 9c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:AB:C0:79:A6:9B:76:00:2C:BB:D7:97:D8:7F:C7:31:49:53:57:00 X509v3 Authority Key Identifier: keyid:C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8002::/48 Signature Algorithm: sha256WithRSAEncryption 75:61:12:ee:d8:72:f4:5f:0c:68:ab:65:d9:a7:d0:26:3d:70: 97:62:47:e0:47:95:1f:82:89:a9:30:da:4e:d3:40:99:e4:cf: 52:e5:8f:d6:44:67:d9:2e:8c:56:a5:5f:27:12:2c:31:7b:28: 87:1c:7f:73:9e:0d:1d:f6:a9:87:88:88:ec:9a:12:9d:b6:5c: de:23:ca:e5:ac:64:44:f5:74:93:bb:b6:6a:b0:ab:8a:f2:6b: 1a:8c:74:3f:27:7d:52:ef:1b:e7:6c:92:ac:a8:06:48:7f:a6: 31:e1:c0:8f:41:54:45:e6:db:2d:2f:bb:1a:73:a5:c8:d9:8c: ae:0e:76:14:92:60:2d:5f:36:10:73:8c:cf:35:c6:f1:57:26: 80:af:35:14:77:13:8a:36:a8:fe:44:7c:d3:f6:ea:0a:cd:2b: 1d:f4:d8:40:0a:cb:13:a2:31:ee:05:72:45:16:83:88:c3:9a: 5c:a9:4a:3c:ba:51:24:2d:5c:35:dd:2d:0c:5c:24:cd:6b:c4: f4:5b:31:27:eb:e9:61:2b:14:2e:3c:4c:68:12:5b:87:b2:af: e6:b1:1c:78:b8:ca:4f:55:64:76:1d:2d:14:37:a1:5f:7c:8f: 90:45:5d:45:53:4c:01:65:3f:07:c4:ea:aa:72:02:b4:f8:e7: 89:de:bc:3e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIzgWy/fIzh3Elt55dJBEXaPHT1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYzMkEwQ0Y0REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3 RTNDRkZENzAeFw0yNjA1MDMwMzA5MTBaFw0yNzA1MDIwMzE0MTBaMDMxMTAvBgNV BAMTKDhBQUJDMDc5QTY5Qjc2MDAyQ0JCRDc5N0Q4N0ZDNzMxNDk1MzU3MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNWC9WJ7Ivcoi7fFTEw+VUJrgC ZIfVAvOkS+fHIsviYKHyzFiV9hqFcqzIWjaTwHFRz0n9rlvEyNzUO3pWWIUBmk/n 2g4sGT7hkHr1zo2vtqNoB3S3G8SnJaLc6pK096lazfEzw507c2hcj73PhNXb53TF siHbDKFcx9rawZXEfJoKcCF+ad5ptPPNZXt7Ujx51Nkw9O8IpLOwhCTJnvzXw3sK vbI9bjxlu30rsS8Ud45sGaIfERkWiF41Nmr+E4UQwaWfXSoocweNP3Q8FsDM1meh MitypACxf/UP33hDr11kyNi9rNiNmDMmb8n6HTo3qvbxWYLFhTIBK429/JxjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiqvAeaabdgAsu9eX2H/HMUlTVwAwHwYDVR0j BBgwFoAUxjKgz02n3ed8vKwfNnEWoH48/9cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTY1ZTc4MTAtNjdmNC00MWMyLTgwMzQtNDY1MjczM2I4ZGQyLzAvQzYzMkEwQ0Y0 REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3RTNDRkZENy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNjMyQTBDRjREQTdEREU3N0NCQ0FDMUYzNjcxMTZBMDdFM0NG RkQ3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIACMA0GCSqGSIb3DQEBCwUAA4IBAQB1YRLu2HL0Xwxoq2XZp9AmPXCXYkfgR5Uf gompMNpO00CZ5M9S5Y/WRGfZLoxWpV8nEiwxeyiHHH9zng0d9qmHiIjsmhKdtlze I8rlrGRE9XSTu7ZqsKuK8msajHQ/J31S7xvnbJKsqAZIf6Yx4cCPQVRF5tstL7sa c6XI2YyuDnYUkmAtXzYQc4zPNcbxVyaArzUUdxOKNqj+RHzT9uoKzSsd9NhACssT ojHuBXJFFoOIw5pcqUo8ulEkLVw13S0MXCTNa8T0WzEn6+lhKxQuPExoEluHsq/m sRx4uMpPVWR2HS0UN6FffI+QRV1FU0wBZT8HxOqqcgK0+OeJ3rw+ -----END CERTIFICATE-----Generated at Wed May 13 13:30:28 2026 by rpki-client