$ rpki-client -vvf rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa File: 323430313a646363303a3a2f33322d3438203d3e203338313635.roa (raw, json) Hash identifier: 2ylo3HpAhVkvHZhTyyQa6+TpBddihUGH17bMztGMO8Y= Subject key identifier: 02:C0:1C:33:D8:AD:90:36:58:05:95:CA:A8:32:49:67:4D:08:FF:86 Certificate issuer: /CN=A9DFB6024D05A37CA0C756EC747E898140885BC9 Certificate serial: 426840D95D138E35CAC51A30A0A9AA96BE5A842A Authority key identifier: A9:DF:B6:02:4D:05:A3:7C:A0:C7:56:EC:74:7E:89:81:40:88:5B:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9DFB6024D05A37CA0C756EC747E898140885BC9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa Signing time: Sun 03 May 2026 03:18:15 +0000 ROA not before: Sun 03 May 2026 03:13:15 +0000 ROA not after: Sun 02 May 2027 03:18:15 +0000 asID: 38165 IP address blocks: 2401:dcc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/A9DFB6024D05A37CA0C756EC747E898140885BC9.crl rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/A9DFB6024D05A37CA0C756EC747E898140885BC9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9DFB6024D05A37CA0C756EC747E898140885BC9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:68:40:d9:5d:13:8e:35:ca:c5:1a:30:a0:a9:aa:96:be:5a:84:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9DFB6024D05A37CA0C756EC747E898140885BC9 Validity Not Before: May 3 03:13:15 2026 GMT Not After : May 2 03:18:15 2027 GMT Subject: CN=02C01C33D8AD9036580595CAA83249674D08FF86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:3c:16:af:f2:ec:ff:20:58:3f:76:a0:23: 06:c8:2e:50:c2:89:f7:aa:1c:92:38:d4:3d:98:f6: 47:5f:9c:d2:d5:d1:6e:64:8b:73:2c:79:b2:27:ad: b9:64:f4:58:e6:15:62:09:ba:60:23:e9:b9:c6:b1: 45:27:e7:4f:c2:01:dd:b1:4e:2f:31:1c:d6:2f:64: 7a:ca:e3:a2:45:f1:06:02:67:38:3d:b0:42:d7:09: bf:4a:d4:fd:af:07:59:f4:bf:7d:a6:4e:b2:f4:2c: fb:44:17:25:86:ef:3a:ef:91:5b:82:ba:ef:f6:e3: 18:72:bf:50:cd:b2:09:5a:86:14:5f:b3:0d:e3:42: ca:d1:67:9f:74:07:01:5c:41:f2:51:b4:bf:15:0b: 63:25:9f:b7:64:bd:ff:47:1a:61:a6:a5:2c:36:a9: 52:a5:63:5c:28:94:64:e0:8f:4b:ee:fa:75:4b:ae: 25:ee:44:77:e5:4a:59:34:c9:64:58:45:1f:0f:27: 33:d9:cc:ca:54:eb:92:cf:47:58:57:8b:2b:d0:a7: a8:ad:af:c2:58:5f:86:e9:90:d5:d4:e7:1f:9f:71: 15:8b:b1:76:0f:cf:75:d9:2b:4f:17:6b:7c:5d:de: a3:3d:51:1f:79:e6:33:ac:9e:69:3c:c2:b5:bc:e3: 7c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C0:1C:33:D8:AD:90:36:58:05:95:CA:A8:32:49:67:4D:08:FF:86 X509v3 Authority Key Identifier: keyid:A9:DF:B6:02:4D:05:A3:7C:A0:C7:56:EC:74:7E:89:81:40:88:5B:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/A9DFB6024D05A37CA0C756EC747E898140885BC9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A9DFB6024D05A37CA0C756EC747E898140885BC9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/323430313a646363303a3a2f33322d3438203d3e203338313635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:dcc0::/32 