$ rpki-client -vvf rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa File: 323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa (raw, json) Hash identifier: fMmCbOIL8nMLpF5EKmFyyb/z/cATeDIy9MshfGEYHeY= Subject key identifier: 2B:CE:DD:33:56:53:0D:EC:F6:10:92:5F:6F:C4:84:38:2B:3C:5C:53 Certificate issuer: /CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Certificate serial: 4E0AAE81E38610BA3403724F6B3464C621D2406F Authority key identifier: 41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa Signing time: Sun 03 May 2026 02:12:08 +0000 ROA not before: Sun 03 May 2026 02:07:08 +0000 ROA not after: Sun 02 May 2027 02:12:08 +0000 asID: 134637 IP address blocks: 2403:e380:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:0a:ae:81:e3:86:10:ba:34:03:72:4f:6b:34:64:c6:21:d2:40:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E81C122CFE1947633AAA5A517B7923E1A78966 Validity Not Before: May 3 02:07:08 2026 GMT Not After : May 2 02:12:08 2027 GMT Subject: CN=2BCEDD3356530DECF610925F6FC484382B3C5C53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:47:be:9c:0c:72:01:fb:d4:90:80:08:ad:17: 6d:15:38:0b:07:c7:ca:ae:7f:8d:78:44:51:ca:7b: 17:e3:e0:ef:17:48:85:6e:b4:12:c6:7b:8d:25:a6: 48:4d:1b:2d:4b:1c:78:fa:6c:43:e5:ad:07:0b:91: 47:65:f9:00:85:a2:79:49:6e:4d:bc:ee:9f:df:8a: 9e:6d:e3:ef:31:62:a4:a6:13:91:a5:89:46:91:2a: 6c:6c:39:ab:2b:84:a3:8a:67:ae:8f:a5:1e:29:de: 2b:43:42:dd:47:8d:83:bd:56:6c:b5:4a:9a:1b:12: 7f:66:cd:a0:69:ef:0f:34:81:a9:82:98:c1:03:7e: 20:cd:79:63:fe:c4:62:ee:2c:37:2f:de:26:b1:86: a2:ba:b9:3d:93:92:81:da:51:8a:7b:22:70:1b:42: 73:65:77:04:98:cf:c4:38:f8:58:dc:ab:8a:4f:69: 96:4a:a6:85:f2:f4:ed:77:a6:84:71:4c:bb:da:61: 52:76:ce:a9:04:86:73:95:d6:de:1f:60:15:cd:b8: d6:0f:6e:34:e2:35:8c:f2:5b:81:ad:da:16:ec:86: f1:4a:89:5d:54:40:89:e7:e0:9c:af:1e:35:4d:95: 1f:e8:10:e4:eb:04:d6:11:69:89:3d:ac:20:e5:3f: e5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CE:DD:33:56:53:0D:EC:F6:10:92:5F:6F:C4:84:38:2B:3C:5C:53 X509v3 Authority Key Identifier: keyid:41:E8:1C:12:2C:FE:19:47:63:3A:AA:5A:51:7B:79:23:E1:A7:89:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/41E81C122CFE1947633AAA5A517B7923E1A78966.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/41E81C122CFE1947633AAA5A517B7923E1A78966.