$ rpki-client -vvf rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/323030313a6466373a353430303a3a2f34382d3438203d3e20313334363332.roa File: 323030313a6466373a353430303a3a2f34382d3438203d3e20313334363332.roa (raw, json) Hash identifier: rH/HlzNj8EN1t4rBBnxlIYgmTwkrb8JdSMLp5n/vbuw= Subject key identifier: 38:97:9D:21:C8:67:FB:97:CB:ED:C7:33:09:4C:00:8C:66:7E:BB:A3 Certificate issuer: /CN=D57816B86ABF0E6E25D84D1D5EB37F57672082E2 Certificate serial: 31758A589ADAB120CFE89C26E748E932DAE53C11 Authority key identifier: D5:78:16:B8:6A:BF:0E:6E:25:D8:4D:1D:5E:B3:7F:57:67:20:82:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/323030313a6466373a353430303a3a2f34382d3438203d3e20313334363332.roa Signing time: Sun 03 May 2026 02:13:52 +0000 ROA not before: Sun 03 May 2026 02:08:52 +0000 ROA not after: Sun 02 May 2027 02:13:52 +0000 asID: 134632 IP address blocks: 2001:df7:5400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.crl rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:75:8a:58:9a:da:b1:20:cf:e8:9c:26:e7:48:e9:32:da:e5:3c:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D57816B86ABF0E6E25D84D1D5EB37F57672082E2 Validity Not Before: May 3 02:08:52 2026 GMT Not After : May 2 02:13:52 2027 GMT Subject: CN=38979D21C867FB97CBEDC733094C008C667EBBA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0a:f5:cf:74:66:78:6d:8e:73:bb:4d:c3:8b: df:0f:12:33:81:24:ed:af:b8:b4:ed:0a:00:e1:6a: ae:61:9d:24:55:32:66:4d:8d:20:bf:69:3f:ff:8d: a4:c5:09:fa:15:a0:b7:f2:54:82:3d:d5:46:c4:8d: c7:f7:30:c3:33:31:06:22:81:0a:19:13:30:31:42: fc:ec:4b:40:40:84:38:d9:e2:0c:7b:be:09:42:46: 43:ac:8c:87:89:46:f9:be:0c:fa:ff:82:f0:47:1a: a5:5b:0f:d0:84:39:63:5d:1c:2b:11:0d:ef:a2:9b: 5f:e7:77:71:c3:6e:c4:46:e5:5e:a8:3b:f7:0f:c0: ca:d0:45:94:df:3d:f9:34:2e:00:33:6d:ee:3f:83: 63:eb:68:f6:ff:b4:88:df:71:86:4f:85:d8:01:b8: 71:8d:6c:9e:b1:4d:68:83:bb:e2:8f:c4:ac:88:42: 91:f5:82:1d:b3:4d:e8:e7:64:ce:e0:1d:79:6c:1a: ea:63:50:00:72:81:fe:e5:3a:db:f6:0e:7e:13:65: 28:33:51:1e:04:de:7a:6e:68:01:b0:59:2c:4e:58: fa:7f:c1:14:89:9a:95:50:20:63:ed:83:78:63:67: b4:8a:84:f3:7c:b0:5b:c8:39:9a:4e:ce:58:c4:dd: 3f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:97:9D:21:C8:67:FB:97:CB:ED:C7:33:09:4C:00:8C:66:7E:BB:A3 X509v3 Authority Key Identifier: keyid:D5:78:16:B8:6A:BF:0E:6E:25:D8:4D:1D:5E:B3:7F:57:67:20:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/323030313a6466373a353430303a3a2f34382d3438203d3e20313334363332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:5400::/48 Signature Algorithm: sha256WithRSAEncryption 