$ rpki-client -vvf rpki-rsync.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/323030313a6466333a653563303a3a2f34382d3438203d3e20313430343233.roa File: 323030313a6466333a653563303a3a2f34382d3438203d3e20313430343233.roa (raw, json) Hash identifier: r8HkCpINzf8MUL+ZwgRHMLjx/E/uKIxBx07xyWJ8oXY= Subject key identifier: C6:E4:B7:FF:73:4E:81:B0:96:AA:45:53:D3:E7:DE:D1:5C:8F:03:AB Certificate issuer: /CN=994E7625F275D75C44DFB4A7ADF4842506F11789 Certificate serial: 7AF9573E5F057FD0EBF8014ABB32BB8C27E5AB1B Authority key identifier: 99:4E:76:25:F2:75:D7:5C:44:DF:B4:A7:AD:F4:84:25:06:F1:17:89 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/994E7625F275D75C44DFB4A7ADF4842506F11789.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/323030313a6466333a653563303a3a2f34382d3438203d3e20313430343233.roa Signing time: Sun 03 May 2026 02:13:35 +0000 ROA not before: Sun 03 May 2026 02:08:35 +0000 ROA not after: Sun 02 May 2027 02:13:35 +0000 asID: 140423 IP address blocks: 2001:df3:e5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/994E7625F275D75C44DFB4A7ADF4842506F11789.crl rsync://rpki-rsync.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/994E7625F275D75C44DFB4A7ADF4842506F11789.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/994E7625F275D75C44DFB4A7ADF4842506F11789.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f9:57:3e:5f:05:7f:d0:eb:f8:01:4a:bb:32:bb:8c:27:e5:ab:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=994E7625F275D75C44DFB4A7ADF4842506F11789 Validity Not Before: May 3 02:08:35 2026 GMT Not After : May 2 02:13:35 2027 GMT Subject: CN=C6E4B7FF734E81B096AA4553D3E7DED15C8F03AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a6:c7:5c:23:74:73:30:db:68:af:47:a1:a4: 47:06:82:d3:18:c4:fa:fe:79:76:6f:4d:2a:fc:36: 52:dd:9f:5e:77:16:da:a5:bd:37:ba:1a:b7:4e:49: 01:58:b1:a9:fe:f5:89:7c:c3:8b:da:fa:01:71:67: 5a:29:c3:e9:f8:04:45:c0:0a:26:ea:a1:e9:97:ce: 3c:c6:9c:0e:e1:1a:5e:92:a5:57:c5:93:7e:80:59: 12:3f:69:53:e8:e2:ec:91:0d:a4:92:01:51:98:b5: fe:7d:12:78:e1:b4:51:d3:a6:7f:73:9c:0b:f0:f2: 38:fd:58:d7:8a:6f:36:4a:40:5c:64:f5:13:f2:b7: c1:43:97:67:7c:ad:3c:be:61:16:31:dd:c5:4d:88: 10:9c:c9:a4:cb:cc:d3:a8:7e:41:b6:d8:4e:2b:33: c6:b2:46:9c:eb:cb:a3:2a:62:1b:9f:00:6f:44:9d: b2:1b:ee:c3:fe:ff:c8:a6:29:5a:ad:e3:13:6b:a0: 0d:36:19:1b:c5:6c:d6:33:15:b2:a4:41:90:72:65: 3e:5d:63:39:49:84:f1:91:8f:f1:4e:4e:3f:31:42: f2:9a:fe:c5:79:51:b8:6c:ad:69:00:ae:6e:cc:da: 9a:ed:5f:d7:d6:80:3e:ef:d0:18:26:eb:a1:82:77: f2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E4:B7:FF:73:4E:81:B0:96:AA:45:53:D3:E7:DE:D1:5C:8F:03:AB X509v3 Authority Key Identifier: keyid:99:4E:76:25:F2:75:D7:5C:44:DF:B4:A7:AD:F4:84:25:06:F1:17:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/994E7625F275D75C44DFB4A7ADF4842506F11789.