$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3a2f33322d3438203d3e203539323832.roa File: 323430303a643638303a3a2f33322d3438203d3e203539323832.roa (raw, json) Hash identifier: GY27HpG2WJNhWravikGEHrDTrV6iGWCs3DNw3rStizU= Subject key identifier: 6F:23:16:E4:21:2C:A7:66:95:68:52:72:72:5B:CE:B9:E4:CC:D3:46 Certificate issuer: /CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Certificate serial: 729EE31A6839B0CBDC3B3FCE95B6C80CB58B0EB6 Authority key identifier: 69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3a2f33322d3438203d3e203539323832.roa Signing time: Sun 03 May 2026 02:57:49 +0000 ROA not before: Sun 03 May 2026 02:52:49 +0000 ROA not after: Sun 02 May 2027 02:57:49 +0000 asID: 59282 IP address blocks: 2400:d680::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9e:e3:1a:68:39:b0:cb:dc:3b:3f:ce:95:b6:c8:0c:b5:8b:0e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Validity Not Before: May 3 02:52:49 2026 GMT Not After : May 2 02:57:49 2027 GMT Subject: CN=6F2316E4212CA76695685272725BCEB9E4CCD346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:ae:30:11:ba:32:37:12:1c:59:bc:71:5a: 1f:c8:25:ad:8e:4c:8f:cd:d5:b9:82:28:6b:8d:76: 13:36:87:44:73:76:36:4b:f9:15:ba:54:c8:3d:0a: 1d:ef:ef:be:36:25:8c:cd:e6:7b:6f:ec:c2:92:b3: 8d:35:31:6e:87:7f:56:42:d6:82:5d:3f:3f:39:aa: 35:4f:bf:5f:bf:78:c2:3f:93:17:db:9f:29:6a:d2: b6:86:cf:57:69:45:28:1d:99:01:6b:94:7e:58:4c: de:fc:22:e0:4d:e9:87:b3:58:4e:14:93:a6:1d:2c: 61:cc:e0:fc:32:f1:67:c1:d6:08:ea:0a:6c:4d:fe: dc:b8:7e:23:1c:eb:a5:31:bd:3f:de:84:e1:16:65: 17:82:5c:ca:12:3f:e4:72:81:a1:f7:1e:2d:1e:f1: 19:31:f5:8e:59:35:63:88:89:cf:21:71:41:95:a4: 0b:50:b5:a5:08:a7:b8:bf:ac:14:0f:e8:ec:6a:6a: 10:b7:e0:44:bb:78:40:eb:2b:81:e8:5b:ef:46:9b: f6:35:bf:80:f0:1c:19:40:02:1f:a8:73:35:f8:0b: e2:86:92:05:06:fc:44:e8:c4:f0:86:be:c7:db:d5: f6:0b:d5:90:57:5f:7f:fa:c0:2a:11:b5:af:4d:eb: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:23:16:E4:21:2C:A7:66:95:68:52:72:72:5B:CE:B9:E4:CC:D3:46 X509v3 Authority Key Identifier: keyid:69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3a2f33322d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680::/32 Signature Algorithm: sha256WithRSAEncryption e5:d3:23:bb:be:11:8a:80:4d:e2:83:39:ae:6c:35:81:a9:38: b5:bc:93:86:be:b2:93:8a:21:6d:f3:00:14:5c:b7:b0:e4:52: 3e:c8:10:81:5e:5c:c4:5a:f2:56:7d:dd:79:6e:be:5c:00:0c: 2d:76:c0:74:b0:ca:46:1e:94:63:03:16:5f:36:78:ac:11:23: 05:de:64:36:ba:c1:2f:97:41:07:f4:b0:ad:c2:9f:36:dd:87: a6:02:2a:0f:65:7b:97:ce:e9:f4:c2:0a:70:87:77:b0:ed:11: 86:66:12:b9:6b:28:e0:70:b1:99:4d:d5:ac:d5:95:e0:95:1b: fd:27:bc:c2:64:3f:9e:b3:33:70:c7:cf:d6:9f:21:d0:33:9b: e0:7f:b5:e5:33:59:2d:1a:90:be:1d:7d:b8:63:74:99:a9:1c: d5:5f:99:17:5a:80:7b:1d:f2:3e:fb:b6:83:39:db:b0:28:0f: f1:b2:e2:f1:d0:a3:cc:c5:9b:93:8f:87:59:6f:c1:86:4e:33: 7a:02:d5:15:c3:59:20:72:42:18:7b:5a:90:36:93:19:e6:4e: a8:60:4f:83:33:9c:0f:0e:19:81:e8:be:00:91:9c:d2:a9:63: 9f:5c:4b:eb:0c:27:0e:eb:b9:b5:43:42:51:a2:9a:70:2c:86: aa:c4:6e:e3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUcp7jGmg5sMvcOz/OlbbIDLWLDrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NTVGQzczRjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4 OUI2QjI1RDAeFw0yNjA1MDMwMjUyNDlaFw0yNzA1MDIwMjU3NDlaMDMxMTAvBgNV BAMTKDZGMjMxNkU0MjEyQ0E3NjY5NTY4NTI3MjcyNUJDRUI5RTRDQ0QzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+i64wEboyNxIcWbxxWh/IJa2O TI/N1bmCKGuNdhM2h0RzdjZL+RW6VMg9Ch3v7742JYzN5ntv7MKSs401MW6Hf1ZC 1oJdPz85qjVPv1+/eMI/kxfbnylq0raGz1dpRSgdmQFrlH5YTN78IuBN6YezWE4U k6YdLGHM4Pwy8WfB1gjqCmxN/ty4fiMc66UxvT/ehOEWZReCXMoSP+RygaH3Hi0e 8Rkx9Y5ZNWOIic8hcUGVpAtQtaUIp7i/rBQP6OxqahC34ES7eEDrK4HoW+9Gm/Y1 v4DwHBlAAh+oczX4C+KGkgUG/EToxPCGvsfb1fYL1ZBXX3/6wCoRta9N61rtAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUbyMW5CEsp2aVaFJyclvOueTM00YwHwYDVR0j BBgwFoAUaZVfxz8SiAJOfK8MHYJeg4m2sl0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg0NjRhNWItMmZjZS00N2RhLTgwNDctNjhkMmJkNjNjOWMzLzAvNjk5NTVGQzcz RjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4OUI2QjI1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OTk1NUZDNzNGMTI4ODAyNEU3Q0FGMEMxRDgyNUU4Mzg5QjZC MjVELmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkANaAMA0GCSqGSIb3 DQEBCwUAA4IBAQDl0yO7vhGKgE3igzmubDWBqTi1vJOGvrKTiiFt8wAUXLew5FI+ yBCBXlzEWvJWfd15br5cAAwtdsB0sMpGHpRjAxZfNnisESMF3mQ2usEvl0EH9LCt wp823YemAioPZXuXzun0wgpwh3ew7RGGZhK5ayjgcLGZTdWs1ZXglRv9J7zCZD+e szNwx8/WnyHQM5vgf7XlM1ktGpC+HX24Y3SZqRzVX5kXWoB7HfI++7aDOduwKA/x suLx0KPMxZuTj4dZb8GGTjN6AtUVw1kgckIYe1qQNpMZ5k6oYE+DM5wPDhmB6L4A kZzSqWOfXEvrDCcO67m1Q0JRoppwLIaqxG7j -----END CERTIFICATE-----Generated at Tue May 5 21:03:31 2026 by rpki-client