$ rpki-client -vvf rpki-rsync.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa File: 323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa (raw, json) Hash identifier: fsyTi1wKrYDgpsKCw76juglRx93+2YzZ5l6lzjCtU8E= Subject key identifier: 04:E2:9C:A8:85:45:24:72:B1:8F:99:97:25:87:41:AA:A2:B1:83:5A Certificate issuer: /CN=1DD0DE90198F9D1A28E457EE5788E7D13547CB91 Certificate serial: 53DC9B93F1DF0E286703594F5295BBFA455B8B68 Authority key identifier: 1D:D0:DE:90:19:8F:9D:1A:28:E4:57:EE:57:88:E7:D1:35:47:CB:91 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DD0DE90198F9D1A28E457EE5788E7D13547CB91.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa Signing time: Sun 03 May 2026 02:11:14 +0000 ROA not before: Sun 03 May 2026 02:06:14 +0000 ROA not after: Sun 02 May 2027 02:11:14 +0000 asID: 152392 IP address blocks: 2001:df3:c340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/1DD0DE90198F9D1A28E457EE5788E7D13547CB91.crl rsync://rpki-rsync.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/1DD0DE90198F9D1A28E457EE5788E7D13547CB91.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DD0DE90198F9D1A28E457EE5788E7D13547CB91.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:dc:9b:93:f1:df:0e:28:67:03:59:4f:52:95:bb:fa:45:5b:8b:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DD0DE90198F9D1A28E457EE5788E7D13547CB91 Validity Not Before: May 3 02:06:14 2026 GMT Not After : May 2 02:11:14 2027 GMT Subject: CN=04E29CA885452472B18F9997258741AAA2B1835A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7b:64:5a:01:a2:e6:ee:35:13:90:14:5d:c7: ca:b0:63:47:ec:85:18:76:17:56:12:af:1a:13:46: d8:53:09:eb:56:1d:c6:da:b8:f7:c9:3b:ed:b0:27: 0f:6d:4b:e5:2b:42:b2:a3:3a:9c:49:d3:2d:6e:e1: 96:07:e7:02:54:5e:29:58:cc:47:aa:15:b0:e8:06: e3:51:b6:b6:c3:f5:93:fa:41:ee:db:42:1c:6d:2e: d2:7a:68:e6:1f:c0:07:09:3f:0d:b5:1a:98:18:fe: ed:e9:cd:b0:ee:95:aa:65:c4:0c:91:72:dd:2d:9c: 93:b4:a8:f9:b2:f0:ae:b2:00:87:fb:44:ac:a1:b7: 36:f1:81:a4:d8:22:82:a3:26:86:31:36:3d:17:24: 63:65:46:94:58:8b:2b:57:79:17:8b:6b:e3:6a:ce: 29:76:c3:3d:a2:61:a0:71:e6:1c:31:f8:2f:22:0a: 50:57:b5:c2:5d:2e:f1:af:71:82:1c:f0:1c:a2:f2: 4d:20:02:02:a4:92:0a:ca:a7:80:87:b3:af:e8:42: 81:ac:3c:ea:28:bc:1a:ce:21:56:72:15:71:d0:5e: 82:6d:5e:40:9b:13:3f:30:e4:37:26:71:1c:b5:e1: 1f:e7:6a:94:a5:f0:aa:fb:72:11:aa:0e:60:7e:57: ea:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E2:9C:A8:85:45:24:72:B1:8F:99:97:25:87:41:AA:A2:B1:83:5A X509v3 Authority Key Identifier: keyid:1D:D0:DE:90:19:8F:9D:1A:28:E4:57:EE:57:88:E7:D1:35:47:CB:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/1DD0DE90198F9D1A28E457EE5788E7D13547CB91.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1DD0DE90198F9D1A28E457EE5788E7D13547CB91.