$ rpki-client -vvf rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: nXrFney4rm86RaxvLz8FHxrD0eDVyhHMOFWuNh0v780= Subject key identifier: C6:3D:75:DF:1F:82:C4:FD:CC:93:9F:F2:F9:75:89:BE:A2:F3:60:05 Certificate issuer: /CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Certificate serial: 231B70A41B5339E7CA0E4525B51B8CFEB6E44F59 Authority key identifier: 42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa Signing time: Sun 03 May 2026 03:15:30 +0000 ROA not before: Sun 03 May 2026 03:10:30 +0000 ROA not after: Sun 02 May 2027 03:15:30 +0000 asID: 9875 IP address blocks: 2001:f20:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:1b:70:a4:1b:53:39:e7:ca:0e:45:25:b5:1b:8c:fe:b6:e4:4f:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Validity Not Before: May 3 03:10:30 2026 GMT Not After : May 2 03:15:30 2027 GMT Subject: CN=C63D75DF1F82C4FDCC939FF2F97589BEA2F36005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fd:53:9a:d9:f9:5d:3d:db:65:5c:1d:4b:c2: 2c:66:46:83:e1:c8:fa:db:78:92:48:ae:78:c1:9c: 01:b8:43:e1:9e:3e:d3:42:bb:76:c7:8f:ad:32:c5: 64:51:ad:6f:27:00:f5:ab:5c:70:cc:d2:66:f0:12: c0:39:bd:c1:3b:8e:45:e8:cc:56:20:37:32:f8:ab: 51:99:8b:22:9e:58:f3:21:68:3f:8d:bf:a4:c0:06: 56:b6:40:a3:66:03:e6:eb:8d:e0:01:03:05:2e:bb: fa:04:b1:d4:0d:1e:ea:84:db:33:41:4b:37:99:a7: 45:8e:c7:1d:6d:2a:65:e4:b0:30:7a:5d:21:30:e1: e7:ba:6e:60:ef:04:6f:b4:4e:c2:cc:41:fc:67:84: 6b:77:e0:83:df:4f:f7:7c:36:68:97:32:90:10:56: 41:51:f8:f7:5c:29:53:78:fa:f8:79:f3:0e:c3:05: ea:72:8f:c3:fc:64:bc:23:5d:e5:62:10:41:19:ae: 26:4c:4a:e7:b9:17:ea:ac:c7:f4:49:3c:26:ed:0b: 61:dd:6d:42:97:a2:f9:97:e3:c9:3b:f4:47:41:6e: 30:ce:76:82:eb:43:6c:16:d9:d8:10:f5:b4:a8:e4: 19:38:88:45:4d:df:60:6a:8e:11:51:bd:8e:bc:74: e9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:3D:75:DF:1F:82:C4:FD:CC:93:9F:F2:F9:75:89:BE:A2:F3:60:05 X509v3 Authority Key Identifier: keyid:42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a333030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:3000::/36 Signature Algorithm: sha256WithRSAEncryption 63:b6:02:00:26:8e:5c:da:38:82:cc:07:74:72:63:75:91:1d: cd:e5:32:45:eb:db:94:f8:f1:85:ac:70:20:b6:6a:e7:e3:f7: d8:16:c3:ef:d9:34:73:02:9a:6f:55:59:09:42:6e:5d:f2:3f: 27:ba:ad:c6:5e:7f:ed:96:b9:8f:f9:de:29:b0:6f:06:8c:46: 27:18:16:b1:4a:51:ef:3e:87:00:cc:f7:ee:81:96:d9:c2:db: ba:b0:c4:a3:57:d7:43:b9:db:c0:5a:c3:9d:ab:12:ee:32:cb: a9:7b:37:eb:52:48:7b:0f:a2:03:3f:67:63:33:50:2f:14:6f: 83:50:67:b6:ef:a5:a8:ad:a2:26:8f:75:dd:be:fe:31:2b:a2: aa:4b:cd:01:cf:a0:4e:e3:1b:05:67:08:6e:6b:25:54:12:7e: 41:9d:dd:b0:43:4b:22:60:82:09:5b:d9:7b:1b:2e:07:d7:e3: 72:db:8e:98:b0:be:38:1e:15:d3:f4:85:29:05:39:7f:c2:26: e5:07:18:7f:6b:6b:aa:99:29:bf:60:2e:c3:27:10:a0:41:5d: 1e:25:12:35:6d:71:af:03:b6:59:d6:bc:30:c3:7c:45:67:14: 6e:1b:91:58:2b:52:30:00:2b:dc:54:22:26:a9:be:67:35:1f: 70:c0:c2:50 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUIxtwpBtTOefKDkUltRuM/rbkT1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0MkJFRkFCN0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4 NEVFMTAyNDAeFw0yNjA1MDMwMzEwMzBaFw0yNzA1MDIwMzE1MzBaMDMxMTAvBgNV BAMTKEM2M0Q3NURGMUY4MkM0RkRDQzkzOUZGMkY5NzU4OUJFQTJGMzYwMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7/VOa2fldPdtlXB1LwixmRoPh yPrbeJJIrnjBnAG4Q+GePtNCu3bHj60yxWRRrW8nAPWrXHDM0mbwEsA5vcE7jkXo zFYgNzL4q1GZiyKeWPMhaD+Nv6TABla2QKNmA+brjeABAwUuu/oEsdQNHuqE2zNB SzeZp0WOxx1tKmXksDB6XSEw4ee6bmDvBG+0TsLMQfxnhGt34IPfT/d8NmiXMpAQ VkFR+PdcKVN4+vh58w7DBepyj8P8ZLwjXeViEEEZriZMSue5F+qsx/RJPCbtC2Hd bUKXovmX48k79EdBbjDOdoLrQ2wW2dgQ9bSo5Bk4iEVN32BqjhFRvY68dOnNAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQUxj113x+CxP3Mk5/y+XWJvqLzYAUwHwYDVR0j BBgwFoAUQkK++rf9nncvsWhHxUAzE4TuECQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWJiZmU3NzYtMDBhMy00Nzc2LWJmM2YtNTIxMTk0NjEwMWMzLzAvNDI0MkJFRkFC N0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4NEVFMTAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MjQyQkVGQUI3RkQ5RTc3MkZCMTY4NDdDNTQwMzMxMzg0RUUx MDI0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTMzMzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gMDAN BgkqhkiG9w0BAQsFAAOCAQEAY7YCACaOXNo4gswHdHJjdZEdzeUyRevblPjxhaxw ILZq5+P32BbD79k0cwKab1VZCUJuXfI/J7qtxl5/7Za5j/neKbBvBoxGJxgWsUpR 7z6HAMz37oGW2cLburDEo1fXQ7nbwFrDnasS7jLLqXs361JIew+iAz9nYzNQLxRv g1Bntu+lqK2iJo913b7+MSuiqkvNAc+gTuMbBWcIbmslVBJ+QZ3dsENLImCCCVvZ exsuB9fjctuOmLC+OB4V0/SFKQU5f8Im5QcYf2trqpkpv2AuwycQoEFdHiUSNW1x rwO2Wda8MMN8RWcUbhuRWCtSMAAr3FQiJqm+ZzUfcMDCUA== -----END CERTIFICATE-----Generated at Wed May 13 02:26:46 2026 by rpki-client