$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa File: 323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa (raw, json) Hash identifier: 3ex6+M1Mdtsc4EjQuuzwJkgMQ9mnmgEROmDyzDTwmbw= Subject key identifier: 80:6D:BF:92:33:34:1F:6F:9E:71:D0:E6:1D:3B:1F:C9:39:0B:E2:2A Certificate issuer: /CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Certificate serial: 7D60D924AFC986BDFEFA0D217EECE7D46FE59043 Authority key identifier: 69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa Signing time: Sun 03 May 2026 02:57:50 +0000 ROA not before: Sun 03 May 2026 02:52:50 +0000 ROA not after: Sun 02 May 2027 02:57:50 +0000 asID: 59282 IP address blocks: 2400:d680:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:60:d9:24:af:c9:86:bd:fe:fa:0d:21:7e:ec:e7:d4:6f:e5:90:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69955FC73F1288024E7CAF0C1D825E8389B6B25D Validity Not Before: May 3 02:52:50 2026 GMT Not After : May 2 02:57:50 2027 GMT Subject: CN=806DBF9233341F6F9E71D0E61D3B1FC9390BE22A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:8d:cf:57:3a:18:e4:7c:7d:a8:6e:21:70: 8a:b2:aa:26:0b:d4:e4:8e:08:c9:14:ae:85:8a:de: f6:34:d0:d3:81:4f:15:1b:a1:1c:f8:cf:a4:b5:85: 3a:ba:b1:21:68:09:32:b6:83:f2:c1:3d:b1:ab:5a: 0b:ae:e4:15:b9:ba:7d:b8:78:6b:94:2c:96:7a:b2: 98:de:f9:dc:e9:24:6a:90:78:ec:22:4a:cc:60:e1: a2:a0:e6:01:51:f6:92:51:20:ae:fc:72:24:ce:9a: a6:1b:db:8a:57:0f:e6:d8:c1:a1:09:ba:fa:d3:6f: 61:bc:e7:be:0c:81:29:66:0b:b7:1d:40:41:ef:a9: a3:a8:f6:d1:e7:b2:df:09:48:75:39:ab:e1:2a:fd: 69:ab:4e:b2:a8:a9:8b:d5:17:83:2f:6d:68:db:aa: 01:a3:d5:d2:8e:5b:3e:20:d1:14:23:da:dd:c8:b2: 45:7d:d9:da:9d:0e:7f:53:92:9c:a0:54:fd:df:73: d0:fd:d7:b3:77:41:e9:34:0a:64:cf:82:e1:0b:68: b6:c4:0a:d7:eb:75:f5:f5:fc:d1:35:49:fa:6c:ec: 44:46:57:e3:90:7d:f5:63:4e:82:67:0c:db:b7:d1: e9:b7:e9:30:ce:78:52:99:06:c9:55:b7:4a:bd:e0: a7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6D:BF:92:33:34:1F:6F:9E:71:D0:E6:1D:3B:1F:C9:39:0B:E2:2A X509v3 Authority Key Identifier: keyid:69:95:5F:C7:3F:12:88:02:4E:7C:AF:0C:1D:82:5E:83:89:B6:B2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/69955FC73F1288024E7CAF0C1D825E8389B6B25D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/69955FC73F1288024E7CAF0C1D825E8389B6B25D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680:face::/48 Signature Algorithm: sha256WithRSAEncryption 