$ rpki-client -vvf rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a363a3a2f34382d3438203d3e203234343239.roa File: 323430353a313634303a363a3a2f34382d3438203d3e203234343239.roa (raw, json) Hash identifier: K0hWr7nblRa/oP+EjsYT3ozmxs7zbRuzowY36KyLRjU= Subject key identifier: 02:42:8C:B8:4C:99:F7:AD:7B:EC:A8:E7:8C:9C:39:DF:EF:00:A3:C0 Certificate issuer: /CN=AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A Certificate serial: 38CF1729D46685059BE6CAFEE1BA18DBCCFEA464 Authority key identifier: AD:6B:0A:2D:06:A8:57:71:D2:A2:F1:AF:69:B2:9A:53:51:A6:FE:2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a363a3a2f34382d3438203d3e203234343239.roa Signing time: Sun 03 May 2026 03:12:06 +0000 ROA not before: Sun 03 May 2026 03:07:06 +0000 ROA not after: Sun 02 May 2027 03:12:06 +0000 asID: 24429 IP address blocks: 2405:1640:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.crl rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cf:17:29:d4:66:85:05:9b:e6:ca:fe:e1:ba:18:db:cc:fe:a4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A Validity Not Before: May 3 03:07:06 2026 GMT Not After : May 2 03:12:06 2027 GMT Subject: CN=02428CB84C99F7AD7BECA8E78C9C39DFEF00A3C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:fc:2e:eb:11:6a:71:57:bc:bf:d8:16:3e: a7:ac:68:12:62:43:44:3e:ab:f4:05:01:21:33:f1: a0:b2:38:34:e9:61:cc:ca:e6:c0:e6:e0:2b:a3:ab: 8e:45:9c:5a:53:d8:a1:d2:bd:dc:72:1c:af:5f:9d: 51:d7:08:f4:00:1d:04:af:6b:e2:24:6c:01:5a:0c: 31:58:63:a2:c5:b0:af:d7:14:30:55:0e:09:f7:6a: 6a:83:e2:55:b9:6a:86:32:a6:1b:a8:24:2a:ec:41: bf:20:ed:77:8f:7a:0f:b6:34:4d:70:d9:19:11:78: 47:e4:2a:e1:f7:83:73:a3:9c:db:b9:bd:df:26:ca: b2:65:a4:62:30:01:3c:b0:16:91:12:7e:73:8b:e7: cb:78:ce:3c:02:38:e6:ed:96:ac:83:89:77:38:80: 79:82:88:c4:e8:79:3a:84:ff:6c:f8:d8:c5:b5:bc: 72:ae:0a:28:4e:a2:26:2d:fc:b6:23:c1:3c:88:d3: 27:dd:0d:cb:32:ca:8e:b3:87:17:bc:02:c7:5c:9e: 58:12:b4:82:f7:ea:9e:76:1b:ab:8e:8a:92:0b:36: d7:05:a2:ca:85:5c:28:18:fd:e9:4e:ad:e6:40:cd: c2:68:11:16:d1:23:ea:da:6e:66:fd:bf:f0:ba:3a: 69:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:42:8C:B8:4C:99:F7:AD:7B:EC:A8:E7:8C:9C:39:DF:EF:00:A3:C0 X509v3 Authority Key Identifier: keyid:AD:6B:0A:2D:06:A8:57:71:D2:A2:F1:AF:69:B2:9A:53:51:A6:FE:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a363a3a2f34382d3438203d3e203234343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1640:6::/48 Signature Algorithm: sha256WithRSAEncryption 79:0b:52:0a:d0:bd:33:d6:0f:07:0a:aa:c8:51:91:07:35:a3: 