$ rpki-client -vvf rpki-rsync.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/323430343a326338303a3a2f33322d3438203d3e20313334363433.roa File: 323430343a326338303a3a2f33322d3438203d3e20313334363433.roa (raw, json) Hash identifier: xWKM6w+YSqs8CfkUMCmv6mPauJooeyQJc7wELxHZfDg= Subject key identifier: E9:7B:BB:C0:0E:B9:7D:E1:89:CF:D1:49:B2:E1:52:C9:6C:35:C9:37 Certificate issuer: /CN=C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B Certificate serial: 02FBD2B24A1E1E9AF03CF1ACAA66076FAF511FCA Authority key identifier: C1:DC:78:2A:98:D3:C6:27:17:02:25:6C:CC:BD:AC:64:F6:EE:AB:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/323430343a326338303a3a2f33322d3438203d3e20313334363433.roa Signing time: Sun 03 May 2026 03:16:50 +0000 ROA not before: Sun 03 May 2026 03:11:50 +0000 ROA not after: Sun 02 May 2027 03:16:50 +0000 asID: 134643 IP address blocks: 2404:2c80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B.crl rsync://rpki-rsync.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fb:d2:b2:4a:1e:1e:9a:f0:3c:f1:ac:aa:66:07:6f:af:51:1f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B Validity Not Before: May 3 03:11:50 2026 GMT Not After : May 2 03:16:50 2027 GMT Subject: CN=E97BBBC00EB97DE189CFD149B2E152C96C35C937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8f:ff:0b:32:c5:f2:d1:fc:e5:d7:9b:aa:bf: 55:40:e2:eb:3b:f4:b0:86:b0:23:0a:f4:61:9d:21: 7c:d1:81:91:e1:42:2c:b2:0a:ed:c0:9b:9c:15:72: 63:bb:ab:89:aa:98:45:51:1e:73:cd:c8:86:9a:e8: a9:1f:1a:c7:d1:fb:0d:3e:8b:bc:bc:75:37:15:d3: e1:40:7f:5e:88:9b:71:98:b1:f1:d2:18:d5:9c:e8: ce:06:3d:e4:e7:44:04:d5:00:bd:2b:55:96:05:8d: 3b:70:5d:fc:cb:52:e4:f0:cc:dc:fc:24:6a:c1:4f: ca:78:f3:bd:62:f7:4e:f9:bc:22:26:b3:8a:c1:c1: 79:25:27:82:a0:27:ed:9d:08:9d:ac:d4:fd:ce:a7: 95:34:eb:3a:63:63:bb:37:37:f3:34:05:19:22:e4: 6a:48:7c:00:6e:df:31:62:72:b9:c5:06:87:fe:be: 8b:06:50:42:97:6c:d4:2b:20:14:9b:6a:db:53:fc: b3:84:8a:69:c8:5b:b7:5e:4d:d5:16:38:9b:8d:62: 90:8f:9e:d3:25:17:42:37:55:46:a7:a8:91:cf:2b: b9:71:cf:01:04:d4:90:00:73:d1:13:3b:46:fa:94: 18:0a:82:12:29:25:11:93:34:81:76:ca:2a:5b:ab: f0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7B:BB:C0:0E:B9:7D:E1:89:CF:D1:49:B2:E1:52:C9:6C:35:C9:37 X509v3 Authority Key Identifier: keyid:C1:DC:78:2A:98:D3:C6:27:17:02:25:6C:CC:BD:AC:64:F6:EE:AB:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C1DC782A98D3C6271702256CCCBDAC64F6EEAB8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/323430343a326338303a3a2f33322d3438203d3e20313334363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2c80::/32 