$ rpki-client -vvf rpki-rsync.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa File: 323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa (raw, json) Hash identifier: OQGBTyYct40Pw4G0aqEIxJAdvOkNRB0tfWNHiKyDkc0= Subject key identifier: EE:02:83:67:8A:F6:4A:F1:A0:C1:6E:92:6B:80:BA:AC:3F:C0:EA:11 Certificate issuer: /CN=4CAC4B05C6220A5A917FEA917D34766F32B36DCD Certificate serial: 25882C7E87B45A27857DFD5D4DCED2D9712B6A2F Authority key identifier: 4C:AC:4B:05:C6:22:0A:5A:91:7F:EA:91:7D:34:76:6F:32:B3:6D:CD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4CAC4B05C6220A5A917FEA917D34766F32B36DCD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa Signing time: Sun 03 May 2026 02:14:37 +0000 ROA not before: Sun 03 May 2026 02:09:37 +0000 ROA not after: Sun 02 May 2027 02:14:37 +0000 asID: 139986 IP address blocks: 2001:df2:c780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/4CAC4B05C6220A5A917FEA917D34766F32B36DCD.crl rsync://rpki-rsync.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/4CAC4B05C6220A5A917FEA917D34766F32B36DCD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4CAC4B05C6220A5A917FEA917D34766F32B36DCD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:88:2c:7e:87:b4:5a:27:85:7d:fd:5d:4d:ce:d2:d9:71:2b:6a:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CAC4B05C6220A5A917FEA917D34766F32B36DCD Validity Not Before: May 3 02:09:37 2026 GMT Not After : May 2 02:14:37 2027 GMT Subject: CN=EE0283678AF64AF1A0C16E926B80BAAC3FC0EA11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:00:84:52:a9:9c:bd:14:30:1d:4d:8a:b4:f5: 69:bd:e7:e7:fa:f2:17:09:3e:08:49:56:d1:97:3a: 76:4e:dc:9b:ae:48:8e:fa:46:1a:1d:fc:19:b1:66: 79:0c:a4:a3:ae:00:72:fd:ea:b9:4f:4e:32:9b:5f: 44:fe:fe:30:0b:38:cb:43:2c:9d:5e:b2:fe:bb:ac: 27:2c:f0:ac:b7:10:0a:b1:70:59:f2:19:d1:62:e6: ae:d6:87:6a:5a:7f:7e:df:4e:09:8b:ab:95:85:69: c3:3b:8e:c8:bf:98:18:f6:a1:aa:7a:78:4b:72:14: 87:7e:16:93:14:9d:ee:02:53:ea:84:13:b0:87:60: 55:27:87:2a:c6:6b:59:d4:54:c6:bc:84:88:2d:eb: 4f:b8:b9:06:25:9f:a9:64:5b:1c:bd:4c:a1:5b:10: aa:27:c4:10:fe:d9:71:fb:1e:42:11:95:56:8e:49: c4:5c:00:4c:12:dc:f5:78:e8:48:60:04:5f:0d:4c: 14:bb:e8:32:ff:f6:f0:78:c1:e4:c5:06:ad:ae:9e: 58:67:e0:17:91:29:10:ec:9e:f6:7b:ba:0f:db:0f: c5:78:21:1d:b5:2a:a9:f1:4c:28:20:07:80:07:e1: cb:ea:4c:e9:66:0f:a6:b0:2d:73:f1:19:3e:f9:9d: ee:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:02:83:67:8A:F6:4A:F1:A0:C1:6E:92:6B:80:BA:AC:3F:C0:EA:11 X509v3 Authority Key Identifier: keyid:4C:AC:4B:05:C6:22:0A:5A:91:7F:EA:91:7D:34:76:6F:32:B3:6D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/4CAC4B05C6220A5A917FEA917D34766F32B36DCD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4CAC4B05C6220A5A917FEA917D34766F32B36DCD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c780::/48 