$ rpki-client -vvf rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/323430333a393130303a3a2f33322d3438203d3e203435333032.roa File: 323430333a393130303a3a2f33322d3438203d3e203435333032.roa (raw, json) Hash identifier: CDdAgCCqdZ4eGgwg/DutRSkrLQoNO6bQnfQJc5Q/9rc= Subject key identifier: B1:5E:40:04:C2:49:83:23:F7:96:AE:AD:11:EA:56:8C:DF:6B:43:E5 Certificate issuer: /CN=ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2 Certificate serial: 75ED26A6C5056512EE015948F1BC62F28F28F1B1 Authority key identifier: ED:41:DE:F7:56:30:D6:BC:76:B3:92:AB:AF:C7:A2:0B:95:98:A8:A2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/323430333a393130303a3a2f33322d3438203d3e203435333032.roa Signing time: Sun 03 May 2026 03:19:00 +0000 ROA not before: Sun 03 May 2026 03:14:00 +0000 ROA not after: Sun 02 May 2027 03:19:00 +0000 asID: 45302 IP address blocks: 2403:9100::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.crl rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ed:26:a6:c5:05:65:12:ee:01:59:48:f1:bc:62:f2:8f:28:f1:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2 Validity Not Before: May 3 03:14:00 2026 GMT Not After : May 2 03:19:00 2027 GMT Subject: CN=B15E4004C2498323F796AEAD11EA568CDF6B43E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:30:a9:a2:d4:ea:c9:78:d8:ce:75:98:84:5d: d7:a1:7f:4b:62:62:fe:dc:c4:28:43:52:8f:d8:68: 9e:68:2a:e3:6f:9f:a9:2a:f7:c2:08:6d:27:0f:94: 42:c4:8f:db:fe:18:9a:73:52:5c:a2:7f:d6:36:a7: f6:08:d4:57:6f:a1:ff:a3:16:23:a0:e9:2c:66:0b: eb:09:b9:c8:47:15:20:ae:89:6b:92:79:f1:9a:76: ab:d8:d9:80:42:b0:54:32:11:7a:d4:85:53:ab:e0: 55:5f:bc:4c:ab:ce:42:9b:86:2e:54:69:f5:fc:31: 93:2f:83:59:fb:12:35:e6:27:16:87:d5:6f:dc:1f: 34:79:9a:08:ab:35:fe:3c:d2:63:41:e1:81:22:0b: 5d:64:4b:b2:cb:0f:c2:62:d6:d9:7f:86:e9:22:a5: 66:36:48:f9:a1:98:5d:56:4f:95:13:0b:67:df:f4: 6d:84:0b:bb:f0:d1:8a:72:e0:8f:23:2c:c8:7d:21: bc:d0:a4:39:53:98:48:7e:90:c3:c7:40:b3:3e:63: aa:69:b8:35:3c:2a:73:39:b9:78:aa:3d:33:49:b1: de:11:32:29:be:af:c8:cc:7d:cf:05:c5:6c:0d:52: 7e:23:f3:3b:96:b0:a9:ac:2c:e8:29:79:dc:76:24: af:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5E:40:04:C2:49:83:23:F7:96:AE:AD:11:EA:56:8C:DF:6B:43:E5 X509v3 Authority Key Identifier: keyid:ED:41:DE:F7:56:30:D6:BC:76:B3:92:AB:AF:C7:A2:0B:95:98:A8:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ED41DEF75630D6BC76B392ABAFC7A20B9598A8A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/323430333a393130303a3a2f33322d3438203d3e203435333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9100::/32 Signature Algorithm: sha256WithRSAEncryption 