$ rpki-client -vvf rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: ZMKJ6qvXBCnIGQclOHQhPWyyMM8hgD3nw2GXMro25Y4= Subject key identifier: 21:88:6D:06:30:96:6C:42:B3:DC:FF:58:3E:30:DE:63:F8:D1:72:8A Certificate issuer: /CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Certificate serial: 2C2A241F9509D645383A9BD36BD22B0332A0C099 Authority key identifier: F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Sun 03 May 2026 02:23:37 +0000 ROA not before: Sun 03 May 2026 02:18:37 +0000 ROA not after: Sun 02 May 2027 02:23:37 +0000 asID: 131749 IP address blocks: 2402:be80:4000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 13:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2a:24:1f:95:09:d6:45:38:3a:9b:d3:6b:d2:2b:03:32:a0:c0:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Validity Not Before: May 3 02:18:37 2026 GMT Not After : May 2 02:23:37 2027 GMT Subject: CN=21886D0630966C42B3DCFF583E30DE63F8D1728A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ad:9a:ca:88:bb:63:0e:be:f5:3e:2c:69:ad: d7:d2:32:fd:a1:2c:58:a4:3b:7f:b6:52:77:bd:11: a5:47:30:81:06:4d:30:81:2d:6a:9b:d3:99:96:eb: 1f:13:8f:b7:96:e2:f4:f7:ec:70:40:6d:a5:ac:f8: f3:a1:46:09:1e:d9:eb:5f:4c:29:51:cd:78:6e:66: a0:ca:19:08:ca:11:f1:14:7b:89:da:2f:c0:98:5d: f2:c6:a3:c0:96:22:00:e1:4c:d7:8d:8c:42:00:e6: 24:98:e7:95:6c:ee:5b:8d:37:2b:b0:0c:c8:45:1d: 04:96:4f:be:ed:6b:e5:d8:aa:5f:38:89:04:41:50: d9:a5:50:dc:d4:64:cc:c0:b0:24:42:33:3b:38:7b: e5:f6:4e:04:aa:73:73:ed:6b:c4:ff:d0:54:91:80: 75:0a:24:ad:dd:b3:48:92:73:8e:a4:c9:2e:d5:c2: 9f:4a:63:dd:90:ba:90:b8:60:e0:fa:b6:ce:14:3f: f2:6a:e6:5f:23:c4:3d:7a:10:43:41:94:18:2d:8e: f5:9c:e6:45:52:9e:8d:72:bc:67:da:d2:86:89:ff: cd:24:cf:67:eb:49:c2:c8:b5:2f:7b:e7:9d:72:c7: ec:84:46:48:08:c5:8a:57:49:c8:8c:bd:4b:ef:93: ff:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:88:6D:06:30:96:6C:42:B3:DC:FF:58:3E:30:DE:63:F8:D1:72:8A X509v3 Authority Key Identifier: keyid:F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:4000::/35 Signature Algorithm: sha256WithRSAEncryption 9a:fd:df:64:0f:5a:3c:30:0b:dd:84:59:56:57:06:1a:27:20: 4b:a1:6a:86:ea:36:c7:70:8f:8a:17:86:23:c7:a9:94:33:fb: ce:86:ce:a9:d3:a4:8c:35:c5:c6:f2:8e:d8:89:0c:e2:7c:32: 59:48:55:d2:b5:25:02:07:4d:2f:21:bc:aa:5d:05:5d:7a:6e: 2a:61:f0:6b:3c:3f:c2:73:79:49:ca:ab:2c:53:44:d7:46:ae: fe:d2:f5:fa:13:e5:9f:23:8f:0b:de:20:74:02:c9:9a:1e:a9: 06:18:99:17:cf:a4:f2:e6:f2:40:0f:e4:4d:10:ea:21:00:d4: 06:67:be:27:6e:3c:50:77:57:d3:26:dd:14:3a:24:e9:2d:30: ae:ec:5b:c4:02:70:5f:97:cc:93:a7:8b:21:85:2f:77:d6:50: e6:1b:3a:60:00:18:a3:e4:87:6b:bd:5f:2f:1d:21:76:87:49: 5f:ed:bb:4f:c9:2d:3a:82:41:1d:81:4f:b8:89:f5:78:e5:7e: 5a:6f:c0:a4:8a:7f:3d:b3:cd:c4:ad:e5:ea:b6:42:7a:21:34: 24:70:7a:df:fb:8a:48:28:60:cf:7f:34:cb:c3:85:81:64:d7: b7:71:0a:c9:67:50:a1:b3:ab:24:6c:23:dd:a4:c9:28:33:af: 28:5e:45:aa -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIULCokH5UJ1kU4OpvTa9IrAzKgwJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFQjZGNEU5MURERDQ3RkE4RTA0ODFCNjBENEMxODA4 NkE4MzJDOTAeFw0yNjA1MDMwMjE4MzdaFw0yNzA1MDIwMjIzMzdaMDMxMTAvBgNV BAMTKDIxODg2RDA2MzA5NjZDNDJCM0RDRkY1ODNFMzBERTYzRjhEMTcyOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQrZrKiLtjDr71PixprdfSMv2h LFikO3+2Une9EaVHMIEGTTCBLWqb05mW6x8Tj7eW4vT37HBAbaWs+POhRgke2etf TClRzXhuZqDKGQjKEfEUe4naL8CYXfLGo8CWIgDhTNeNjEIA5iSY55Vs7luNNyuw DMhFHQSWT77ta+XYql84iQRBUNmlUNzUZMzAsCRCMzs4e+X2TgSqc3Pta8T/0FSR gHUKJK3ds0iSc46kyS7Vwp9KY92QupC4YOD6ts4UP/Jq5l8jxD16EENBlBgtjvWc 5kVSno1yvGfa0oaJ/80kz2frScLItS97551yx+yERkgIxYpXSciMvUvvk/8DAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUIYhtBjCWbEKz3P9YPjDeY/jRcoowHwYDVR0j BBgwFoAU+OtvTpHd1H+o4EgbYNTBgIaoMskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzAwZjRmMzctYzdmYi00N2QwLThhODUtZWNmZDEyYjkxNWY1LzAvRjhFQjZGNEU5 MURERDQ3RkE4RTA0ODFCNjBENEMxODA4NkE4MzJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEVCNkY0RTkxRERENDdGQThFMDQ4MUI2MEQ0QzE4MDg2QTgz MkM5LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzQzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AQDANBgkqhkiG9w0BAQsFAAOCAQEAmv3fZA9aPDAL3YRZVlcGGicgS6Fqhuo2 x3CPiheGI8eplDP7zobOqdOkjDXFxvKO2IkM4nwyWUhV0rUlAgdNLyG8ql0FXXpu KmHwazw/wnN5ScqrLFNE10au/tL1+hPlnyOPC94gdALJmh6pBhiZF8+k8ubyQA/k TRDqIQDUBme+J248UHdX0ybdFDok6S0wruxbxAJwX5fMk6eLIYUvd9ZQ5hs6YAAY o+SHa71fLx0hdodJX+27T8ktOoJBHYFPuIn1eOV+Wm/ApIp/PbPNxK3l6rZCeiE0 JHB63/uKSChgz380y8OFgWTXt3EKyWdQobOrJGwj3aTJKDOvKF5Fqg== -----END CERTIFICATE-----Generated at Fri May 8 07:12:18 2026 by rpki-client