$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa File: 323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa (raw, json) Hash identifier: jk1oDI/IFQSW7SJcGOaFJibXs2ifUKKKz1/B2rJRlW0= Subject key identifier: CA:AF:B4:32:05:D2:2F:91:43:6D:E5:AA:E1:04:0F:3A:8C:57:C0:7C Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 4CAF5EDC4B3BF8B6EEB6090F3A02390B093FC76F Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa Signing time: Sun 03 May 2026 02:38:27 +0000 ROA not before: Sun 03 May 2026 02:33:27 +0000 ROA not after: Sun 02 May 2027 02:38:27 +0000 asID: 55818 IP address blocks: 2404:c000:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:af:5e:dc:4b:3b:f8:b6:ee:b6:09:0f:3a:02:39:0b:09:3f:c7:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:27 2026 GMT Not After : May 2 02:38:27 2027 GMT Subject: CN=CAAFB43205D22F91436DE5AAE1040F3A8C57C07C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:96:f1:12:f2:ae:8c:17:03:fb:8f:c9:ca:20: 77:e2:d8:cc:c4:c5:0c:4a:82:cd:3f:d4:f8:48:a1: 07:03:62:e1:7b:47:d8:50:80:13:be:51:ac:4d:14: a1:3f:ab:55:b4:4a:55:4b:b9:dd:13:f6:18:d4:7b: fd:9b:f6:5d:64:ca:aa:c5:3b:17:dd:1d:1c:af:91: ed:47:6e:5a:0c:a5:64:f4:32:17:eb:52:a4:75:34: a1:9c:bf:6c:73:73:03:0b:1d:16:3c:8e:66:7f:8e: 1f:1f:08:fc:b6:9a:36:d2:e2:4a:69:96:81:aa:22: cb:ae:d4:0d:bb:5d:5b:22:2e:65:9c:49:6c:a0:d4: 48:b4:df:20:45:8c:8a:5b:c5:5f:f8:c2:31:85:b1: 89:0f:7c:27:8e:0e:ce:cc:7b:1a:b5:fd:55:33:48: 92:51:15:e4:ce:be:66:d7:38:7d:af:b2:89:8a:52: 1f:8a:ec:f8:33:bb:95:b2:48:56:29:2e:18:a3:c2: b7:84:24:6b:7a:42:55:72:22:f8:20:ad:c5:71:71: 6e:8b:e2:0d:a1:20:00:a1:14:26:e5:b2:99:85:04: b8:56:09:c3:99:27:59:d6:8c:d1:e6:bf:e3:9c:15: ff:f4:31:53:a0:39:50:e2:d2:09:ce:47:fa:16:b1: 18:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:AF:B4:32:05:D2:2F:91:43:6D:E5:AA:E1:04:0F:3A:8C:57:C0:7C X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4004::/48 Signature Algorithm: sha256WithRSAEncryption 2e:8d:c7:bd:bf:ef:4c:31:e4:d4:61:b5:8b:a4:38:8b:d7:77: 66:7f:e8:5f:20:f9:92:4c:99:01:75:41:7f:24:b2:f0:f8:b1: e0:a3:2d:38:31:14:d2:76:d8:17:ab:6f:b0:76:52:3b:e4:46: a2:94:50:4a:af:fd:d0:a4:32:d2:23:cc:46:5b:e9:2d:b4:82: 42:af:e5:25:11:89:58:61:b6:ec:58:d8:c9:de:5a:9e:33:65: 35:6c:37:dd:42:a7:88:00:d3:ae:f6:95:98:d1:53:22:59:f1: b6:0e:20:b2:ac:6d:e3:d6:8f:f1:38:27:ce:df:e2:54:59:aa: 70:21:57:da:d0:ae:0f:81:11:13:44:9c:73:8e:f3:68:b8:5b: 62:40:4c:cd:cf:70:92:9c:af:58:cb:15:e8:4d:cd:9d:83:a0: 9f:c6:af:a7:99:87:6e:31:91:ab:cb:5b:f5:f5:47:00:ea:ad: f6:ea:9d:51:81:53:bb:08:d1:dc:73:c6:03:28:29:fd:60:81: 22:9c:f3:ae:21:7d:87:ac:3b:ae:e9:b9:e2:52:58:7f:fa:50: ac:31:9b:00:df:bb:48:82:86:6c:38:2b:bc:75:6e:7b:4c:54: 76:79:ac:28:e3:9e:87:7a:0e:b8:d7:b2:82:3c:a5:98:45:3a: 58:41:78:88 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTK9e3Es7+LbutgkPOgI5Cwk/x28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMjdaFw0yNzA1MDIwMjM4MjdaMDMxMTAvBgNV BAMTKENBQUZCNDMyMDVEMjJGOTE0MzZERTVBQUUxMDQwRjNBOEM1N0MwN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPlvES8q6MFwP7j8nKIHfi2MzE xQxKgs0/1PhIoQcDYuF7R9hQgBO+UaxNFKE/q1W0SlVLud0T9hjUe/2b9l1kyqrF OxfdHRyvke1HbloMpWT0MhfrUqR1NKGcv2xzcwMLHRY8jmZ/jh8fCPy2mjbS4kpp loGqIsuu1A27XVsiLmWcSWyg1Ei03yBFjIpbxV/4wjGFsYkPfCeODs7Mexq1/VUz SJJRFeTOvmbXOH2vsomKUh+K7Pgzu5WySFYpLhijwreEJGt6QlVyIvggrcVxcW6L 4g2hIAChFCblspmFBLhWCcOZJ1nWjNHmv+OcFf/0MVOgOVDi0gnOR/oWsRi9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyq+0MgXSL5FDbeWq4QQPOoxXwHwwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQAujce9v+9MMeTUYbWLpDiL13dmf+hfIPmS TJkBdUF/JLLw+LHgoy04MRTSdtgXq2+wdlI75EailFBKr/3QpDLSI8xGW+kttIJC r+UlEYlYYbbsWNjJ3lqeM2U1bDfdQqeIANOu9pWY0VMiWfG2DiCyrG3j1o/xOCfO 3+JUWapwIVfa0K4PgRETRJxzjvNouFtiQEzNz3CSnK9YyxXoTc2dg6Cfxq+nmYdu MZGry1v19UcA6q326p1RgVO7CNHcc8YDKCn9YIEinPOuIX2HrDuu6bniUlh/+lCs MZsA37tIgoZsOCu8dW57TFR2eawo456Heg6417KCPKWYRTpYQXiI -----END CERTIFICATE-----Generated at Thu May 7 04:31:42 2026 by rpki-client