$ rpki-client -vvf rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa File: 323430343a3530303a3a2f33322d3438203d3e203234323031.roa (raw, json) Hash identifier: GmHQTfawH8Y622MsP42Ft9zNqj0KvfRVwfqFipMcEyw= Subject key identifier: B9:23:2C:3D:0E:80:D1:77:B5:39:9E:51:8A:E5:F2:59:2B:02:0A:1A Certificate issuer: /CN=2116A6F5F0642D2E606A3ACFF738E48F344FB967 Certificate serial: 6FAC67256D730F5F664B3D74A614486CC095286F Authority key identifier: 21:16:A6:F5:F0:64:2D:2E:60:6A:3A:CF:F7:38:E4:8F:34:4F:B9:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2116A6F5F0642D2E606A3ACFF738E48F344FB967.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa Signing time: Sun 03 May 2026 03:16:28 +0000 ROA not before: Sun 03 May 2026 03:11:28 +0000 ROA not after: Sun 02 May 2027 03:16:28 +0000 asID: 24201 IP address blocks: 2404:500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/2116A6F5F0642D2E606A3ACFF738E48F344FB967.crl rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/2116A6F5F0642D2E606A3ACFF738E48F344FB967.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2116A6F5F0642D2E606A3ACFF738E48F344FB967.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ac:67:25:6d:73:0f:5f:66:4b:3d:74:a6:14:48:6c:c0:95:28:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2116A6F5F0642D2E606A3ACFF738E48F344FB967 Validity Not Before: May 3 03:11:28 2026 GMT Not After : May 2 03:16:28 2027 GMT Subject: CN=B9232C3D0E80D177B5399E518AE5F2592B020A1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fc:98:36:fd:22:d0:24:64:9a:cc:2e:a0:0a: 9e:ad:4c:fa:fe:f9:b7:a0:bc:33:59:81:dc:30:01: f5:a2:f3:33:9d:4b:38:a4:e6:4c:6d:42:7a:f4:0c: c5:43:c7:12:fd:3b:93:21:72:d8:fa:e9:79:fd:94: 7a:b8:27:da:49:ad:11:19:d4:08:e9:66:66:43:da: d1:6d:0b:18:46:45:d3:6f:b9:aa:03:81:b4:d8:46: 4f:b5:be:72:96:ed:7e:40:51:fa:71:f3:7f:0a:3c: f0:19:52:64:12:eb:5e:a9:da:13:22:35:66:9c:6e: cd:df:23:e1:ac:57:82:3b:84:d0:bb:e4:19:ab:1a: dc:77:3e:b8:ff:c1:4d:3b:43:61:19:7b:32:cb:74: 0a:2b:5c:5d:81:0b:c8:4c:5d:fa:9d:3a:43:79:a0: 0c:01:1d:5a:7e:3d:56:f0:91:65:25:f6:57:1b:d7: ad:fb:72:db:25:ba:1f:3c:c9:72:f0:8d:67:39:63: 0d:24:88:9b:02:bc:1b:55:8c:d9:7d:58:e0:d2:74: b7:1b:f0:e2:59:90:2c:62:fb:3e:82:69:a2:68:df: 1f:30:46:dd:85:aa:26:04:1a:e8:77:63:2b:16:67: f0:a2:f6:f9:52:0f:a2:1f:04:b2:7a:9c:1b:12:ac: 6c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:2C:3D:0E:80:D1:77:B5:39:9E:51:8A:E5:F2:59:2B:02:0A:1A X509v3 Authority Key Identifier: keyid:21:16:A6:F5:F0:64:2D:2E:60:6A:3A:CF:F7:38:E4:8F:34:4F:B9:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/2116A6F5F0642D2E606A3ACFF738E48F344FB967.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2116A6F5F0642D2E606A3ACFF738E48F344FB967.