2a:aa:c1:41:27:c2:78:d0:f0:d9:0a:df:e9:26:67:61:23:ef: ee:de:c0:4d:89:15:d6:97:ac:c7:46:86:50:8b:4e:54:94:b6: 18:92:78:f1:35:0e:d1:6e:45:f1:df:d1:16:7c:8e:03:a7:ed: 2c:d5:f0:e7:cd:03:4e:0e:97:91:4a:0a:9b:1b:20:76:3d:f2: 26:8c:c4:e1:c2:9e:d6:18:28:f6:13:28:c0:f4:2b:77:67:78: 33:da:ad:30:d8:48:7b:b6:5f:cf:f0:4f:30:9b:8d:4c:f1:1d: d4:c1:4b:1b:b6:08:c3:16:c9:06:15:e4:0b:e8:29:7f:d9:3e: 8e:97:b0:0e:40:a8:4b:0e:15:e5:5f:32:55:85:88:89:1f:33: ea:3b:c7:55:ad:55:34:75:66:4a:c6:1a:db:5f:07:fd:64:b4: c0:dd:c5:e1:61:00:e0:37:3d:3e:3d:7d:47:e9:ce:9f:43:77: 5f:83:04:ec:73:02:25:73:25:5f:0f:f3:ba:28:11:ae:07:a5: 3a:2e:d2:ff:3f:79:37:fe:8b:10:08:d2:cd:42:b3:33:52:36: df:cd:89:22:20:da:3a:9c:07:45:bb:ee:2b:83:e9:95:5e:1f: 90:36:a7:3c:20:d4:09:fc:42:a9:a5:44:20:0d:4b:1e:8a:2a: 2e:2a:d9:95 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfWDZJK/Jhr3++g0hfuzn1G/lkEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NTVGQzczRjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4 OUI2QjI1RDAeFw0yNjA1MDMwMjUyNTBaFw0yNzA1MDIwMjU3NTBaMDMxMTAvBgNV BAMTKDgwNkRCRjkyMzMzNDFGNkY5RTcxRDBFNjFEM0IxRkM5MzkwQkUyMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7H43PVzoY5Hx9qG4hcIqyqiYL 1OSOCMkUroWK3vY00NOBTxUboRz4z6S1hTq6sSFoCTK2g/LBPbGrWguu5BW5un24 eGuULJZ6spje+dzpJGqQeOwiSsxg4aKg5gFR9pJRIK78ciTOmqYb24pXD+bYwaEJ uvrTb2G8574MgSlmC7cdQEHvqaOo9tHnst8JSHU5q+Eq/WmrTrKoqYvVF4MvbWjb qgGj1dKOWz4g0RQj2t3IskV92dqdDn9TkpygVP3fc9D917N3Qek0CmTPguELaLbE CtfrdfX1/NE1Sfps7ERGV+OQffVjToJnDNu30em36TDOeFKZBslVt0q94KcrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgG2/kjM0H2+ecdDmHTsfyTkL4iowHwYDVR0j BBgwFoAUaZVfxz8SiAJOfK8MHYJeg4m2sl0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTg0NjRhNWItMmZjZS00N2RhLTgwNDctNjhkMmJkNjNjOWMzLzAvNjk5NTVGQzcz RjEyODgwMjRFN0NBRjBDMUQ4MjVFODM4OUI2QjI1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OTk1NUZDNzNGMTI4ODAyNEU3Q0FGMEMxRDgyNUU4Mzg5QjZC MjVELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADW gPrOMA0GCSqGSIb3DQEBCwUAA4IBAQAqqsFBJ8J40PDZCt/pJmdhI+/u3sBNiRXW l6zHRoZQi05UlLYYknjxNQ7RbkXx39EWfI4Dp+0s1fDnzQNODpeRSgqbGyB2PfIm jMThwp7WGCj2EyjA9Ct3Z3gz2q0w2Eh7tl/P8E8wm41M8R3UwUsbtgjDFskGFeQL 6Cl/2T6Ol7AOQKhLDhXlXzJVhYiJHzPqO8dVrVU0dWZKxhrbXwf9ZLTA3cXhYQDg Nz0+PX1H6c6fQ3dfgwTscwIlcyVfD/O6KBGuB6U6LtL/P3k3/osQCNLNQrMzUjbf zYkiINo6nAdFu+4rg+mVXh+QNqc8INQJ/EKppUQgDUseiiouKtmV -----END CERTIFICATE-----Generated at Tue May 5 21:04:44 2026 by rpki-client