0d:6c:d9:d8:6e:e2:64:04:a2:9a:5c:22:57:c6:79:2b:ca:0a: 02:e9:62:f0:db:e0:90:bd:a0:79:dd:9c:92:90:d7:a4:63:93: 1c:b9:27:c6:4e:35:e3:85:cd:ea:b5:24:03:82:9b:d8:50:ca: bf:77:3b:38:4c:9c:91:33:e3:ce:df:bf:39:ef:18:be:3f:b2: e0:37:7a:86:b4:bd:5b:d3:d5:fc:a5:58:71:56:7e:23:8b:23: ac:78:e7:5e:40:4f:83:cb:19:b5:df:80:ae:ea:55:92:24:ee: 17:55:9a:48:c0:a6:b3:af:09:43:26:73:cf:2a:4a:09:87:59: 92:19:da:5b:11:17:35:1c:50:28:53:66:10:9b:d6:12:34:8a: 58:59:54:b2:c4:ea:0b:89:ed:15:dc:d9:2d:be:6a:9f:32:9d: 65:ce:e0:a7:cd:40:cb:25:41:60:82:33:e6:97:70:0a:3e:22: 34:45:45:67:59:80:17:30:87:0d:a0:f4:35:9e:fa:3d:1f:c1: e5:bc:05:92:6c:ee:15:90:06:42:02:98:8a:29:b7:6b:fa:b8: a8:57:c8:e7:7e:46:6a:6f:cf:b9:29:78:83:11:65:4e:94:29: 87:a7:04:1a:38:b9:f2:7b:5e:7c:15:40:b6:18:e0:40:18:22: a3:54:a6:39 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUde0mpsUFZRLuAVlI8bxi8o8o8bEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ0MURFRjc1NjMwRDZCQzc2QjM5MkFCQUZDN0EyMEI5 NTk4QThBMjAeFw0yNjA1MDMwMzE0MDBaFw0yNzA1MDIwMzE5MDBaMDMxMTAvBgNV BAMTKEIxNUU0MDA0QzI0OTgzMjNGNzk2QUVBRDExRUE1NjhDREY2QjQzRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClMKmi1OrJeNjOdZiEXdehf0ti Yv7cxChDUo/YaJ5oKuNvn6kq98IIbScPlELEj9v+GJpzUlyif9Y2p/YI1Fdvof+j FiOg6SxmC+sJuchHFSCuiWuSefGadqvY2YBCsFQyEXrUhVOr4FVfvEyrzkKbhi5U afX8MZMvg1n7EjXmJxaH1W/cHzR5mgirNf480mNB4YEiC11kS7LLD8Ji1tl/huki pWY2SPmhmF1WT5UTC2ff9G2EC7vw0Ypy4I8jLMh9IbzQpDlTmEh+kMPHQLM+Y6pp uDU8KnM5uXiqPTNJsd4RMim+r8jMfc8FxWwNUn4j8zuWsKmsLOgpedx2JK85AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUsV5ABMJJgyP3lq6tEepWjN9rQ+UwHwYDVR0j BBgwFoAU7UHe91Yw1rx2s5Krr8eiC5WYqKIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmI4ODU4ZTAtZWNmMC00ZTUzLWE0OTAtM2I3YzJkZTE2OTNjLzAvRUQ0MURFRjc1 NjMwRDZCQzc2QjM5MkFCQUZDN0EyMEI5NTk4QThBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRDQxREVGNzU2MzBENkJDNzZCMzkyQUJBRkM3QTIwQjk1OThB OEEyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZiODg1OGUwLWVjZjAtNGU1My1h NDkwLTNiN2MyZGUxNjkzYy8wLzMyMzQzMDMzM2EzOTMxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzMzMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA5EAMA0GCSqGSIb3 DQEBCwUAA4IBAQANbNnYbuJkBKKaXCJXxnkrygoC6WLw2+CQvaB53ZySkNekY5Mc uSfGTjXjhc3qtSQDgpvYUMq/dzs4TJyRM+PO37857xi+P7LgN3qGtL1b09X8pVhx Vn4jiyOseOdeQE+Dyxm134Cu6lWSJO4XVZpIwKazrwlDJnPPKkoJh1mSGdpbERc1 HFAoU2YQm9YSNIpYWVSyxOoLie0V3NktvmqfMp1lzuCnzUDLJUFggjPml3AKPiI0 RUVnWYAXMIcNoPQ1nvo9H8HlvAWSbO4VkAZCApiKKbdr+rioV8jnfkZqb8+5KXiD EWVOlCmHpwQaOLnye158FUC2GOBAGCKjVKY5 -----END CERTIFICATE-----Generated at Wed May 13 02:49:36 2026 by rpki-client