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:500::/32 Signature Algorithm: sha256WithRSAEncryption 0f:61:16:c7:91:86:ef:06:7d:6e:f4:d6:cf:7c:48:b2:cb:97: 10:25:de:c4:7e:20:b1:65:61:71:af:f5:1f:d0:9c:21:de:20: f0:ad:ae:a1:70:8d:33:f8:e9:f4:5f:ab:96:59:96:39:48:3a: a5:6a:3a:f3:0c:ca:54:27:83:4e:fc:fe:df:21:0a:0e:2e:9c: 1d:a4:7f:e6:0c:00:39:a2:f5:d1:07:1e:90:f9:44:7b:46:f8: 05:6a:8e:ef:d1:d2:a7:3b:45:cf:8f:e1:8d:f4:59:a5:17:d7: f6:0d:e7:81:f5:fb:cb:f3:50:38:c8:ec:f9:87:a9:fa:75:b6: a2:07:50:cf:c3:2c:5b:db:89:94:e5:2b:6d:b1:97:96:94:7e: 5d:a7:ae:bf:3e:3c:c3:96:64:82:ef:3a:c3:59:21:af:71:d1: 32:01:fe:a7:46:80:4e:f5:70:ce:72:89:53:6f:11:b9:cb:ea: 77:1c:32:5f:d6:4d:68:db:b4:12:d4:16:7d:ec:ac:29:f3:53: df:cb:7d:7a:55:fe:a6:05:22:ef:db:1c:cd:6e:f6:f4:1e:06: 9c:15:f2:88:a2:c2:4b:72:d2:bb:b4:ec:42:6d:3a:4b:01:4a: 3b:1e:ab:92:89:5e:71:9c:41:6d:fb:1f:07:bb:8f:55:50:41: 41:45:08:ef -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUb6xnJW1zD19mSz10phRIbMCVKG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjExNkE2RjVGMDY0MkQyRTYwNkEzQUNGRjczOEU0OEYz NDRGQjk2NzAeFw0yNjA1MDMwMzExMjhaFw0yNzA1MDIwMzE2MjhaMDMxMTAvBgNV BAMTKEI5MjMyQzNEMEU4MEQxNzdCNTM5OUU1MThBRTVGMjU5MkIwMjBBMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf/Jg2/SLQJGSazC6gCp6tTPr+ +begvDNZgdwwAfWi8zOdSzik5kxtQnr0DMVDxxL9O5Mhctj66Xn9lHq4J9pJrREZ 1AjpZmZD2tFtCxhGRdNvuaoDgbTYRk+1vnKW7X5AUfpx838KPPAZUmQS616p2hMi NWacbs3fI+GsV4I7hNC75BmrGtx3Prj/wU07Q2EZezLLdAorXF2BC8hMXfqdOkN5 oAwBHVp+PVbwkWUl9lcb1637ctsluh88yXLwjWc5Yw0kiJsCvBtVjNl9WODSdLcb 8OJZkCxi+z6CaaJo3x8wRt2FqiYEGuh3YysWZ/Ci9vlSD6IfBLJ6nBsSrGyfAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUuSMsPQ6A0Xe1OZ5RiuXyWSsCChowHwYDVR0j BBgwFoAUIRam9fBkLS5gajrP9zjkjzRPuWcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjBhOTI5YzYtMWUyNS00OTRhLWIwZjktNTVmYzRmYzk0ZmJjLzAvMjExNkE2RjVG MDY0MkQyRTYwNkEzQUNGRjczOEU0OEYzNDRGQjk2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMTE2QTZGNUYwNjQyRDJFNjA2QTNBQ0ZGNzM4RTQ4RjM0NEZC OTY3LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZjBhOTI5YzYtMWUyNS00OTRhLWIw ZjktNTVmYzRmYzk0ZmJjLzAvMzIzNDMwMzQzYTM1MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMyMzQzMjMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBAUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPYRbHkYbvBn1u9NbPfEiyy5cQJd7EfiCxZWFxr/Uf0Jwh3iDwra6h cI0z+On0X6uWWZY5SDqlajrzDMpUJ4NO/P7fIQoOLpwdpH/mDAA5ovXRBx6Q+UR7 RvgFao7v0dKnO0XPj+GN9FmlF9f2DeeB9fvL81A4yOz5h6n6dbaiB1DPwyxb24mU 5SttsZeWlH5dp66/PjzDlmSC7zrDWSGvcdEyAf6nRoBO9XDOcolTbxG5y+p3HDJf 1k1o27QS1BZ97Kwp81Pfy316Vf6mBSLv2xzNbvb0HgacFfKIosJLctK7tOxCbTpL AUo7HquSiV5xnEFt+x8Hu49VUEFBRQjv -----END CERTIFICATE-----Generated at Wed May 13 04:19:54 2026 by rpki-client