Signature Algorithm: sha256WithRSAEncryption a0:d2:dc:ee:3d:ad:34:25:a6:93:95:29:d7:2a:19:59:57:ea: 29:27:5f:8f:8a:d9:ae:84:d4:f8:10:02:8d:b9:70:2f:c6:f5: ef:dc:22:aa:74:91:c6:49:6d:a9:3a:e3:11:fb:0e:3c:12:d0: b4:fc:6a:24:49:45:76:80:78:2e:5a:13:bf:f6:55:bb:ce:9d: 50:3d:9d:6b:7e:71:9a:72:7f:f6:a0:ca:f3:a7:b3:fe:0e:be: 10:35:c5:01:38:37:eb:e7:6f:02:ad:3f:69:42:b5:89:74:d5: ab:61:31:20:6c:71:ba:a7:40:34:6a:0f:b3:80:b1:2c:2b:ab: 43:9f:18:1e:ac:15:4e:37:8f:8b:a2:5a:59:6e:54:06:6b:4b: c6:79:dd:d3:e9:24:8c:32:52:1e:2e:8a:e7:e3:81:35:f0:f2: 33:44:e9:10:89:d3:95:1a:d8:55:f5:01:95:7d:98:67:a0:34: f2:31:e4:9a:7b:c3:4c:e8:50:93:60:8b:3a:d3:a6:4d:cd:88: ca:67:5a:75:49:cb:82:d2:48:c1:a5:7e:13:a2:6a:20:57:e9: a6:01:70:c1:e3:4a:fc:22:2a:02:89:ae:0e:79:17:e4:50:26: ad:06:db:e7:c6:de:24:b7:f4:8a:8b:19:cf:f6:48:a1:68:f8: 59:16:54:e1 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUQmhA2V0TjjXKxRowoKmqlr5ahCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlERkI2MDI0RDA1QTM3Q0EwQzc1NkVDNzQ3RTg5ODE0 MDg4NUJDOTAeFw0yNjA1MDMwMzEzMTVaFw0yNzA1MDIwMzE4MTVaMDMxMTAvBgNV BAMTKDAyQzAxQzMzRDhBRDkwMzY1ODA1OTVDQUE4MzI0OTY3NEQwOEZGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCZjwWr/Ls/yBYP3agIwbILlDC ifeqHJI41D2Y9kdfnNLV0W5ki3MsebInrblk9FjmFWIJumAj6bnGsUUn50/CAd2x Ti8xHNYvZHrK46JF8QYCZzg9sELXCb9K1P2vB1n0v32mTrL0LPtEFyWG7zrvkVuC uu/24xhyv1DNsglahhRfsw3jQsrRZ590BwFcQfJRtL8VC2Mln7dkvf9HGmGmpSw2 qVKlY1wolGTgj0vu+nVLriXuRHflSlk0yWRYRR8PJzPZzMpU65LPR1hXiyvQp6it r8JYX4bpkNXU5x+fcRWLsXYPz3XZK08Xa3xd3qM9UR955jOsnmk8wrW843wZAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUAsAcM9itkDZYBZXKqDJJZ00I/4YwHwYDVR0j BBgwFoAUqd+2Ak0Fo3ygx1bsdH6JgUCIW8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Zjc0NDhjMTEtZjhkMy00NTdkLThlMjItODQ4ODdhYjIyYTMwLzAvQTlERkI2MDI0 RDA1QTM3Q0EwQzc1NkVDNzQ3RTg5ODE0MDg4NUJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOURGQjYwMjREMDVBMzdDQTBDNzU2RUM3NDdFODk4MTQwODg1 QkM5LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y3NDQ4YzExLWY4ZDMtNDU3ZC04 ZTIyLTg0ODg3YWIyMmEzMC8wLzMyMzQzMDMxM2E2NDYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzMTM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAdzAMA0GCSqGSIb3 DQEBCwUAA4IBAQCg0tzuPa00JaaTlSnXKhlZV+opJ1+PitmuhNT4EAKNuXAvxvXv 3CKqdJHGSW2pOuMR+w48EtC0/GokSUV2gHguWhO/9lW7zp1QPZ1rfnGacn/2oMrz p7P+Dr4QNcUBODfr528CrT9pQrWJdNWrYTEgbHG6p0A0ag+zgLEsK6tDnxgerBVO N4+LolpZblQGa0vGed3T6SSMMlIeLorn44E18PIzROkQidOVGthV9QGVfZhnoDTy MeSae8NM6FCTYIs606ZNzYjKZ1p1ScuC0kjBpX4TomogV+mmAXDB40r8IioCia4O eRfkUCatBtvnxt4kt/SKixnP9kihaPhZFlTh -----END CERTIFICATE-----Generated at Wed May 13 13:24:55 2026 by rpki-client