$ rpki-client -vvf rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: dHemt/X+4p/vn34sn9wPgB+Rsu5EmHnVv8RmTO5DvKE= Subject key identifier: 03:B6:6E:16:8B:49:47:79:B0:73:01:EB:42:F2:5F:A4:89:67:F5:28 Certificate issuer: /CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Certificate serial: 3FF38DEB6CB95B07058B2F021447EE1E43109597 Authority key identifier: AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa Signing time: Sun 03 May 2026 03:18:44 +0000 ROA not before: Sun 03 May 2026 03:13:44 +0000 ROA not after: Sun 02 May 2027 03:18:44 +0000 asID: 131705 IP address blocks: 2406:5c40::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f3:8d:eb:6c:b9:5b:07:05:8b:2f:02:14:47:ee:1e:43:10:95:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB Validity Not Before: May 3 03:13:44 2026 GMT Not After : May 2 03:18:44 2027 GMT Subject: CN=03B66E168B494779B07301EB42F25FA48967F528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:36:05:13:20:d2:51:c1:e7:07:18:94:68:22: 29:2d:f3:37:07:16:fc:3a:93:e5:92:c3:ae:79:0f: f1:ee:4a:5c:62:b9:c3:69:23:59:cc:b2:6a:16:87: cc:f4:be:d4:3d:fb:69:32:37:83:39:e7:47:97:1b: 3e:b4:78:7b:d6:6a:9a:15:96:38:1d:f1:cf:76:c6: 04:94:83:44:a0:4d:c1:20:67:86:14:f8:74:d1:3b: 8d:63:4b:b9:e8:4e:b0:16:e0:d0:ae:7e:b4:22:4a: 1b:5b:71:68:a6:0d:d2:82:d0:70:c6:b4:2e:bd:9d: e8:fb:3a:9b:97:a8:d0:5e:3a:ba:ab:4a:43:ab:d1: b7:70:a1:39:33:2d:c4:02:f2:9d:12:d8:26:30:b1: 1f:62:6b:ae:db:68:e5:17:0c:df:9a:a8:85:ec:20: d0:c7:9e:7b:42:90:b9:7b:d6:56:3a:73:5b:ed:34: b8:5e:f0:af:9d:e2:74:24:52:86:bc:d9:95:16:8b: 95:30:0b:c5:24:be:84:4d:20:c4:cf:c6:c3:de:14: 9b:17:ae:92:d1:35:67:d9:01:c3:a7:64:f4:31:21: 54:19:a0:b0:08:e2:37:ba:3a:77:6f:47:da:2a:0b: 4e:35:9d:f8:5e:00:79:71:15:30:c7:60:b4:9a:78: 5f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B6:6E:16:8B:49:47:79:B0:73:01:EB:42:F2:5F:A4:89:67:F5:28 X509v3 Authority Key Identifier: keyid:AE:7D:92:7F:47:7C:3D:2C:E6:7B:B0:A5:24:40:38:DA:BC:F4:C4:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AE7D927F477C3D2CE67BB0A5244038DABCF4C4BB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/36 Signature Algorithm: sha256WithRSAEncryption 72:53:1a:bd:54:16:d4:d4:ad:36:11:15:22:45:96:0e:fd:22: c5:7a:ed:bd:fc:0f:1c:88:a3:12:c7:aa:60:ae:74:15:ec:c1: 2f:9c:a4:fb:a8:45:6f:26:53:a6:6b:a2:aa:dd:5b:9e:73:0a: b4:de:32:2c:9d:37:ca:e4:57:85:c6:7d:82:a4:88:28:9c:08: aa:c3:b6:4d:a0:63:a6:4d:93:aa:8c:d5:95:a3:fa:b8:e3:e5: de:0d:44:57:d0:d6:9a:43:72:7e:41:5f:08:8d:5b:fa:62:12: 07:5b:b6:0e:47:10:35:15:a2:8e:26:3a:f3:00:03:5f:af:1b: 40:3c:84:97:4d:96:72:46:ee:f7:9b:5c:69:f6:fd:77:f8:41: 67:55:52:65:0a:83:d6:05:38:2c:14:4d:d4:33:ed:d3:e6:2f: 9b:3b:cc:81:22:a5:cf:72:50:11:45:f9:6b:78:ec:34:ec:a6: da:79:04:88:c4:2f:a1:27:04:70:a4:bb:fd:95:29:72:50:8d: f7:ce:f1:53:78:2a:8c:f6:7c:6b:5a:71:32:a2:ad:18:87:95: b5:ec:30:d5:c7:f0:a5:8c:14:6a:16:1f:ad:0d:ab:3b:40:31: 3a:6e:03:72:fb:31:b4:ff:23:0f:a1:55:42:01:8b:a8:c5:cd: 04:3e:9e:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP/ON62y5WwcFiy8CFEfuHkMQlZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3RDkyN0Y0NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFC Q0Y0QzRCQjAeFw0yNjA1MDMwMzEzNDRaFw0yNzA1MDIwMzE4NDRaMDMxMTAvBgNV BAMTKDAzQjY2RTE2OEI0OTQ3NzlCMDczMDFFQjQyRjI1RkE0ODk2N0Y1MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgNgUTINJRwecHGJRoIikt8zcH Fvw6k+WSw655D/HuSlxiucNpI1nMsmoWh8z0vtQ9+2kyN4M550eXGz60eHvWapoV ljgd8c92xgSUg0SgTcEgZ4YU+HTRO41jS7noTrAW4NCufrQiShtbcWimDdKC0HDG tC69nej7OpuXqNBeOrqrSkOr0bdwoTkzLcQC8p0S2CYwsR9ia67baOUXDN+aqIXs INDHnntCkLl71lY6c1vtNLhe8K+d4nQkUoa82ZUWi5UwC8UkvoRNIMTPxsPeFJsX rpLRNWfZAcOnZPQxIVQZoLAI4je6OndvR9oqC041nfheAHlxFTDHYLSaeF/fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA7ZuFotJR3mwcwHrQvJfpIln9SgwHwYDVR0j BBgwFoAUrn2Sf0d8PSzme7ClJEA42rz0xLswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjlkNmFjYzYtMGFmMy00Yjk3LTk5YTQtMGY0NWU4ZWNmNTc2LzAvQUU3RDkyN0Y0 NzdDM0QyQ0U2N0JCMEE1MjQ0MDM4REFCQ0Y0QzRCQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRTdEOTI3RjQ3N0MzRDJDRTY3QkIwQTUyNDQwMzhEQUJDRjRD NEJCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzYy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQGXEAAMA0GCSqG SIb3DQEBCwUAA4IBAQByUxq9VBbU1K02ERUiRZYO/SLFeu29/A8ciKMSx6pgrnQV 7MEvnKT7qEVvJlOma6Kq3Vuecwq03jIsnTfK5FeFxn2CpIgonAiqw7ZNoGOmTZOq jNWVo/q44+XeDURX0NaaQ3J+QV8IjVv6YhIHW7YORxA1FaKOJjrzAANfrxtAPISX TZZyRu73m1xp9v13+EFnVVJlCoPWBTgsFE3UM+3T5i+bO8yBIqXPclARRflreOw0 7KbaeQSIxC+hJwRwpLv9lSlyUI33zvFTeCqM9nxrWnEyoq0Yh5W17DDVx/CljBRq Fh+tDas7QDE6bgNy+zG0/yMPoVVCAYuoxc0EPp7D -----END CERTIFICATE-----Generated at Wed May 13 05:58:00 2026 by rpki-client