$ rpki-client -vvf rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa File: 323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa (raw, json) Hash identifier: 6N1mNk7kMJutxDC4iwMyVS1ZwmLt1n7dTUB5ei+yYU8= Subject key identifier: BA:F6:16:D7:0E:5F:FC:41:06:4B:27:DA:69:B4:A5:EB:67:F6:E0:A0 Certificate issuer: /CN=148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E Certificate serial: 4D6750BA7FA11A8E241E49E6778D72A6E95163CC Authority key identifier: 14:8C:3A:87:20:C5:CD:8A:B7:FB:CE:7B:83:5B:9D:20:0B:CF:6B:6E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa Signing time: Sun 03 May 2026 02:16:27 +0000 ROA not before: Sun 03 May 2026 02:11:27 +0000 ROA not after: Sun 02 May 2027 02:16:27 +0000 asID: 149881 IP address blocks: 2001:df1:9ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.crl rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:67:50:ba:7f:a1:1a:8e:24:1e:49:e6:77:8d:72:a6:e9:51:63:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E Validity Not Before: May 3 02:11:27 2026 GMT Not After : May 2 02:16:27 2027 GMT Subject: CN=BAF616D70E5FFC41064B27DA69B4A5EB67F6E0A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:ad:7e:34:a6:fe:87:f2:7a:1b:48:72:bb: e6:ef:ca:f2:6e:1f:60:50:e2:d9:0c:70:4e:72:86: db:72:a4:db:4f:33:76:5b:85:28:35:f9:82:ee:c1: f4:e1:40:4b:e0:57:cc:81:dd:57:a1:e0:51:37:0d: c6:12:3d:e0:9e:18:b1:bf:5b:09:9a:b8:40:46:2a: f0:58:d3:0b:cf:2e:05:23:b0:e7:36:35:d7:b5:65: a0:7f:0d:a0:2f:7b:21:e7:7e:e1:de:e5:64:00:85: 70:87:bc:95:7e:82:45:f0:bd:43:67:28:65:53:4d: b5:91:51:a3:c1:2e:87:34:8f:c1:e3:e8:e5:aa:63: b9:f1:0a:d3:95:79:d3:dc:12:6e:cb:c7:5c:d6:fb: 54:29:88:78:b4:0a:c0:dd:38:0f:25:27:fd:fe:e5: 78:a0:0f:56:63:a5:b7:89:9e:c4:08:59:86:3b:62: 89:ae:97:e9:7e:a0:15:5d:37:3e:04:c7:36:c5:d2: 68:04:6a:1d:70:eb:63:38:a7:73:36:e3:39:37:15: fb:76:67:45:f7:5f:dc:a1:e1:37:67:e2:cf:1f:9c: d7:0a:fe:0a:e5:a6:ed:ca:7e:47:3e:2f:98:2d:89: e1:58:4c:6a:6b:4f:d2:e4:26:bd:36:da:a9:5c:66: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F6:16:D7:0E:5F:FC:41:06:4B:27:DA:69:B4:A5:EB:67:F6:E0:A0 X509v3 Authority Key Identifier: keyid:14:8C:3A:87:20:C5:CD:8A:B7:FB:CE:7B:83:5B:9D:20:0B:CF:6B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/148C3A8720C5CD8AB7FBCE7B835B9D200BCF6B6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/188e3a17-1c91-4793-83c4-211d4210aea8/0/323030313a6466313a396563303a3a2f34382d3438203d3e20313439383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:9ec0::/48 Signature Algorithm: sha256WithRSAEncryption 71:e9:1a:68:80:fd:d9:8f:b0:67:93:11:41:a5:b6:2d:88:7a: 