Signature Algorithm: sha256WithRSAEncryption 09:b7:e0:e8:c3:c6:8a:ed:24:24:4f:02:2d:99:65:09:5e:fc: 83:1f:1d:b9:23:51:32:c5:97:42:e9:5b:0d:71:89:e2:87:37: c1:cb:ad:ac:8d:f3:a7:94:be:17:41:56:2e:a7:58:d8:b1:b7: 9f:87:8a:cc:34:8f:23:e7:a4:9a:04:10:7c:1a:6e:5c:8b:89: d1:bf:c4:9c:c3:f3:bf:b8:00:13:ec:ec:18:e2:2d:52:5b:da: 2a:d4:75:cb:4c:45:8d:e3:79:26:f6:aa:bb:9b:d6:22:2f:36: 9a:ee:d4:1e:02:cd:84:0b:57:29:9f:b5:ff:43:7c:36:43:36: aa:7c:d0:34:e7:df:bb:3b:5b:c1:2f:f8:c6:cb:20:92:ff:03: 18:23:bf:59:73:7a:29:45:9a:80:1b:dc:e5:67:13:f4:e0:1b: d3:08:e8:f2:25:b3:eb:23:2f:00:ac:da:d4:de:30:ac:a8:b1: d7:48:de:37:18:cf:c5:ba:c0:07:f7:dd:08:79:d0:4d:d7:b9: 93:7f:db:98:ae:5c:57:b0:d1:8b:27:51:01:e6:83:85:82:5d: 18:fb:b3:12:89:15:7a:91:91:79:03:96:bb:32:01:b4:a6:cf: 94:bc:e6:46:4f:72:a2:2e:dc:26:ec:be:e8:cc:ff:11:b5:da: d8:06:b6:0c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUAvvSskoeHprwPPGsqmYHb69RH8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFEQzc4MkE5OEQzQzYyNzE3MDIyNTZDQ0NCREFDNjRG NkVFQUI4QjAeFw0yNjA1MDMwMzExNTBaFw0yNzA1MDIwMzE2NTBaMDMxMTAvBgNV BAMTKEU5N0JCQkMwMEVCOTdERTE4OUNGRDE0OUIyRTE1MkM5NkMzNUM5MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClj/8LMsXy0fzl15uqv1VA4us7 9LCGsCMK9GGdIXzRgZHhQiyyCu3Am5wVcmO7q4mqmEVRHnPNyIaa6KkfGsfR+w0+ i7y8dTcV0+FAf16Im3GYsfHSGNWc6M4GPeTnRATVAL0rVZYFjTtwXfzLUuTwzNz8 JGrBT8p4871i9075vCIms4rBwXklJ4KgJ+2dCJ2s1P3Op5U06zpjY7s3N/M0BRki 5GpIfABu3zFicrnFBof+vosGUEKXbNQrIBSbattT/LOEimnIW7deTdUWOJuNYpCP ntMlF0I3VUanqJHPK7lxzwEE1JAAc9ETO0b6lBgKghIpJRGTNIF2yipbq/BbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6Xu7wA65feGJz9FJsuFSyWw1yTcwHwYDVR0j BBgwFoAUwdx4KpjTxicXAiVszL2sZPbuq4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjI2ZTQ1NjQtNDhmMi00M2I1LTg1MDUtOTNiNDk4ZTdkOGFiLzAvQzFEQzc4MkE5 OEQzQzYyNzE3MDIyNTZDQ0NCREFDNjRGNkVFQUI4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMURDNzgyQTk4RDNDNjI3MTcwMjI1NkNDQ0JEQUM2NEY2RUVB QjhCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YyNmU0NTY0LTQ4ZjItNDNiNS04 NTA1LTkzYjQ5OGU3ZDhhYi8wLzMyMzQzMDM0M2EzMjYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQELIAwDQYJKoZI hvcNAQELBQADggEBAAm34OjDxortJCRPAi2ZZQle/IMfHbkjUTLFl0LpWw1xieKH N8HLrayN86eUvhdBVi6nWNixt5+Hisw0jyPnpJoEEHwablyLidG/xJzD87+4ABPs 7BjiLVJb2irUdctMRY3jeSb2qrub1iIvNpru1B4CzYQLVymftf9DfDZDNqp80DTn 37s7W8Ev+MbLIJL/Axgjv1lzeilFmoAb3OVnE/TgG9MI6PIls+sjLwCs2tTeMKyo sddI3jcYz8W6wAf33Qh50E3XuZN/25iuXFew0YsnUQHmg4WCXRj7sxKJFXqRkXkD lrsyAbSmz5S85kZPcqIu3CbsvujM/xG12tgGtgw= -----END CERTIFICATE-----Generated at Wed May 13 10:20:22 2026 by rpki-client