Signature Algorithm: sha256WithRSAEncryption b7:a7:c9:fe:6a:96:ab:a0:7e:e0:3e:dd:69:f3:28:d9:37:9b: 68:e2:10:14:35:71:6d:c1:45:17:05:c2:39:7f:b2:70:94:2c: 5f:70:d1:0e:6f:13:81:3b:34:28:fb:30:f8:99:70:fe:83:df: 9a:6d:20:c5:66:d3:39:54:08:59:42:5e:de:83:67:31:36:bc: 72:fd:77:ab:b1:e4:91:cc:36:d8:d5:49:a8:58:09:03:ee:5a: 01:25:57:1f:7c:be:fb:0f:32:68:3c:99:91:75:a6:1c:bb:9b: 6a:8e:fd:9d:80:a5:72:54:8d:8d:bc:15:a3:2f:8e:0b:7c:5e: 1c:bd:58:2b:b1:db:17:4c:60:6f:4f:73:fd:d8:ad:67:df:89: d5:6d:52:ea:29:50:82:65:57:da:b4:16:d4:67:16:4f:51:5b: d8:64:dc:5b:1d:6b:e0:fa:06:e7:57:eb:c8:e0:99:5b:ba:ca: 4d:cc:0c:32:f8:63:9b:27:94:aa:87:d4:53:8e:b7:d4:12:d4: d5:6c:4a:9f:89:6a:84:74:5c:50:6a:01:ef:5e:ae:fd:f9:d6: 6b:d4:f6:58:a2:a7:17:df:23:d3:d5:6d:dd:b3:75:a2:88:76: f2:51:05:ca:3c:d4:98:6e:6f:41:69:a6:1a:6b:07:64:27:5c: e4:7a:82:68 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJYgsfoe0WieFff1dTc7S2XErai8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNENBQzRCMDVDNjIyMEE1QTkxN0ZFQTkxN0QzNDc2NkYz MkIzNkRDRDAeFw0yNjA1MDMwMjA5MzdaFw0yNzA1MDIwMjE0MzdaMDMxMTAvBgNV BAMTKEVFMDI4MzY3OEFGNjRBRjFBMEMxNkU5MjZCODBCQUFDM0ZDMEVBMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/AIRSqZy9FDAdTYq09Wm95+f6 8hcJPghJVtGXOnZO3JuuSI76Rhod/BmxZnkMpKOuAHL96rlPTjKbX0T+/jALOMtD LJ1esv67rCcs8Ky3EAqxcFnyGdFi5q7Wh2paf37fTgmLq5WFacM7jsi/mBj2oap6 eEtyFId+FpMUne4CU+qEE7CHYFUnhyrGa1nUVMa8hIgt60+4uQYln6lkWxy9TKFb EKonxBD+2XH7HkIRlVaOScRcAEwS3PV46EhgBF8NTBS76DL/9vB4weTFBq2unlhn 4BeRKRDsnvZ7ug/bD8V4IR21KqnxTCggB4AH4cvqTOlmD6awLXPxGT75ne5hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7gKDZ4r2SvGgwW6Sa4C6rD/A6hEwHwYDVR0j BBgwFoAUTKxLBcYiClqRf+qRfTR2bzKzbc0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQwZTljOWYtZDYwNy00NDk3LWFmMjgtNGQyYjkwOTJkNWE2LzAvNENBQzRCMDVD NjIyMEE1QTkxN0ZFQTkxN0QzNDc2NkYzMkIzNkRDRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80Q0FDNEIwNUM2MjIwQTVBOTE3RkVBOTE3RDM0NzY2RjMyQjM2 RENELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE0MGU5YzlmLWQ2MDctNDQ5Ny1h ZjI4LTRkMmI5MDkyZDVhNi8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzczODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8seAMA0GCSqGSIb3DQEBCwUAA4IBAQC3p8n+aparoH7gPt1p8yjZN5to4hAUNXFt wUUXBcI5f7JwlCxfcNEObxOBOzQo+zD4mXD+g9+abSDFZtM5VAhZQl7eg2cxNrxy /XerseSRzDbY1UmoWAkD7loBJVcffL77DzJoPJmRdaYcu5tqjv2dgKVyVI2NvBWj L44LfF4cvVgrsdsXTGBvT3P92K1n34nVbVLqKVCCZVfatBbUZxZPUVvYZNxbHWvg +gbnV+vI4JlbuspNzAwy+GObJ5Sqh9RTjrfUEtTVbEqfiWqEdFxQagHvXq79+dZr 1PZYoqcX3yPT1W3ds3WiiHbyUQXKPNSYbm9BaaYaawdkJ1zkeoJo -----END CERTIFICATE-----Generated at Wed May 13 14:13:17 2026 by rpki-client