$ rpki-client -vvf rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa File: 323430313a353430303a3a2f33322d3438203d3e2034343334.roa (raw, json) Hash identifier: LAUWo8BQ3ZPC+F1qSppCTG7/q8rJvJMsyTcirMi4P6U= Subject key identifier: 75:FB:8A:10:94:69:84:71:78:63:5E:FC:5C:F1:6E:00:B1:29:55:FB Certificate issuer: /CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Certificate serial: 6AF8BC00BB4AE3FFEDF6A36EE9A0483C0E3314E8 Authority key identifier: F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa Signing time: Sun 03 May 2026 02:36:12 +0000 ROA not before: Sun 03 May 2026 02:31:12 +0000 ROA not after: Sun 02 May 2027 02:36:12 +0000 asID: 4434 IP address blocks: 2401:5400::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 11:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f8:bc:00:bb:4a:e3:ff:ed:f6:a3:6e:e9:a0:48:3c:0e:33:14:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F93EE098C03DDEEBBFBFB77250D6772BEDEF245E Validity Not Before: May 3 02:31:12 2026 GMT Not After : May 2 02:36:12 2027 GMT Subject: CN=75FB8A109469847178635EFC5CF16E00B12955FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2a:a9:e7:42:01:46:2a:84:68:4e:84:e2:c6: d2:bc:c2:77:bf:1d:9d:43:47:9d:d3:1b:d2:62:2e: 67:e0:ca:81:3b:da:7e:73:74:64:b2:42:15:78:7f: dd:47:0b:b9:5f:10:61:9e:a5:7f:cd:83:20:c6:3e: 91:e8:94:41:fc:df:01:ec:11:27:f5:77:53:01:0e: 61:8d:ed:26:e5:5a:51:b0:28:bd:89:a7:19:0f:38: 0f:37:00:de:56:f3:16:81:47:21:a5:e8:a6:29:e3: 31:39:c9:49:1a:8f:0a:71:23:30:f4:84:4e:6c:89: cd:da:0d:86:c2:42:af:c4:9f:6d:ef:0c:04:11:33: 60:96:d5:1c:e3:82:c3:42:09:58:df:47:f8:0c:de: f3:56:9e:58:d8:0c:28:a1:51:0f:c7:24:58:03:03: a3:5d:3c:b0:c1:c9:6e:4d:f4:be:fd:1c:08:8e:6d: 94:b0:cf:d3:e2:30:73:ff:b2:ad:7e:fd:77:ae:52: a1:f2:02:8e:45:c8:9d:a2:e9:a2:12:d8:86:b2:5f: 32:1c:ad:57:01:01:c6:19:9c:b3:8f:6d:c7:d4:8d: f8:db:b8:f6:7c:f3:93:0a:4c:a1:b0:ef:bb:16:30: 53:fc:80:e1:23:44:bc:20:91:7d:4b:c7:c8:bf:2d: 65:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FB:8A:10:94:69:84:71:78:63:5E:FC:5C:F1:6E:00:B1:29:55:FB X509v3 Authority Key Identifier: keyid:F9:3E:E0:98:C0:3D:DE:EB:BF:BF:B7:72:50:D6:77:2B:ED:EF:24:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F93EE098C03DDEEBBFBFB77250D6772BEDEF245E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/323430313a353430303a3a2f33322d3438203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5400::/32 Signature Algorithm: sha256WithRSAEncryption 