$ rpki-client -vvf rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33332d3333203d3e20313331373439.roa File: 323430323a626538303a383030303a3a2f33332d3333203d3e20313331373439.roa (raw, json) Hash identifier: BS5YihTbZaw+pKOipVulLJrh9jJr2QhVUAXi4IwAkiI= Subject key identifier: 5E:24:08:9A:3D:C0:01:53:C8:49:B3:F2:B1:D6:8D:5F:B7:6F:8E:3C Certificate issuer: /CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Certificate serial: 253FF94DEE12EE8A0AB542EADF556327E3DE7029 Authority key identifier: F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33332d3333203d3e20313331373439.roa Signing time: Sun 03 May 2026 02:23:43 +0000 ROA not before: Sun 03 May 2026 02:18:43 +0000 ROA not after: Sun 02 May 2027 02:23:43 +0000 asID: 131749 IP address blocks: 2402:be80:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 13:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:3f:f9:4d:ee:12:ee:8a:0a:b5:42:ea:df:55:63:27:e3:de:70:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Validity Not Before: May 3 02:18:43 2026 GMT Not After : May 2 02:23:43 2027 GMT Subject: CN=5E24089A3DC00153C849B3F2B1D68D5FB76F8E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f2:83:52:13:e9:b4:43:3f:83:fd:68:79:55: e7:28:c4:93:db:e2:11:f3:46:d7:db:68:ee:37:1a: a8:05:79:bf:98:fa:c0:fb:10:c6:87:cb:90:e6:f4: e6:27:a1:d2:6b:30:f5:50:a4:1f:12:ad:b9:c8:db: 87:6e:a9:35:43:9a:0c:c8:19:a0:8f:55:e5:26:77: e9:0c:1a:4a:34:71:e0:51:15:c5:d8:61:03:a5:21: f1:50:9b:be:8b:dd:ca:3f:5a:b2:f4:d4:b9:8b:b9: f1:a6:76:ae:c8:01:ab:0f:44:3c:ac:a9:da:b9:1c: ad:6c:85:5e:96:39:b4:40:c4:00:53:a4:ad:c6:1c: 3b:1c:e3:09:4a:2e:15:64:68:63:9a:32:dd:b2:3b: 9e:af:cd:e3:7a:b6:d8:d0:fc:0f:e8:5c:bf:c9:37: 13:ad:cf:1b:8b:7f:6a:32:f4:0b:41:60:c7:8e:8c: e0:d4:ba:c9:82:5b:d9:20:fd:63:b6:81:d5:3d:42: 94:2e:07:de:e9:cd:3b:bf:22:eb:df:ce:ea:00:9b: 41:b4:a3:8b:ae:3d:ac:22:38:2a:e7:73:85:27:76: 4d:47:e7:2e:b2:71:08:06:c5:52:ae:4b:eb:d9:7d: 38:b6:0a:01:df:1f:27:18:dc:37:8d:26:61:66:75: 76:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:24:08:9A:3D:C0:01:53:C8:49:B3:F2:B1:D6:8D:5F:B7:6F:8E:3C X509v3 Authority Key Identifier: keyid:F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33332d3333203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:8000::/33 Signature Algorithm: sha256WithRSAEncryption 88:a4:52:45:8a:6c:d8:3b:ce:5c:9b:4e:9f:6f:1f:10:1d:c5: