$ rpki-client -vvf rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: v5Ut+HnAU8B++keMYhHXiHiE6JJw8p9vB3wAUzitQ/s= Subject key identifier: 2C:AE:D2:F5:85:6E:FC:BC:06:C4:60:DD:6A:22:B9:77:2A:31:29:8D Certificate issuer: /CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Certificate serial: 70732E2B4660B68E1BBDC4CC1115CFEB35757AE0 Authority key identifier: F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Sun 03 May 2026 02:23:38 +0000 ROA not before: Sun 03 May 2026 02:18:38 +0000 ROA not after: Sun 02 May 2027 02:23:38 +0000 asID: 131749 IP address blocks: 2402:be80:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 13:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:73:2e:2b:46:60:b6:8e:1b:bd:c4:cc:11:15:cf:eb:35:75:7a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9 Validity Not Before: May 3 02:18:38 2026 GMT Not After : May 2 02:23:38 2027 GMT Subject: CN=2CAED2F5856EFCBC06C460DD6A22B9772A31298D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:67:d8:16:a8:a8:3d:aa:e4:d5:62:e8:a1:ec: 0a:bf:ff:f3:55:21:1d:36:4f:ec:84:4c:4a:0d:a5: ea:e5:2f:29:52:02:ab:15:bf:11:be:81:94:93:91: a6:b0:92:16:6b:ab:6f:a1:88:b8:6e:4a:aa:c9:e9: 90:f2:ef:27:f0:13:4e:75:d9:6a:43:4c:5c:a4:ed: 33:7f:91:8b:cb:cf:94:e4:6c:02:22:1d:18:39:f0: 96:27:64:f9:31:8b:c3:fc:dc:26:33:da:9a:ce:9c: 06:00:3a:13:e1:f2:d7:3d:db:7c:6e:b3:b0:37:e9: 21:c7:96:9a:8f:48:94:7d:6a:08:a2:69:1c:60:ec: 22:b6:bf:51:a8:f8:22:a2:fb:4f:05:89:38:1e:ba: 97:b0:5d:8e:db:71:47:41:b6:ba:56:64:7e:e6:b5: 71:82:2b:9f:52:b6:82:42:b3:bb:62:78:0c:33:d1: e8:05:1e:a1:14:73:94:0c:f4:70:7c:0e:5c:3d:60: ad:7d:5d:dd:57:f3:32:91:80:8c:e7:5d:ba:a7:73: c3:8f:e1:20:ee:4f:3c:88:d6:09:af:6c:ba:00:0d: 13:62:9e:7b:6e:14:18:59:5b:40:f6:f8:f7:a3:4f: 01:0d:f3:0d:f1:82:bb:97:82:43:53:ad:a3:c8:a4: a2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AE:D2:F5:85:6E:FC:BC:06:C4:60:DD:6A:22:B9:77:2A:31:29:8D X509v3 Authority Key Identifier: keyid:F8:EB:6F:4E:91:DD:D4:7F:A8:E0:48:1B:60:D4:C1:80:86:A8:32:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8EB6F4E91DDD47FA8E0481B60D4C18086A832C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:c000::/34 Signature Algorithm: sha256WithRSAEncryption 08:c8:56:3f:c6:90:c1:52:06:c7:ec:14:ed:01:b9:97:27:92: e2:87:e9:cf:d3:65:a8:25:c8:fc:b4:88:cb:01:ac:fa:1a:20: 0b:a9:6a:80:be:0b:32:d8:ce:70:d3:e7:bd:45:e0:d2:aa:68: c5:ba:18:32:38:6e:5b:78:6b:52:65:d8:f5:23:d3:28:b1:df: 87:14:c0:bf:ec:98:03:41:11:0a:7b:e8:d8:9d:56:ec:99:79: 48:31:8f:41:3b:7c:98:bf:02:b8:73:69:30:c4:ae:3c:78:17: 24:8a:7b:3a:f6:34:88:fc:af:a1:68:04:4d:3b:94:e6:5d:41: ad:3d:e3:91:9d:dd:79:df:d6:04:91:92:37:7e:10:8c:f5:fe: c8:6f:b6:aa:1c:b7:cb:a5:4b:ec:38:12:20:5d:6a:e1:96:8d: 52:1d:38:69:53:36:34:15:54:4a:8b:05:98:45:5e:20:ca:54: 3f:d7:56:23:c0:3a:e7:ef:c3:85:55:ab:a4:36:af:d9:22:98: 4b:c4:46:65:9b:1a:54:e6:29:d6:ef:20:3d:e9:a4:1e:63:a7: a0:52:e6:f4:1a:d9:fb:09:af:a2:2b:0c:64:80:37:5e:32:d4: c9:f9:e3:a9:ca:74:0f:24:14:71:2a:45:d3:29:49:74:a7:73: db:ac:28:d2 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUcHMuK0Zgto4bvcTMERXP6zV1euAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFQjZGNEU5MURERDQ3RkE4RTA0ODFCNjBENEMxODA4 NkE4MzJDOTAeFw0yNjA1MDMwMjE4MzhaFw0yNzA1MDIwMjIzMzhaMDMxMTAvBgNV BAMTKDJDQUVEMkY1ODU2RUZDQkMwNkM0NjBERDZBMjJCOTc3MkEzMTI5OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNZ9gWqKg9quTVYuih7Aq///NV IR02T+yETEoNperlLylSAqsVvxG+gZSTkaawkhZrq2+hiLhuSqrJ6ZDy7yfwE051 2WpDTFyk7TN/kYvLz5TkbAIiHRg58JYnZPkxi8P83CYz2prOnAYAOhPh8tc923xu s7A36SHHlpqPSJR9agiiaRxg7CK2v1Go+CKi+08FiTgeupewXY7bcUdBtrpWZH7m tXGCK59StoJCs7tieAwz0egFHqEUc5QM9HB8Dlw9YK19Xd1X8zKRgIznXbqnc8OP 4SDuTzyI1gmvbLoADRNinntuFBhZW0D2+PejTwEN8w3xgruXgkNTraPIpKLTAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQULK7S9YVu/LwGxGDdaiK5dyoxKY0wHwYDVR0j BBgwFoAU+OtvTpHd1H+o4EgbYNTBgIaoMskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzAwZjRmMzctYzdmYi00N2QwLThhODUtZWNmZDEyYjkxNWY1LzAvRjhFQjZGNEU5 MURERDQ3RkE4RTA0ODFCNjBENEMxODA4NkE4MzJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEVCNkY0RTkxRERENDdGQThFMDQ4MUI2MEQ0QzE4MDg2QTgz MkM5LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AwDANBgkqhkiG9w0BAQsFAAOCAQEACMhWP8aQwVIGx+wU7QG5lyeS4ofpz9Nl qCXI/LSIywGs+hogC6lqgL4LMtjOcNPnvUXg0qpoxboYMjhuW3hrUmXY9SPTKLHf hxTAv+yYA0ERCnvo2J1W7Jl5SDGPQTt8mL8CuHNpMMSuPHgXJIp7OvY0iPyvoWgE TTuU5l1BrT3jkZ3ded/WBJGSN34QjPX+yG+2qhy3y6VL7DgSIF1q4ZaNUh04aVM2 NBVUSosFmEVeIMpUP9dWI8A65+/DhVWrpDav2SKYS8RGZZsaVOYp1u8gPemkHmOn oFLm9BrZ+wmvoisMZIA3XjLUyfnjqcp0DyQUcSpF0ylJdKdz26wo0g== -----END CERTIFICATE-----Generated at Fri May 8 07:11:54 2026 by rpki-client