$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa File: 323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa (raw, json) Hash identifier: WD6WZpSz8UlJoAksSemqODUiQFTWMxl5dgMtTtpGDTY= Subject key identifier: A0:E8:01:FD:5F:2B:79:55:0C:D0:5F:F0:5D:F6:F5:4A:AC:6A:C1:12 Certificate issuer: /CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Certificate serial: 3BE0D7C309B9F08169C85EC0B93F4D60215CFA06 Authority key identifier: 69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa Signing time: Sun 03 May 2026 02:57:48 +0000 ROA not before: Sun 03 May 2026 02:52:48 +0000 ROA not after: Sun 02 May 2027 02:57:48 +0000 asID: 59282 IP address blocks: 2400:d680:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:e0:d7:c3:09:b9:f0:81:69:c8:5e:c0:b9:3f:4d:60:21:5c:fa:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Validity Not Before: May 3 02:52:48 2026 GMT Not After : May 2 02:57:48 2027 GMT Subject: CN=A0E801FD5F2B79550CD05FF05DF6F54AAC6AC112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:8d:b6:15:db:00:68:db:95:86:a1:7c:e8: 0a:d0:b9:c2:83:a9:8c:e4:3a:43:7a:7c:9d:75:dd: 8e:6a:4b:4e:10:e0:96:e7:74:70:40:87:f4:27:13: 14:20:cd:be:eb:5e:05:61:16:e2:05:53:2c:8a:26: 37:50:d5:4f:3d:98:12:a8:87:5c:e6:16:bc:0c:d1: 42:85:64:65:66:cd:2c:0d:d8:40:d1:a7:9d:71:a0: 77:1a:c2:85:d1:40:41:ae:16:3d:fd:84:72:5e:66: 6d:5c:65:0b:81:17:db:b3:ba:f5:d7:04:2a:28:7b: 15:7a:e9:79:d7:d3:04:15:ba:4e:41:9c:8c:f2:aa: e5:3b:06:3a:70:c3:0f:4a:66:24:f1:b7:15:c2:b1: 0c:42:a4:98:7f:13:16:87:b7:25:8d:34:a8:0c:8e: 1d:f8:49:76:4c:03:f9:44:7f:21:df:d5:18:c3:c6: 84:cf:b0:d7:47:f9:d8:bd:23:28:30:b5:f6:82:c9: 55:80:e0:6e:7d:23:40:29:4a:36:0b:b0:31:f2:85: 0c:e9:0b:db:7e:78:02:ef:ae:42:da:98:56:ac:30: c5:81:00:4e:0a:4c:fd:8c:f4:a5:41:76:2e:02:72: ea:c2:91:c5:50:09:65:e5:ce:da:22:55:06:1d:c9: cd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E8:01:FD:5F:2B:79:55:0C:D0:5F:F0:5D:F6:F5:4A:AC:6A:C1:12 X509v3 Authority Key Identifier: keyid:69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680:5::/48 Signature Algorithm: sha256WithRSAEncryption de:8b:39:a8:aa:64:40:ba:d6:18:aa:5f:9d:69:fe:9e:e6:51: 1b:01:07:2d:78:8d:b4:2d:1c:0f:02:d1:d6:85:25:e5:2b:dd: c0:bc:a7:c7:6e:ff:b8:ce:c6:34:ed:9f:63:8c:c6:10:2e:67: bb:65:2e:09:10:2d:cf:5d:fe:b6:f8:20:02:5b:c4:ec:78:e2: 14:61:51:e8:cf:36:05:0a:64:a4:59:ab:e2:99:c7:62:9a:73: da:30:c3:a9:1e:81:24:90:27:46:c4:b4:ca:9c:8e:89:56:e3: ac:75:f1:46:a8:22:89:89:2d:a7:bf:5c:66:bc:c1:b3:0c:4b: 9c:59:77:60:f8:8a:87:b7:0c:64:be:52:7d:d6:38:18:7f:a4: 55:89:f6:71:0d:be:69:75:f0:dc:cd:04:3a:01:f0:ab:6d:3b: db:f1:66:3b:55:73:31:6d:c3:29:d2:63:78:42:30:53:07:69: a0:3f:64:4a:7c:c2:70:cb:da:d7:4d:fa:38:bd:2f:b2:37:dd: bb:aa:b4:1d:2e:dc:5b:15:5f:5e:26:60:a1:48:9a:b5:4c:94: 93:24:bb:3c:a5:72:59:06:42:7c:0d:f7:56:c3:ce:68:b9:d8: da:ec:18:96:71:78:7b:41:81:aa:b0:e7:49:f6:f0:fd:f6:e2: b2:21:97:0d -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUO+DXwwm58IFpyF7AuT9NYCFc+gYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NTVGQzczRjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4 OUI2QjI1RDAeFw0yNjA1MDMwMjUyNDhaFw0yNzA1MDIwMjU3NDhaMDMxMTAvBgNV BAMTKEEwRTgwMUZENUYyQjc5NTUwQ0QwNUZGMDVERjZGNTRBQUM2QUMxMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8oY22FdsAaNuVhqF86ArQucKD qYzkOkN6fJ113Y5qS04Q4JbndHBAh/QnExQgzb7rXgVhFuIFUyyKJjdQ1U89mBKo h1zmFrwM0UKFZGVmzSwN2EDRp51xoHcawoXRQEGuFj39hHJeZm1cZQuBF9uzuvXX BCooexV66XnX0wQVuk5BnIzyquU7Bjpwww9KZiTxtxXCsQxCpJh/ExaHtyWNNKgM jh34SXZMA/lEfyHf1RjDxoTPsNdH+di9IygwtfaCyVWA4G59I0ApSjYLsDHyhQzp C9t+eALvrkLamFasMMWBAE4KTP2M9KVBdi4CcurCkcVQCWXlztoiVQYdyc25AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUoOgB/V8reVUM0F/wXfb1SqxqwRIwHwYDVR0j BBgwFoAUaZVfxz8SiAJOfK8MHYJeg4m2sl0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg0NjRhNWItMmZjZS00N2RhLTgwNDctNjhkMmJkNjNjOWMzLzAvNjk5NTVGQzcz RjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4OUI2QjI1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OTk1NUZDNzNGMTI4ODAyNEU3Q0FGMEMxRDgyNUU4Mzg5QjZC MjVELmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAAFMA0G CSqGSIb3DQEBCwUAA4IBAQDeizmoqmRAutYYql+daf6e5lEbAQcteI20LRwPAtHW hSXlK93AvKfHbv+4zsY07Z9jjMYQLme7ZS4JEC3PXf62+CACW8TseOIUYVHozzYF CmSkWavimcdimnPaMMOpHoEkkCdGxLTKnI6JVuOsdfFGqCKJiS2nv1xmvMGzDEuc WXdg+IqHtwxkvlJ91jgYf6RVifZxDb5pdfDczQQ6AfCrbTvb8WY7VXMxbcMp0mN4 QjBTB2mgP2RKfMJwy9rXTfo4vS+yN927qrQdLtxbFV9eJmChSJq1TJSTJLs8pXJZ BkJ8DfdWw85oudja7BiWcXh7QYGqsOdJ9vD99uKyIZcN -----END CERTIFICATE-----Generated at Tue May 5 21:03:53 2026 by rpki-client