$ rpki-client -vvf rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031643a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031643a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: piXLXkuzT5O4e6NgOODORN8jvuA8nSbi5sV8dpmEZeQ= Subject key identifier: 87:0A:D2:DE:F6:07:B6:A0:85:4E:E9:CF:19:F5:43:24:C6:48:F7:76 Certificate issuer: /CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Certificate serial: 63F8FB3F475B7581916521A824EE06323FFFE2C5 Authority key identifier: C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031643a3a2f34382d3438203d3e203338353236.roa Signing time: Sun 03 May 2026 03:14:03 +0000 ROA not before: Sun 03 May 2026 03:09:03 +0000 ROA not after: Sun 02 May 2027 03:14:03 +0000 asID: 38526 IP address blocks: 2405:3740:901d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f8:fb:3f:47:5b:75:81:91:65:21:a8:24:ee:06:32:3f:ff:e2:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7 Validity Not Before: May 3 03:09:03 2026 GMT Not After : May 2 03:14:03 2027 GMT Subject: CN=870AD2DEF607B6A0854EE9CF19F54324C648F776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fd:bf:6f:34:92:8a:c4:d1:ca:83:dc:27:26: 1f:05:15:9e:b7:a5:f0:78:1d:b8:bc:37:66:07:85: ed:eb:e2:f3:ab:ea:1e:14:25:ae:a5:1d:09:55:43: 1b:46:31:42:dd:64:82:bf:ca:e9:cd:56:18:73:ea: 82:fe:5c:38:5a:88:47:3e:05:c0:a3:15:3a:61:8c: fc:8d:5b:f6:59:f9:9c:58:55:d1:00:bf:2f:28:d6: e2:7a:7f:f9:4a:35:4f:2f:89:22:55:f8:ca:f4:7f: 58:53:56:19:90:ad:e4:8c:43:01:c6:1b:40:81:66: e7:f0:65:db:d3:3e:3b:b6:bd:e0:22:6a:23:88:a5: 11:df:7c:5b:2b:d7:b3:55:d3:db:54:66:50:c8:40: 96:b9:77:92:85:59:3b:0c:4a:d2:63:53:98:09:54: 2e:ff:04:ea:8d:f8:10:68:14:3e:b1:17:5f:63:d8: 8e:61:6c:46:7d:35:74:73:b2:f3:9e:c6:7b:31:8f: 8c:bd:f3:76:5a:ac:3c:7f:28:87:7f:aa:7b:e7:49: 9b:84:9c:bd:7b:3b:05:bf:3a:2e:2f:cf:76:9d:74: 50:c3:98:0d:83:94:61:b3:1d:16:55:80:78:53:5f: f1:32:fd:a5:31:9f:38:a4:94:da:9a:12:97:81:d4: 05:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0A:D2:DE:F6:07:B6:A0:85:4E:E9:CF:19:F5:43:24:C6:48:F7:76 X509v3 Authority Key Identifier: keyid:C6:32:A0:CF:4D:A7:DD:E7:7C:BC:AC:1F:36:71:16:A0:7E:3C:FF:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C632A0CF4DA7DDE77CBCAC1F367116A07E3CFFD7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031643a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:901d::/48 Signature Algorithm: sha256WithRSAEncryption 