$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa File: 323430343a633030303a3a2f33322d3332203d3e203435313437.roa (raw, json) Hash identifier: YISF8zNGlXgx27+teL4pwZhiEAnyTGEQEGdzI/qyiGA= Subject key identifier: C5:3A:09:A0:0E:5A:E9:23:FC:FC:09:37:28:41:36:51:05:9B:66:53 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 29042309C15F9324F03A8363DCEF0AC48E3A04E0 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa Signing time: Sun 03 May 2026 02:38:28 +0000 ROA not before: Sun 03 May 2026 02:33:28 +0000 ROA not after: Sun 02 May 2027 02:38:28 +0000 asID: 45147 IP address blocks: 2404:c000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:04:23:09:c1:5f:93:24:f0:3a:83:63:dc:ef:0a:c4:8e:3a:04:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:28 2026 GMT Not After : May 2 02:38:28 2027 GMT Subject: CN=C53A09A00E5AE923FCFC093728413651059B6653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2b:93:01:70:a2:36:e3:8e:76:97:43:88:9d: e8:55:6f:ff:0d:c9:b9:e8:07:e9:e5:1f:34:15:e1: 99:c8:8d:38:f4:cb:db:2b:07:29:7a:7c:07:d5:39: f1:bd:9d:58:48:aa:5c:08:f0:db:de:fe:cc:3f:4e: d1:55:dc:a0:38:42:9b:cf:3c:7a:b5:cb:5d:a6:f5: 8d:63:3b:68:fd:51:11:13:c7:cd:bf:0a:89:bf:6d: a4:22:98:93:ec:a8:f0:10:3f:60:3a:2e:47:27:15: 4d:2a:85:4a:56:86:44:c3:43:a1:bc:d3:e4:bc:ab: d1:91:33:cb:76:c2:95:81:8f:41:1d:23:21:f6:a2: e8:c4:54:d9:70:af:93:3e:ec:85:92:bd:03:99:40: 50:76:26:f5:c2:57:31:53:62:d9:3c:63:1b:52:6a: 29:c9:52:5b:09:b0:f5:9e:1a:c4:9f:de:a0:ba:e9: 8f:81:6c:00:90:c2:47:35:15:a5:f9:e3:4b:19:b2: 02:37:5e:df:75:aa:ec:ba:90:38:4f:f4:93:54:67: 44:42:92:10:42:67:5f:89:78:10:2f:2c:a2:d6:a2: 09:09:40:08:0b:fe:bc:b8:f1:53:c9:04:4e:ab:55: 42:15:bc:5a:f1:8d:97:f0:c4:52:30:c3:fd:4e:78: 8b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3A:09:A0:0E:5A:E9:23:FC:FC:09:37:28:41:36:51:05:9B:66:53 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/32 Signature Algorithm: sha256WithRSAEncryption 43:8f:69:9a:d1:c9:14:e7:b0:9c:9a:e7:55:b0:0c:4d:33:7c: 3f:d9:23:5d:6c:dc:b5:6c:57:9a:f3:32:76:d1:98:b5:05:26: e3:49:8a:63:12:16:e3:39:d8:3a:b4:48:8a:16:fc:53:73:84: 15:2e:34:d0:6f:66:87:e5:99:35:39:4d:80:c0:f4:c3:bb:6f: 44:a6:de:f8:46:81:83:b7:61:e9:dd:9c:43:6c:03:3a:6b:07: 12:2a:83:e3:b4:93:98:e0:1e:1d:27:40:a5:a8:be:bc:7b:e4: f7:d6:e2:95:2c:db:8b:bd:91:5f:74:3b:06:ab:a4:6a:79:5e: bc:55:e9:c6:1c:de:8c:4f:53:b8:d0:7d:4c:a5:4b:e9:ae:e6: 3a:ac:99:23:c9:de:3a:b9:31:e9:6e:59:8e:2c:63:7f:7a:a5: 0a:e6:af:7a:c7:bf:f1:e7:c9:5d:de:2f:dc:10:63:7b:e5:5a: 86:52:4f:e5:cf:a1:e1:23:7a:fa:50:d2:88:78:32:b8:ca:d2: 6a:99:29:4a:0e:b1:d8:4b:85:51:cb:4e:ad:7d:4d:e5:4f:c5: 7e:b2:c9:1b:48:6d:1a:cd:9e:17:c4:7d:3c:dd:cf:a1:f4:f7: 39:39:49:4e:30:35:9c:2c:4c:2f:02:13:24:5d:03:52:17:83: 0a:cb:25:18 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKQQjCcFfkyTwOoNj3O8KxI46BOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMjhaFw0yNzA1MDIwMjM4MjhaMDMxMTAvBgNV BAMTKEM1M0EwOUEwMEU1QUU5MjNGQ0ZDMDkzNzI4NDEzNjUxMDU5QjY2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlK5MBcKI24452l0OInehVb/8N ybnoB+nlHzQV4ZnIjTj0y9srByl6fAfVOfG9nVhIqlwI8Nve/sw/TtFV3KA4QpvP PHq1y12m9Y1jO2j9URETx82/Com/baQimJPsqPAQP2A6LkcnFU0qhUpWhkTDQ6G8 0+S8q9GRM8t2wpWBj0EdIyH2oujEVNlwr5M+7IWSvQOZQFB2JvXCVzFTYtk8YxtS ainJUlsJsPWeGsSf3qC66Y+BbACQwkc1FaX540sZsgI3Xt91quy6kDhP9JNUZ0RC khBCZ1+JeBAvLKLWogkJQAgL/ry48VPJBE6rVUIVvFrxjZfwxFIww/1OeIulAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUxToJoA5a6SP8/Ak3KEE2UQWbZlMwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBMAAMA0GCSqGSIb3 DQEBCwUAA4IBAQBDj2ma0ckU57CcmudVsAxNM3w/2SNdbNy1bFea8zJ20Zi1BSbj SYpjEhbjOdg6tEiKFvxTc4QVLjTQb2aH5Zk1OU2AwPTDu29Ept74RoGDt2Hp3ZxD bAM6awcSKoPjtJOY4B4dJ0ClqL68e+T31uKVLNuLvZFfdDsGq6RqeV68VenGHN6M T1O40H1MpUvpruY6rJkjyd46uTHpblmOLGN/eqUK5q96x7/x58ld3i/cEGN75VqG Uk/lz6HhI3r6UNKIeDK4ytJqmSlKDrHYS4VRy06tfU3lT8V+sskbSG0azZ4XxH08 3c+h9Pc5OUlOMDWcLEwvAhMkXQNSF4MKyyUY -----END CERTIFICATE-----Generated at Thu May 7 03:12:20 2026 by rpki-client