$ rpki-client -vvf rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a3a2f33322d3438203d3e20313338383836.roa File: 323430353a313634303a3a2f33322d3438203d3e20313338383836.roa (raw, json) Hash identifier: NH4yUQHyXjk48GXKuIwjhyG7vZ+Cx25bwYRUGuZituk= Subject key identifier: 2C:8F:71:AE:CE:C2:1D:A7:9D:82:A6:8F:85:8C:6F:D2:84:2C:59:DD Certificate issuer: /CN=AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A Certificate serial: 5C86B3AACCF1319CFC4CAC02CF2C5354CA36930B Authority key identifier: AD:6B:0A:2D:06:A8:57:71:D2:A2:F1:AF:69:B2:9A:53:51:A6:FE:2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a3a2f33322d3438203d3e20313338383836.roa Signing time: Sun 03 May 2026 03:12:05 +0000 ROA not before: Sun 03 May 2026 03:07:05 +0000 ROA not after: Sun 02 May 2027 03:12:05 +0000 asID: 138886 IP address blocks: 2405:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.crl rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 12:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:86:b3:aa:cc:f1:31:9c:fc:4c:ac:02:cf:2c:53:54:ca:36:93:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A Validity Not Before: May 3 03:07:05 2026 GMT Not After : May 2 03:12:05 2027 GMT Subject: CN=2C8F71AECEC21DA79D82A68F858C6FD2842C59DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:94:b2:44:64:e2:cc:a7:ee:1e:39:33:ff:07: 0d:f7:10:78:a7:99:bc:c6:10:74:0b:7f:57:f0:94: 7e:ed:4e:0c:ee:93:25:16:0e:ee:17:39:03:1f:23: 15:f4:f5:31:3d:7f:7b:9a:a2:b9:74:60:c7:94:88: 1c:b9:20:04:67:d6:bd:b7:eb:a6:83:dc:26:0f:a0: e0:1b:da:d0:d1:70:41:25:b2:cf:01:1f:3b:d2:6b: f5:f5:ab:fe:05:7e:7d:41:3c:aa:0d:91:cd:6c:42: bd:40:58:b6:bd:de:91:36:d1:f7:d4:75:86:e9:88: c8:12:80:3d:35:30:ec:f8:63:33:e0:81:97:02:97: f9:d0:0c:95:be:8d:86:67:9b:a8:92:9b:b5:97:de: 97:4c:e4:64:81:12:99:41:ac:9d:e8:fc:d3:aa:eb: e0:da:e9:35:1f:1d:18:8d:2c:38:37:75:42:2b:9a: 7b:10:cb:df:2f:96:a0:71:f0:dc:56:2e:de:14:18: 95:14:89:12:32:92:e0:24:c5:b1:48:72:07:d8:36: 2b:69:e2:8c:d5:d2:82:00:9f:b2:7a:81:a9:93:d6: b7:35:9e:f6:f4:5c:33:85:0d:b0:fb:48:5c:c2:b9: 0b:31:b0:e8:3b:d8:55:bf:f5:d5:1e:ff:2b:f7:3b: b6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8F:71:AE:CE:C2:1D:A7:9D:82:A6:8F:85:8C:6F:D2:84:2C:59:DD X509v3 Authority Key Identifier: keyid:AD:6B:0A:2D:06:A8:57:71:D2:A2:F1:AF:69:B2:9A:53:51:A6:FE:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AD6B0A2D06A85771D2A2F1AF69B29A5351A6FE2A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a3a2f33322d3438203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1640::/32 Signature Algorithm: