$ rpki-client -vvf rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a313531663a3a2f34382d3438203d3e2034333832.roa File: 323430333a623930303a313531663a3a2f34382d3438203d3e2034333832.roa (raw, json) Hash identifier: gAp0kb05Si/jPjD4eeDDJSuwWKLzwojxc9RQ2S/bgmM= Subject key identifier: BB:44:4B:96:35:24:E5:D9:6C:14:2C:55:C6:A6:5F:FC:0B:E8:91:CF Certificate issuer: /CN=252837CA144B3EE7DB243EBCB0C10F818A4EE404 Certificate serial: 144C39D363FCDCA1B189C3B629DCD889F987E379 Authority key identifier: 25:28:37:CA:14:4B:3E:E7:DB:24:3E:BC:B0:C1:0F:81:8A:4E:E4:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a313531663a3a2f34382d3438203d3e2034333832.roa Signing time: Sun 03 May 2026 02:16:21 +0000 ROA not before: Sun 03 May 2026 02:11:21 +0000 ROA not after: Sun 02 May 2027 02:16:21 +0000 asID: 4382 IP address blocks: 2403:b900:151f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.crl rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 14:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4c:39:d3:63:fc:dc:a1:b1:89:c3:b6:29:dc:d8:89:f9:87:e3:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=252837CA144B3EE7DB243EBCB0C10F818A4EE404 Validity Not Before: May 3 02:11:21 2026 GMT Not After : May 2 02:16:21 2027 GMT Subject: CN=BB444B963524E5D96C142C55C6A65FFC0BE891CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:f2:ad:21:82:ab:03:9e:0f:c4:41:02:34: db:23:57:31:02:71:7a:a1:16:da:50:34:8a:a3:80: 5c:d7:f1:2a:48:ea:c3:ac:37:d1:dd:6f:01:c9:e0: 5f:3a:36:ec:d8:a7:13:a3:9e:45:f1:cc:43:27:1c: a7:6d:f9:0a:b1:2f:8b:32:11:5f:7a:72:aa:a9:2f: b5:ec:63:e1:16:fc:c6:a2:ec:5e:3e:e1:c7:51:92: 79:54:d0:b7:08:10:54:05:26:ca:aa:6e:f8:58:3d: 9b:4f:2f:44:b5:59:14:40:3d:7d:21:20:4b:83:96: ea:16:60:91:21:96:a7:4e:d2:b6:97:35:7b:f1:6f: 44:49:b4:84:e0:c8:07:66:45:22:a9:f3:c1:b6:7a: 45:e9:74:8e:21:d3:83:d1:d4:8d:0d:82:82:73:26: dd:bc:12:2d:c8:63:17:94:7c:53:4b:69:54:78:39: a8:0d:78:87:a5:3a:f4:2a:66:08:c7:c0:55:18:44: 8e:ba:71:b2:14:3a:f7:b7:42:f0:f7:b1:c6:54:42: 87:c4:03:91:32:cb:18:3d:5e:b2:f1:cc:83:a2:70: 55:a2:75:f9:99:4a:ec:4c:36:bf:fe:33:33:44:71: 0e:05:c8:b6:41:12:cc:9c:7e:77:90:39:4f:24:87: d0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:44:4B:96:35:24:E5:D9:6C:14:2C:55:C6:A6:5F:FC:0B:E8:91:CF X509v3 Authority Key Identifier: keyid:25:28:37:CA:14:4B:3E:E7:DB:24:3E:BC:B0:C1:0F:81:8A:4E:E4:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a313531663a3a2f34382d3438203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b900:151f::/48 Signature Algorithm: sha256WithRSAEncryption 