$ rpki-client -vvf rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a323030303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a323030303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: Ee7WWGSltwyaFMHxIIgEvgkLf4dnjnHrFVC5UDqWks8= Subject key identifier: CD:BC:D8:A3:6C:0B:2D:D2:A0:2C:A7:A0:72:CD:B6:5D:52:01:4C:5B Certificate issuer: /CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Certificate serial: 1445DD82F776A9144949F157B542DE5B9966A2C0 Authority key identifier: AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a323030303a3a2f33362d3438203d3e20313331373035.roa Signing time: Sun 03 May 2026 03:18:45 +0000 ROA not before: Sun 03 May 2026 03:13:45 +0000 ROA not after: Sun 02 May 2027 03:18:45 +0000 asID: 131705 IP address blocks: 2406:5c40:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:45:dd:82:f7:76:a9:14:49:49:f1:57:b5:42:de:5b:99:66:a2:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Validity Not Before: May 3 03:13:45 2026 GMT Not After : May 2 03:18:45 2027 GMT Subject: CN=CDBCD8A36C0B2DD2A02CA7A072CDB65D52014C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:74:35:04:7b:fd:bc:3f:93:3c:94:cd:49: ce:69:95:50:f8:55:70:be:0e:93:30:25:66:16:ba: 87:47:02:63:ff:b9:f5:8d:6a:10:93:1f:e9:9f:73: 2d:2b:90:8d:a5:a5:07:67:a3:98:ac:76:ee:a5:b4: 2d:87:90:34:c5:ed:bb:8b:76:ff:9e:26:4f:72:12: 68:16:01:e1:17:bb:3c:3b:b1:b1:e0:de:df:87:f1: 50:f7:2d:06:5a:d1:12:92:2b:50:66:6f:22:ed:e9: ba:ad:85:89:8f:e4:33:a2:0d:a1:24:2c:cb:d9:c7: d4:3c:2a:dd:3f:93:45:4e:55:3c:b6:37:31:d6:dd: 9f:e8:0f:72:e5:24:10:a3:5b:97:78:00:25:29:0b: 29:e2:b7:a9:ef:23:3d:4b:a6:58:82:a4:da:e4:78: ff:33:22:1a:3a:a0:9a:d8:99:58:39:22:f3:ea:97: ef:d9:92:97:f6:92:0b:37:a9:66:fe:2f:c8:c9:41: c2:5a:3d:66:bb:e5:00:6d:df:1c:e8:d1:65:ad:27: 79:00:64:75:9e:f4:f2:1e:33:b9:5d:1b:9e:c2:90: 00:49:c2:52:5c:6c:93:58:4e:f0:f7:c2:0e:5f:a2: 9a:b0:3d:09:e5:2d:3b:a4:5e:85:6e:5e:1b:a0:5a: f4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BC:D8:A3:6C:0B:2D:D2:A0:2C:A7:A0:72:CD:B6:5D:52:01:4C:5B X509v3 Authority Key Identifier: keyid:AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a323030303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40:2000::/36 Signature Algorithm: sha256WithRSAEncryption 76:d6:24:0a:23:83:3d:bc:2e:64:33:bd:1c:23:82:e6:6a:f9: 76:3c:96:52:70:bc:98:94:db:e3:f7:f8:e0:7f:a6:94:a1:05: 03:8d:e6:f1:38:3f:18:df:dd:3c:3d:53:15:33:97:72:91:be: 10:22:34:a3:e9:e9:32:a0:ff:38:d5:19:75:a6:4a:1f:f5:2a: 96:d1:f3:96:2d:58:3d:ff:15:26:16:07:7c:11:31:14:6a:63: 6d:9e:a9:5e:48:8e:0d:52:f6:f2:2a:5b:4a:3f:34:a7:cf:c4: 04:09:75:c3:c1:d6:46:4f:44:55:49:23:80:40:d0:b6:23:36: 5c:8d:de:a7:34:3e:1b:e5:42:17:9a:14:41:a1:b0:7e:82:9a: fa:d6:03:d4:1f:4a:2c:df:f7:c4:22:3f:5e:2c:33:68:f7:85: 69:58:da:e7:df:dd:03:2f:99:d0:bd:6b:33:b4:2d:4d:e3:2e: 95:c0:41:9b:9c:0d:9a:23:b2:54:1f:48:84:e6:e5:8a:5f:90: 50:c5:2d:ba:7c:fd:c0:09:42:b7:45:27:33:49:c5:78:7d:a1: 8d:90:4d:cb:94:0f:99:d9:23:97:ab:39:ea:da:c9:23:2b:c4: 64:bd:d7:43:41:8f:cc:b6:b0:9c:64:4a:e7:72:e6:34:6e:e9: e3:4b:4a:30 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUFEXdgvd2qRRJSfFXtULeW5lmosAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3RDkyN0Y0NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFC Q0Y0QzRCQjAeFw0yNjA1MDMwMzEzNDVaFw0yNzA1MDIwMzE4NDVaMDMxMTAvBgNV BAMTKENEQkNEOEEzNkMwQjJERDJBMDJDQTdBMDcyQ0RCNjVENTIwMTRDNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3i3Q1BHv9vD+TPJTNSc5plVD4 VXC+DpMwJWYWuodHAmP/ufWNahCTH+mfcy0rkI2lpQdno5isdu6ltC2HkDTF7buL dv+eJk9yEmgWAeEXuzw7sbHg3t+H8VD3LQZa0RKSK1BmbyLt6bqthYmP5DOiDaEk LMvZx9Q8Kt0/k0VOVTy2NzHW3Z/oD3LlJBCjW5d4ACUpCynit6nvIz1LpliCpNrk eP8zIho6oJrYmVg5IvPql+/Zkpf2kgs3qWb+L8jJQcJaPWa75QBt3xzo0WWtJ3kA ZHWe9PIeM7ldG57CkABJwlJcbJNYTvD3wg5fopqwPQnlLTukXoVuXhugWvSZAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUzbzYo2wLLdKgLKegcs22XVIBTFswHwYDVR0j BBgwFoAUrn2Sf0d8PSzme7ClJEA42rz0xLswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjlkNmFjYzYtMGFmMy00Yjk3LTk5YTQtMGY0NWU4ZWNmNTc2LzAvQUU3RDkyN0Y0 NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFCQ0Y0QzRCQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRTdEOTI3RjQ3N0MzRDJDRTY3QkIwQTUyNDQwMzhEQUJDRjRD NEJCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BlxAIDANBgkqhkiG9w0BAQsFAAOCAQEAdtYkCiODPbwuZDO9HCOC5mr5djyWUnC8 mJTb4/f44H+mlKEFA43m8Tg/GN/dPD1TFTOXcpG+ECI0o+npMqD/ONUZdaZKH/Uq ltHzli1YPf8VJhYHfBExFGpjbZ6pXkiODVL28ipbSj80p8/EBAl1w8HWRk9EVUkj gEDQtiM2XI3epzQ+G+VCF5oUQaGwfoKa+tYD1B9KLN/3xCI/XiwzaPeFaVja59/d Ay+Z0L1rM7QtTeMulcBBm5wNmiOyVB9IhOblil+QUMUtunz9wAlCt0UnM0nFeH2h jZBNy5QPmdkjl6s56trJIyvEZL3XQ0GPzLawnGRK53LmNG7p40tKMA== -----END CERTIFICATE-----Generated at Wed May 13 12:06:18 2026 by rpki-client