$ rpki-client -vvf rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: aXgaQBkXNr3WgkNnT1bbV4Z/rSlPnLbxkffq9PBogAU= Subject key identifier: 48:C4:DB:07:47:FF:8C:39:FD:56:5D:CC:18:DF:C0:81:96:EC:2B:C9 Certificate issuer: /CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Certificate serial: 1021AF480AE88694C1D317EE848142557DDD7D29 Authority key identifier: AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa Signing time: Sun 03 May 2026 03:18:44 +0000 ROA not before: Sun 03 May 2026 03:13:44 +0000 ROA not after: Sun 02 May 2027 03:18:44 +0000 asID: 131705 IP address blocks: 2406:5c40:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:21:af:48:0a:e8:86:94:c1:d3:17:ee:84:81:42:55:7d:dd:7d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Validity Not Before: May 3 03:13:44 2026 GMT Not After : May 2 03:18:44 2027 GMT Subject: CN=48C4DB0747FF8C39FD565DCC18DFC08196EC2BC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:45:5d:70:df:e4:a8:37:4c:55:0f:b0:14:ff: 49:68:a7:89:3e:20:1d:80:48:17:08:23:84:3b:c3: 80:54:71:3d:79:ea:8c:b4:47:8d:55:dd:48:61:55: ff:7f:20:b8:38:92:58:03:38:8b:48:eb:2e:fc:a5: e7:36:7e:a8:6a:3f:2a:a0:7c:36:24:4c:2b:9c:f5: 6f:8b:91:b3:b8:3b:1d:6e:d1:38:e3:60:be:49:53: 85:e2:ba:63:9a:61:20:59:2c:8f:8a:d1:fc:35:c0: ae:f1:f5:7c:a7:8c:73:b3:fe:40:c7:55:37:9f:d4: 52:ce:b4:4c:e5:1d:23:e3:7d:59:13:6b:d7:b9:0b: 30:0d:3a:ac:1b:bc:36:32:d1:d0:e5:65:c1:89:dd: fd:a2:87:6b:f5:ac:ee:ba:ad:ef:48:91:77:0e:3c: dc:bb:e0:23:bc:9a:fc:46:eb:16:63:ac:6c:e5:34: 36:75:4f:c9:b9:5e:b2:87:68:7f:7a:00:fa:ae:3e: 5f:48:9a:19:6b:d1:a1:00:b2:d8:10:5a:37:4a:f6: be:d2:61:00:49:b9:a2:40:16:eb:3b:26:03:f4:76: b9:33:ca:29:2b:d2:04:04:4b:82:f0:8a:d4:7c:b3: 15:3a:0b:b5:e7:4c:e8:ee:9b:e7:3b:da:92:cf:c5: 06:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C4:DB:07:47:FF:8C:39:FD:56:5D:CC:18:DF:C0:81:96:EC:2B:C9 X509v3 Authority Key Identifier: keyid:AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40:1000::/36 Signature Algorithm: sha256WithRSAEncryption 55:cc:78:4d:f9:6c:45:9b:b8:28:57:14:df:91:f5:04:5c:b0: e2:d8:6f:51:d5:9f:fe:3d:db:b6:39:0e:ce:a3:b6:e8:e1:36: 2e:29:fd:ab:fa:a7:f4:99:a8:5c:90:09:d3:cd:bb:4d:a7:c2: 44:b1:db:0c:98:bd:80:e7:ec:38:2b:a1:72:ba:fb:c8:48:fe: 91:17:0d:72:ab:ac:61:eb:c9:db:55:6c:90:00:98:3c:7d:23: 06:f4:79:cd:8f:7c:de:d6:b3:31:6d:37:46:cf:e6:06:94:47: 10:ad:09:e9:f7:f2:17:76:a2:73:33:b2:d5:5a:e5:bb:24:e1: a9:93:54:47:77:58:de:43:b9:b1:ce:76:98:fe:5c:31:ef:43: 3e:a8:21:37:10:8e:96:4a:02:6a:78:77:e4:6f:0d:d4:a5:17: 47:4b:70:16:76:06:c6:48:87:8e:5e:b5:5a:9b:1b:64:d5:27: 99:98:77:8d:f4:d9:45:3f:3b:f3:09:a7:54:5b:00:c9:5a:f2: 46:8f:d9:f5:39:3e:44:71:03:1e:23:b3:50:6d:33:73:d6:55: 2e:a0:b2:01:69:7b:56:60:96:ee:eb:23:f1:f4:9b:40:12:60: d3:82:c6:53:d4:77:dc:72:c4:e6:9c:de:dc:23:eb:fa:4d:86: df:58:ba:2d -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUECGvSArohpTB0xfuhIFCVX3dfSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3RDkyN0Y0NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFC Q0Y0QzRCQjAeFw0yNjA1MDMwMzEzNDRaFw0yNzA1MDIwMzE4NDRaMDMxMTAvBgNV BAMTKDQ4QzREQjA3NDdGRjhDMzlGRDU2NURDQzE4REZDMDgxOTZFQzJCQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChRV1w3+SoN0xVD7AU/0lop4k+ IB2ASBcII4Q7w4BUcT156oy0R41V3UhhVf9/ILg4klgDOItI6y78pec2fqhqPyqg fDYkTCuc9W+LkbO4Ox1u0TjjYL5JU4XiumOaYSBZLI+K0fw1wK7x9XynjHOz/kDH VTef1FLOtEzlHSPjfVkTa9e5CzANOqwbvDYy0dDlZcGJ3f2ih2v1rO66re9IkXcO PNy74CO8mvxG6xZjrGzlNDZ1T8m5XrKHaH96APquPl9Imhlr0aEAstgQWjdK9r7S YQBJuaJAFus7JgP0drkzyikr0gQES4LwitR8sxU6C7XnTOjum+c72pLPxQahAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUSMTbB0f/jDn9Vl3MGN/AgZbsK8kwHwYDVR0j BBgwFoAUrn2Sf0d8PSzme7ClJEA42rz0xLswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjlkNmFjYzYtMGFmMy00Yjk3LTk5YTQtMGY0NWU4ZWNmNTc2LzAvQUU3RDkyN0Y0 NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFCQ0Y0QzRCQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRTdEOTI3RjQ3N0MzRDJDRTY3QkIwQTUyNDQwMzhEQUJDRjRD NEJCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BlxAEDANBgkqhkiG9w0BAQsFAAOCAQEAVcx4TflsRZu4KFcU35H1BFyw4thvUdWf /j3btjkOzqO26OE2Lin9q/qn9JmoXJAJ0827TafCRLHbDJi9gOfsOCuhcrr7yEj+ kRcNcqusYevJ21VskACYPH0jBvR5zY983tazMW03Rs/mBpRHEK0J6ffyF3aiczOy 1VrluyThqZNUR3dY3kO5sc52mP5cMe9DPqghNxCOlkoCanh35G8N1KUXR0twFnYG xkiHjl61WpsbZNUnmZh3jfTZRT878wmnVFsAyVryRo/Z9Tk+RHEDHiOzUG0zc9ZV LqCyAWl7VmCW7usj8fSbQBJg04LGU9R33HLE5pze3CPr+k2G31i6LQ== -----END CERTIFICATE-----Generated at Wed May 13 12:18:03 2026 by rpki-client