$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa File: 323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa (raw, json) Hash identifier: 4k7RGrp01p1A82g/4tTMj62lpoo02g4D+64zVKXrIFw= Subject key identifier: EB:8E:E3:1C:9A:04:77:EF:36:41:5B:B4:C4:D5:D8:F9:0F:9A:F6:FA Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 6573E780D5F37047FF57B2E9AB223927749B769F Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:31 +0000 ROA not before: Sun 03 May 2026 02:33:31 +0000 ROA not after: Sun 02 May 2027 02:38:31 +0000 asID: 17727 IP address blocks: 2404:c000:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:73:e7:80:d5:f3:70:47:ff:57:b2:e9:ab:22:39:27:74:9b:76:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:31 2026 GMT Not After : May 2 02:38:31 2027 GMT Subject: CN=EB8EE31C9A0477EF36415BB4C4D5D8F90F9AF6FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7e:fa:95:4e:4a:7a:2c:4a:08:0b:8d:59:60: f2:74:4c:f0:99:cd:81:f6:fd:6f:7f:a2:b7:99:62: 54:53:81:0d:b0:88:7c:52:dd:89:b4:83:f6:d5:e9: ee:61:d5:67:f3:b9:8b:c3:8e:b5:c3:35:77:e6:f2: 40:f2:de:49:75:cd:ea:d0:6b:04:59:1a:fb:8d:0c: 31:39:c6:48:e1:03:fd:4b:24:94:c9:53:7f:8d:d8: b4:3f:a9:66:53:46:75:b4:97:8e:e2:1e:fd:74:91: 0a:01:42:44:9b:15:9c:e1:87:bb:c3:91:16:f2:bc: 98:82:f2:a8:e9:28:e2:69:f9:d1:e9:9b:00:46:0b: 3e:c3:30:e0:51:d1:85:d9:a5:30:94:c5:ae:9f:4e: aa:88:38:dd:74:ed:6e:9c:e5:27:a4:98:30:53:7e: 36:87:6d:51:cd:43:a4:45:e6:fe:d8:4f:25:ac:b9: 69:81:1d:10:29:2a:95:de:e8:06:74:42:16:9d:b7: fa:3c:a5:7b:95:73:87:ed:97:bf:94:6a:53:33:6f: c3:93:af:0c:28:7f:9c:7d:bb:bd:dc:ce:d7:84:02: 8d:3b:4d:c5:f0:5b:8e:27:1d:81:3c:a9:0d:40:fc: 36:13:0c:27:dc:7e:92:95:e4:2c:fa:e4:25:38:ee: bd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8E:E3:1C:9A:04:77:EF:36:41:5B:B4:C4:D5:D8:F9:0F:9A:F6:FA X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8002::/48 Signature Algorithm: sha256WithRSAEncryption 9a:8e:e5:c7:18:09:91:92:7f:20:02:c7:df:cc:25:1d:b2:7d: 4a:5d:c6:d2:18:16:df:10:23:25:cc:c7:93:e7:88:f5:7a:49: a3:8a:c1:74:04:c8:9a:9d:da:ec:a4:74:a2:af:af:19:8c:4e: 5a:d3:9d:1a:92:e4:80:7c:26:8f:c6:9c:ad:bd:cb:67:81:25: 8d:c8:fc:51:ce:15:bd:80:2d:72:87:ac:07:67:c7:5b:49:7a: 94:a4:b5:92:41:73:89:1f:0f:d4:fe:e2:2d:f4:89:56:79:98: 86:09:74:d6:40:30:46:3c:8b:7a:d2:fc:39:a8:b0:e5:3d:11: ba:28:51:3f:d0:9e:8d:08:f8:c4:f8:ad:85:ce:6d:72:e3:f9: 7d:80:8a:cd:57:8d:83:02:53:de:21:ed:88:4c:d6:af:84:71: 86:68:94:bf:cf:89:77:c4:47:11:b9:4e:c5:2a:dd:54:99:dd: 00:06:9a:26:f4:79:f2:69:df:d9:55:a3:19:7a:f2:f7:ad:6f: c4:b7:bc:07:21:c3:17:f7:2f:0f:ba:27:97:14:97:24:f0:c5: 0e:f5:c2:ba:13:f6:e6:fb:c0:f5:38:4d:61:6b:17:a4:eb:42: 45:d4:6e:f1:75:c5:2b:91:cd:78:e7:08:f8:6b:21:23:4c:62: 09:ed:5b:e8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZXPngNXzcEf/V7LpqyI5J3Sbdp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMzFaFw0yNzA1MDIwMjM4MzFaMDMxMTAvBgNV BAMTKEVCOEVFMzFDOUEwNDc3RUYzNjQxNUJCNEM0RDVEOEY5MEY5QUY2RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgfvqVTkp6LEoIC41ZYPJ0TPCZ zYH2/W9/oreZYlRTgQ2wiHxS3Ym0g/bV6e5h1WfzuYvDjrXDNXfm8kDy3kl1zerQ awRZGvuNDDE5xkjhA/1LJJTJU3+N2LQ/qWZTRnW0l47iHv10kQoBQkSbFZzhh7vD kRbyvJiC8qjpKOJp+dHpmwBGCz7DMOBR0YXZpTCUxa6fTqqION107W6c5SekmDBT fjaHbVHNQ6RF5v7YTyWsuWmBHRApKpXe6AZ0Qhadt/o8pXuVc4ftl7+UalMzb8OT rwwof5x9u73czteEAo07TcXwW44nHYE8qQ1A/DYTDCfcfpKV5Cz65CU47r1lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU647jHJoEd+82QVu0xNXY+Q+a9vowHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AIACMA0GCSqGSIb3DQEBCwUAA4IBAQCajuXHGAmRkn8gAsffzCUdsn1KXcbSGBbf ECMlzMeT54j1ekmjisF0BMiandrspHSir68ZjE5a050akuSAfCaPxpytvctngSWN yPxRzhW9gC1yh6wHZ8dbSXqUpLWSQXOJHw/U/uIt9IlWeZiGCXTWQDBGPIt60vw5 qLDlPRG6KFE/0J6NCPjE+K2Fzm1y4/l9gIrNV42DAlPeIe2ITNavhHGGaJS/z4l3 xEcRuU7FKt1Umd0ABpom9Hnyad/ZVaMZevL3rW/Et7wHIcMX9y8PuieXFJck8MUO 9cK6E/bm+8D1OE1haxek60JF1G7xdcUrkc145wj4ayEjTGIJ7Vvo -----END CERTIFICATE-----Generated at Thu May 7 04:32:26 2026 by rpki-client