05:cb:5e:01:3b:74:36:ae:68:5c:80:a9:03:d5:4f:47:13:ea: 99:75:22:70:a8:e0:02:46:df:fe:aa:3c:60:c2:13:84:e5:85: 5d:4a:13:06:45:62:0f:59:8c:67:80:e6:33:c0:84:b8:d8:7c: 95:04:a2:a7:fd:a8:18:0b:3c:f9:d5:3d:11:99:c4:26:41:f0: 22:0c:b2:31:08:a2:5d:14:95:60:39:17:cb:f2:a0:ca:3f:ce: b9:a8:c1:83:6d:60:1b:70:b1:5c:ef:02:52:c5:34:14:e6:7e: 8a:a8:22:f3:5d:df:6c:fe:cd:63:6b:ce:d1:3a:eb:28:0f:8f: d7:1b:17:2a:31:a9:a8:ea:48:fc:23:c5:13:f8:8e:54:71:21: 75:10:f2:da:55:eb:83:48:50:87:39:6d:2b:61:67:7f:d3:c9: bc:6c:bd:8b:2d:1a:62:c1:00:0e:30:a8:6b:bb:87:de:8c:e4: 40:72:91:27:a8:08:ac:b5:23:41:92:e3:ab:db:28:1c:c8:a3: 01:94:8b:d5:eb:1e:7f:02:48:fb:c7:65:25:a9:a1:d1:ca:eb: a4:b5:e2:86:e3:1b:22:c6:96:db:ae:7a:e5:7b:86:ac:00:8d: ca:2a:00:82:f1:85:28:89:3c:3f:9c:d9:b0:41:0c:07:fb:f8: 29:2d:57:3f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMXWKWJrasSDP6Jwm50jpMtrlPBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU3ODE2Qjg2QUJGMEU2RTI1RDg0RDFENUVCMzdGNTc2 NzIwODJFMjAeFw0yNjA1MDMwMjA4NTJaFw0yNzA1MDIwMjEzNTJaMDMxMTAvBgNV BAMTKDM4OTc5RDIxQzg2N0ZCOTdDQkVEQzczMzA5NEMwMDhDNjY3RUJCQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCCvXPdGZ4bY5zu03Di98PEjOB JO2vuLTtCgDhaq5hnSRVMmZNjSC/aT//jaTFCfoVoLfyVII91UbEjcf3MMMzMQYi gQoZEzAxQvzsS0BAhDjZ4gx7vglCRkOsjIeJRvm+DPr/gvBHGqVbD9CEOWNdHCsR De+im1/nd3HDbsRG5V6oO/cPwMrQRZTfPfk0LgAzbe4/g2PraPb/tIjfcYZPhdgB uHGNbJ6xTWiDu+KPxKyIQpH1gh2zTejnZM7gHXlsGupjUABygf7lOtv2Dn4TZSgz UR4E3npuaAGwWSxOWPp/wRSJmpVQIGPtg3hjZ7SKhPN8sFvIOZpOzljE3T+1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOJedIchn+5fL7cczCUwAjGZ+u6MwHwYDVR0j BBgwFoAU1XgWuGq/Dm4l2E0dXrN/V2cgguIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTAwMGUyM2UtZjQ0YS00Y2ZjLWJmNTYtZDk5YTA5MmQ3MzE0LzAvRDU3ODE2Qjg2 QUJGMEU2RTI1RDg0RDFENUVCMzdGNTc2NzIwODJFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENTc4MTZCODZBQkYwRTZFMjVEODREMUQ1RUIzN0Y1NzY3MjA4 MkUyLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNlLWY0NGEtNGNmYy1i ZjU2LWQ5OWEwOTJkNzMxNC8wLzMyMzAzMDMxM2E2NDY2MzczYTM1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM0MzYzMzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 91QAMA0GCSqGSIb3DQEBCwUAA4IBAQAFy14BO3Q2rmhcgKkD1U9HE+qZdSJwqOAC Rt/+qjxgwhOE5YVdShMGRWIPWYxngOYzwIS42HyVBKKn/agYCzz51T0RmcQmQfAi DLIxCKJdFJVgORfL8qDKP865qMGDbWAbcLFc7wJSxTQU5n6KqCLzXd9s/s1ja87R OusoD4/XGxcqMamo6kj8I8UT+I5UcSF1EPLaVeuDSFCHOW0rYWd/08m8bL2LLRpi wQAOMKhru4fejORAcpEnqAistSNBkuOr2ygcyKMBlIvV6x5/Akj7x2UlqaHRyuuk teKG4xsixpbbrnrle4asAI3KKgCC8YUoiTw/nNmwQQwH+/gpLVc/ -----END CERTIFICATE-----Generated at Wed May 13 15:57:01 2026 by rpki-client