$ rpki-client -vvf rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa File: 323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa (raw, json) Hash identifier: lJflPziRVDWpYcvwsJpkfkZb2ca8llttOjutgGe2gos= Subject key identifier: 24:DC:3C:AB:83:C0:9B:59:E8:95:83:59:2A:FC:15:EC:AE:96:EF:82 Certificate issuer: /CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Certificate serial: 0E9584323695ABC3B7E8048572B198B8C83014AC Authority key identifier: 41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa Signing time: Sun 03 May 2026 02:12:08 +0000 ROA not before: Sun 03 May 2026 02:07:08 +0000 ROA not after: Sun 02 May 2027 02:12:08 +0000 asID: 134637 IP address blocks: 2403:e380:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:95:84:32:36:95:ab:c3:b7:e8:04:85:72:b1:98:b8:c8:30:14:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Validity Not Before: May 3 02:07:08 2026 GMT Not After : May 2 02:12:08 2027 GMT Subject: CN=24DC3CAB83C09B59E89583592AFC15ECAE96EF82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ea:3e:93:5a:19:f7:01:6e:cb:d7:66:03:c3: 40:7f:ea:fe:8f:a9:bd:90:68:35:cb:60:2f:d8:59: f4:3e:01:d2:ee:a9:64:fd:41:a4:27:f8:7d:00:51: f7:80:59:c8:77:e1:71:a3:ac:8f:95:b2:a0:00:55: 92:1d:ca:55:c5:1f:46:38:ad:97:97:35:b5:20:df: 18:68:91:5d:de:93:c9:77:0e:da:dd:93:36:fe:4c: 0f:bf:9f:9e:fb:51:58:db:f0:45:8d:23:d7:4f:9e: 4e:77:b5:5e:42:62:fd:5f:b7:fb:0d:44:f9:b8:99: 8d:7d:b7:50:e0:8d:f7:aa:fc:12:d5:df:a7:79:3a: 9f:54:01:cc:8a:a7:11:62:4e:3e:d2:08:ab:fe:39: c8:fa:0e:fc:2a:24:6a:56:4e:2f:b5:19:99:67:a9: 58:33:e6:73:cc:19:2e:85:3e:84:26:1e:11:ab:46: 88:1e:20:be:a2:d9:19:ee:5e:ee:96:e9:de:ea:62: 8f:d6:91:77:df:d3:2c:3c:5f:58:5f:f9:bf:93:3a: 4a:a3:6b:fc:cb:b1:e3:0f:60:84:2b:bd:84:59:ab: 63:99:0d:b6:1b:6f:c7:d5:2c:97:e7:06:4a:36:87: 55:68:ce:f2:9e:45:e3:de:c9:de:65:62:ad:b0:44: 8b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DC:3C:AB:83:C0:9B:59:E8:95:83:59:2A:FC:15:EC:AE:96:EF:82 X509v3 Authority Key Identifier: keyid:41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030313a3a2f34382d3438203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e380:1001::/48 Signature Algorithm: sha256WithRSAEncryption 84:72:4b:fb:e6:48:f8:19:be:db:ff:69:dd:c7:4e:fd:8d:a5: b6:2a:0e:7c:19:f9:66:0b:9b:98:38:ea:3f:76:45:bc:e8:0c: df:e1:68:2a:74:5c:c1:d6:11:95:71:14:9c:25:dd:97:06:a8: bd:41:ca:d1:b0:ed:02:f0:27:8b:7f:be:c8:2b:d7:2f:81:1c: d4:01:e5:98:18:ae:b4:26:f0:72:b4:f7:6a:a4:74:e1:94:6b: b3:bb:1d:8f:23:91:d5:6a:06:d3:0e:7e:9d:56:3d:63:a5:0f: 3d:45:7e:a4:27:4b:11:b2:43:26:9e:db:c9:d5:70:d5:c2:6e: 3d:1c:d9:5a:d5:90:67:d5:be:9f:c0:72:04:cb:fe:a5:b0:b7: 74:1c:81:3e:51:18:4b:d3:fe:a6:09:f0:e5:83:07:a3:71:ff: c7:d0:6c:24:c6:4c:80:dc:e2:d3:e8:06:da:11:b1:6f:55:a9: 2c:e5:09:d8:ff:17:86:dd:95:3e:25:27:59:7f:bd:88:25:b4: 65:bf:3e:d7:ff:7c:54:f3:7e:1d:65:d2:21:54:8e:26:5a:cb: 6c:be:0b:e0:97:76:86:9d:5a:30:17:a0:fc:a2:ad:d7:97:36: c5:41:77:97:4a:5d:83:f1:4b:80:31:be:5f:e1:47:4a:04:4a: e1:c9:89:e4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDpWEMjaVq8O36ASFcrGYuMgwFKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFODFDMTIyQ0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNF MUE3ODk2NjAeFw0yNjA1MDMwMjA3MDhaFw0yNzA1MDIwMjEyMDhaMDMxMTAvBgNV BAMTKDI0REMzQ0FCODNDMDlCNTlFODk1ODM1OTJBRkMxNUVDQUU5NkVGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU6j6TWhn3AW7L12YDw0B/6v6P qb2QaDXLYC/YWfQ+AdLuqWT9QaQn+H0AUfeAWch34XGjrI+VsqAAVZIdylXFH0Y4 rZeXNbUg3xhokV3ek8l3Dtrdkzb+TA+/n577UVjb8EWNI9dPnk53tV5CYv1ft/sN RPm4mY19t1Dgjfeq/BLV36d5Op9UAcyKpxFiTj7SCKv+Ocj6DvwqJGpWTi+1GZln qVgz5nPMGS6FPoQmHhGrRogeIL6i2RnuXu6W6d7qYo/WkXff0yw8X1hf+b+TOkqj a/zLseMPYIQrvYRZq2OZDbYbb8fVLJfnBko2h1VozvKeRePeyd5lYq2wRIvhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUJNw8q4PAm1nolYNZKvwV7K6W74IwHwYDVR0j BBgwFoAUQegcEiz+GUdjOqpaUXt5I+GniWYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDc0ZjIxNGEtYmY1NS00MDQ4LTg0NWQtMjA2NzVmYjVmMmE0LzAvNDFFODFDMTIy Q0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNFMUE3ODk2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUU4MUMxMjJDRkUxOTQ3NjMzQUFBNUE1MTdCNzkyM0UxQTc4 OTY2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzQzMDMzM2E2NTMzMzgzMDNhMzEzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A+OAEAEwDQYJKoZIhvcNAQELBQADggEBAIRyS/vmSPgZvtv/ad3HTv2NpbYqDnwZ +WYLm5g46j92RbzoDN/haCp0XMHWEZVxFJwl3ZcGqL1BytGw7QLwJ4t/vsgr1y+B HNQB5ZgYrrQm8HK092qkdOGUa7O7HY8jkdVqBtMOfp1WPWOlDz1FfqQnSxGyQyae 28nVcNXCbj0c2VrVkGfVvp/AcgTL/qWwt3QcgT5RGEvT/qYJ8OWDB6Nx/8fQbCTG TIDc4tPoBtoRsW9VqSzlCdj/F4bdlT4lJ1l/vYgltGW/Ptf/fFTzfh1l0iFUjiZa y2y+C+CXdoadWjAXoPyirdeXNsVBd5dKXYPxS4Axvl/hR0oESuHJieQ= -----END CERTIFICATE-----Generated at Tue May 5 23:15:54 2026 by rpki-client