$ rpki-client -vvf rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: bcUDOpCB0dNiYwZx7hB9TNsT/6Q2Z4ktB8wuICtWZXQ= Subject key identifier: A0:69:C1:95:0D:A5:10:BD:3D:A3:98:48:59:2B:7B:01:64:F0:E5:7D Certificate issuer: /CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Certificate serial: 3586350856B8EA6A463D33BA001A59BD71EE6103 Authority key identifier: F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Sun 03 May 2026 02:23:43 +0000 ROA not before: Sun 03 May 2026 02:18:43 +0000 ROA not after: Sun 02 May 2027 02:23:43 +0000 asID: 131749 IP address blocks: 2402:be80:8000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 13:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:86:35:08:56:b8:ea:6a:46:3d:33:ba:00:1a:59:bd:71:ee:61:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Validity Not Before: May 3 02:18:43 2026 GMT Not After : May 2 02:23:43 2027 GMT Subject: CN=A069C1950DA510BD3DA39848592B7B0164F0E57D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9e:d2:c5:77:6d:e3:d3:47:05:01:5d:b2:e2: da:a2:7a:5e:fe:06:63:b1:60:cf:30:8d:cb:50:13: 2f:e0:81:82:13:03:74:eb:a9:55:fb:bb:e7:53:45: 34:80:d4:a9:8d:80:fe:bf:67:0f:0a:ed:d3:43:29: b3:a2:cc:34:7e:7e:20:ba:50:1d:bf:30:f7:5d:59: d7:0e:0c:37:20:47:6d:6b:2a:03:00:6a:10:b2:4f: 52:23:45:40:34:13:02:f0:4c:31:b5:48:4f:98:24: 13:16:8d:ef:a0:a5:e5:a2:16:87:84:a0:9f:2e:27: ef:1e:32:5c:97:da:42:7f:73:ae:ab:d1:5d:5c:49: 84:3e:01:e9:c0:8a:be:6c:2c:33:1a:31:82:9d:36: 54:ec:4a:87:cf:25:7d:80:2d:77:a9:ba:b5:01:04: 35:74:93:ca:c4:fb:fe:81:55:dc:2d:10:c2:5d:ee: c7:c1:b3:53:d2:a4:82:93:f8:35:9b:d4:65:ed:9d: 57:3e:e2:96:a1:1e:6b:0a:2e:18:be:cc:4c:e5:b1: ee:26:e4:b6:fc:c1:14:e6:54:9d:34:64:b2:9c:3b: 93:cb:a6:eb:00:16:42:4a:62:51:6a:34:e0:fd:c8: da:7e:42:16:e5:9f:29:5c:f2:27:1f:40:37:47:9b: 48:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:69:C1:95:0D:A5:10:BD:3D:A3:98:48:59:2B:7B:01:64:F0:E5:7D X509v3 Authority Key Identifier: keyid:F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:8000::/35 Signature Algorithm: sha256WithRSAEncryption 30:ce:2f:85:4c:e6:d3:b6:b5:f4:21:20:b1:5b:69:e9:79:52: ac:f0:d4:f0:98:8c:cc:6b:cf:55:a9:ec:d2:9f:1f:09:e4:38: 1d:34:2d:b2:24:1c:5b:93:17:13:14:02:c9:3e:2a:c9:a4:fb: a6:c3:18:d5:fb:42:d5:b1:07:ac:f6:2f:fe:f4:fa:04:e5:40: db:9c:95:85:50:89:61:7e:bc:53:89:bb:4f:92:08:85:00:54: 21:bc:0b:46:d6:c1:56:e9:ad:84:c7:b0:de:44:84:e3:75:c0: ca:89:52:68:a9:3b:0d:ed:2d:58:6e:63:c3:64:ae:33:2e:d8: 62:ee:12:ec:fd:37:d2:28:be:ed:7d:f6:e9:d7:cb:46:e0:63: f6:d4:99:d9:47:b4:12:4c:17:85:a2:bb:d9:38:fa:e0:cf:33: 90:6f:ef:44:11:ea:dc:9d:fd:30:62:72:98:22:6e:57:a6:78: 33:65:72:5c:98:eb:7f:6f:2b:d4:67:3c:82:1a:03:28:bc:d8: b7:5a:ed:76:63:8a:c7:c5:5f:32:69:12:e3:39:1f:57:f6:ed: c1:ad:34:75:f9:c7:ca:df:be:f6:1e:11:df:c4:91:48:4e:06: 90:6d:24:05:95:69:ac:91:7f:67:64:96:4b:dc:c7:0e:cc:91: 46:56:7a:3b -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUNYY1CFa46mpGPTO6ABpZvXHuYQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFQjZGNEU5MURERDQ3RkE4RTA0ODFCNjBENEMxODA4 NkE4MzJDOTAeFw0yNjA1MDMwMjE4NDNaFw0yNzA1MDIwMjIzNDNaMDMxMTAvBgNV BAMTKEEwNjlDMTk1MERBNTEwQkQzREEzOTg0ODU5MkI3QjAxNjRGMEU1N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvntLFd23j00cFAV2y4tqiel7+ BmOxYM8wjctQEy/ggYITA3TrqVX7u+dTRTSA1KmNgP6/Zw8K7dNDKbOizDR+fiC6 UB2/MPddWdcODDcgR21rKgMAahCyT1IjRUA0EwLwTDG1SE+YJBMWje+gpeWiFoeE oJ8uJ+8eMlyX2kJ/c66r0V1cSYQ+AenAir5sLDMaMYKdNlTsSofPJX2ALXepurUB BDV0k8rE+/6BVdwtEMJd7sfBs1PSpIKT+DWb1GXtnVc+4pahHmsKLhi+zEzlse4m 5Lb8wRTmVJ00ZLKcO5PLpusAFkJKYlFqNOD9yNp+Qhblnylc8icfQDdHm0jFAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUoGnBlQ2lEL09o5hIWSt7AWTw5X0wHwYDVR0j BBgwFoAU+OtvTpHd1H+o4EgbYNTBgIaoMskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzAwZjRmMzctYzdmYi00N2QwLThhODUtZWNmZDEyYjkxNWY1LzAvRjhFQjZGNEU5 MURERDQ3RkE4RTA0ODFCNjBENEMxODA4NkE4MzJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEVCNkY0RTkxRERENDdGQThFMDQ4MUI2MEQ0QzE4MDg2QTgz MkM5LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AgDANBgkqhkiG9w0BAQsFAAOCAQEAMM4vhUzm07a19CEgsVtp6XlSrPDU8JiM zGvPVans0p8fCeQ4HTQtsiQcW5MXExQCyT4qyaT7psMY1ftC1bEHrPYv/vT6BOVA 25yVhVCJYX68U4m7T5IIhQBUIbwLRtbBVumthMew3kSE43XAyolSaKk7De0tWG5j w2SuMy7YYu4S7P030ii+7X326dfLRuBj9tSZ2Ue0EkwXhaK72Tj64M8zkG/vRBHq 3J39MGJymCJuV6Z4M2VyXJjrf28r1Gc8ghoDKLzYt1rtdmOKx8VfMmkS4zkfV/bt wa00dfnHyt++9h4R38SRSE4GkG0kBZVprJF/Z2SWS9zHDsyRRlZ6Ow== -----END CERTIFICATE-----Generated at Fri May 8 07:12:41 2026 by rpki-client