$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa File: 323430323a613530303a3a2f33322d3332203d3e2034383231.roa (raw, json) Hash identifier: BDfl1ljAlzUeNiFgOAogNvfZpmtNq6Kp37cGWuK0R5E= Subject key identifier: 9C:91:74:78:B9:72:86:5B:0D:05:CD:E7:36:67:FD:23:20:38:95:C4 Certificate issuer: /CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Certificate serial: 564F813C4042F436976B34B743E97CBA1EA6C2BB Authority key identifier: DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa Signing time: Sun 03 May 2026 02:50:51 +0000 ROA not before: Sun 03 May 2026 02:45:51 +0000 ROA not after: Sun 02 May 2027 02:50:51 +0000 asID: 4821 IP address blocks: 2402:a500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:4f:81:3c:40:42:f4:36:97:6b:34:b7:43:e9:7c:ba:1e:a6:c2:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3 Validity Not Before: May 3 02:45:51 2026 GMT Not After : May 2 02:50:51 2027 GMT Subject: CN=9C917478B972865B0D05CDE73667FD23203895C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:66:ca:4b:25:52:18:f6:6c:b8:03:d2:1a:08: 95:c2:1c:7e:92:bf:5c:0b:81:3d:ab:e9:b9:e8:2e: ef:03:6a:d8:d3:e8:26:d7:a9:bd:09:38:ad:d0:37: 59:f6:e6:82:e3:11:f8:e7:df:28:6d:82:70:77:d0: 64:74:4f:c9:cb:f4:71:eb:8a:0b:bd:1d:68:71:10: 7e:1f:02:2e:58:45:e9:11:65:c4:fd:ee:c3:ce:a3: c0:61:f2:82:51:ea:6b:b1:45:63:cd:9d:72:71:1f: db:f1:d3:ca:dd:80:13:06:5e:00:66:be:51:37:23: dc:be:cc:98:03:2a:ab:dd:41:f1:4c:d6:67:47:de: 92:9c:93:30:b9:cf:1d:e2:76:19:09:9e:1a:ad:ae: 2f:73:0d:9a:94:69:04:12:79:3d:2b:50:cd:e3:e3: 0b:b3:82:45:8d:ad:68:19:15:e9:ef:59:37:03:a2: 01:1e:32:40:c0:43:c0:51:74:40:4a:f2:68:fc:66: 7b:cc:68:5a:01:71:cb:e2:68:d5:fb:08:f8:b5:76: a6:ef:73:c9:6f:b3:21:4a:3d:2a:b8:97:94:4d:be: 8b:9a:82:c9:94:7d:6d:a9:7f:6a:5f:d7:f0:6d:1f: 4e:7e:68:9a:61:07:40:83:37:b6:8b:6d:b2:a0:38: 36:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:91:74:78:B9:72:86:5B:0D:05:CD:E7:36:67:FD:23:20:38:95:C4 X509v3 Authority Key Identifier: keyid:DE:4E:99:EA:03:0A:F8:AE:BF:B7:B6:A7:A0:E9:16:74:DD:B2:9A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DE4E99EA030AF8AEBFB7B6A7A0E91674DDB29AC3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a500::/32 Signature Algorithm: sha256WithRSAEncryption 57:cd:6c:0a:3c:7c:a2:ab:e3:92:41:12:58:9c:8f:f8:ab:fb: 07:2b:02:e0:2c:52:1b:8f:b4:b5:f0:37:13:a2:6e:8b:5c:8a: fc:f7:bd:ab:72:7d:48:8c:3a:2e:8f:ab:ac:82:0a:4a:d9:d8: f5:6a:77:c7:bf:a9:64:5c:de:b4:a9:e4:db:4e:de:b2:06:14: 9a:2e:8e:4b:18:a6:d4:b8:98:ec:72:9f:79:89:77:fd:bd:7c: 82:6e:aa:7b:ed:63:47:6f:32:6f:25:c3:fd:d5:76:c7:7f:ad: 17:c6:d8:0d:8b:b3:ed:fa:1a:e3:18:61:5b:17:f9:5c:60:36: 2e:d2:76:cb:82:97:21:1c:c3:91:f5:13:f6:8f:39:6f:d6:73: 9f:27:f0:11:9c:61:a1:4b:ac:24:9d:f3:b4:69:05:df:2a:9d: 44:b7:b8:f9:2d:1a:d3:79:c2:b6:f7:98:4d:6f:cd:28:96:06: b9:8c:ab:57:5b:b5:11:b7:d9:e5:bf:a7:fc:bf:eb:4d:ac:ef: d1:f3:55:10:56:77:3d:2b:28:f8:09:ed:73:d9:29:4d:2f:b7: 56:ae:6b:5e:ba:94:50:c8:23:85:f3:38:f1:c0:3a:49:8c:aa: 65:9e:aa:dd:ca:81:7f:33:aa:17:e6:e2:ee:9e:ad:cd:e1:09: 48:b5:48:04 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUVk+BPEBC9DaXazS3Q+l8uh6mwrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0RTk5RUEwMzBBRjhBRUJGQjdCNkE3QTBFOTE2NzRE REIyOUFDMzAeFw0yNjA1MDMwMjQ1NTFaFw0yNzA1MDIwMjUwNTFaMDMxMTAvBgNV BAMTKDlDOTE3NDc4Qjk3Mjg2NUIwRDA1Q0RFNzM2NjdGRDIzMjAzODk1QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYZspLJVIY9my4A9IaCJXCHH6S v1wLgT2r6bnoLu8DatjT6CbXqb0JOK3QN1n25oLjEfjn3yhtgnB30GR0T8nL9HHr igu9HWhxEH4fAi5YRekRZcT97sPOo8Bh8oJR6muxRWPNnXJxH9vx08rdgBMGXgBm vlE3I9y+zJgDKqvdQfFM1mdH3pKckzC5zx3idhkJnhqtri9zDZqUaQQSeT0rUM3j 4wuzgkWNrWgZFenvWTcDogEeMkDAQ8BRdEBK8mj8ZnvMaFoBccviaNX7CPi1dqbv c8lvsyFKPSq4l5RNvouagsmUfW2pf2pf1/BtH05+aJphB0CDN7aLbbKgODa9AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUnJF0eLlyhlsNBc3nNmf9IyA4lcQwHwYDVR0j BBgwFoAU3k6Z6gMK+K6/t7anoOkWdN2ymsMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyNTQ0MTktNTNiZS00YWQ0LWJmN2YtMjlmODkxMjUyM2QwLzAvREU0RTk5RUEw MzBBRjhBRUJGQjdCNkE3QTBFOTE2NzREREIyOUFDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERTRFOTlFQTAzMEFGOEFFQkZCN0I2QTdBMEU5MTY3NEREQjI5 QUMzLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzNDMwMzIzYTYxMzUzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXzWwKPHyiq+OSQRJYnI/4q/sHKwLgLFIbj7S18DcTom6LXIr8972r cn1IjDouj6usggpK2dj1anfHv6lkXN60qeTbTt6yBhSaLo5LGKbUuJjscp95iXf9 vXyCbqp77WNHbzJvJcP91XbHf60XxtgNi7Pt+hrjGGFbF/lcYDYu0nbLgpchHMOR 9RP2jzlv1nOfJ/ARnGGhS6wknfO0aQXfKp1Et7j5LRrTecK295hNb80olga5jKtX W7URt9nlv6f8v+tNrO/R81UQVnc9Kyj4Ce1z2SlNL7dWrmteupRQyCOF8zjxwDpJ jKplnqrdyoF/M6oX5uLunq3N4QlItUgE -----END CERTIFICATE-----Generated at Tue May 5 11:54:30 2026 by rpki-client