27:71:17:51:79:26:94:3c:e8:1f:8d:e6:51:7e:4b:ec:7e:3a: 1e:06:79:b9:32:3f:05:95:c7:fd:2f:88:93:f4:4a:ab:45:82: 86:d2:26:6d:6e:1f:8d:21:c2:1b:e7:ee:1b:72:1a:55:75:0c: ab:07:7a:97:2c:2c:d8:15:b7:49:8e:d7:20:db:9f:df:de:35: e3:51:9d:05:cb:b6:80:b1:25:cc:5a:be:d4:e9:03:50:5a:47: 71:30:26:62:d1:0a:10:86:38:3c:68:15:d2:01:0c:81:9f:09: 51:f0:a7:77:7a:a4:fe:cb:b0:77:74:0a:e3:a0:44:08:73:7a: c4:05:44:97:33:8c:d8:6a:cb:98:19:15:6e:93:c6:e5:f5:9a: d7:bf:54:9f:7f:1d:5b:aa:a8:24:b8:11:5d:ef:de:03:ac:b3: 73:79:76:b5:6d:78:a2:ec:9b:b7:8e:8a:12:b9:07:1a:7d:69: 3b:65:94:bd:ad:ee:58:7d:97:9a:ba:3d:4f:48:1a:9e:e9:f9: 4c:b6:43:3c:6f:ff:e0:88:17:c2:31:3b:27:d6:8e:e1:0e:6a: aa:97:7b:ba:52:16:2e:69:cd:e5:60:69:c9:a0:5d:d3:e9:cb: f9:dc:64:0f:7b:f2:0c:1f:8b:61:7c:70:b3:bb:4b:cd:15:fc: eb:c1:e9:56 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUavi8ALtK4//t9qNu6aBIPA4zFOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjkzRUUwOThDMDNEREVFQkJGQkZCNzcyNTBENjc3MkJF REVGMjQ1RTAeFw0yNjA1MDMwMjMxMTJaFw0yNzA1MDIwMjM2MTJaMDMxMTAvBgNV BAMTKDc1RkI4QTEwOTQ2OTg0NzE3ODYzNUVGQzVDRjE2RTAwQjEyOTU1RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGKqnnQgFGKoRoToTixtK8wne/ HZ1DR53TG9JiLmfgyoE72n5zdGSyQhV4f91HC7lfEGGepX/NgyDGPpHolEH83wHs ESf1d1MBDmGN7SblWlGwKL2JpxkPOA83AN5W8xaBRyGl6KYp4zE5yUkajwpxIzD0 hE5sic3aDYbCQq/En23vDAQRM2CW1RzjgsNCCVjfR/gM3vNWnljYDCihUQ/HJFgD A6NdPLDByW5N9L79HAiObZSwz9PiMHP/sq1+/XeuUqHyAo5FyJ2i6aIS2IayXzIc rVcBAcYZnLOPbcfUjfjbuPZ885MKTKGw77sWMFP8gOEjRLwgkX1Lx8i/LWWXAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUdfuKEJRphHF4Y178XPFuALEpVfswHwYDVR0j BBgwFoAU+T7gmMA93uu/v7dyUNZ3K+3vJF4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWMwYzE0YTktM2E3Ny00OWUyLTkxOTQtNDhkMDkxMzQ1OGIyLzAvRjkzRUUwOThD MDNEREVFQkJGQkZCNzcyNTBENjc3MkJFREVGMjQ1RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTNFRTA5OEMwM0RERUVCQkZCRkI3NzI1MEQ2NzcyQkVERUYy NDVFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzNDMwMzEzYTM1MzQzMDMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAVQAMA0GCSqGSIb3DQEB CwUAA4IBAQAncRdReSaUPOgfjeZRfkvsfjoeBnm5Mj8Flcf9L4iT9EqrRYKG0iZt bh+NIcIb5+4bchpVdQyrB3qXLCzYFbdJjtcg25/f3jXjUZ0Fy7aAsSXMWr7U6QNQ WkdxMCZi0QoQhjg8aBXSAQyBnwlR8Kd3eqT+y7B3dArjoEQIc3rEBUSXM4zYasuY GRVuk8bl9ZrXv1Sffx1bqqgkuBFd794DrLNzeXa1bXii7Ju3jooSuQcafWk7ZZS9 re5YfZeauj1PSBqe6flMtkM8b//giBfCMTsn1o7hDmqql3u6UhYuac3lYGnJoF3T 6cv53GQPe/IMH4thfHCzu0vNFfzrwelW -----END CERTIFICATE-----Generated at Tue May 5 15:06:08 2026 by rpki-client