$ rpki-client -vvf rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa File: 323430333a623930303a3a2f33322d3332203d3e2034333832.roa (raw, json) Hash identifier: Y7pYu6uoU6Wtor/glKejJAeG037qTauUcrlHaByRYu8= Subject key identifier: B8:5E:F8:F8:B1:C5:78:FE:9C:CD:F4:77:BE:C1:A5:E5:A5:8E:13:0F Certificate issuer: /CN=252837CA144B3EE7DB243EBCB0C10F818A4EE404 Certificate serial: 086870488F4ACE73EB74FCA8415038D6D62DC837 Authority key identifier: 25:28:37:CA:14:4B:3E:E7:DB:24:3E:BC:B0:C1:0F:81:8A:4E:E4:04 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa Signing time: Sun 03 May 2026 02:16:20 +0000 ROA not before: Sun 03 May 2026 02:11:20 +0000 ROA not after: Sun 02 May 2027 02:16:20 +0000 asID: 4382 IP address blocks: 2403:b900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.crl rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 14:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:68:70:48:8f:4a:ce:73:eb:74:fc:a8:41:50:38:d6:d6:2d:c8:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=252837CA144B3EE7DB243EBCB0C10F818A4EE404 Validity Not Before: May 3 02:11:20 2026 GMT Not After : May 2 02:16:20 2027 GMT Subject: CN=B85EF8F8B1C578FE9CCDF477BEC1A5E5A58E130F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:83:ba:9c:83:e2:41:62:5a:2e:7a:33:58: 27:b4:7d:14:11:41:01:bf:d0:48:a7:b5:f6:0d:03: f2:a5:ef:69:f8:89:ec:7a:3c:10:6b:77:f8:60:7b: ad:12:7b:d4:d7:80:ab:6c:5d:5d:80:98:de:07:d5: c1:40:61:e7:5c:fa:9c:2e:db:b8:09:7f:8b:7b:54: ce:73:ee:b2:99:0d:21:4f:92:52:fc:10:b7:17:30: b2:49:c2:b4:10:62:11:91:0c:f4:9c:eb:5c:ee:fe: b0:89:6d:8c:70:25:e1:81:74:c6:1c:59:08:4b:2e: b4:75:22:28:8f:49:73:36:8a:d3:61:27:71:84:38: 92:9d:1c:4e:0f:db:3d:58:13:e8:9f:37:ab:ef:ad: b3:04:c5:83:0f:b7:e2:c5:4c:44:99:e1:9e:7a:58: 48:3e:31:cd:b2:b0:ee:83:1d:3e:c1:c3:04:5b:bb: 14:bc:b6:a2:57:0c:a5:70:54:e7:9c:04:2c:66:72: 2b:86:3d:89:f5:fc:d4:b0:a9:53:f6:76:00:05:48: 4c:d6:df:0c:19:18:27:4d:cc:85:92:c0:4a:9d:54: 17:de:f2:86:09:f5:f1:8e:16:29:b9:77:8d:9d:9b: f9:6d:03:9b:33:87:8c:49:7b:0e:7a:0d:5f:0d:ba: 13:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5E:F8:F8:B1:C5:78:FE:9C:CD:F4:77:BE:C1:A5:E5:A5:8E:13:0F X509v3 Authority Key Identifier: keyid:25:28:37:CA:14:4B:3E:E7:DB:24:3E:BC:B0:C1:0F:81:8A:4E:E4:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/252837CA144B3EE7DB243EBCB0C10F818A4EE404.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/252837CA144B3EE7DB243EBCB0C10F818A4EE404.