$ rpki-client -vvf rpki-rsync.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/323030313a6466333a336630303a3a2f34382d3438203d3e20313336383731.roa File: 323030313a6466333a336630303a3a2f34382d3438203d3e20313336383731.roa (raw, json) Hash identifier: 4CcWucwvFiUbV7yGD9jF0QOdXA3+eK3AiJ4whM9p04M= Subject key identifier: DC:2A:F4:0A:3A:BF:E5:54:5E:42:27:58:92:9F:EA:66:DE:B1:AC:97 Certificate issuer: /CN=14D784D8F19F00DFBA4C08757485032BE04603A3 Certificate serial: 1E6099EE32D3F5B1747094E72A9EEC97C42FE6FA Authority key identifier: 14:D7:84:D8:F1:9F:00:DF:BA:4C:08:75:74:85:03:2B:E0:46:03:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/14D784D8F19F00DFBA4C08757485032BE04603A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/323030313a6466333a336630303a3a2f34382d3438203d3e20313336383731.roa Signing time: Sun 03 May 2026 02:11:26 +0000 ROA not before: Sun 03 May 2026 02:06:26 +0000 ROA not after: Sun 02 May 2027 02:11:26 +0000 asID: 136871 IP address blocks: 2001:df3:3f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/14D784D8F19F00DFBA4C08757485032BE04603A3.crl rsync://rpki-rsync.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/14D784D8F19F00DFBA4C08757485032BE04603A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/14D784D8F19F00DFBA4C08757485032BE04603A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:60:99:ee:32:d3:f5:b1:74:70:94:e7:2a:9e:ec:97:c4:2f:e6:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14D784D8F19F00DFBA4C08757485032BE04603A3 Validity Not Before: May 3 02:06:26 2026 GMT Not After : May 2 02:11:26 2027 GMT Subject: CN=DC2AF40A3ABFE5545E422758929FEA66DEB1AC97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:19:c1:b9:b2:e1:50:7b:96:76:1d:5c:bb:00: 40:f6:4b:c4:15:0a:97:68:87:b1:ca:33:23:89:8d: 0b:6d:31:38:39:6c:03:fb:14:47:63:68:2f:74:61: b6:d3:94:66:32:6c:28:82:e7:7a:30:4e:4c:d3:c2: 46:3d:97:2f:7b:d6:84:61:f3:a8:7b:d2:8c:5a:22: e6:08:ff:35:c4:ad:24:47:0d:01:4c:b3:6a:80:6d: 75:da:a6:04:6d:9c:ab:51:85:9e:65:1a:61:47:09: 7e:5d:57:01:df:0b:0c:dc:ab:8f:b6:f9:5d:bc:3f: d1:18:a6:95:16:44:da:16:07:e8:7f:25:e2:b6:ae: 2e:2e:d9:e9:79:9e:70:c2:a1:e4:a9:64:59:7e:0d: f9:f4:6e:33:c1:5e:5d:01:08:d3:e5:eb:63:c5:a3: a8:dc:b1:67:66:5b:cf:f4:56:bb:f6:57:f3:d2:a3: 72:56:b1:02:d7:0e:62:3c:7f:4c:e6:20:c9:87:1f: 74:fa:03:df:5a:b0:c3:88:d4:28:d7:1f:e0:e2:cf: 86:0b:0b:72:c7:1a:53:a6:98:db:3d:de:f3:9f:96: f6:2b:95:11:f6:15:be:c3:e2:23:70:b2:37:04:b3: f4:a4:b4:ec:7f:53:1c:30:a5:f1:59:93:16:ae:ac: 53:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2A:F4:0A:3A:BF:E5:54:5E:42:27:58:92:9F:EA:66:DE:B1:AC:97 X509v3 Authority Key Identifier: keyid:14:D7:84:D8:F1:9F:00:DF:BA:4C:08:75:74:85:03:2B:E0:46:03:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/14D784D8F19F00DFBA4C08757485032BE04603A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/14D784D8F19F00DFBA4C08757485032BE04603A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/323030313a6466333a336630303a3a2f34382d3438203d3e20313336383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:3f00::/48 