$ rpki-client -vvf rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33332d3333203d3e20313331373439.roa File: 323430323a626538303a3a2f33332d3333203d3e20313331373439.roa (raw, json) Hash identifier: t5lI2fSBgF1Qk+xi/wexkm174c0g31j+0DtjwN72lnc= Subject key identifier: 74:D2:07:31:3E:D9:99:1F:9E:45:E0:22:A6:70:A2:82:35:2C:06:58 Certificate issuer: /CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Certificate serial: 2159B3CC6AD80DA27E7DA12644D4B5CAF7B19202 Authority key identifier: F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33332d3333203d3e20313331373439.roa Signing time: Sun 03 May 2026 02:23:40 +0000 ROA not before: Sun 03 May 2026 02:18:40 +0000 ROA not after: Sun 02 May 2027 02:23:40 +0000 asID: 131749 IP address blocks: 2402:be80::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 13:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:59:b3:cc:6a:d8:0d:a2:7e:7d:a1:26:44:d4:b5:ca:f7:b1:92:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Validity Not Before: May 3 02:18:40 2026 GMT Not After : May 2 02:23:40 2027 GMT Subject: CN=74D207313ED9991F9E45E022A670A282352C0658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a4:16:db:52:16:6f:fa:1b:9b:04:aa:85:d4: fb:30:46:08:21:a4:21:b3:f2:ab:18:81:90:fc:43: 46:45:ac:af:24:a3:bc:b7:52:21:17:4b:c0:b7:72: 8c:c0:6f:6c:f3:af:f4:69:f8:39:29:be:28:a2:09: fc:c3:d7:b4:a6:67:49:5b:8d:3d:6b:e6:ec:32:64: 65:47:60:97:fd:ae:91:b1:cd:5c:fe:e2:cc:b2:df: d8:0e:0b:d0:2a:de:c8:3c:64:ef:e6:ea:49:22:02: 43:96:d4:cf:ee:3c:d6:a2:c9:66:f8:c1:11:b1:f7: 40:08:78:2c:1a:ba:ab:bc:d4:cc:23:07:c9:7a:b2: 41:80:b9:34:e1:e7:ee:55:b3:59:7d:1f:2d:d3:63: a9:78:c7:8d:06:d7:f2:c4:df:b8:54:1b:32:07:8d: 56:7b:9c:01:e1:75:28:68:cb:8d:39:9d:eb:e3:c4: 15:a4:db:23:d1:7f:05:a6:12:c6:49:f3:07:d3:c0: 20:2c:8a:9e:97:2a:13:32:64:b5:4e:e7:b7:5f:02: 43:7e:3a:0e:5a:38:0c:90:88:d3:5c:46:24:cc:17: d2:10:71:15:0b:8a:ad:7f:8a:c7:10:92:c4:de:c9: 22:bc:9e:0a:39:c2:14:a6:d2:0c:94:a1:9e:20:5f: b6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D2:07:31:3E:D9:99:1F:9E:45:E0:22:A6:70:A2:82:35:2C:06:58 X509v3 Authority Key Identifier: keyid:F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33332d3333203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/33 Signature Algorithm: sha256WithRSAEncryption 7d:db:92:4d:af:03:7d:3d:a9:c4:d2:5e:73:e1:bf:39:da:6a: 76:f9:04:0f:4c:9c:99:06:28:85:4a:5c:65:1a:7d:98:ed:84: b2:88:22:82:74:b9:0c:26:6f:3d:04:56:60:e2:b5:e6:1c:43: 9c:0b:81:9c:7f:7f:46:cf:aa:50:0e:22:c1:b0:e8:02:15:e1: 30:57:ae:23:c8:31:2d:46:a0:c8:b0:b8:85:cb:fb:13:51:52: f0:02:f9:d0:d7:53:2c:64:c0:e6:03:17:c1:87:4b:8f:42:fc: fc:ea:a8:43:99:9c:e0:6c:a8:15:1f:67:e1:7f:6c:f4:66:7a: 54:b0:42:a0:19:7f:df:52:09:1d:f4:a6:95:80:0e:4a:71:30: 77:bc:e7:26:c6:31:42:a4:1b:87:36:47:36:96:01:35:5f:fb: ca:59:85:c0:be:52:7f:be:4b:6c:95:91:9b:83:df:73:90:8d: 54:e3:72:63:ed:2e:37:fa:62:91:e0:44:d9:f1:e6:fb:a3:b5: 7e:b3:f1:a9:36:23:00:0e:e0:5c:34:26:69:24:32:92:9f:86: 34:31:68:c7:6c:aa:81:01:7a:78:ed:e6:66:f3:52:a1:90:89: ba:66:7e:dc:21:3a:6a:e8:ea:81:fe:d4:69:0d:64:d4:fd:df: ef:81:aa:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIVmzzGrYDaJ+faEmRNS1yvexkgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFQjZGNEU5MURERDQ3RkE4RTA0ODFCNjBENEMxODA4 NkE4MzJDOTAeFw0yNjA1MDMwMjE4NDBaFw0yNzA1MDIwMjIzNDBaMDMxMTAvBgNV BAMTKDc0RDIwNzMxM0VEOTk5MUY5RTQ1RTAyMkE2NzBBMjgyMzUyQzA2NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgpBbbUhZv+hubBKqF1PswRggh pCGz8qsYgZD8Q0ZFrK8ko7y3UiEXS8C3cozAb2zzr/Rp+DkpviiiCfzD17SmZ0lb jT1r5uwyZGVHYJf9rpGxzVz+4syy39gOC9Aq3sg8ZO/m6kkiAkOW1M/uPNaiyWb4 wRGx90AIeCwauqu81MwjB8l6skGAuTTh5+5Vs1l9Hy3TY6l4x40G1/LE37hUGzIH jVZ7nAHhdShoy405nevjxBWk2yPRfwWmEsZJ8wfTwCAsip6XKhMyZLVO57dfAkN+ Og5aOAyQiNNcRiTMF9IQcRULiq1/iscQksTeySK8ngo5whSm0gyUoZ4gX7YrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdNIHMT7ZmR+eReAipnCigjUsBlgwHwYDVR0j BBgwFoAU+OtvTpHd1H+o4EgbYNTBgIaoMskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzAwZjRmMzctYzdmYi00N2QwLThhODUtZWNmZDEyYjkxNWY1LzAvRjhFQjZGNEU5 MURERDQ3RkE4RTA0ODFCNjBENEMxODA4NkE4MzJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEVCNkY0RTkxRERENDdGQThFMDQ4MUI2MEQ0QzE4MDg2QTgz MkM5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQB925JNrwN9PanE0l5z4b852mp2+QQPTJyZBiiFSlxlGn2Y 7YSyiCKCdLkMJm89BFZg4rXmHEOcC4Gcf39Gz6pQDiLBsOgCFeEwV64jyDEtRqDI sLiFy/sTUVLwAvnQ11MsZMDmAxfBh0uPQvz86qhDmZzgbKgVH2fhf2z0ZnpUsEKg GX/fUgkd9KaVgA5KcTB3vOcmxjFCpBuHNkc2lgE1X/vKWYXAvlJ/vktslZGbg99z kI1U43Jj7S43+mKR4ETZ8eb7o7V+s/GpNiMADuBcNCZpJDKSn4Y0MWjHbKqBAXp4 7eZm81KhkIm6Zn7cITpq6OqB/tRpDWTU/d/vgaqk -----END CERTIFICATE-----Generated at Fri May 8 07:11:30 2026 by rpki-client