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/323430333a623930303a3a2f33322d3332203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b900::/32 Signature Algorithm: sha256WithRSAEncryption 55:40:b0:69:43:df:58:dd:a3:c8:8d:2b:5f:a8:91:4c:25:5f: f9:94:57:fb:02:6d:2e:9d:2d:a4:d5:78:da:72:63:72:65:d8: 1a:6c:67:56:57:e7:e7:6d:05:ff:e5:65:ce:44:8b:4b:dc:ad: cd:f5:9a:91:23:70:3f:3e:aa:ed:65:63:68:83:c6:a4:c8:78: 36:e6:ce:cd:a9:c5:4c:cc:ea:04:33:c4:cc:7e:bf:8c:c5:24: 6b:96:f2:cb:a7:84:39:e9:2f:e3:f5:5d:63:15:6c:66:d2:7b: 80:06:ad:c5:e4:c5:37:17:7e:9a:2b:32:01:4f:ba:da:03:bc: c5:cf:75:0d:35:54:43:28:fe:66:88:c4:7b:44:ca:e7:ce:01: b4:46:97:53:a8:9d:00:20:4c:a0:2b:75:27:3e:cc:04:fe:e7: 5a:9f:ed:f1:6d:ca:87:fb:d0:ad:db:73:70:09:81:ce:8a:62: 32:0f:19:ad:eb:04:be:35:0f:43:1b:d7:ba:1b:ac:c6:28:4e: 04:6b:89:22:30:d4:50:46:77:8f:86:dd:ea:bd:f6:f9:c3:94: b1:a8:63:8a:69:ca:8f:33:e5:df:0b:c2:ce:41:1e:0a:b9:f1: 8d:48:49:78:86:76:f1:12:96:18:a8:b4:b1:23:0a:07:38:28: 5e:b4:ce:bf -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUCGhwSI9KznPrdPyoQVA41tYtyDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUyODM3Q0ExNDRCM0VFN0RCMjQzRUJDQjBDMTBGODE4 QTRFRTQwNDAeFw0yNjA1MDMwMjExMjBaFw0yNzA1MDIwMjE2MjBaMDMxMTAvBgNV BAMTKEI4NUVGOEY4QjFDNTc4RkU5Q0NERjQ3N0JFQzFBNUU1QTU4RTEzMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyU4O6nIPiQWJaLnozWCe0fRQR QQG/0EintfYNA/Kl72n4iex6PBBrd/hge60Se9TXgKtsXV2AmN4H1cFAYedc+pwu 27gJf4t7VM5z7rKZDSFPklL8ELcXMLJJwrQQYhGRDPSc61zu/rCJbYxwJeGBdMYc WQhLLrR1IiiPSXM2itNhJ3GEOJKdHE4P2z1YE+ifN6vvrbMExYMPt+LFTESZ4Z56 WEg+Mc2ysO6DHT7BwwRbuxS8tqJXDKVwVOecBCxmciuGPYn1/NSwqVP2dgAFSEzW 3wwZGCdNzIWSwEqdVBfe8oYJ9fGOFim5d42dm/ltA5szh4xJew56DV8NuhNdAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUuF74+LHFeP6czfR3vsGl5aWOEw8wHwYDVR0j BBgwFoAUJSg3yhRLPufbJD68sMEPgYpO5AQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg2YjM4ODktNjk2Ni00NWVmLTkwNzMtYWQxNDAxMWFjM2IyLzAvMjUyODM3Q0Ex NDRCM0VFN0RCMjQzRUJDQjBDMTBGODE4QTRFRTQwNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNTI4MzdDQTE0NEIzRUU3REIyNDNFQkNCMEMxMEY4MThBNEVF NDA0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMTg2YjM4ODktNjk2Ni00NWVmLTkw NzMtYWQxNDAxMWFjM2IyLzAvMzIzNDMwMzMzYTYyMzkzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7kAMA0GCSqGSIb3DQEB CwUAA4IBAQBVQLBpQ99Y3aPIjStfqJFMJV/5lFf7Am0unS2k1XjacmNyZdgabGdW V+fnbQX/5WXORItL3K3N9ZqRI3A/PqrtZWNog8akyHg25s7NqcVMzOoEM8TMfr+M xSRrlvLLp4Q56S/j9V1jFWxm0nuABq3F5MU3F36aKzIBT7raA7zFz3UNNVRDKP5m iMR7RMrnzgG0RpdTqJ0AIEygK3UnPswE/udan+3xbcqH+9Ct23NwCYHOimIyDxmt 6wS+NQ9DG9e6G6zGKE4Ea4kiMNRQRnePht3qvfb5w5SxqGOKacqPM+XfC8LOQR4K ufGNSEl4hnbxEpYYqLSxIwoHOChetM6/ -----END CERTIFICATE-----Generated at Fri May 8 03:17:22 2026 by rpki-client