Signature Algorithm: sha256WithRSAEncryption 44:fc:d0:69:b8:2f:89:8a:5c:b1:80:b2:b7:d9:da:ae:65:a9: 08:d9:6a:9a:6d:1b:c6:90:31:04:51:3f:2b:e0:cb:14:20:28: fe:e2:90:a5:9a:ab:38:e6:a3:7f:96:7b:f3:f6:00:e5:d8:9d: 33:31:2e:6b:18:0b:47:5d:44:6a:4f:0d:9b:82:8c:18:e9:b2: aa:b3:05:ea:ea:e5:20:9e:94:e8:d9:71:c3:73:7e:ed:a5:83: 17:e1:6a:eb:31:b0:d0:f8:41:73:ef:c8:9c:4c:1c:f2:69:b9: 26:2e:53:c7:d6:45:ca:40:ca:78:87:15:9d:5a:25:da:9e:35: f0:52:6f:17:e5:3d:c9:5b:d9:08:70:f0:e8:eb:cb:6a:24:ce: 4f:21:f4:2a:a1:2c:9e:38:05:fd:f0:f0:41:c2:f7:ba:b7:cb: 00:ae:39:99:66:1b:54:eb:09:3a:2d:64:73:a2:c1:b2:8c:38: 85:c2:3b:cf:46:98:6e:65:05:ac:6c:74:3f:4d:db:0a:dd:80: f0:5c:a4:0a:2c:a7:02:50:75:82:8f:6b:06:c2:bc:98:7d:72: 55:85:63:67:a1:c6:e7:fe:47:da:e6:9e:44:9f:b4:7c:bd:be: 2f:97:f2:11:05:85:a0:9e:b9:d2:f2:a4:a0:d7:c2:4a:38:61: 6e:44:81:fd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHmCZ7jLT9bF0cJTnKp7sl8Qv5vowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRENzg0RDhGMTlGMDBERkJBNEMwODc1NzQ4NTAzMkJF MDQ2MDNBMzAeFw0yNjA1MDMwMjA2MjZaFw0yNzA1MDIwMjExMjZaMDMxMTAvBgNV BAMTKERDMkFGNDBBM0FCRkU1NTQ1RTQyMjc1ODkyOUZFQTY2REVCMUFDOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpGcG5suFQe5Z2HVy7AED2S8QV Cpdoh7HKMyOJjQttMTg5bAP7FEdjaC90YbbTlGYybCiC53owTkzTwkY9ly971oRh 86h70oxaIuYI/zXErSRHDQFMs2qAbXXapgRtnKtRhZ5lGmFHCX5dVwHfCwzcq4+2 +V28P9EYppUWRNoWB+h/JeK2ri4u2el5nnDCoeSpZFl+Dfn0bjPBXl0BCNPl62PF o6jcsWdmW8/0Vrv2V/PSo3JWsQLXDmI8f0zmIMmHH3T6A99asMOI1CjXH+Diz4YL C3LHGlOmmNs93vOflvYrlRH2Fb7D4iNwsjcEs/SktOx/UxwwpfFZkxaurFMpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3Cr0Cjq/5VReQidYkp/qZt6xrJcwHwYDVR0j BBgwFoAUFNeE2PGfAN+6TAh1dIUDK+BGA6MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDYwNzQ0YjEtMjUyOS00YWUyLWI1ZDUtNWQ0OTlkM2Y1MmMyLzAvMTRENzg0RDhG MTlGMDBERkJBNEMwODc1NzQ4NTAzMkJFMDQ2MDNBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNEQ3ODREOEYxOUYwMERGQkE0QzA4NzU3NDg1MDMyQkUwNDYw M0EzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2MDc0NGIxLTI1MjktNGFlMi1i NWQ1LTVkNDk5ZDNmNTJjMi8wLzMyMzAzMDMxM2E2NDY2MzMzYTMzNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzgzNzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8z8AMA0GCSqGSIb3DQEBCwUAA4IBAQBE/NBpuC+JilyxgLK32dquZakI2WqabRvG kDEEUT8r4MsUICj+4pClmqs45qN/lnvz9gDl2J0zMS5rGAtHXURqTw2bgowY6bKq swXq6uUgnpTo2XHDc37tpYMX4WrrMbDQ+EFz78icTBzyabkmLlPH1kXKQMp4hxWd WiXanjXwUm8X5T3JW9kIcPDo68tqJM5PIfQqoSyeOAX98PBBwve6t8sArjmZZhtU 6wk6LWRzosGyjDiFwjvPRphuZQWsbHQ/TdsK3YDwXKQKLKcCUHWCj2sGwryYfXJV hWNnocbn/kfa5p5En7R8vb4vl/IRBYWgnrnS8qSg18JKOGFuRIH9 -----END CERTIFICATE-----Generated at Wed May 13 11:59:23 2026 by rpki-client