$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa File: 323430343a633030303a3a2f33332d3333203d3e203435313437.roa (raw, json) Hash identifier: ZAd8pZdaBLC2AEhmdmXjeI86SAroPm5xA3sj//U0+n0= Subject key identifier: 8F:56:74:69:3D:7F:58:4D:C6:FA:51:1E:C0:38:4D:7F:3C:75:27:60 Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 4338F7D3ED4BF9950C034EEFF90E6BA6E5F5B89C Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa Signing time: Sun 03 May 2026 02:38:27 +0000 ROA not before: Sun 03 May 2026 02:33:27 +0000 ROA not after: Sun 02 May 2027 02:38:27 +0000 asID: 45147 IP address blocks: 2404:c000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:38:f7:d3:ed:4b:f9:95:0c:03:4e:ef:f9:0e:6b:a6:e5:f5:b8:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:27 2026 GMT Not After : May 2 02:38:27 2027 GMT Subject: CN=8F5674693D7F584DC6FA511EC0384D7F3C752760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ae:77:7f:3e:46:ce:ff:a7:a9:21:10:56:c0: d1:65:5f:49:e8:e0:32:53:a4:0a:98:cf:4b:89:01: 76:3b:5e:32:e1:e3:b1:c7:62:3a:06:13:f6:c0:83: 90:49:0b:0b:76:e0:a8:78:48:4c:f7:73:ff:72:c5: b3:8f:60:03:bb:63:2a:73:91:0b:2e:33:1b:e4:d4: 11:f0:4d:5e:32:95:0a:d2:65:ac:d6:d8:0d:0b:fe: 30:a5:b8:75:c2:17:e0:32:9d:71:3f:74:8b:c9:ee: 50:d4:19:11:12:d2:6f:8f:7a:40:ca:2f:f3:f5:14: c0:63:f6:2e:ee:7f:77:4f:6d:44:c6:ea:79:17:ad: 3e:a2:ec:11:ad:26:ac:98:c0:1b:a6:c5:e3:0c:38: bd:b0:e6:4f:2e:5a:79:28:5d:b7:eb:d8:a4:a4:0e: 15:ea:d8:92:b5:a1:36:d2:5e:ad:c5:a6:c3:9e:15: 17:5c:20:20:36:82:c7:ab:9c:29:b1:27:b7:3a:55: 2d:16:ae:ff:73:f5:02:88:ec:14:e6:11:f4:fc:5e: 00:93:d3:68:72:09:11:49:2b:72:0d:9f:d1:8f:02: f5:7e:26:92:66:ff:8b:7b:98:f5:20:55:82:ca:8f: 62:b5:4c:79:83:ab:61:b9:56:97:83:17:c0:86:b5: f8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:56:74:69:3D:7F:58:4D:C6:FA:51:1E:C0:38:4D:7F:3C:75:27:60 X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/33 Signature Algorithm: sha256WithRSAEncryption 75:fe:80:05:cb:f9:6e:6b:a5:81:67:b4:c8:26:a8:dc:10:ab: 46:6b:fc:4e:0e:b2:62:cf:5f:48:57:d4:e5:86:0d:52:81:12: e8:ec:8a:4d:b9:e0:4e:12:e2:fa:b3:08:0e:b3:56:f5:68:dc: 63:b8:b0:13:53:7d:08:35:f7:6e:9d:77:03:39:0d:07:07:f2: 4c:43:d5:ba:9d:d3:d7:fb:55:04:09:d6:1c:0a:22:87:ad:5f: 3a:6a:0e:a4:24:42:a5:47:a6:66:83:63:be:0f:ed:5a:58:ef: 98:b5:24:fe:0b:94:34:2e:62:41:88:67:50:30:f9:76:b4:2d: 6b:f2:1c:aa:ac:61:37:1a:2c:0b:20:45:1e:af:cb:5c:45:c7: 55:5a:54:86:7c:1e:cc:4e:f4:f1:41:a5:5a:72:f9:a2:fe:17: d0:a5:9c:28:b8:19:6b:50:d2:43:3e:ba:e5:c8:94:d5:e7:33: 08:35:69:89:bd:78:86:ae:b8:2f:36:6a:e1:5b:8f:2e:8a:0b: 72:fe:4e:1f:21:0d:b2:c0:4a:fd:e8:02:72:91:3f:b3:5d:a6: 3d:93:92:4d:9e:84:b8:4d:3c:5b:a7:da:a0:2b:d3:37:04:1b: 71:2f:4d:36:ad:04:66:46:75:ac:81:71:64:2f:ef:dd:75:24: 5a:29:e5:cb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQzj30+1L+ZUMA07v+Q5rpuX1uJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzMjdaFw0yNzA1MDIwMjM4MjdaMDMxMTAvBgNV BAMTKDhGNTY3NDY5M0Q3RjU4NERDNkZBNTExRUMwMzg0RDdGM0M3NTI3NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7rnd/PkbO/6epIRBWwNFlX0no 4DJTpAqYz0uJAXY7XjLh47HHYjoGE/bAg5BJCwt24Kh4SEz3c/9yxbOPYAO7Yypz kQsuMxvk1BHwTV4ylQrSZazW2A0L/jCluHXCF+AynXE/dIvJ7lDUGRES0m+PekDK L/P1FMBj9i7uf3dPbUTG6nkXrT6i7BGtJqyYwBumxeMMOL2w5k8uWnkoXbfr2KSk DhXq2JK1oTbSXq3FpsOeFRdcICA2gsernCmxJ7c6VS0Wrv9z9QKI7BTmEfT8XgCT 02hyCRFJK3INn9GPAvV+JpJm/4t7mPUgVYLKj2K1THmDq2G5VpeDF8CGtfh1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj1Z0aT1/WE3G+lEewDhNfzx1J2AwHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBMAAADANBgkqhkiG 9w0BAQsFAAOCAQEAdf6ABcv5bmulgWe0yCao3BCrRmv8Tg6yYs9fSFfU5YYNUoES 6OyKTbngThLi+rMIDrNW9WjcY7iwE1N9CDX3bp13AzkNBwfyTEPVup3T1/tVBAnW HAoih61fOmoOpCRCpUemZoNjvg/tWljvmLUk/guUNC5iQYhnUDD5drQta/Icqqxh NxosCyBFHq/LXEXHVVpUhnwezE708UGlWnL5ov4X0KWcKLgZa1DSQz665ciU1ecz CDVpib14hq64LzZq4VuPLooLcv5OHyENssBK/egCcpE/s12mPZOSTZ6EuE08W6fa oCvTNwQbcS9NNq0EZkZ1rIFxZC/v3XUkWinlyw== -----END CERTIFICATE-----Generated at Thu May 7 03:12:23 2026 by rpki-client