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/323030313a6466333a633334303a3a2f34382d3438203d3e20313532333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c340::/48 Signature Algorithm: sha256WithRSAEncryption 5e:8e:de:4f:e5:39:1b:b2:12:c3:17:50:8a:21:03:fe:38:1a: ee:f0:eb:eb:16:9e:6b:56:80:43:ea:c7:be:a9:c5:d7:59:88: de:cf:55:c2:f9:16:59:26:d7:a0:30:ab:c1:b4:db:95:87:44: df:73:81:23:20:e4:5c:9a:f8:e4:d6:a1:b1:86:3b:c7:b0:08: 84:af:ca:ed:c2:3e:f5:db:07:83:6d:4b:ac:c7:03:ea:bb:51: 3e:ab:34:8c:01:79:7b:c9:75:fa:31:5c:ab:53:60:f3:94:12: e3:f6:35:d4:9f:2d:10:13:05:f1:27:80:13:28:ff:b4:cd:ae: 18:39:93:df:59:8b:86:a7:76:a7:f2:dd:44:cf:1e:ee:c3:79: 29:c4:2b:87:ad:e5:b9:ed:49:ed:19:f8:33:2c:22:1f:a3:97: c8:28:2f:39:59:ad:54:cf:a3:2b:33:ed:34:28:3f:9f:29:74: 70:78:ed:5d:f9:da:28:a9:42:2b:1b:e4:a8:57:5a:47:f6:ca: 61:14:9b:19:75:bd:0b:12:81:7d:19:a2:5b:3c:d1:7e:db:2f: 33:a5:91:56:14:96:fe:50:76:4d:a0:5c:b7:1f:14:ef:b9:81: 0e:bc:fd:eb:6e:d8:38:cb:69:58:f2:4f:33:91:12:d9:29:51: 4d:64:1f:91 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUU9ybk/HfDihnA1lPUpW7+kVbi2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUREMERFOTAxOThGOUQxQTI4RTQ1N0VFNTc4OEU3RDEz NTQ3Q0I5MTAeFw0yNjA1MDMwMjA2MTRaFw0yNzA1MDIwMjExMTRaMDMxMTAvBgNV BAMTKDA0RTI5Q0E4ODU0NTI0NzJCMThGOTk5NzI1ODc0MUFBQTJCMTgzNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCte2RaAaLm7jUTkBRdx8qwY0fs hRh2F1YSrxoTRthTCetWHcbauPfJO+2wJw9tS+UrQrKjOpxJ0y1u4ZYH5wJUXilY zEeqFbDoBuNRtrbD9ZP6Qe7bQhxtLtJ6aOYfwAcJPw21GpgY/u3pzbDulaplxAyR ct0tnJO0qPmy8K6yAIf7RKyhtzbxgaTYIoKjJoYxNj0XJGNlRpRYiytXeReLa+Nq zil2wz2iYaBx5hwx+C8iClBXtcJdLvGvcYIc8Byi8k0gAgKkkgrKp4CHs6/oQoGs POoovBrOIVZyFXHQXoJtXkCbEz8w5DcmcRy14R/napSl8Kr7chGqDmB+V+rLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBOKcqIVFJHKxj5mXJYdBqqKxg1owHwYDVR0j BBgwFoAUHdDekBmPnRoo5FfuV4jn0TVHy5EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDU4OGRmZjctNmE5Mi00MjkzLTg4MDAtYjUzZTJhOTE4YWNhLzEvMUREMERFOTAx OThGOUQxQTI4RTQ1N0VFNTc4OEU3RDEzNTQ3Q0I5MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xREQwREU5MDE5OEY5RDFBMjhFNDU3RUU1Nzg4RTdEMTM1NDdD QjkxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3LTZhOTItNDI5My04 ODAwLWI1M2UyYTkxOGFjYS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzMzOTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 88NAMA0GCSqGSIb3DQEBCwUAA4IBAQBejt5P5TkbshLDF1CKIQP+OBru8OvrFp5r VoBD6se+qcXXWYjez1XC+RZZJtegMKvBtNuVh0Tfc4EjIORcmvjk1qGxhjvHsAiE r8rtwj712weDbUusxwPqu1E+qzSMAXl7yXX6MVyrU2DzlBLj9jXUny0QEwXxJ4AT KP+0za4YOZPfWYuGp3an8t1Ezx7uw3kpxCuHreW57UntGfgzLCIfo5fIKC85Wa1U z6MrM+00KD+fKXRweO1d+dooqUIrG+SoV1pH9sphFJsZdb0LEoF9GaJbPNF+2y8z pZFWFJb+UHZNoFy3HxTvuYEOvP3rbtg4y2lY8k8zkRLZKVFNZB+R -----END CERTIFICATE-----Generated at Wed May 13 15:26:48 2026 by rpki-client