$ rpki-client -vvf rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a383838383a3a2f34382d3438203d3e20313331373035.roa File: 323430363a356334303a383838383a3a2f34382d3438203d3e20313331373035.roa (raw, json) Hash identifier: S3aT7VcLJ0ssRGTP1ygDwW7+AIQVYKqNTkFjIYTg3fg= Subject key identifier: 43:40:98:6B:5F:B1:E6:8C:53:EC:13:34:11:8E:EC:2E:5B:57:E4:DD Certificate issuer: /CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Certificate serial: 3F2FF8C018126E65CCCB9AD5096F88E7556BB1DE Authority key identifier: AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a383838383a3a2f34382d3438203d3e20313331373035.roa Signing time: Sun 03 May 2026 03:18:43 +0000 ROA not before: Sun 03 May 2026 03:13:43 +0000 ROA not after: Sun 02 May 2027 03:18:43 +0000 asID: 131705 IP address blocks: 2406:5c40:8888::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:2f:f8:c0:18:12:6e:65:cc:cb:9a:d5:09:6f:88:e7:55:6b:b1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Validity Not Before: May 3 03:13:43 2026 GMT Not After : May 2 03:18:43 2027 GMT Subject: CN=4340986B5FB1E68C53EC1334118EEC2E5B57E4DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4e:a2:d1:98:45:96:68:3c:16:6e:73:88:3b: 7f:f6:ff:82:8a:3a:26:c6:79:a4:3e:5a:31:7e:1f: 91:34:be:59:5f:f1:75:6c:d2:f4:be:9d:60:2a:05: 37:05:83:41:26:e9:61:fd:3f:ce:9d:ff:a9:3f:00: 62:ab:32:fd:ca:88:f4:37:4f:99:37:de:a7:ec:68: f0:72:28:31:96:4b:39:02:24:66:d9:11:8e:a8:b0: c4:5c:f6:0a:14:e8:c0:49:ac:e3:45:d7:7f:22:55: 40:85:5e:a2:c8:42:bc:83:b8:ec:48:2d:e8:22:cb: 64:05:8d:00:58:56:87:71:86:0d:a5:af:12:28:10: 6d:58:e0:bb:61:c9:38:36:c4:e8:95:67:e1:76:4a: f3:03:8a:ee:d3:76:9d:9a:ca:e5:e2:df:27:10:0d: 14:0b:e6:a4:df:83:db:48:6f:24:c5:a7:81:e1:4a: 94:30:d5:fe:75:b2:48:c6:ad:38:19:f1:97:a9:39: 56:c3:82:d9:f0:48:aa:25:c2:e7:11:2f:75:3e:37: dc:a7:85:da:99:ee:42:bf:b1:d4:fc:ab:b1:61:ab: 7d:12:e3:6a:b7:35:3f:95:87:c0:67:31:06:3e:9b: 82:48:96:a0:e9:26:a0:af:6c:ad:b3:77:8d:d8:ad: d5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:40:98:6B:5F:B1:E6:8C:53:EC:13:34:11:8E:EC:2E:5B:57:E4:DD X509v3 Authority Key Identifier: keyid:AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a383838383a3a2f34382d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40:8888::/48 Signature Algorithm: sha256WithRSAEncryption 54:a2:a1:16:79:c0:de:d5:e1:f7:b6:a3:8c:1b:50:f6:d2:b0: 28:62:5e:81:2a:12:6b:62:a8:57:38:a9:d9:a6:79:07:93:2c: 74:47:0d:7f:6c:90:b3:5f:e9:cd:f3:de:5f:35:a8:1e:08:39: b1:c6:83:77:28:a6:2c:3f:7e:33:e7:61:86:66:47:8d:4a:d8: af:db:74:a1:98:49:0c:d1:33:1e:7a:dd:a7:51:4d:93:2a:bc: 03:6a:89:64:69:1a:24:cf:09:1c:3e:23:12:e7:00:70:3e:a0: 3f:2c:d3:3d:20:b2:e3:8c:a5:82:1c:78:8d:fe:d6:d9:ef:af: e1:ab:a5:5f:10:9e:34:53:f8:36:e0:0f:bf:1b:40:ae:d3:9d: 7c:3f:04:e9:a1:f7:bd:07:8b:23:2e:35:64:e8:fa:0b:84:c6: b4:fd:8b:e7:98:fb:07:60:76:9a:07:bb:61:54:25:2e:c6:cf: 82:49:5a:fe:4e:91:bd:75:82:63:9c:35:1d:da:f0:10:0d:7e: 04:77:54:52:e2:ec:4b:be:6a:5c:13:3f:f3:57:dc:a3:ae:9b: a0:0a:f5:98:14:4e:af:18:ba:da:27:56:98:1e:cb:d0:23:13: 15:6f:ca:79:ac:fb:ea:63:29:50:f4:da:c0:b8:89:90:57:76: c0:13:01:ab -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPy/4wBgSbmXMy5rVCW+I51Vrsd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3RDkyN0Y0NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFC Q0Y0QzRCQjAeFw0yNjA1MDMwMzEzNDNaFw0yNzA1MDIwMzE4NDNaMDMxMTAvBgNV BAMTKDQzNDA5ODZCNUZCMUU2OEM1M0VDMTMzNDExOEVFQzJFNUI1N0U0REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZTqLRmEWWaDwWbnOIO3/2/4KK OibGeaQ+WjF+H5E0vllf8XVs0vS+nWAqBTcFg0Em6WH9P86d/6k/AGKrMv3KiPQ3 T5k33qfsaPByKDGWSzkCJGbZEY6osMRc9goU6MBJrONF138iVUCFXqLIQryDuOxI Legiy2QFjQBYVodxhg2lrxIoEG1Y4LthyTg2xOiVZ+F2SvMDiu7Tdp2ayuXi3ycQ DRQL5qTfg9tIbyTFp4HhSpQw1f51skjGrTgZ8ZepOVbDgtnwSKolwucRL3U+N9yn hdqZ7kK/sdT8q7Fhq30S42q3NT+Vh8BnMQY+m4JIlqDpJqCvbK2zd43YrdWTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQ0CYa1+x5oxT7BM0EY7sLltX5N0wHwYDVR0j BBgwFoAUrn2Sf0d8PSzme7ClJEA42rz0xLswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjlkNmFjYzYtMGFmMy00Yjk3LTk5YTQtMGY0NWU4ZWNmNTc2LzAvQUU3RDkyN0Y0 NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFCQ0Y0QzRCQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRTdEOTI3RjQ3N0MzRDJDRTY3QkIwQTUyNDQwMzhEQUJDRjRD NEJCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhMzgzODM4Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BlxAiIgwDQYJKoZIhvcNAQELBQADggEBAFSioRZ5wN7V4fe2o4wbUPbSsChiXoEq EmtiqFc4qdmmeQeTLHRHDX9skLNf6c3z3l81qB4IObHGg3copiw/fjPnYYZmR41K 2K/bdKGYSQzRMx563adRTZMqvANqiWRpGiTPCRw+IxLnAHA+oD8s0z0gsuOMpYIc eI3+1tnvr+GrpV8QnjRT+DbgD78bQK7TnXw/BOmh970HiyMuNWTo+guExrT9i+eY +wdgdpoHu2FUJS7Gz4JJWv5Okb11gmOcNR3a8BANfgR3VFLi7Eu+alwTP/NX3KOu m6AK9ZgUTq8YutonVpgey9AjExVvynms++pjKVD02sC4iZBXdsATAas= -----END CERTIFICATE-----Generated at Wed May 13 12:43:34 2026 by rpki-client