sha256WithRSAEncryption 38:ee:01:a8:fd:d5:63:09:23:12:dc:9f:7b:c7:e2:12:fa:ba: 0e:42:0c:e2:74:c7:9e:e7:63:38:34:9e:04:ce:de:e3:1c:b4: 2a:ba:00:35:dc:43:36:21:f1:f1:b6:5b:00:bd:77:50:48:11: 85:e7:49:ad:b3:61:52:26:bd:aa:31:05:02:45:37:a5:5c:ef: 46:04:83:39:cb:37:7e:06:0f:26:3e:97:d1:4e:f4:48:2c:f3: 1a:2f:55:9e:22:90:2f:78:17:42:bb:54:55:22:b2:96:66:b2: f0:0d:2d:3b:49:09:b6:8c:b3:a0:27:8b:94:b5:d9:f7:90:19: cb:97:4f:99:56:65:99:c2:78:10:8f:cf:66:6b:b0:12:11:99: a6:14:cf:a4:52:3f:31:54:72:93:f0:f9:e9:58:24:a2:fa:e1: 12:b7:b1:06:32:f6:19:ff:9c:77:84:18:c7:b5:8e:eb:5f:cd: bb:3a:c5:df:f7:14:2d:93:e7:08:90:f1:af:3e:38:67:40:af: 7c:a9:41:3f:3b:c6:f8:64:9e:24:45:1e:70:0e:e6:d6:f2:65: b3:66:4c:38:10:a3:69:ce:4e:02:bd:bd:6c:fc:de:2e:c9:88: 77:26:7e:df:6f:fd:ca:a4:ab:b0:1c:ad:5b:88:fb:8e:c3:8e: 2a:5e:d4:9d -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUXIazqszxMZz8TKwCzyxTVMo2kwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ2QjBBMkQwNkE4NTc3MUQyQTJGMUFGNjlCMjlBNTM1 MUE2RkUyQTAeFw0yNjA1MDMwMzA3MDVaFw0yNzA1MDIwMzEyMDVaMDMxMTAvBgNV BAMTKDJDOEY3MUFFQ0VDMjFEQTc5RDgyQTY4Rjg1OEM2RkQyODQyQzU5REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCglLJEZOLMp+4eOTP/Bw33EHin mbzGEHQLf1fwlH7tTgzukyUWDu4XOQMfIxX09TE9f3uaorl0YMeUiBy5IARn1r23 66aD3CYPoOAb2tDRcEElss8BHzvSa/X1q/4Ffn1BPKoNkc1sQr1AWLa93pE20ffU dYbpiMgSgD01MOz4YzPggZcCl/nQDJW+jYZnm6iSm7WX3pdM5GSBEplBrJ3o/NOq 6+Da6TUfHRiNLDg3dUIrmnsQy98vlqBx8NxWLt4UGJUUiRIykuAkxbFIcgfYNitp 4ozV0oIAn7J6gamT1rc1nvb0XDOFDbD7SFzCuQsxsOg72FW/9dUe/yv3O7Z1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQULI9xrs7CHaedgqaPhYxv0oQsWd0wHwYDVR0j BBgwFoAUrWsKLQaoV3HSovGvabKaU1Gm/iowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGY1NTFhYjktODA0MS00YTlhLTliNTAtYzdjNmRlYzIxNjZmLzAvQUQ2QjBBMkQw NkE4NTc3MUQyQTJGMUFGNjlCMjlBNTM1MUE2RkUyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRDZCMEEyRDA2QTg1NzcxRDJBMkYxQUY2OUIyOUE1MzUxQTZG RTJBLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RmNTUxYWI5LTgwNDEtNGE5YS05 YjUwLWM3YzZkZWMyMTY2Zi8wLzMyMzQzMDM1M2EzMTM2MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFFkAwDQYJKoZI hvcNAQELBQADggEBADjuAaj91WMJIxLcn3vH4hL6ug5CDOJ0x57nYzg0ngTO3uMc tCq6ADXcQzYh8fG2WwC9d1BIEYXnSa2zYVImvaoxBQJFN6Vc70YEgznLN34GDyY+ l9FO9Egs8xovVZ4ikC94F0K7VFUispZmsvANLTtJCbaMs6Ani5S12feQGcuXT5lW ZZnCeBCPz2ZrsBIRmaYUz6RSPzFUcpPw+elYJKL64RK3sQYy9hn/nHeEGMe1jutf zbs6xd/3FC2T5wiQ8a8+OGdAr3ypQT87xvhkniRFHnAO5tbyZbNmTDgQo2nOTgK9 vWz83i7JiHcmft9v/cqkq7AcrVuI+47Djipe1J0= -----END CERTIFICATE-----Generated at Tue May 5 16:51:22 2026 by rpki-client