$ rpki-client -vvf rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: sA8fiyeI5DlmsRa+8H1CELWln7/yxKFvPXzUdo6tySc= Subject key identifier: 4D:09:41:D2:7E:F5:65:30:07:4E:7B:17:CC:3F:4E:6C:5A:CD:22:BA Certificate issuer: /CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Certificate serial: 0CB922CD41B089AA1103A2ED0CAE35DA2648CD88 Authority key identifier: EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa Signing time: Sun 03 May 2026 02:38:45 +0000 ROA not before: Sun 03 May 2026 02:33:45 +0000 ROA not after: Sun 02 May 2027 02:38:45 +0000 asID: 17727 IP address blocks: 2404:c000:c002::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 23:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b9:22:cd:41:b0:89:aa:11:03:a2:ed:0c:ae:35:da:26:48:cd:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAE158B3C84D30768CBC0D1D56034E26E704B5D0 Validity Not Before: May 3 02:33:45 2026 GMT Not After : May 2 02:38:45 2027 GMT Subject: CN=4D0941D27EF56530074E7B17CC3F4E6C5ACD22BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1c:c3:be:13:0f:53:0d:d4:68:bb:33:39:65: 89:b2:24:df:a4:5a:5a:6b:20:16:a8:8a:27:26:93: 8e:3a:69:ba:21:cc:21:29:94:c4:4b:e6:10:f1:40: 59:03:5c:0f:84:9a:d6:55:4d:98:01:9b:74:6f:c5: 4e:d0:58:cc:3a:d5:88:3e:48:97:03:2a:38:f7:e1: 2a:cf:e1:a9:6b:84:9d:ad:7f:c9:0c:1c:25:8c:70: 16:2e:77:13:64:b7:e7:b8:b4:35:9b:44:0a:63:13: a3:3d:e6:33:a4:d5:fa:3a:b2:eb:96:6d:6b:5d:1c: b2:bd:d9:c4:2e:ff:ae:c0:72:b1:5a:9e:f3:57:0e: 19:e9:ff:51:0f:dc:cc:1a:0b:c6:01:0d:e6:3c:07: f0:0e:24:56:13:35:91:12:09:08:a8:8d:a6:69:ed: 02:41:cd:47:eb:fd:09:08:e7:8f:18:47:00:fd:ed: 63:eb:74:d8:62:c6:06:fb:7a:c3:be:e7:84:1a:73: 01:3e:4d:37:94:d4:81:df:5c:8a:74:f9:23:dc:88: d8:3e:7b:e4:06:46:20:bb:83:20:04:b6:ec:61:df: cb:aa:42:34:e4:98:4a:fe:48:73:41:01:55:64:4f: ce:d6:79:d3:7d:d5:18:4d:eb:81:86:03:f5:00:65: 41:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:09:41:D2:7E:F5:65:30:07:4E:7B:17:CC:3F:4E:6C:5A:CD:22:BA X509v3 Authority Key Identifier: keyid:EA:E1:58:B3:C8:4D:30:76:8C:BC:0D:1D:56:03:4E:26:E7:04:B5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EAE158B3C84D30768CBC0D1D56034E26E704B5D0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c002::/47 Signature Algorithm: sha256WithRSAEncryption 61:c9:64:47:fc:74:1f:8a:6a:75:67:61:05:f0:1c:7f:14:ac: 5a:c6:62:b2:29:8b:b5:4e:64:e3:01:db:8b:95:ec:04:d0:73: db:ee:9e:cd:70:c1:36:ce:f0:17:ed:d0:db:ae:07:cc:ed:9e: f4:2d:11:26:ac:37:cc:01:bb:45:dc:bb:f9:d0:a0:d7:f7:4b: c3:88:11:11:ef:96:c2:a0:8c:cc:3e:a4:af:a2:79:52:b4:9f: 8e:b4:3b:a1:c7:d4:7a:4e:4e:2b:51:6e:da:8d:42:3b:b2:ec: 82:b7:21:68:86:4c:04:00:8f:04:f2:c4:5e:cc:b8:fc:30:47: 36:e6:77:bc:62:82:98:76:90:ed:6a:26:d4:53:9f:02:3d:75: 04:a7:17:31:66:b6:52:15:99:98:e7:f8:80:59:9d:f5:a8:88: 63:f0:29:54:1b:aa:a5:49:19:42:87:95:cd:bb:dd:65:bd:56: 2b:47:98:91:ae:af:ef:0d:f8:cb:03:3a:03:99:cf:d3:74:0a: 72:69:67:b0:5c:f3:ba:a9:c7:41:02:63:f8:e4:bb:a3:74:d1: 65:36:b7:d9:8d:cd:0f:6d:76:59:98:d1:a4:3d:e4:93:03:7e: 58:31:a6:5d:2e:91:9c:88:d5:52:bd:63:78:2c:77:45:b5:6c: 52:ab:f1:38 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDLkizUGwiaoRA6LtDK412iZIzYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFFMTU4QjNDODREMzA3NjhDQkMwRDFENTYwMzRFMjZF NzA0QjVEMDAeFw0yNjA1MDMwMjMzNDVaFw0yNzA1MDIwMjM4NDVaMDMxMTAvBgNV BAMTKDREMDk0MUQyN0VGNTY1MzAwNzRFN0IxN0NDM0Y0RTZDNUFDRDIyQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUHMO+Ew9TDdRouzM5ZYmyJN+k WlprIBaoiicmk446abohzCEplMRL5hDxQFkDXA+EmtZVTZgBm3RvxU7QWMw61Yg+ SJcDKjj34SrP4alrhJ2tf8kMHCWMcBYudxNkt+e4tDWbRApjE6M95jOk1fo6suuW bWtdHLK92cQu/67AcrFanvNXDhnp/1EP3MwaC8YBDeY8B/AOJFYTNZESCQiojaZp 7QJBzUfr/QkI548YRwD97WPrdNhixgb7esO+54QacwE+TTeU1IHfXIp0+SPciNg+ e+QGRiC7gyAEtuxh38uqQjTkmEr+SHNBAVVkT87WedN91RhN64GGA/UAZUHHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTQlB0n71ZTAHTnsXzD9ObFrNIrowHwYDVR0j BBgwFoAU6uFYs8hNMHaMvA0dVgNOJucEtdAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjM1ZjdhMmYtNzI1ZS00Mzk5LTg2OWEtNGIxZmNmMmM2YTBjLzAvRUFFMTU4QjND ODREMzA3NjhDQkMwRDFENTYwMzRFMjZFNzA0QjVEMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQUUxNThCM0M4NEQzMDc2OENCQzBEMUQ1NjAzNEUyNkU3MDRC NUQwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzIz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AMACMA0GCSqGSIb3DQEBCwUAA4IBAQBhyWRH/HQfimp1Z2EF8Bx/FKxaxmKyKYu1 TmTjAduLlewE0HPb7p7NcME2zvAX7dDbrgfM7Z70LREmrDfMAbtF3Lv50KDX90vD iBER75bCoIzMPqSvonlStJ+OtDuhx9R6Tk4rUW7ajUI7suyCtyFohkwEAI8E8sRe zLj8MEc25ne8YoKYdpDtaibUU58CPXUEpxcxZrZSFZmY5/iAWZ31qIhj8ClUG6ql SRlCh5XNu91lvVYrR5iRrq/vDfjLAzoDmc/TdApyaWewXPO6qcdBAmP45LujdNFl NrfZjc0PbXZZmNGkPeSTA35YMaZdLpGciNVSvWN4LHdFtWxSq/E4 -----END CERTIFICATE-----Generated at Thu May 7 04:31:43 2026 by rpki-client