$ rpki-client -vvf rpki-rsync.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa File: 323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa (raw, json) Hash identifier: bKB1+9DVRDsboHXw+3VJPB+BasxR0bz/Ky0FIGacWWE= Subject key identifier: 53:B3:5D:2D:91:DD:95:17:81:51:FB:B4:04:20:C0:8E:C4:9A:EF:C7 Certificate issuer: /CN=7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677 Certificate serial: 5EF12F3020C71FEC00FD1EFEF8E94E64315A10DB Authority key identifier: 78:15:DB:BA:44:B8:A2:E8:3F:DE:40:C3:2B:E2:A6:E5:9D:10:A6:77 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa Signing time: Sun 03 May 2026 02:10:55 +0000 ROA not before: Sun 03 May 2026 02:05:55 +0000 ROA not after: Sun 02 May 2027 02:10:55 +0000 asID: 153112 IP address blocks: 2001:df4:3a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677.crl rsync://rpki-rsync.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f1:2f:30:20:c7:1f:ec:00:fd:1e:fe:f8:e9:4e:64:31:5a:10:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677 Validity Not Before: May 3 02:05:55 2026 GMT Not After : May 2 02:10:55 2027 GMT Subject: CN=53B35D2D91DD95178151FBB40420C08EC49AEFC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e2:b8:10:7e:0d:73:ff:d8:2b:53:2f:71:10: d1:b7:f3:17:ed:53:3f:2c:de:35:87:b3:d3:49:fc: 0d:01:63:08:c9:89:c0:da:78:9e:ae:e6:a2:2f:4a: 17:4c:89:a4:66:9a:80:c8:bc:5f:bc:3a:29:f3:49: 02:d7:c2:24:c1:c3:8b:02:2f:29:e1:fb:ed:5d:91: 3c:d7:97:d0:32:92:a8:34:64:da:cd:a6:fd:d6:7e: 23:e5:4f:99:3e:7d:37:8f:01:3e:7e:e3:54:6e:64: 1b:b2:79:ce:82:e0:dd:6b:62:5b:e7:d5:6d:7c:9d: 19:db:02:90:57:03:cc:ff:e3:6e:a0:e5:f6:d0:dc: d9:e2:7c:47:ba:fb:5c:a8:0d:df:17:5a:2f:49:b7: 34:35:d5:c6:39:a4:98:3d:4e:05:b1:e9:3c:46:06: d9:62:a4:af:53:27:85:45:7c:39:06:54:2b:50:38: 7d:ce:a5:ea:5a:58:90:88:b4:a6:71:36:39:72:2c: e3:7e:04:a5:e5:4a:ed:1d:df:91:75:47:26:4b:8d: 09:71:e5:c8:bc:74:7b:b4:d4:37:93:96:c3:a6:16: 76:1c:b0:7a:f3:bd:4c:e8:95:1e:8a:68:3e:92:cc: cb:c5:0f:02:d9:e7:ea:27:7f:d8:84:43:64:c4:07: da:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B3:5D:2D:91:DD:95:17:81:51:FB:B4:04:20:C0:8E:C4:9A:EF:C7 X509v3 Authority Key Identifier: keyid:78:15:DB:BA:44:B8:A2:E8:3F:DE:40:C3:2B:E2:A6:E5:9D:10:A6:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7815DBBA44B8A2E83FDE40C32BE2A6E59D10A677.