$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: Z4Ujnutg1MD/fdXu6UZh87Aji09WYOV+tNUIXergao8= Subject key identifier: 21:9E:74:72:AD:E8:7E:5F:6B:9F:71:A3:AF:9D:B0:93:2A:74:79:25 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 24BF2D5A152142143941B666968883B77C75E02A Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 03 May 2026 02:38:34 +0000 ROA not before: Sun 03 May 2026 02:33:34 +0000 ROA not after: Sun 02 May 2027 02:38:34 +0000 asID: 45147 IP address blocks: 2404:c000:4002::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:bf:2d:5a:15:21:42:14:39:41:b6:66:96:88:83:b7:7c:75:e0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:34 2026 GMT Not After : May 2 02:38:34 2027 GMT Subject: CN=219E7472ADE87E5F6B9F71A3AF9DB0932A747925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:2e:95:c9:2a:13:7c:df:fc:0d:59:90:b2: 60:cf:8e:8e:ba:2e:a4:00:b3:cb:f2:a1:97:0d:60: 80:32:c2:ad:ea:b5:7e:9e:86:8f:c2:2c:d2:08:4d: 97:0e:2d:c7:2f:88:b8:d4:3c:4a:be:4c:c8:1f:8f: 76:2a:93:af:fe:35:6d:4a:9d:71:43:e9:7b:37:b0: 17:42:61:94:42:8a:b6:69:80:5f:a9:4e:a7:b1:ef: f2:13:df:70:8e:d7:8c:7e:b0:b6:37:df:4c:0f:35: 58:34:c6:4f:6f:a3:a0:01:f7:86:6d:a8:c0:f4:fa: e3:2c:04:e8:ba:81:1b:3b:91:aa:83:18:e0:44:2d: 7d:fc:fe:48:c2:e1:3e:92:64:c0:fa:78:e2:f9:57: 76:6a:b3:c2:1f:ec:ad:6f:4d:e7:86:c7:2a:1a:1a: 6e:a1:58:f0:5f:db:ad:a7:8e:01:5e:27:e8:ef:5d: 6c:2a:79:5f:42:7b:d6:62:b5:e4:c6:23:24:b1:20: 57:e7:21:5b:d5:2a:e4:db:89:89:8e:ff:68:1d:cf: eb:8d:23:a6:b5:fc:43:78:51:54:bc:34:88:61:8a: 2a:46:68:14:bd:e6:b0:6a:5f:e9:01:2d:0d:f8:9e: 4c:bf:69:ea:0c:85:90:9b:03:4a:6d:07:f2:c9:1f: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9E:74:72:AD:E8:7E:5F:6B:9F:71:A3:AF:9D:B0:93:2A:74:79:25 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4002::/47 Signature Algorithm: sha256WithRSAEncryption 38:a3:ae:91:dd:52:72:34:b6:87:be:08:b8:dc:56:41:1b:fb: 28:0c:fc:f6:fe:fc:b4:0f:e9:65:52:14:be:04:21:51:62:f8: b9:cd:f6:9a:ea:6c:a7:f3:8f:7b:40:43:e4:52:41:9c:ef:3e: 97:48:5b:cc:f7:d6:60:82:ed:33:21:c5:15:c1:43:55:68:9d: 60:97:cd:fc:bb:26:d3:5c:39:12:a3:89:67:e5:8e:1f:97:13: 7c:65:54:e4:64:02:4b:a1:c8:23:22:fa:89:a5:89:54:6f:c4: 8a:ea:97:28:34:61:cd:da:5f:40:18:05:b7:9e:24:28:fc:d3: 27:0d:76:8c:18:30:b9:ae:05:c9:2c:c4:49:4d:36:6c:4a:c2: 8b:60:cc:03:77:5b:40:2e:19:63:0e:7c:f8:27:12:9d:0f:b2: 66:e3:30:1b:b7:af:09:34:f2:fa:7e:33:2c:82:44:23:f8:7a: 2e:56:b4:a1:c0:a4:ce:a1:cd:b0:99:33:96:29:26:74:e5:67: be:bd:51:04:bc:87:fd:bd:38:d2:9c:9d:37:bf:4c:bd:03:22: 5b:ef:89:a6:a9:82:ea:b3:80:71:5c:e5:de:08:59:7d:a1:7c: 2b:75:fb:c4:51:34:39:b3:32:81:e7:29:36:78:1b:8d:e3:dd: 82:b4:4b:0a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJL8tWhUhQhQ5QbZmloiDt3x14CowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMzRaFw0yNzA1MDIwMjM4MzRaMDMxMTAvBgNV BAMTKDIxOUU3NDcyQURFODdFNUY2QjlGNzFBM0FGOURCMDkzMkE3NDc5MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2vy6VySoTfN/8DVmQsmDPjo66 LqQAs8vyoZcNYIAywq3qtX6eho/CLNIITZcOLccviLjUPEq+TMgfj3Yqk6/+NW1K nXFD6Xs3sBdCYZRCirZpgF+pTqex7/IT33CO14x+sLY330wPNVg0xk9vo6AB94Zt qMD0+uMsBOi6gRs7kaqDGOBELX38/kjC4T6SZMD6eOL5V3Zqs8If7K1vTeeGxyoa Gm6hWPBf262njgFeJ+jvXWwqeV9Ce9ZiteTGIySxIFfnIVvVKuTbiYmO/2gdz+uN I6a1/EN4UVS8NIhhiipGaBS95rBqX+kBLQ34nky/aeoMhZCbA0ptB/LJH8uBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIZ50cq3ofl9rn3Gjr52wkyp0eSUwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEACMA0GCSqGSIb3DQEBCwUAA4IBAQA4o66R3VJyNLaHvgi43FZBG/soDPz2/vy0 D+llUhS+BCFRYvi5zfaa6myn8497QEPkUkGc7z6XSFvM99Zggu0zIcUVwUNVaJ1g l838uybTXDkSo4ln5Y4flxN8ZVTkZAJLocgjIvqJpYlUb8SK6pcoNGHN2l9AGAW3 niQo/NMnDXaMGDC5rgXJLMRJTTZsSsKLYMwDd1tALhljDnz4JxKdD7Jm4zAbt68J NPL6fjMsgkQj+HouVrShwKTOoc2wmTOWKSZ05We+vVEEvIf9vTjSnJ03v0y9AyJb 74mmqYLqs4BxXOXeCFl9oXwrdfvEUTQ5szKB5yk2eBuN492CtEsK -----END CERTIFICATE-----Generated at Thu May 7 03:12:32 2026 by rpki-client