9d:df:3b:37:f3:75:f9:b8:98:61:91:76:f2:55:f3:d8:d7:d8: b6:62:25:b9:dd:d2:fa:e5:27:b7:ac:74:77:f3:a6:51:14:5f: f1:72:9d:b5:7c:7e:87:cb:7b:da:29:44:97:e7:80:2d:30:c7: 18:60:3f:b7:2d:d5:ec:fb:1e:37:3c:8f:79:d0:e1:0f:be:49: c2:7f:f5:d7:af:03:db:3a:9b:6b:1f:66:a5:28:3f:05:48:4b: 5c:ff:19:1e:29:ff:ba:31:09:4b:47:8d:85:88:37:8b:3a:71: cd:01:85:18:0d:0b:1e:a2:bc:65:c3:fb:49:dc:30:9d:51:da: 0b:39:02:05:fd:11:60:99:24:7c:80:69:51:6b:39:94:72:47: 06:e6:e7:e7:78:99:94:fb:3d:8d:98:8d:a0:b1:38:f2:b2:d8: f3:89:d0:35:3f:59:28:da:46:38:8a:e1:02:8b:7e:6b:61:32: d3:8a:9b:42:97:a5:43:09:43:f9:bf:77:cc:e9:1a:f1:2d:77: 4c:76:d6:b1:a7:dc:4e:ef:a2:6b:c1:2f:02:c9:26:ef:77:b8: 07:3a:af:e0:e3:55:a6:0f:d9:07:0b:3e:fd:00:d1:cb:a3:05: 24:8b:e7:8b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTWdQun+hGo4kHknmd41ypulRY8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ4QzNBODcyMEM1Q0Q4QUI3RkJDRTdCODM1QjlEMjAw QkNGNkI2RTAeFw0yNjA1MDMwMjExMjdaFw0yNzA1MDIwMjE2MjdaMDMxMTAvBgNV BAMTKEJBRjYxNkQ3MEU1RkZDNDEwNjRCMjdEQTY5QjRBNUVCNjdGNkUwQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeLa1+NKb+h/J6G0hyu+bvyvJu H2BQ4tkMcE5yhttypNtPM3ZbhSg1+YLuwfThQEvgV8yB3Veh4FE3DcYSPeCeGLG/ WwmauEBGKvBY0wvPLgUjsOc2Nde1ZaB/DaAveyHnfuHe5WQAhXCHvJV+gkXwvUNn KGVTTbWRUaPBLoc0j8Hj6OWqY7nxCtOVedPcEm7Lx1zW+1QpiHi0CsDdOA8lJ/3+ 5XigD1ZjpbeJnsQIWYY7Yomul+l+oBVdNz4ExzbF0mgEah1w62M4p3M24zk3Fft2 Z0X3X9yh4Tdn4s8fnNcK/grlpu3Kfkc+L5gtieFYTGprT9LkJr022qlcZnhhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuvYW1w5f/EEGSyfaabSl62f24KAwHwYDVR0j BBgwFoAUFIw6hyDFzYq3+857g1udIAvPa24wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTg4ZTNhMTctMWM5MS00NzkzLTgzYzQtMjExZDQyMTBhZWE4LzAvMTQ4QzNBODcy MEM1Q0Q4QUI3RkJDRTdCODM1QjlEMjAwQkNGNkI2RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNDhDM0E4NzIwQzVDRDhBQjdGQkNFN0I4MzVCOUQyMDBCQ0Y2 QjZFLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE4OGUzYTE3LTFjOTEtNDc5My04 M2M0LTIxMWQ0MjEwYWVhOC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM5NjU2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzgzODMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8Z7AMA0GCSqGSIb3DQEBCwUAA4IBAQBx6RpogP3Zj7BnkxFBpbYtiHqd3zs383X5 uJhhkXbyVfPY19i2YiW53dL65Se3rHR386ZRFF/xcp21fH6Hy3vaKUSX54AtMMcY YD+3LdXs+x43PI950OEPvknCf/XXrwPbOptrH2alKD8FSEtc/xkeKf+6MQlLR42F iDeLOnHNAYUYDQseorxlw/tJ3DCdUdoLOQIF/RFgmSR8gGlRazmUckcG5ufneJmU +z2NmI2gsTjystjzidA1P1ko2kY4iuECi35rYTLTiptCl6VDCUP5v3fM6RrxLXdM dtaxp9xO76JrwS8CySbvd7gHOq/g41WmD9kHCz79ANHLowUki+eL -----END CERTIFICATE-----Generated at Wed May 13 15:58:05 2026 by rpki-client