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0456519e-ab61-4943-b3e8-10bdd6080fda/1/323030313a6466343a336134303a3a2f34382d3438203d3e20313533313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3a40::/48 Signature Algorithm: sha256WithRSAEncryption 8d:cd:7e:fe:d0:10:c7:6b:f1:31:0d:25:52:88:61:e0:48:2a: c6:ee:4d:61:28:e1:17:59:0d:3e:c7:1f:e8:12:fb:53:11:3f: 24:f4:23:25:99:01:54:c3:ed:50:cf:c0:89:d7:7a:7a:10:44: ef:f2:eb:d7:3c:6b:36:75:ea:57:20:56:30:2e:43:70:2c:62: 1a:c6:c3:f2:62:2b:19:f2:c6:ce:43:3a:40:d9:8e:8d:5e:36: 40:b9:30:47:70:ab:54:65:de:03:61:03:cd:ca:fd:9e:58:25: 5a:6e:a4:1f:07:81:cf:54:f9:21:ed:d6:b9:c7:b0:2b:1f:76: b7:de:94:2c:8b:d3:7c:33:a4:1e:ed:2a:8a:71:c5:a8:3e:c0: 66:b3:07:a7:e9:43:41:d3:ca:03:bc:0d:e6:29:7a:1e:ba:4b: 9a:d5:4d:e9:67:c1:83:26:aa:73:fc:95:87:c6:99:bc:91:bb: 8e:a7:d2:b6:70:27:04:ce:cb:ed:9f:a1:d6:b9:ac:e5:e8:7d: 2c:0a:94:ba:55:e1:03:95:93:c1:5c:34:49:3f:1b:af:ec:0a: 97:df:c5:54:d9:1f:fe:a5:69:d8:c4:3e:ba:af:47:f2:7b:08: 37:39:d5:94:04:4a:9c:f0:52:ee:a9:30:61:6c:86:1e:5b:e0: 30:ac:8d:30 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXvEvMCDHH+wA/R7++OlOZDFaENswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgxNURCQkE0NEI4QTJFODNGREU0MEMzMkJFMkE2RTU5 RDEwQTY3NzAeFw0yNjA1MDMwMjA1NTVaFw0yNzA1MDIwMjEwNTVaMDMxMTAvBgNV BAMTKDUzQjM1RDJEOTFERDk1MTc4MTUxRkJCNDA0MjBDMDhFQzQ5QUVGQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCP4rgQfg1z/9grUy9xENG38xft Uz8s3jWHs9NJ/A0BYwjJicDaeJ6u5qIvShdMiaRmmoDIvF+8OinzSQLXwiTBw4sC Lynh++1dkTzXl9Aykqg0ZNrNpv3WfiPlT5k+fTePAT5+41RuZBuyec6C4N1rYlvn 1W18nRnbApBXA8z/426g5fbQ3NnifEe6+1yoDd8XWi9JtzQ11cY5pJg9TgWx6TxG BtlipK9TJ4VFfDkGVCtQOH3OpepaWJCItKZxNjlyLON+BKXlSu0d35F1RyZLjQlx 5ci8dHu01DeTlsOmFnYcsHrzvUzolR6KaD6SzMvFDwLZ5+onf9iEQ2TEB9qPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUU7NdLZHdlReBUfu0BCDAjsSa78cwHwYDVR0j BBgwFoAUeBXbukS4oug/3kDDK+Km5Z0QpncwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDQ1NjUxOWUtYWI2MS00OTQzLWIzZTgtMTBiZGQ2MDgwZmRhLzEvNzgxNURCQkE0 NEI4QTJFODNGREU0MEMzMkJFMkE2RTU5RDEwQTY3Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83ODE1REJCQTQ0QjhBMkU4M0ZERTQwQzMyQkUyQTZFNTlEMTBB Njc3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA0NTY1MTllLWFiNjEtNDk0My1i M2U4LTEwYmRkNjA4MGZkYS8xLzMyMzAzMDMxM2E2NDY2MzQzYTMzNjEzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9DpAMA0GCSqGSIb3DQEBCwUAA4IBAQCNzX7+0BDHa/ExDSVSiGHgSCrG7k1hKOEX WQ0+xx/oEvtTET8k9CMlmQFUw+1Qz8CJ13p6EETv8uvXPGs2depXIFYwLkNwLGIa xsPyYisZ8sbOQzpA2Y6NXjZAuTBHcKtUZd4DYQPNyv2eWCVabqQfB4HPVPkh7da5 x7ArH3a33pQsi9N8M6Qe7SqKccWoPsBmswen6UNB08oDvA3mKXoeukua1U3pZ8GD Jqpz/JWHxpm8kbuOp9K2cCcEzsvtn6HWuazl6H0sCpS6VeEDlZPBXDRJPxuv7AqX 38VU2R/+pWnYxD66r0fyewg3OdWUBEqc8FLuqTBhbIYeW+AwrI0w -----END CERTIFICATE-----Generated at Wed May 13 12:42:13 2026 by rpki-client