$ rpki-client -vvf rpki-rsync.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa File: 323430363a376263303a3a2f33322d3332203d3e20313431303737.roa (raw, json) Hash identifier: CY1Z76P9Cm4XC+l2Gxs6pH2wrd99R/AKN3svNUGr+4E= Subject key identifier: 8F:88:1B:0A:05:00:25:E5:C3:82:1B:CE:32:BB:E5:B2:3B:92:4C:67 Certificate issuer: /CN=098D1D612D535CED249CDB01EC5565063EBACEEF Certificate serial: 1D984032E7017A7709B2BA9A2A4DC1621003D0C2 Authority key identifier: 09:8D:1D:61:2D:53:5C:ED:24:9C:DB:01:EC:55:65:06:3E:BA:CE:EF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/098D1D612D535CED249CDB01EC5565063EBACEEF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa Signing time: Sun 03 May 2026 03:18:36 +0000 ROA not before: Sun 03 May 2026 03:13:36 +0000 ROA not after: Sun 02 May 2027 03:18:36 +0000 asID: 141077 IP address blocks: 2406:7bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/098D1D612D535CED249CDB01EC5565063EBACEEF.crl rsync://rpki-rsync.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/098D1D612D535CED249CDB01EC5565063EBACEEF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/098D1D612D535CED249CDB01EC5565063EBACEEF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:57:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:98:40:32:e7:01:7a:77:09:b2:ba:9a:2a:4d:c1:62:10:03:d0:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098D1D612D535CED249CDB01EC5565063EBACEEF Validity Not Before: May 3 03:13:36 2026 GMT Not After : May 2 03:18:36 2027 GMT Subject: CN=8F881B0A050025E5C3821BCE32BBE5B23B924C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cc:a2:32:19:df:cd:54:91:bf:2c:73:92:5f: 47:05:3c:51:93:0a:f2:e4:96:18:f1:cd:d2:c0:f2: d9:25:68:6e:73:23:31:d6:77:29:b2:c2:42:19:ff: e8:77:9b:93:8f:b2:f7:97:5d:b3:b4:b8:36:fa:2d: b5:bf:69:04:dd:8f:79:72:61:20:d7:eb:58:ea:12: d6:a7:49:57:d7:0b:25:9a:90:42:a6:f3:8b:c5:d4: 1e:e7:b4:35:a7:11:05:5c:94:0e:ad:0a:71:3e:b1: 84:c7:98:fe:8f:f8:31:3f:60:74:a6:bb:d1:2e:0f: 69:e0:80:43:c5:89:db:55:24:37:a8:1b:83:46:13: 2d:20:5e:1b:eb:b9:eb:04:92:71:ed:c5:b1:05:8c: 68:bd:da:97:3c:27:54:d5:f7:9a:8b:e3:48:25:fb: 87:62:48:89:66:d4:69:7d:90:b9:59:ee:95:62:f0: 6a:c0:81:2c:7c:1d:75:31:cd:66:cb:6d:5c:aa:ed: 84:e0:62:7f:70:5d:b6:49:d3:28:3f:16:59:c0:81: b1:ee:6d:6f:50:51:e8:2b:c2:6b:f8:24:ba:5e:df: 0a:07:2a:df:52:64:fc:4f:17:5a:ca:3f:76:2d:c6: 47:fe:a4:95:eb:94:ff:05:b1:56:d2:7f:99:d9:64: 52:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:88:1B:0A:05:00:25:E5:C3:82:1B:CE:32:BB:E5:B2:3B:92:4C:67 X509v3 Authority Key Identifier: keyid:09:8D:1D:61:2D:53:5C:ED:24:9C:DB:01:EC:55:65:06:3E:BA:CE:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/098D1D612D535CED249CDB01EC5565063EBACEEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/098D1D612D535CED249CDB01EC5565063EBACEEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 11:63:e8:94:a1:a3:35:e9:7c:18:e8:03:15:3b:fc:44:88:ca: ce:e5:14:e7:92:28:e4:44:f2:79:d8:d8:d7:80:9e:80:3d:25: 1c:a5:59:67:14:85:02:24:32:b7:3b:ff:41:0b:24:cf:85:9c: 6a:12:5a:31:fc:10:8e:59:4b:33:04:0d:5e:2f:13:1e:1f:4e: d1:c0:dc:28:45:6a:2a:f1:67:9b:6d:48:ef:17:e1:08:c1:2a: 63:e0:6d:e3:17:6a:63:23:94:6f:20:e3:56:76:08:04:19:d5: a3:9c:9f:26:c4:d7:a4:72:21:02:c0:7a:f4:61:a7:74:cc:3d: cc:3f:8d:39:f3:9d:ff:ba:32:e3:52:e6:36:68:70:67:a7:a8: 8f:ac:76:85:6f:ea:ff:ae:6d:65:64:70:66:3d:9a:a0:9b:6c: a6:a2:75:01:51:14:36:30:d1:e4:f6:9f:ab:9d:69:ae:4d:df: 1a:e3:bf:96:fa:9a:21:8e:59:a9:9d:84:4f:68:84:37:06:e4: cd:52:b6:02:13:c0:03:47:a3:0f:dc:fd:da:4a:82:2d:91:f3: bf:78:88:dc:18:43:57:eb:22:69:57:02:71:09:81:dc:75:6b: 70:5c:11:6c:81:a6:8d:bb:15:a4:87:d7:cd:fe:9b:a1:15:44: 59:5f:ab:a4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUHZhAMucBencJsrqaKk3BYhAD0MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk4RDFENjEyRDUzNUNFRDI0OUNEQjAxRUM1NTY1MDYz RUJBQ0VFRjAeFw0yNjA1MDMwMzEzMzZaFw0yNzA1MDIwMzE4MzZaMDMxMTAvBgNV BAMTKDhGODgxQjBBMDUwMDI1RTVDMzgyMUJDRTMyQkJFNUIyM0I5MjRDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfzKIyGd/NVJG/LHOSX0cFPFGT CvLklhjxzdLA8tklaG5zIzHWdymywkIZ/+h3m5OPsveXXbO0uDb6LbW/aQTdj3ly YSDX61jqEtanSVfXCyWakEKm84vF1B7ntDWnEQVclA6tCnE+sYTHmP6P+DE/YHSm u9EuD2nggEPFidtVJDeoG4NGEy0gXhvruesEknHtxbEFjGi92pc8J1TV95qL40gl +4diSIlm1Gl9kLlZ7pVi8GrAgSx8HXUxzWbLbVyq7YTgYn9wXbZJ0yg/FlnAgbHu bW9QUegrwmv4JLpe3woHKt9SZPxPF1rKP3Ytxkf+pJXrlP8FsVbSf5nZZFJlAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUj4gbCgUAJeXDghvOMrvlsjuSTGcwHwYDVR0j BBgwFoAUCY0dYS1TXO0knNsB7FVlBj66zu8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Zjk2NDAxZTMtOWY2Mi00YjNjLWJmZmItNzgzMzU1YWU2NzcwLzAvMDk4RDFENjEy RDUzNUNFRDI0OUNEQjAxRUM1NTY1MDYzRUJBQ0VFRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOThEMUQ2MTJENTM1Q0VEMjQ5Q0RCMDFFQzU1NjUwNjNFQkFD RUVGLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y5NjQwMWUzLTlmNjItNGIzYy1i ZmZiLTc4MzM1NWFlNjc3MC8wLzMyMzQzMDM2M2EzNzYyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGe8AwDQYJKoZI hvcNAQELBQADggEBABFj6JShozXpfBjoAxU7/ESIys7lFOeSKORE8nnY2NeAnoA9 JRylWWcUhQIkMrc7/0ELJM+FnGoSWjH8EI5ZSzMEDV4vEx4fTtHA3ChFairxZ5tt SO8X4QjBKmPgbeMXamMjlG8g41Z2CAQZ1aOcnybE16RyIQLAevRhp3TMPcw/jTnz nf+6MuNS5jZocGenqI+sdoVv6v+ubWVkcGY9mqCbbKaidQFRFDYw0eT2n6udaa5N 3xrjv5b6miGOWamdhE9ohDcG5M1StgITwANHow/c/dpKgi2R8794iNwYQ1frImlX AnEJgdx1a3BcEWyBpo27FaSH183+m6EVRFlfq6Q= -----END CERTIFICATE-----Generated at Wed May 13 12:52:12 2026 by rpki-client