87:cd:da:f6:e8:3b:e7:62:b4:37:c6:88:f4:b4:ca:52:6b:1b: 8d:b0:6c:64:33:b7:73:38:ef:93:98:60:e8:64:a8:bc:aa:c5: a5:36:a2:37:54:7c:4e:7a:89:1e:ae:95:fb:6e:ab:d9:13:bd: a1:89:b0:26:23:05:42:e8:4b:89:f1:a2:fc:40:65:ca:23:d2: 09:ce:9f:bb:ea:13:18:a9:47:75:66:ce:c7:f5:1c:03:68:e8: f2:50:9a:da:27:55:2a:ab:e7:8c:b4:b1:9c:2b:68:49:34:61: 8d:13:32:a7:3d:71:18:b2:07:94:e7:55:ae:69:f2:e4:1e:d1: 8f:44:aa:90:6a:0d:68:14:e2:0b:3c:01:0e:94:96:6e:db:f9: 47:32:57:e1:b6:6e:63:bb:2d:e8:d1:65:2e:33:8d:ce:5d:5e: 2a:05:5f:bc:55:b6:65:7c:28:e4:3f:4d:af:ea:bb:25:bf:d9: 4f:12:0c:3f:57:ad:e2:34:76:c3:6d:0a:79:a7:14:f3:25:92: 41:6e:65:fb:87:f6:74:62:63:5e:82:f8:07:71:ff:79:27:2e: 03:46:1b:37:3f:f2:3b:15:e3:34:1b:2f:80:53:f8:e2:7e:cd: 8e:54:cf:35 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUOM8XKdRmhQWb5sr+4boY28z+pGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ2QjBBMkQwNkE4NTc3MUQyQTJGMUFGNjlCMjlBNTM1 MUE2RkUyQTAeFw0yNjA1MDMwMzA3MDZaFw0yNzA1MDIwMzEyMDZaMDMxMTAvBgNV BAMTKDAyNDI4Q0I4NEM5OUY3QUQ3QkVDQThFNzhDOUMzOURGRUYwMEEzQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCysvwu6xFqcVe8v9gWPqesaBJi Q0Q+q/QFASEz8aCyODTpYczK5sDm4Cujq45FnFpT2KHSvdxyHK9fnVHXCPQAHQSv a+IkbAFaDDFYY6LFsK/XFDBVDgn3amqD4lW5aoYyphuoJCrsQb8g7XePeg+2NE1w 2RkReEfkKuH3g3OjnNu5vd8myrJlpGIwATywFpESfnOL58t4zjwCOObtlqyDiXc4 gHmCiMToeTqE/2z42MW1vHKuCihOoiYt/LYjwTyI0yfdDcsyyo6zhxe8AsdcnlgS tIL36p52G6uOipILNtcFosqFXCgY/elOreZAzcJoERbRI+rabmb9v/C6Omn3AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUAkKMuEyZ96177KjnjJw53+8Ao8AwHwYDVR0j BBgwFoAUrWsKLQaoV3HSovGvabKaU1Gm/iowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGY1NTFhYjktODA0MS00YTlhLTliNTAtYzdjNmRlYzIxNjZmLzAvQUQ2QjBBMkQw NkE4NTc3MUQyQTJGMUFGNjlCMjlBNTM1MUE2RkUyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRDZCMEEyRDA2QTg1NzcxRDJBMkYxQUY2OUIyOUE1MzUxQTZG RTJBLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmNTUxYWI5LTgwNDEtNGE5YS05 YjUwLWM3YzZkZWMyMTY2Zi8wLzMyMzQzMDM1M2EzMTM2MzQzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMjM0MzQzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAUWQAAGMA0G CSqGSIb3DQEBCwUAA4IBAQB5C1IK0L0z1g8HCqrIUZEHNaOHzdr26DvnYrQ3xoj0 tMpSaxuNsGxkM7dzOO+TmGDoZKi8qsWlNqI3VHxOeokerpX7bqvZE72hibAmIwVC 6EuJ8aL8QGXKI9IJzp+76hMYqUd1Zs7H9RwDaOjyUJraJ1Uqq+eMtLGcK2hJNGGN EzKnPXEYsgeU51WuafLkHtGPRKqQag1oFOILPAEOlJZu2/lHMlfhtm5juy3o0WUu M43OXV4qBV+8VbZlfCjkP02v6rslv9lPEgw/V63iNHbDbQp5pxTzJZJBbmX7h/Z0 YmNegvgHcf95Jy4DRhs3P/I7FeM0Gy+AU/jifs2OVM81 -----END CERTIFICATE-----Generated at Tue May 5 18:58:01 2026 by rpki-client