$ rpki-client -vvf rpki-rsync.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa File: 323430303a666230303a3a2f33322d3438203d3e203535363730.roa (raw, json) Hash identifier: r+nuLztYujAHMA3h3J8e3UnpoppY1KFa5/V4VYVp7Wg= Subject key identifier: 25:C3:91:7A:32:F8:44:3D:97:6A:4F:2E:41:F3:56:06:D1:EA:59:8B Certificate issuer: /CN=B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF Certificate serial: 0FCCD7E6DAAF4D23428BC291BC3719EDD0F4F53F Authority key identifier: B6:4A:AD:62:D9:02:F6:08:BB:95:FD:0B:D3:F1:DA:8A:80:77:B4:EF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa Signing time: Sun 03 May 2026 02:45:48 +0000 ROA not before: Sun 03 May 2026 02:40:48 +0000 ROA not after: Sun 02 May 2027 02:45:48 +0000 asID: 55670 IP address blocks: 2400:fb00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF.crl rsync://rpki-rsync.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 07:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:cc:d7:e6:da:af:4d:23:42:8b:c2:91:bc:37:19:ed:d0:f4:f5:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF Validity Not Before: May 3 02:40:48 2026 GMT Not After : May 2 02:45:48 2027 GMT Subject: CN=25C3917A32F8443D976A4F2E41F35606D1EA598B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:62:bd:14:a7:df:2a:05:ff:46:a5:11:ed:28: bf:35:6b:dd:21:9a:00:da:23:3a:31:d6:50:c9:7e: d3:32:b0:9a:e1:51:03:05:79:01:d5:ba:9f:cd:ba: 30:67:3e:8f:c8:f1:1b:1f:4d:be:6e:9b:da:11:10: 92:ef:4b:88:ac:e1:d8:70:a1:13:64:6f:7e:99:62: bc:87:91:4f:9c:b0:8f:2c:7f:7b:7f:3f:48:8b:1c: da:01:d7:ee:e9:da:49:4b:56:bf:bd:8a:56:3f:48: 61:3b:8d:ef:28:ad:00:8f:a6:01:77:af:3f:25:9f: a5:fd:38:49:25:1f:57:a7:a8:c0:33:d3:30:5c:8f: 07:d2:0b:b6:80:49:80:06:d1:bb:02:04:8c:fb:cc: aa:0c:c5:77:bc:bf:99:f3:5b:87:6c:01:8c:f6:cc: 66:70:04:c2:03:0c:a5:90:67:d6:2e:4c:97:d5:27: e7:14:8f:cc:3e:6b:db:d0:b6:22:08:19:c7:19:de: d9:b0:d3:d1:f0:dd:3d:59:52:05:77:8c:4f:b9:91: b8:cb:b0:90:28:c2:52:5e:20:6d:f4:7b:0d:af:c5: 7d:e4:eb:5a:d2:da:83:9d:2b:56:05:82:4b:59:6b: 8a:aa:ab:1f:a0:9f:6a:11:18:ff:f7:41:2b:65:32: d7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C3:91:7A:32:F8:44:3D:97:6A:4F:2E:41:F3:56:06:D1:EA:59:8B X509v3 Authority Key Identifier: keyid:B6:4A:AD:62:D9:02:F6:08:BB:95:FD:0B:D3:F1:DA:8A:80:77:B4:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B64AAD62D902F608BB95FD0BD3F1DA8A8077B4EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:fb00::/32 Signature Algorithm: sha256WithRSAEncryption 53:59:d4:b2:6d:af:3e:45:fb:c8:9c:7e:0f:6f:68:c5:1e:50: eb:80:82:8f:1e:d5:94:32:dc:75:7d:cc:ac:1d:ef:23:98:e5: 33:a4:20:35:ca:c2:ab:6d:ac:e5:90:34:a7:3b:77:cf:90:0b: 8f:ac:73:ac:21:c3:21:4a:9c:10:d1:67:59:87:8e:92:cc:1c: 51:0e:f8:fc:98:b8:27:ce:6a:dd:0f:08:73:43:18:7c:c7:0c: 24:fb:be:78:9f:1e:2e:13:dc:d0:fb:fb:ee:3d:69:90:ad:75: 1b:c7:56:65:6f:dd:0c:4c:a3:c1:b0:a2:08:7c:08:d4:57:bd: 75:f2:c1:a7:5b:dc:41:c2:5a:3d:e3:ed:93:ea:aa:7c:90:8f: 5b:14:99:62:3a:e0:ba:a7:0f:3c:2e:f5:8f:d1:05:88:bd:06: be:62:41:5a:f6:f8:94:e7:b5:f0:6b:71:01:61:46:36:22:a1: 3a:4a:c3:f8:18:ec:ec:0a:32:54:25:02:50:40:58:2b:61:a0: 2d:be:12:9e:c5:79:ae:6e:79:de:7f:68:df:b2:fb:36:6f:ac: 43:a0:35:51:ab:2b:91:de:5d:b7:d1:d0:3c:2d:da:7e:1b:52: cd:b1:88:68:90:e2:61:d1:23:38:f5:ea:34:d1:9a:bb:54:d7: 90:c8:f7:51 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUD8zX5tqvTSNCi8KRvDcZ7dD09T8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY0QUFENjJEOTAyRjYwOEJCOTVGRDBCRDNGMURBOEE4 MDc3QjRFRjAeFw0yNjA1MDMwMjQwNDhaFw0yNzA1MDIwMjQ1NDhaMDMxMTAvBgNV BAMTKDI1QzM5MTdBMzJGODQ0M0Q5NzZBNEYyRTQxRjM1NjA2RDFFQTU5OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxYr0Up98qBf9GpRHtKL81a90h mgDaIzox1lDJftMysJrhUQMFeQHVup/NujBnPo/I8RsfTb5um9oREJLvS4is4dhw oRNkb36ZYryHkU+csI8sf3t/P0iLHNoB1+7p2klLVr+9ilY/SGE7je8orQCPpgF3 rz8ln6X9OEklH1enqMAz0zBcjwfSC7aASYAG0bsCBIz7zKoMxXe8v5nzW4dsAYz2 zGZwBMIDDKWQZ9YuTJfVJ+cUj8w+a9vQtiIIGccZ3tmw09Hw3T1ZUgV3jE+5kbjL sJAowlJeIG30ew2vxX3k61rS2oOdK1YFgktZa4qqqx+gn2oRGP/3QStlMtfNAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUJcORejL4RD2Xak8uQfNWBtHqWYswHwYDVR0j BBgwFoAUtkqtYtkC9gi7lf0L0/HaioB3tO8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2Q2ZWE3ZmEtOTRkMi00ZGRjLWE4ZTYtNWRjNjI2YzI5MWQ0LzAvQjY0QUFENjJE OTAyRjYwOEJCOTVGRDBCRDNGMURBOEE4MDc3QjRFRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNjRBQUQ2MkQ5MDJGNjA4QkI5NUZEMEJEM0YxREE4QTgwNzdC NEVGLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdkNmVhN2ZhLTk0ZDItNGRkYy1h OGU2LTVkYzYyNmMyOTFkNC8wLzMyMzQzMDMwM2E2NjYyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAPsAMA0GCSqGSIb3 DQEBCwUAA4IBAQBTWdSyba8+RfvInH4Pb2jFHlDrgIKPHtWUMtx1fcysHe8jmOUz pCA1ysKrbazlkDSnO3fPkAuPrHOsIcMhSpwQ0WdZh46SzBxRDvj8mLgnzmrdDwhz Qxh8xwwk+754nx4uE9zQ+/vuPWmQrXUbx1Zlb90MTKPBsKIIfAjUV7118sGnW9xB wlo94+2T6qp8kI9bFJliOuC6pw88LvWP0QWIvQa+YkFa9viU57Xwa3EBYUY2IqE6 SsP4GOzsCjJUJQJQQFgrYaAtvhKexXmubnnef2jfsvs2b6xDoDVRqyuR3l230dA8 Ldp+G1LNsYhokOJh0SM49eo00Zq7VNeQyPdR -----END CERTIFICATE-----Generated at Tue May 5 18:56:15 2026 by rpki-client