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/994E7625F275D75C44DFB4A7ADF4842506F11789.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/1/323030313a6466333a653563303a3a2f34382d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:e5c0::/48 Signature Algorithm: sha256WithRSAEncryption b0:5c:05:62:eb:f1:66:d8:81:c0:49:63:23:d1:24:6c:4f:55: 64:23:6e:cd:5d:48:43:bc:11:9c:67:1f:16:93:0b:c9:06:a1: 62:16:a4:67:33:74:3c:bd:ca:5d:dd:bf:0e:f5:de:37:39:d2: 36:77:6e:68:77:bb:52:8c:60:cb:26:03:c2:01:15:e4:0e:e7: 83:ff:5c:a6:65:8c:6d:43:ee:2c:aa:da:71:c8:2d:a8:ce:08: cd:24:26:88:60:7a:f4:1f:28:89:b6:a9:ac:9f:11:3d:c7:0d: ab:1f:4d:c2:40:30:91:76:94:56:a0:26:88:1f:46:56:45:6d: f6:fd:91:0b:19:8d:75:b1:32:79:20:57:bb:66:b6:e8:93:eb: 15:91:0b:f1:95:f1:f7:5c:59:aa:d5:2f:4f:a0:0f:ee:ac:43: 5d:ce:34:9b:60:81:05:ef:51:3f:61:56:b9:f5:65:33:40:82: 0f:8d:5d:c1:a6:a7:dd:c3:73:cd:76:8f:81:31:78:a3:84:be: d9:f4:07:8e:ec:ff:93:77:31:d3:dc:80:02:a8:3b:6c:1d:c5: 68:0d:0a:52:b2:ec:ce:32:fa:5b:d2:8a:0a:fd:1a:7e:62:75: f5:c8:51:04:8c:39:2e:a6:1b:f2:8c:01:59:e4:05:fe:22:94: 6c:de:4a:18 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUevlXPl8Ff9Dr+AFKuzK7jCflqxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk0RTc2MjVGMjc1RDc1QzQ0REZCNEE3QURGNDg0MjUw NkYxMTc4OTAeFw0yNjA1MDMwMjA4MzVaFw0yNzA1MDIwMjEzMzVaMDMxMTAvBgNV BAMTKEM2RTRCN0ZGNzM0RTgxQjA5NkFBNDU1M0QzRTdERUQxNUM4RjAzQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtpsdcI3RzMNtor0ehpEcGgtMY xPr+eXZvTSr8NlLdn153FtqlvTe6GrdOSQFYsan+9Yl8w4va+gFxZ1opw+n4BEXA CibqoemXzjzGnA7hGl6SpVfFk36AWRI/aVPo4uyRDaSSAVGYtf59EnjhtFHTpn9z nAvw8jj9WNeKbzZKQFxk9RPyt8FDl2d8rTy+YRYx3cVNiBCcyaTLzNOofkG22E4r M8ayRpzry6MqYhufAG9EnbIb7sP+/8imKVqt4xNroA02GRvFbNYzFbKkQZByZT5d YzlJhPGRj/FOTj8xQvKa/sV5UbhsrWkArm7M2prtX9fWgD7v0Bgm66GCd/J7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxuS3/3NOgbCWqkVT0+fe0VyPA6swHwYDVR0j BBgwFoAUmU52JfJ111xE37SnrfSEJQbxF4kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGVjNjc3ZmQtZDU2OS00Y2M1LWE1NjMtOWIwZjI0OGIxYWYxLzEvOTk0RTc2MjVG Mjc1RDc1QzQ0REZCNEE3QURGNDg0MjUwNkYxMTc4OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85OTRFNzYyNUYyNzVENzVDNDRERkI0QTdBREY0ODQyNTA2RjEx Nzg5LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBlYzY3N2ZkLWQ1NjktNGNjNS1h NTYzLTliMGYyNDhiMWFmMS8xLzMyMzAzMDMxM2E2NDY2MzMzYTY1MzU2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8+XAMA0GCSqGSIb3DQEBCwUAA4IBAQCwXAVi6/Fm2IHASWMj0SRsT1VkI27NXUhD vBGcZx8WkwvJBqFiFqRnM3Q8vcpd3b8O9d43OdI2d25od7tSjGDLJgPCARXkDueD /1ymZYxtQ+4sqtpxyC2ozgjNJCaIYHr0HyiJtqmsnxE9xw2rH03CQDCRdpRWoCaI H0ZWRW32/ZELGY11sTJ5IFe7Zrbok+sVkQvxlfH3XFmq1S9PoA/urENdzjSbYIEF 71E/YVa59WUzQIIPjV3Bpqfdw3PNdo+BMXijhL7Z9AeO7P+TdzHT3IACqDtsHcVo DQpSsuzOMvpb0ooK/Rp+YnX1yFEEjDkuphvyjAFZ5AX+IpRs3koY -----END CERTIFICATE-----Generated at Wed May 13 13:57:15 2026 by rpki-client