$ rpki-client -vvf rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: S+jEWzFEnfshlynIM2/L8ivR0r7b8KQ+/HC/tf13JGI= Subject key identifier: FF:32:3F:65:BF:6D:A4:65:3F:D4:AC:BC:9D:88:88:30:18:06:A9:92 Certificate issuer: /CN=A9BFA348A050E46482F4E00C605FF9961247FC64 Certificate serial: 119AB94B4A0A017410C938799C601A0EF9D6C0D1 Authority key identifier: A9:BF:A3:48:A0:50:E4:64:82:F4:E0:0C:60:5F:F9:96:12:47:FC:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa Signing time: Sun 03 May 2026 03:15:53 +0000 ROA not before: Sun 03 May 2026 03:10:53 +0000 ROA not after: Sun 02 May 2027 03:15:53 +0000 asID: 23671 IP address blocks: 2403:b200:237::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.crl rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:9a:b9:4b:4a:0a:01:74:10:c9:38:79:9c:60:1a:0e:f9:d6:c0:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9BFA348A050E46482F4E00C605FF9961247FC64 Validity Not Before: May 3 03:10:53 2026 GMT Not After : May 2 03:15:53 2027 GMT Subject: CN=FF323F65BF6DA4653FD4ACBC9D8888301806A992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:36:ef:f9:0c:0d:c3:d6:2b:62:5b:dc:24:63: c1:3d:4c:8d:5e:65:eb:9e:4a:17:f5:5a:94:9b:da: 29:bc:9c:7e:66:1b:c7:71:66:75:a6:ba:09:9c:1f: 0b:df:b3:83:4b:91:4d:96:9d:71:d2:de:7e:ed:0a: 74:27:ae:ba:43:e4:3c:05:cf:4d:a9:02:d2:07:71: 0d:01:64:52:1d:91:2d:5f:3c:6c:c3:53:78:0e:da: cc:d3:c8:9a:c0:6b:b8:09:14:3e:92:ba:de:83:b2: fb:9b:61:ef:04:ac:c7:5b:b5:6a:61:b2:88:27:b4: 4a:bb:c3:4d:02:b9:a3:b6:db:61:ea:af:45:05:b5: 92:1f:d1:ed:54:a9:ce:3b:8c:4f:ce:4e:8c:42:98: a1:d6:1a:ac:6b:b9:2d:18:18:22:6d:e9:7e:0d:df: 55:0f:83:0b:13:95:a6:52:fc:84:a3:04:5e:33:1b: 84:9f:c4:9e:1b:8d:53:19:07:48:a5:2b:03:7d:8f: 98:c4:e7:35:d0:1e:0a:63:b3:3f:a3:bb:e9:cb:d1: ae:31:b0:1a:9c:ee:a0:07:fd:c1:cc:e7:cc:ef:94: f5:e1:02:60:88:e5:0d:2f:c1:7d:64:d2:af:f1:5a: b5:f1:02:e5:5b:d7:c8:13:12:f0:70:0a:31:a3:4d: e0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:32:3F:65:BF:6D:A4:65:3F:D4:AC:BC:9D:88:88:30:18:06:A9:92 X509v3 Authority Key Identifier: keyid:A9:BF:A3:48:A0:50:E4:64:82:F4:E0:0C:60:5F:F9:96:12:47:FC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/A9BFA348A050E46482F4E00C605FF9961247FC64.