$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa File: 323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa (raw, json) Hash identifier: A4s8LQULhhyFExH235mHP9HYqoFI7GQdjsTVeD9MRfU= Subject key identifier: DD:D5:39:94:5C:E1:7E:A5:E0:D7:8E:DB:60:B1:85:3B:94:67:09:99 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 7FABB976247F94F3036CEF478740E422A5453CF6 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa Signing time: Sun 03 May 2026 02:38:46 +0000 ROA not before: Sun 03 May 2026 02:33:46 +0000 ROA not after: Sun 02 May 2027 02:38:46 +0000 asID: 45147 IP address blocks: 2404:c000:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ab:b9:76:24:7f:94:f3:03:6c:ef:47:87:40:e4:22:a5:45:3c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:46 2026 GMT Not After : May 2 02:38:46 2027 GMT Subject: CN=DDD539945CE17EA5E0D78EDB60B1853B94670999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:33:94:dc:7b:b7:c3:16:9e:f7:6b:d4:b2: 54:46:c1:c7:48:9f:d9:45:76:69:81:ae:be:df:e3: b3:d7:2a:d4:b2:98:00:01:7d:01:6c:f2:59:b9:5a: 82:35:48:4a:85:58:ed:03:b6:9b:26:e9:70:46:1f: 5d:c2:55:a9:2b:08:e0:6e:5a:97:0c:b0:0e:62:29: 77:9f:e9:b0:7b:4c:a3:8e:33:13:a5:65:57:b5:ff: d9:82:4a:7d:f2:3b:fa:18:b8:36:e5:0f:ff:59:56: 1a:7e:23:cf:e5:ee:8d:18:69:f9:5d:43:c6:cf:e6: 75:45:59:ba:8b:3e:77:9b:b7:5d:f8:41:19:e0:e8: ed:9b:da:4c:54:00:74:a8:e3:95:8b:ca:b8:40:8d: f1:7e:b8:94:3a:1d:4d:c9:08:f4:6b:08:e8:6d:dd: f2:d9:e9:c7:cf:23:7e:9e:c2:e4:85:b0:e7:2f:95: f8:ac:78:27:1f:56:00:2e:4f:0c:9d:c7:d5:1a:3a: 72:a0:81:3d:c1:56:5d:f2:b0:b4:cb:34:98:e4:6d: 33:e6:09:23:b4:57:21:18:63:cf:fc:31:d3:84:86: 92:2a:f9:f0:2e:dc:de:38:bc:e3:91:f1:ee:e0:0d: 8f:be:8e:9b:41:b1:fb:d2:b1:d3:c3:9b:10:d1:c8: dc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D5:39:94:5C:E1:7E:A5:E0:D7:8E:DB:60:B1:85:3B:94:67:09:99 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a323a3a2f34382d3438203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:2::/48 Signature Algorithm: sha256WithRSAEncryption 2f:4f:9c:aa:57:d1:f3:3b:d1:d0:e1:67:f7:f5:0c:d7:ab:cd: 75:d6:03:3a:d6:a3:5e:c7:28:6f:08:4c:3d:5f:a2:60:a6:2a: c4:90:9b:f9:38:63:21:d3:13:21:13:32:6f:a0:c1:41:dd:b5: ad:32:f2:c6:f9:8d:7f:e8:15:a6:81:cd:20:08:f6:85:94:d7: 95:46:6a:4c:1e:f6:e8:ea:6a:f8:7a:9f:08:c4:2b:cc:8e:13: af:1f:5e:b4:82:76:43:3f:d0:a8:89:a6:b6:dd:64:33:cf:84: 74:99:ca:58:11:b7:17:1b:71:b4:7f:ec:ec:88:99:93:95:a4: 69:98:b1:22:a9:96:3e:71:63:15:48:56:82:a2:d1:c2:60:f8: 45:24:d3:d4:fe:b9:4a:61:bf:63:bb:31:cd:14:4f:f0:7f:8c: 79:03:93:30:50:f0:b8:ea:dc:38:56:50:63:1f:e3:a5:76:7f: 81:0d:e3:1e:7d:e3:fb:f4:cf:cb:ee:05:de:8e:ec:70:90:47: 06:f8:99:aa:41:85:42:d5:e1:df:9b:ee:69:bb:07:be:07:66: bd:09:ea:66:9d:c5:81:53:da:c1:d0:0b:00:43:35:96:a9:e3: fd:e3:c7:09:b4:bf:28:9e:80:73:f0:8d:c5:a7:de:61:34:f2: 96:76:47:dc -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUf6u5diR/lPMDbO9Hh0DkIqVFPPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzNDZaFw0yNzA1MDIwMjM4NDZaMDMxMTAvBgNV BAMTKERERDUzOTk0NUNFMTdFQTVFMEQ3OEVEQjYwQjE4NTNCOTQ2NzA5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8lDOU3Hu3wxae92vUslRGwcdI n9lFdmmBrr7f47PXKtSymAABfQFs8lm5WoI1SEqFWO0Dtpsm6XBGH13CVakrCOBu WpcMsA5iKXef6bB7TKOOMxOlZVe1/9mCSn3yO/oYuDblD/9ZVhp+I8/l7o0Yafld Q8bP5nVFWbqLPnebt134QRng6O2b2kxUAHSo45WLyrhAjfF+uJQ6HU3JCPRrCOht 3fLZ6cfPI36ewuSFsOcvlfiseCcfVgAuTwydx9UaOnKggT3BVl3ysLTLNJjkbTPm CSO0VyEYY8/8MdOEhpIq+fAu3N44vOOR8e7gDY++jptBsfvSsdPDmxDRyNzRAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU3dU5lFzhfqXg147bYLGFO5RnCZkwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATAAAACMA0G CSqGSIb3DQEBCwUAA4IBAQAvT5yqV9HzO9HQ4Wf39QzXq8111gM61qNexyhvCEw9 X6JgpirEkJv5OGMh0xMhEzJvoMFB3bWtMvLG+Y1/6BWmgc0gCPaFlNeVRmpMHvbo 6mr4ep8IxCvMjhOvH160gnZDP9Coiaa23WQzz4R0mcpYEbcXG3G0f+zsiJmTlaRp mLEiqZY+cWMVSFaCotHCYPhFJNPU/rlKYb9juzHNFE/wf4x5A5MwUPC46tw4VlBj H+Oldn+BDeMefeP79M/L7gXejuxwkEcG+JmqQYVC1eHfm+5puwe+B2a9CepmncWB U9rB0AsAQzWWqeP948cJtL8onoBz8I3Fp95hNPKWdkfc -----END CERTIFICATE-----Generated at Thu May 7 03:12:21 2026 by rpki-client