78:be:a9:9b:ee:64:71:fd:35:e6:f4:79:a9:5e:83:12:e6:87: 1c:0e:e8:a1:d2:9d:f6:d9:30:ce:9b:1a:6a:df:d7:5d:23:2a: 8d:07:fc:6d:89:83:fe:c0:b7:d5:7e:43:83:c8:08:84:23:6b: 70:a9:18:78:5b:7f:95:53:24:f1:a4:e9:00:46:c8:75:aa:f9: 8c:a7:f2:bb:c2:96:f1:d5:a4:53:3b:d0:fa:44:4f:1b:ac:2a: 20:ea:18:fe:b1:2e:45:85:de:07:10:ab:ad:ce:1b:09:10:12: a3:d0:84:c2:e8:05:af:6e:d3:00:56:5d:93:31:2e:67:7d:8c: 22:2e:27:bf:3a:5e:4b:d8:5f:54:ac:87:e2:09:27:41:16:34: 97:c0:f3:c1:af:ad:f6:67:40:43:f3:80:27:59:fc:bc:3e:69: e3:ec:43:46:5f:d7:7e:98:84:93:68:1b:75:e6:87:85:24:cc: 42:e4:ea:17:a5:74:0b:f8:5f:48:cd:53:e0:c3:e0:60:3b:86: aa:6e:8f:9a:54:97:d0:0a:c2:04:63:fa:47:17:d8:f0:ec:d2: 47:6c:26:16:09:0f:cc:22:c4:d7:c5:6e:46:06:ac:cb:0c:35: 12:e0:4f:73:f1:5e:f5:08:9b:12:db:df:bb:63:93:25:b5:f7: ae:55:9e:3c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUY/j7P0dbdYGRZSGoJO4GMj//4sUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYzMkEwQ0Y0REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3 RTNDRkZENzAeFw0yNjA1MDMwMzA5MDNaFw0yNzA1MDIwMzE0MDNaMDMxMTAvBgNV BAMTKDg3MEFEMkRFRjYwN0I2QTA4NTRFRTlDRjE5RjU0MzI0QzY0OEY3NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd/b9vNJKKxNHKg9wnJh8FFZ63 pfB4Hbi8N2YHhe3r4vOr6h4UJa6lHQlVQxtGMULdZIK/yunNVhhz6oL+XDhaiEc+ BcCjFTphjPyNW/ZZ+ZxYVdEAvy8o1uJ6f/lKNU8viSJV+Mr0f1hTVhmQreSMQwHG G0CBZufwZdvTPju2veAiaiOIpRHffFsr17NV09tUZlDIQJa5d5KFWTsMStJjU5gJ VC7/BOqN+BBoFD6xF19j2I5hbEZ9NXRzsvOexnsxj4y983ZarDx/KId/qnvnSZuE nL17OwW/Oi4vz3addFDDmA2DlGGzHRZVgHhTX/Ey/aUxnziklNqaEpeB1AWbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhwrS3vYHtqCFTunPGfVDJMZI93YwHwYDVR0j BBgwFoAUxjKgz02n3ed8vKwfNnEWoH48/9cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTY1ZTc4MTAtNjdmNC00MWMyLTgwMzQtNDY1MjczM2I4ZGQyLzAvQzYzMkEwQ0Y0 REE3RERFNzdDQkNBQzFGMzY3MTE2QTA3RTNDRkZENy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNjMyQTBDRjREQTdEREU3N0NCQ0FDMUYzNjcxMTZBMDdFM0NG RkQ3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAdMA0GCSqGSIb3DQEBCwUAA4IBAQB4vqmb7mRx/TXm9HmpXoMS5occDuih0p32 2TDOmxpq39ddIyqNB/xtiYP+wLfVfkODyAiEI2twqRh4W3+VUyTxpOkARsh1qvmM p/K7wpbx1aRTO9D6RE8brCog6hj+sS5Fhd4HEKutzhsJEBKj0ITC6AWvbtMAVl2T MS5nfYwiLie/Ol5L2F9UrIfiCSdBFjSXwPPBr632Z0BD84AnWfy8Pmnj7ENGX9d+ mISTaBt15oeFJMxC5OoXpXQL+F9IzVPgw+BgO4aqbo+aVJfQCsIEY/pHF9jw7NJH bCYWCQ/MIsTXxW5GBqzLDDUS4E9z8V71CJsS29+7Y5MltfeuVZ48 -----END CERTIFICATE-----Generated at Wed May 13 12:52:06 2026 by rpki-client