31:f9:49:19:56:44:f1:a7:8d:69:4b:ce:3b:a9:1b:1e:9a:f3: 36:9c:17:11:c5:8e:0d:7a:da:fa:3f:af:49:f3:c3:c6:f9:a8: 03:c2:ef:96:df:5c:36:8b:f0:21:b9:ba:f0:b2:b4:6f:df:57: 23:03:0d:45:5f:92:a5:a6:bf:e6:89:4e:6c:57:e5:49:0b:56: 1b:f1:bc:a7:97:68:4e:22:57:36:2a:bd:b7:87:08:89:01:b4: f0:df:c2:fb:c5:36:89:39:c6:49:83:28:ef:e3:de:2e:c4:5b: c7:df:20:39:a4:ae:e0:a3:61:61:dd:e2:33:7c:57:4b:d8:77: 23:aa:05:5b:97:84:21:0d:c3:5a:e9:3e:49:d9:dc:f1:26:6f: 6f:cb:97:8a:de:34:f1:8d:85:be:98:2c:ff:d9:ec:b5:0a:40: 8a:59:5d:ee:75:04:76:b2:6d:1d:af:75:76:59:c4:2f:67:55: fd:8a:21:ec:49:a4:6c:d2:87:e7:10:73:bf:5f:b2:62:27:19: 2b:51:5f:69:ca:b8:3e:b9:1d:15:ec:12:45:9c:b8:b5:df:a2: df:b4:7d:47:43:96:03:45:61:a7:d3:f9:64:4a:9a:66:c2:09: ca:fa:48:0b:e8:ef:60:69:15:44:92:e0:8c:c4:9f:b4:ff:63: 96:cc:44:fc -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFEw502P83KGxicO2KdzYifmH43kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUyODM3Q0ExNDRCM0VFN0RCMjQzRUJDQjBDMTBGODE4 QTRFRTQwNDAeFw0yNjA1MDMwMjExMjFaFw0yNzA1MDIwMjE2MjFaMDMxMTAvBgNV BAMTKEJCNDQ0Qjk2MzUyNEU1RDk2QzE0MkM1NUM2QTY1RkZDMEJFODkxQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh1fKtIYKrA54PxEECNNsjVzEC cXqhFtpQNIqjgFzX8SpI6sOsN9HdbwHJ4F86NuzYpxOjnkXxzEMnHKdt+QqxL4sy EV96cqqpL7XsY+EW/Mai7F4+4cdRknlU0LcIEFQFJsqqbvhYPZtPL0S1WRRAPX0h IEuDluoWYJEhlqdO0raXNXvxb0RJtITgyAdmRSKp88G2ekXpdI4h04PR1I0NgoJz Jt28Ei3IYxeUfFNLaVR4OagNeIelOvQqZgjHwFUYRI66cbIUOve3QvD3scZUQofE A5Eyyxg9XrLxzIOicFWidfmZSuxMNr/+MzNEcQ4FyLZBEsycfneQOU8kh9CBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUu0RLljUk5dlsFCxVxqZf/Avokc8wHwYDVR0j BBgwFoAUJSg3yhRLPufbJD68sMEPgYpO5AQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg2YjM4ODktNjk2Ni00NWVmLTkwNzMtYWQxNDAxMWFjM2IyLzAvMjUyODM3Q0Ex NDRCM0VFN0RCMjQzRUJDQjBDMTBGODE4QTRFRTQwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTI4MzdDQTE0NEIzRUU3REIyNDNFQkNCMEMxMEY4MThBNEVF NDA0LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzQzMDMzM2E2MjM5MzAzMDNhMzEzNTMxNjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDMzMzgzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDuQAV HzANBgkqhkiG9w0BAQsFAAOCAQEAMflJGVZE8aeNaUvOO6kbHprzNpwXEcWODXra +j+vSfPDxvmoA8Lvlt9cNovwIbm68LK0b99XIwMNRV+Spaa/5olObFflSQtWG/G8 p5doTiJXNiq9t4cIiQG08N/C+8U2iTnGSYMo7+PeLsRbx98gOaSu4KNhYd3iM3xX S9h3I6oFW5eEIQ3DWuk+Sdnc8SZvb8uXit408Y2Fvpgs/9nstQpAilld7nUEdrJt Ha91dlnEL2dV/Yoh7EmkbNKH5xBzv1+yYicZK1Ffacq4PrkdFewSRZy4td+i37R9 R0OWA0Vhp9P5ZEqaZsIJyvpIC+jvYGkVRJLgjMSftP9jlsxE/A== -----END CERTIFICATE-----Generated at Fri May 8 03:16:01 2026 by rpki-client