cc:ba:07:dd:a4:54:fe:ee:80:ad:cc:67:1f:01:d4:81:b0:1b: 27:ac:9d:6b:4c:a4:94:aa:c9:a9:77:dd:cd:d3:97:67:dd:81: eb:be:e3:c6:40:dc:29:00:a3:bc:e3:5f:32:ba:af:fb:dc:c6: c2:21:9e:0c:52:20:45:71:bd:84:31:be:34:5b:6f:dd:e6:e2: f5:bd:1b:11:c1:d1:c7:b2:15:28:86:92:3a:39:9a:94:ed:f1: c4:20:3b:bb:c8:db:e4:12:7f:7d:31:bb:35:c1:b9:6d:51:ac: 3e:05:2f:da:d8:05:cf:72:42:a4:c2:c6:45:ea:66:91:05:e2: a7:a6:9e:ea:37:da:0c:c8:a3:c6:8c:65:12:da:43:b4:e0:f1: 20:d3:28:d0:33:34:74:86:38:a1:bb:91:a7:a8:ff:28:b9:6e: c2:96:fb:65:d8:50:9e:ca:ef:b6:b1:53:6e:75:4b:b0:c1:2f: 44:e7:f5:f7:14:ed:e5:66:ac:91:02:26:44:02:a9:87:75:1d: 42:14:60:62:67:1a:57:a8:47:b4:e4:67:7e:35:e7:dc:cd:e8: 47:8d:9d:d4:88:08:40:7d:30:a1:b5:c4:63:67:e1:fd:07:7a: 19:87:ad:c4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUJT/5Te4S7ooKtULq31VjJ+PecCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFQjZGNEU5MURERDQ3RkE4RTA0ODFCNjBENEMxODA4 NkE4MzJDOTAeFw0yNjA1MDMwMjE4NDNaFw0yNzA1MDIwMjIzNDNaMDMxMTAvBgNV BAMTKDVFMjQwODlBM0RDMDAxNTNDODQ5QjNGMkIxRDY4RDVGQjc2RjhFM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC68oNSE+m0Qz+D/Wh5VecoxJPb 4hHzRtfbaO43GqgFeb+Y+sD7EMaHy5Dm9OYnodJrMPVQpB8SrbnI24duqTVDmgzI GaCPVeUmd+kMGko0ceBRFcXYYQOlIfFQm76L3co/WrL01LmLufGmdq7IAasPRDys qdq5HK1shV6WObRAxABTpK3GHDsc4wlKLhVkaGOaMt2yO56vzeN6ttjQ/A/oXL/J NxOtzxuLf2oy9AtBYMeOjODUusmCW9kg/WO2gdU9QpQuB97pzTu/IuvfzuoAm0G0 o4uuPawiOCrnc4Undk1H5y6ycQgGxVKuS+vZfTi2CgHfHycY3DeNJmFmdXbVAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUXiQImj3AAVPISbPysdaNX7dvjjwwHwYDVR0j BBgwFoAU+OtvTpHd1H+o4EgbYNTBgIaoMskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzAwZjRmMzctYzdmYi00N2QwLThhODUtZWNmZDEyYjkxNWY1LzAvRjhFQjZGNEU5 MURERDQ3RkE4RTA0ODFCNjBENEMxODA4NkE4MzJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEVCNkY0RTkxRERENDdGQThFMDQ4MUI2MEQ0QzE4MDg2QTgz MkM5LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck Ar6AgDANBgkqhkiG9w0BAQsFAAOCAQEAiKRSRYps2DvOXJtOn28fEB3FzLoH3aRU /u6ArcxnHwHUgbAbJ6yda0yklKrJqXfdzdOXZ92B677jxkDcKQCjvONfMrqv+9zG wiGeDFIgRXG9hDG+NFtv3ebi9b0bEcHRx7IVKIaSOjmalO3xxCA7u8jb5BJ/fTG7 NcG5bVGsPgUv2tgFz3JCpMLGRepmkQXip6ae6jfaDMijxoxlEtpDtODxINMo0DM0 dIY4obuRp6j/KLluwpb7ZdhQnsrvtrFTbnVLsMEvROf19xTt5WaskQImRAKph3Ud QhRgYmcaV6hHtORnfjXn3M3oR42d1IgIQH0wobXEY2fh/Qd6GYetxA== -----END CERTIFICATE-----Generated at Fri May 8 07:13:03 2026 by rpki-client