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9BFA348A050E46482F4E00C605FF9961247FC64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:237::/48 Signature Algorithm: sha256WithRSAEncryption 69:54:2b:08:66:04:69:36:6e:ed:fd:f8:37:07:fa:c1:4f:0d: ed:de:3e:92:78:10:9b:07:ab:76:a3:15:37:47:88:83:b1:5d: 46:4d:6a:26:e2:63:3f:cd:2f:4f:d1:5d:58:ae:63:c5:b3:d2: e3:7b:90:cc:2e:f6:cf:0c:ea:e0:fc:d1:96:de:ac:e4:02:c2: dc:d2:cd:d8:30:f1:48:d9:7d:ff:72:2d:37:04:7f:c5:34:53: 69:9c:7d:0f:09:4e:30:a8:50:ee:90:8b:74:04:03:5c:0e:39: b5:42:53:25:0d:08:13:d4:51:3c:41:1d:b4:32:56:20:57:08: ab:0d:e2:44:88:0e:f3:88:82:ab:d9:1c:8a:40:7b:d6:c4:5f: 2c:84:cf:e0:0a:c3:2b:20:db:66:11:04:67:d8:6b:85:b4:a6: f2:05:09:50:33:dc:5b:56:c9:5b:b9:8e:79:0c:3c:2e:51:bd: 70:2a:80:de:bc:1e:65:67:4a:31:ee:31:4f:aa:54:07:27:d3: 29:43:3e:f3:5d:7c:64:12:87:ef:b1:be:86:58:b3:cf:30:43: 6f:3e:39:f1:99:b7:e5:1f:5e:e1:ff:04:56:2c:ea:8e:3e:9e: 37:ec:0a:e0:3b:1e:f2:54:a2:f6:4e:81:84:f8:43:2d:e1:52: ed:76:19:b6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUEZq5S0oKAXQQyTh5nGAaDvnWwNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlCRkEzNDhBMDUwRTQ2NDgyRjRFMDBDNjA1RkY5OTYx MjQ3RkM2NDAeFw0yNjA1MDMwMzEwNTNaFw0yNzA1MDIwMzE1NTNaMDMxMTAvBgNV BAMTKEZGMzIzRjY1QkY2REE0NjUzRkQ0QUNCQzlEODg4ODMwMTgwNkE5OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYNu/5DA3D1itiW9wkY8E9TI1e ZeueShf1WpSb2im8nH5mG8dxZnWmugmcHwvfs4NLkU2WnXHS3n7tCnQnrrpD5DwF z02pAtIHcQ0BZFIdkS1fPGzDU3gO2szTyJrAa7gJFD6Sut6DsvubYe8ErMdbtWph sogntEq7w00CuaO222Hqr0UFtZIf0e1Uqc47jE/OToxCmKHWGqxruS0YGCJt6X4N 31UPgwsTlaZS/ISjBF4zG4SfxJ4bjVMZB0ilKwN9j5jE5zXQHgpjsz+ju+nL0a4x sBqc7qAH/cHM58zvlPXhAmCI5Q0vwX1k0q/xWrXxAuVb18gTEvBwCjGjTeB7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU/zI/Zb9tpGU/1Ky8nYiIMBgGqZIwHwYDVR0j BBgwFoAUqb+jSKBQ5GSC9OAMYF/5lhJH/GQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWQ5YmE5NTMtODQ4OS00NTBlLWJiZGYtNzY0NTcxZmJhY2U3LzAvQTlCRkEzNDhB MDUwRTQ2NDgyRjRFMDBDNjA1RkY5OTYxMjQ3RkM2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOUJGQTM0OEEwNTBFNDY0ODJGNEUwMEM2MDVGRjk5NjEyNDdG QzY0LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzIzMzM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAC NzANBgkqhkiG9w0BAQsFAAOCAQEAaVQrCGYEaTZu7f34Nwf6wU8N7d4+kngQmwer dqMVN0eIg7FdRk1qJuJjP80vT9FdWK5jxbPS43uQzC72zwzq4PzRlt6s5ALC3NLN 2DDxSNl9/3ItNwR/xTRTaZx9DwlOMKhQ7pCLdAQDXA45tUJTJQ0IE9RRPEEdtDJW IFcIqw3iRIgO84iCq9kcikB71sRfLITP4ArDKyDbZhEEZ9hrhbSm8gUJUDPcW1bJ W7mOeQw8LlG9cCqA3rweZWdKMe4xT6pUByfTKUM+8118ZBKH77G+hlizzzBDbz45 8Zm35R9e4f8EVizqjj6eN+wK4Dse8lSi9k6BhPhDLeFS7XYZtg== -----END CERTIFICATE-----Generated at Wed May 13 08:35:41 2026 by rpki-client