$ rpki-client -vvf rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa File: 323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa (raw, json) Hash identifier: ZuDxVEAObBxaFOm5uYmRAI9eGu8SevvOVjp9rp2cMH8= Subject key identifier: 2C:D9:F5:EC:D8:03:A2:A9:D5:4D:20:09:2C:F5:0D:4E:D6:59:0A:6E Certificate issuer: /CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Certificate serial: 07E4B22A23FCAF0CE969FC92DEAF3FEE25DD8A76 Authority key identifier: 41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa Signing time: Sun 03 May 2026 02:12:07 +0000 ROA not before: Sun 03 May 2026 02:07:07 +0000 ROA not after: Sun 02 May 2027 02:12:07 +0000 asID: 134637 IP address blocks: 2403:e380:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e4:b2:2a:23:fc:af:0c:e9:69:fc:92:de:af:3f:ee:25:dd:8a:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Validity Not Before: May 3 02:07:07 2026 GMT Not After : May 2 02:12:07 2027 GMT Subject: CN=2CD9F5ECD803A2A9D54D20092CF50D4ED6590A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:de:cc:cd:28:54:d2:fa:3b:30:d9:6b:78: 50:c7:ca:64:a0:e6:6e:6d:8e:e6:cd:04:09:84:a2: 62:e3:a3:dc:5c:e8:cb:ae:56:ce:5a:6a:e7:52:c6: d6:04:fd:45:65:ae:f7:3e:ca:64:93:3a:e6:1e:96: fb:52:2f:dd:7b:8c:42:eb:5e:d8:e1:20:90:20:21: 52:b4:35:ca:74:25:44:d0:2b:04:02:8c:47:45:bd: 86:8b:8d:c4:27:46:6a:70:29:eb:c1:7b:09:95:2c: c4:89:e3:15:f4:be:ea:cf:9a:f8:e8:2d:fa:a1:61: 43:be:bb:f6:2a:f7:22:05:ff:bc:54:65:ba:d4:c2: a7:b2:c0:1f:d3:c7:cb:42:7e:96:c9:74:8d:29:21: fa:e0:28:10:9c:62:f0:87:bf:26:a1:fa:92:d6:ed: 3f:3b:72:eb:46:a9:c2:56:80:8b:13:c0:39:a6:b4: fb:fe:68:9f:51:9e:e2:31:f3:12:83:4d:dd:6e:b6: 03:65:84:5a:3d:fc:60:62:03:7c:b3:92:3b:4a:cf: 3f:29:83:58:49:a6:80:61:2d:84:23:c4:17:9c:f7: 26:f1:51:32:46:ad:e0:08:cc:f5:05:db:b3:e7:11: b6:77:2d:60:23:55:f4:32:6f:e2:29:42:86:23:af: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D9:F5:EC:D8:03:A2:A9:D5:4D:20:09:2C:F5:0D:4E:D6:59:0A:6E X509v3 Authority Key Identifier: keyid:41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030323a3a2f34382d3438203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e380:1002::/48 Signature Algorithm: sha256WithRSAEncryption 59:3b:47:a8:b2:4d:0b:5f:72:e6:4e:b3:9f:c7:b1:68:ac:9e: f9:b5:64:3b:22:78:f5:b4:bd:03:4e:42:02:09:c0:69:32:4a: 56:b3:31:5f:29:4b:52:77:60:81:22:ea:47:81:ca:b1:8b:51: 55:c5:bb:6a:9c:50:e6:c6:f7:ec:03:30:eb:80:74:02:f5:d6: 0f:69:42:7e:0d:ae:55:20:8f:8c:68:fa:3d:ed:8c:71:f7:ed: c3:52:58:bc:c7:e6:73:0c:15:72:e5:96:0a:69:23:4e:38:23: b8:33:3c:37:1f:17:57:d6:71:9e:a1:fe:21:96:60:32:63:ec: 39:9f:a7:9f:aa:48:2c:97:33:a6:6b:42:6b:0f:ca:38:5c:ef: e4:8c:de:48:63:0c:8c:55:56:2a:88:e2:d2:70:c4:c2:27:2d: 06:d6:5a:f2:1a:32:28:f0:04:fb:9f:b4:a2:49:16:21:4b:8e: 47:95:7d:89:95:47:7c:75:aa:49:9e:fe:83:99:12:1e:52:6d: dc:66:e0:e1:5e:a4:9a:bb:f7:03:85:c3:9b:1c:76:8f:d3:34: 78:62:71:9a:4e:35:e0:cc:0c:b3:1a:a1:37:6c:4f:c6:d3:9d: 26:0d:db:78:b1:2c:3e:89:28:cb:2b:51:d8:be:df:6d:78:b1: 27:de:89:15 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUB+SyKiP8rwzpafyS3q8/7iXdinYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFODFDMTIyQ0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNF MUE3ODk2NjAeFw0yNjA1MDMwMjA3MDdaFw0yNzA1MDIwMjEyMDdaMDMxMTAvBgNV BAMTKDJDRDlGNUVDRDgwM0EyQTlENTREMjAwOTJDRjUwRDRFRDY1OTBBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9p97MzShU0vo7MNlreFDHymSg 5m5tjubNBAmEomLjo9xc6MuuVs5aaudSxtYE/UVlrvc+ymSTOuYelvtSL917jELr XtjhIJAgIVK0Ncp0JUTQKwQCjEdFvYaLjcQnRmpwKevBewmVLMSJ4xX0vurPmvjo LfqhYUO+u/Yq9yIF/7xUZbrUwqeywB/Tx8tCfpbJdI0pIfrgKBCcYvCHvyah+pLW 7T87cutGqcJWgIsTwDmmtPv+aJ9RnuIx8xKDTd1utgNlhFo9/GBiA3yzkjtKzz8p g1hJpoBhLYQjxBec9ybxUTJGreAIzPUF27PnEbZ3LWAjVfQyb+IpQoYjr4jhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQULNn17NgDoqnVTSAJLPUNTtZZCm4wHwYDVR0j BBgwFoAUQegcEiz+GUdjOqpaUXt5I+GniWYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDc0ZjIxNGEtYmY1NS00MDQ4LTg0NWQtMjA2NzVmYjVmMmE0LzAvNDFFODFDMTIy Q0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNFMUE3ODk2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUU4MUMxMjJDRkUxOTQ3NjMzQUFBNUE1MTdCNzkyM0UxQTc4 OTY2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzQzMDMzM2E2NTMzMzgzMDNhMzEzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A+OAEAIwDQYJKoZIhvcNAQELBQADggEBAFk7R6iyTQtfcuZOs5/HsWisnvm1ZDsi ePW0vQNOQgIJwGkySlazMV8pS1J3YIEi6keByrGLUVXFu2qcUObG9+wDMOuAdAL1 1g9pQn4NrlUgj4xo+j3tjHH37cNSWLzH5nMMFXLllgppI044I7gzPDcfF1fWcZ6h /iGWYDJj7Dmfp5+qSCyXM6ZrQmsPyjhc7+SM3khjDIxVViqI4tJwxMInLQbWWvIa MijwBPuftKJJFiFLjkeVfYmVR3x1qkme/oOZEh5Sbdxm4OFepJq79wOFw5scdo/T NHhicZpONeDMDLMaoTdsT8bTnSYN23ixLD6JKMsrUdi+3214sSfeiRU= -----END CERTIFICATE-----Generated at Tue May 5 23:15:54 2026 by rpki-client