$ rpki-client -vvf rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: wbPw9gocF21n+1H3eKj8UOUKv73P4KgCAhHKgc2LE/s= Subject key identifier: C1:A5:C1:F9:4E:AB:60:D0:6C:30:FF:4D:98:54:4B:AE:1A:42:64:C2 Certificate issuer: /CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Certificate serial: 4654EAC6F78CCBBBDF665D16034B13DDC5FE74FE Authority key identifier: C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa Signing time: Sun 03 May 2026 03:13:59 +0000 ROA not before: Sun 03 May 2026 03:08:59 +0000 ROA not after: Sun 02 May 2027 03:13:59 +0000 asID: 38526 IP address blocks: 2405:3740:9007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:54:ea:c6:f7:8c:cb:bb:df:66:5d:16:03:4b:13:dd:c5:fe:74:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Validity Not Before: May 3 03:08:59 2026 GMT Not After : May 2 03:13:59 2027 GMT Subject: CN=C1A5C1F94EAB60D06C30FF4D98544BAE1A4264C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:e9:ee:bf:a5:1d:2b:ef:0c:3f:7b:ee:39: e7:89:74:be:d1:46:ac:81:18:2c:e3:8c:6d:73:e3: 7e:1a:f0:e3:7f:b0:11:0d:7d:08:d6:c1:18:60:1e: 79:52:fe:93:a3:7e:41:0a:5f:6e:18:46:e0:5a:d7: 1c:33:4d:aa:0c:05:68:53:d6:a7:10:15:02:8a:d8: 1a:e2:c3:93:0e:4c:16:c1:bb:fe:fd:db:94:90:86: 4b:d8:89:46:93:cb:a2:83:b5:23:1d:5d:e6:dc:e4: 13:df:07:2c:a8:f9:94:38:02:73:fe:73:f2:03:54: ed:c6:25:2c:c6:27:58:22:3d:75:ed:9a:66:43:58: 24:49:98:c9:e9:27:9d:7c:33:6d:0f:27:88:2a:52: ba:7a:94:05:e9:9c:67:28:eb:7d:7b:6c:c4:e5:b1: a1:94:00:e6:1a:1e:fd:9d:f6:21:27:30:e5:8b:30: 65:7d:d8:62:1f:96:27:e4:e1:95:81:a6:5f:6f:72: 89:8f:2b:7c:3e:bb:12:68:50:83:1b:50:ea:2a:c8: 2f:4f:1d:f2:b9:d4:ce:72:8b:42:37:76:1c:27:8e: 98:62:4f:9e:36:6c:0a:74:ae:71:9f:e1:fb:f2:1f: a0:6b:87:51:07:98:cc:f0:16:3c:a0:8e:23:e8:ba: 09:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A5:C1:F9:4E:AB:60:D0:6C:30:FF:4D:98:54:4B:AE:1A:42:64:C2 X509v3 Authority Key Identifier: keyid:C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030373a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9007::/48 Signature Algorithm: sha256WithRSAEncryption 11:a9:c9:0c:06:ed:18:29:8f:e9:3c:93:94:52:63:c7:2f:96: 5b:4b:ec:94:a6:b8:1f:12:0a:57:29:d4:5e:14:1b:a4:04:65: e7:2b:22:de:b5:a3:61:68:26:57:69:a9:f8:52:c3:50:79:d7: dd:ed:32:67:58:4e:77:a1:62:05:17:bf:3d:55:a5:60:4a:b6: 03:68:8d:84:d2:85:cb:26:74:21:00:d2:47:b5:b8:42:43:f2: 4b:48:2a:80:0a:59:f9:c9:74:73:f1:e7:38:74:49:ea:8b:60: d9:c5:06:7b:0c:0a:24:88:72:2f:25:d5:01:5c:10:e2:50:d0: b5:7a:2e:5f:56:27:8a:92:4d:b3:b6:0f:fe:a2:55:ef:94:c0: 89:b6:8d:0b:66:76:83:4d:3d:97:bf:e5:e9:52:b2:1f:ad:9b: 43:42:41:8f:f0:04:71:c2:5d:6f:2e:0c:29:f2:93:c1:a1:10: e8:3d:1c:52:58:e1:55:4e:e5:03:6d:6f:ca:98:7f:f4:9e:1f: a8:1d:0e:c8:93:7c:c3:f2:95:69:ac:a6:e6:a7:47:f0:48:91: 44:81:72:64:09:7a:c9:05:29:d9:33:a6:33:77:71:3c:38:d0: e7:30:4a:bb:e3:85:ae:fa:19:13:7c:2e:d4:15:4f:7e:ed:9d: 98:0b:11:8a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURlTqxveMy7vfZl0WA0sT3cX+dP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYzMkEwQ0Y0REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3 RTNDRkZENzAeFw0yNjA1MDMwMzA4NTlaFw0yNzA1MDIwMzEzNTlaMDMxMTAvBgNV BAMTKEMxQTVDMUY5NEVBQjYwRDA2QzMwRkY0RDk4NTQ0QkFFMUE0MjY0QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBB+nuv6UdK+8MP3vuOeeJdL7R RqyBGCzjjG1z434a8ON/sBENfQjWwRhgHnlS/pOjfkEKX24YRuBa1xwzTaoMBWhT 1qcQFQKK2Briw5MOTBbBu/7925SQhkvYiUaTy6KDtSMdXebc5BPfByyo+ZQ4AnP+ c/IDVO3GJSzGJ1giPXXtmmZDWCRJmMnpJ518M20PJ4gqUrp6lAXpnGco6317bMTl saGUAOYaHv2d9iEnMOWLMGV92GIflifk4ZWBpl9vcomPK3w+uxJoUIMbUOoqyC9P HfK51M5yi0I3dhwnjphiT542bAp0rnGf4fvyH6Brh1EHmMzwFjygjiPougmRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwaXB+U6rYNBsMP9NmFRLrhpCZMIwHwYDVR0j BBgwFoAUxjKgz02n3ed8vKwfNnEWoH48/9cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTY1ZTc4MTAtNjdmNC00MWMyLTgwMzQtNDY1MjczM2I4ZGQyLzAvQzYzMkEwQ0Y0 REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3RTNDRkZENy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNjMyQTBDRjREQTdEREU3N0NCQ0FDMUYzNjcxMTZBMDdFM0NG RkQ3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAHMA0GCSqGSIb3DQEBCwUAA4IBAQARqckMBu0YKY/pPJOUUmPHL5ZbS+yUprgf EgpXKdReFBukBGXnKyLetaNhaCZXaan4UsNQedfd7TJnWE53oWIFF789VaVgSrYD aI2E0oXLJnQhANJHtbhCQ/JLSCqACln5yXRz8ec4dEnqi2DZxQZ7DAokiHIvJdUB XBDiUNC1ei5fVieKkk2ztg/+olXvlMCJto0LZnaDTT2Xv+XpUrIfrZtDQkGP8ARx wl1vLgwp8pPBoRDoPRxSWOFVTuUDbW/KmH/0nh+oHQ7Ik3zD8pVprKbmp0fwSJFE gXJkCXrJBSnZM6Yzd3E8ONDnMEq744Wu+hkTfC7UFU9+7Z2YCxGK -----END CERTIFICATE-----Generated at Wed May 13 11:58:28 2026 by rpki-client