$ rpki-client -vvf rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: r6fMNtgJIoHgjV3DFpNsgQ1H8cmQbjMCcbKig24MDXk= Subject key identifier: 17:7D:C2:A4:2E:C1:67:03:90:01:72:D8:26:C3:37:11:2C:EC:C9:60 Certificate issuer: /CN=A9BFA348A050E46482F4E00C605FF9961247FC64 Certificate serial: 20ABFDA502D8E58F1512C6AAA610B6D3557D0D6E Authority key identifier: A9:BF:A3:48:A0:50:E4:64:82:F4:E0:0C:60:5F:F9:96:12:47:FC:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa Signing time: Sun 03 May 2026 03:15:57 +0000 ROA not before: Sun 03 May 2026 03:10:57 +0000 ROA not after: Sun 02 May 2027 03:15:57 +0000 asID: 23671 IP address blocks: 2403:b200:1fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.crl rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ab:fd:a5:02:d8:e5:8f:15:12:c6:aa:a6:10:b6:d3:55:7d:0d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9BFA348A050E46482F4E00C605FF9961247FC64 Validity Not Before: May 3 03:10:57 2026 GMT Not After : May 2 03:15:57 2027 GMT Subject: CN=177DC2A42EC16703900172D826C337112CECC960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:1e:a5:68:5c:26:e3:dd:4f:44:1e:01:4a: 1d:a9:61:e7:8e:54:42:95:0b:77:84:51:a5:9e:e1: 56:81:0b:b5:11:5e:1a:9a:fc:4c:9b:87:30:ad:f0: 2f:f7:94:4d:eb:52:77:df:09:77:4d:41:c5:c0:cf: a7:56:61:10:ab:8b:2a:30:fa:fa:fe:94:54:14:92: d6:8d:ee:25:80:d9:3e:c6:30:ab:2d:cd:9a:1d:82: 58:ee:18:e8:e7:27:7f:08:70:ec:6c:fa:a9:aa:cc: 5c:e1:de:cc:a1:04:9a:9c:c1:3a:12:ec:49:03:9f: 2c:24:09:eb:d5:86:7f:1a:de:1b:d6:ec:a8:c9:e5: 78:3e:a3:c7:e6:43:20:4a:6c:88:6b:52:3a:aa:af: e0:80:8b:71:a4:c6:0a:8d:62:cf:63:4f:38:50:3f: b3:4e:b3:c6:e3:da:68:1d:ab:77:81:66:55:01:4a: 8b:b9:a9:8a:e6:74:b1:46:f1:77:dc:10:1b:cc:5f: 26:21:3a:71:c4:aa:0c:6b:84:c0:f3:ec:bf:e7:af: 03:1d:70:1b:0f:bb:ec:79:ee:0c:d3:bc:90:9f:c7: e5:b9:4d:61:1d:06:44:9e:63:22:2f:ea:34:4f:9d: 9f:d5:dc:de:24:da:e4:d4:7a:95:26:4c:3c:5e:f3: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:7D:C2:A4:2E:C1:67:03:90:01:72:D8:26:C3:37:11:2C:EC:C9:60 X509v3 Authority Key Identifier: keyid:A9:BF:A3:48:A0:50:E4:64:82:F4:E0:0C:60:5F:F9:96:12:47:FC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:1fe::/48 Signature Algorithm: sha256WithRSAEncryption 92:1f:2c:0f:09:3d:3c:b6:ad:15:ef:95:81:db:80:f2:5e:c6: 94:56:04:1c:d6:a2:02:4c:54:13:3d:40:b4:1b:6a:86:9e:46: 