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/323430333a653338303a313030333a3a2f34382d3438203d3e20313334363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e380:1003::/48 Signature Algorithm: sha256WithRSAEncryption 6d:53:20:e3:55:c4:a9:b3:b1:01:88:0c:05:b2:5a:ee:d9:b7: e0:c7:41:a4:ad:8f:8f:91:78:10:5a:0c:be:05:0a:10:5e:78: 92:d9:35:39:84:41:33:fc:2a:b5:92:6e:c0:6b:3b:57:57:61: ca:95:e3:9f:6f:fe:b6:c8:dc:a6:37:f2:92:fa:00:3b:23:93: be:83:60:7b:fa:9a:e3:2f:6c:79:e4:9e:21:2a:c8:6a:bf:8c: 08:70:ae:b9:91:e1:32:15:5f:41:1d:a6:db:1a:d7:33:ac:19: eb:91:06:03:40:9d:ab:56:41:eb:00:28:48:26:a5:e1:58:56: 74:4b:b6:12:b3:a3:27:90:f7:16:dc:97:00:84:42:7c:0a:b2: d7:ce:7a:22:2c:92:aa:05:47:17:65:99:b2:c8:fb:89:f2:a6: 2a:7e:fc:d2:ec:25:fa:95:6f:c2:aa:e5:f8:4f:19:dd:04:f5: 55:32:b7:8c:cf:3a:23:46:cc:d3:7b:05:97:30:a0:c3:50:8c: f9:3e:6b:28:3d:e8:e7:9b:6e:74:f7:a6:b0:97:9e:c8:a4:da: d9:58:50:21:0b:b5:ec:fb:4f:6f:8a:58:2a:6b:69:d0:e8:2f: 72:cc:da:ad:d3:be:c0:db:77:7f:f5:5e:4c:ad:e0:74:9c:30: b1:3b:78:d7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUTgqugeOGELo0A3JPazRkxiHSQG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFODFDMTIyQ0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNF MUE3ODk2NjAeFw0yNjA1MDMwMjA3MDhaFw0yNzA1MDIwMjEyMDhaMDMxMTAvBgNV BAMTKDJCQ0VERDMzNTY1MzBERUNGNjEwOTI1RjZGQzQ4NDM4MkIzQzVDNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXR76cDHIB+9SQgAitF20VOAsH x8quf414RFHKexfj4O8XSIVutBLGe40lpkhNGy1LHHj6bEPlrQcLkUdl+QCFonlJ bk287p/fip5t4+8xYqSmE5GliUaRKmxsOasrhKOKZ66PpR4p3itDQt1HjYO9Vmy1 SpobEn9mzaBp7w80gamCmMEDfiDNeWP+xGLuLDcv3iaxhqK6uT2TkoHaUYp7InAb QnNldwSYz8Q4+Fjcq4pPaZZKpoXy9O13poRxTLvaYVJ2zqkEhnOV1t4fYBXNuNYP bjTiNYzyW4Gt2hbshvFKiV1UQInn4JyvHjVNlR/oEOTrBNYRaYk9rCDlP+UFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUK87dM1ZTDez2EJJfb8SEOCs8XFMwHwYDVR0j BBgwFoAUQegcEiz+GUdjOqpaUXt5I+GniWYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDc0ZjIxNGEtYmY1NS00MDQ4LTg0NWQtMjA2NzVmYjVmMmE0LzAvNDFFODFDMTIy Q0ZFMTk0NzYzM0FBQTVBNTE3Qjc5MjNFMUE3ODk2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MUU4MUMxMjJDRkUxOTQ3NjMzQUFBNUE1MTdCNzkyM0UxQTc4 OTY2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA3NGYyMTRhLWJmNTUtNDA0OC04 NDVkLTIwNjc1ZmI1ZjJhNC8wLzMyMzQzMDMzM2E2NTMzMzgzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzQzNjMzMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A+OAEAMwDQYJKoZIhvcNAQELBQADggEBAG1TIONVxKmzsQGIDAWyWu7Zt+DHQaSt j4+ReBBaDL4FChBeeJLZNTmEQTP8KrWSbsBrO1dXYcqV459v/rbI3KY38pL6ADsj k76DYHv6muMvbHnkniEqyGq/jAhwrrmR4TIVX0Edptsa1zOsGeuRBgNAnatWQesA KEgmpeFYVnRLthKzoyeQ9xbclwCEQnwKstfOeiIskqoFRxdlmbLI+4nypip+/NLs JfqVb8Kq5fhPGd0E9VUyt4zPOiNGzNN7BZcwoMNQjPk+ayg96OebbnT3prCXnsik 2tlYUCELtez7T2+KWCpradDoL3LM2q3TvsDbd3/1Xkyt4HScMLE7eNc= -----END CERTIFICATE-----Generated at Tue May 5 23:15:54 2026 by rpki-client