30:1f:95:1c:82:54:cf:7c:06:88:0c:c6:49:52:af:fb:3f:54: 25:9e:bf:cf:20:3e:97:0d:32:5d:96:fd:94:c8:91:be:6d:32: 9a:79:9b:3d:92:44:42:1a:ec:70:1e:8b:a5:24:b1:60:7c:ce: 36:1d:de:58:67:dc:64:c1:4f:f9:7b:8c:6a:f9:cd:ca:4d:f3: 68:f0:a8:5a:36:9e:23:6e:26:2d:a1:87:31:0a:ef:11:c3:94: 47:4b:b4:60:ee:1b:9a:69:11:90:22:00:e1:85:dd:87:8b:72: 90:db:af:a9:13:25:e7:37:b9:b5:fe:f7:83:f2:3c:86:a8:75: bd:b9:a7:41:e1:8d:0c:85:72:49:0b:67:da:04:76:7d:cf:ad: 6d:73:44:f3:e8:f8:26:a4:78:ce:44:b5:5c:14:d9:b7:b2:10: 29:8f:c2:1e:ce:e9:36:da:bd:61:16:37:d8:b4:2c:53:48:35: a1:d3:84:2d:8f:3c:e2:64:84:04:34:c6:cc:ab:3b:80:7b:8f: 9d:cd:d6:57:7e:d7:1d:ae:c6:5f:51:4b:9e:d0:e6:05:ea:d7: 6e:db:06:af -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIKv9pQLY5Y8VEsaqphC201V9DW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlCRkEzNDhBMDUwRTQ2NDgyRjRFMDBDNjA1RkY5OTYx MjQ3RkM2NDAeFw0yNjA1MDMwMzEwNTdaFw0yNzA1MDIwMzE1NTdaMDMxMTAvBgNV BAMTKDE3N0RDMkE0MkVDMTY3MDM5MDAxNzJEODI2QzMzNzExMkNFQ0M5NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsTx6laFwm491PRB4BSh2pYeeO VEKVC3eEUaWe4VaBC7URXhqa/EybhzCt8C/3lE3rUnffCXdNQcXAz6dWYRCriyow +vr+lFQUktaN7iWA2T7GMKstzZodgljuGOjnJ38IcOxs+qmqzFzh3syhBJqcwToS 7EkDnywkCevVhn8a3hvW7KjJ5Xg+o8fmQyBKbIhrUjqqr+CAi3GkxgqNYs9jTzhQ P7NOs8bj2mgdq3eBZlUBSou5qYrmdLFG8XfcEBvMXyYhOnHEqgxrhMDz7L/nrwMd cBsPu+x57gzTvJCfx+W5TWEdBkSeYyIv6jRPnZ/V3N4k2uTUepUmTDxe8xwPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUF33CpC7BZwOQAXLYJsM3ESzsyWAwHwYDVR0j BBgwFoAUqb+jSKBQ5GSC9OAMYF/5lhJH/GQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWQ5YmE5NTMtODQ4OS00NTBlLWJiZGYtNzY0NTcxZmJhY2U3LzAvQTlCRkEzNDhB MDUwRTQ2NDgyRjRFMDBDNjA1RkY5OTYxMjQ3RkM2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOUJGQTM0OEEwNTBFNDY0ODJGNEUwMEM2MDVGRjk5NjEyNDdG QzY0LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzE2NjY1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAB /jANBgkqhkiG9w0BAQsFAAOCAQEAkh8sDwk9PLatFe+VgduA8l7GlFYEHNaiAkxU Ez1AtBtqhp5GMB+VHIJUz3wGiAzGSVKv+z9UJZ6/zyA+lw0yXZb9lMiRvm0ymnmb PZJEQhrscB6LpSSxYHzONh3eWGfcZMFP+XuMavnNyk3zaPCoWjaeI24mLaGHMQrv EcOUR0u0YO4bmmkRkCIA4YXdh4tykNuvqRMl5ze5tf73g/I8hqh1vbmnQeGNDIVy SQtn2gR2fc+tbXNE8+j4JqR4zkS1XBTZt7IQKY/CHs7pNtq9YRY32LQsU0g1odOE LY884mSEBDTGzKs7gHuPnc3WV37XHa7GX1FLntDmBerXbtsGrw== -----END CERTIFICATE-----Generated at Wed May 13 12:41:35 2026 by rpki-client