$ rpki-client -vvf rpki-rsync.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa File: 323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa (raw, json) Hash identifier: K8yPbAzC5p5yuBTV3LGTKzGdC+9ek4+ufDT1mYTr44E= Subject key identifier: F7:78:91:04:E9:42:A2:04:DB:B5:BA:EA:CD:65:64:CC:AB:53:0E:35 Certificate issuer: /CN=ADF43E36B1768DE874BC2E4386678718C68AC58C Certificate serial: 698892096B8CAD778AB4EC8CA2B80406A786BD5A Authority key identifier: AD:F4:3E:36:B1:76:8D:E8:74:BC:2E:43:86:67:87:18:C6:8A:C5:8C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ADF43E36B1768DE874BC2E4386678718C68AC58C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa Signing time: Sun 03 May 2026 02:16:57 +0000 ROA not before: Sun 03 May 2026 02:11:57 +0000 ROA not after: Sun 02 May 2027 02:16:57 +0000 asID: 58499 IP address blocks: 2001:df0:c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/ADF43E36B1768DE874BC2E4386678718C68AC58C.crl rsync://rpki-rsync.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/ADF43E36B1768DE874BC2E4386678718C68AC58C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ADF43E36B1768DE874BC2E4386678718C68AC58C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:88:92:09:6b:8c:ad:77:8a:b4:ec:8c:a2:b8:04:06:a7:86:bd:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADF43E36B1768DE874BC2E4386678718C68AC58C Validity Not Before: May 3 02:11:57 2026 GMT Not After : May 2 02:16:57 2027 GMT Subject: CN=F7789104E942A204DBB5BAEACD6564CCAB530E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f5:f3:81:c5:56:c2:74:f3:7b:17:48:3a:ab: 4d:ef:fe:48:04:c5:73:a2:71:81:8e:c3:9f:c3:a4: 1e:74:1a:d2:62:d0:fc:e5:0a:7b:fc:41:ed:41:70: 75:e5:6b:36:80:57:ad:b2:1f:16:67:2b:10:d7:85: ad:03:70:e2:a8:ed:87:7f:4a:b2:af:49:82:ea:0f: fc:b9:a6:41:d8:37:e5:7e:c7:ad:76:b4:2e:4a:d7: b8:9f:e4:22:db:5d:b3:a1:2e:5b:72:0a:3b:dd:c7: c4:43:a3:d8:e9:7b:40:bc:02:7a:76:58:9d:a7:23: 72:54:f0:f4:5d:9f:d2:e3:18:bc:9d:2a:a4:c5:93: 1b:74:a5:d9:77:ae:a0:66:ab:9f:14:c6:ae:23:89: 49:49:17:2a:81:ec:30:d8:e1:1b:3a:fd:c5:2a:41: 2d:6d:c3:0b:99:ba:15:67:63:45:ce:e3:58:6b:f8: 94:9e:39:04:d0:db:85:18:20:11:7f:1b:9b:56:92: 5a:da:1e:40:61:25:5b:a6:d2:c7:c6:10:95:58:bb: f2:e1:4f:1c:d5:cf:fe:28:e4:74:b0:2a:a1:2a:42: a3:cc:e2:38:70:08:37:09:e4:a6:a3:6f:b8:4a:d5: 10:37:be:1e:1a:75:ce:e3:10:d1:56:b3:08:2f:42: 22:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:78:91:04:E9:42:A2:04:DB:B5:BA:EA:CD:65:64:CC:AB:53:0E:35 X509v3 Authority Key Identifier: keyid:AD:F4:3E:36:B1:76:8D:E8:74:BC:2E:43:86:67:87:18:C6:8A:C5:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/ADF43E36B1768DE874BC2E4386678718C68AC58C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ADF43E36B1768DE874BC2E4386678718C68AC58C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:c80::/48 Signature Algorithm: sha256WithRSAEncryption 62:24:cc:c9:d3:96:9c:f2:87:87:5b:b6:a0:ed:2d:4d:67:f2: d8:d8:98:b4:3e:d1:a0:14:4b:03:da:db:c1:19:8d:3c:b3:35: f2:6a:d6:0b:fd:48:ba:a0:23:d0:1d:18:fb:9a:6b:3b:b1:c2: 81:8b:9c:70:8d:37:6a:c2:d0:30:83:f5:49:00:9b:53:f2:94: ff:e6:74:19:23:15:9b:39:12:e6:e7:c2:c6:77:88:50:bc:16: 72:d2:c7:a5:75:a0:3a:ba:3b:21:8d:6f:51:64:a3:9c:36:24: 88:80:6d:37:6e:c5:1a:2f:25:4a:ed:cf:c1:ff:f1:f3:c9:0f: 32:a2:fa:6f:11:dc:c0:9e:f7:69:cf:5d:8f:d6:cd:39:3e:f4: ca:98:c2:c8:28:8f:31:49:e3:b5:fc:e8:bb:9a:64:b8:2a:5b: 77:09:ed:36:a0:35:f7:16:4e:07:d3:89:cc:c8:20:bb:eb:6d: e9:79:4a:45:9c:48:85:cf:16:e3:30:e3:b0:cd:79:bb:6b:a7: 9d:07:74:79:ce:ae:d3:39:44:c5:82:d2:c3:04:34:af:2a:14: 7c:05:47:d5:7f:bc:8d:64:64:44:90:72:e5:f7:3f:4f:d6:38: 63:e3:5a:bc:7f:75:e2:00:96:0b:34:ff:bb:16:58:46:1f:f0: 66:bc:31:01 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUaYiSCWuMrXeKtOyMorgEBqeGvVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURGNDNFMzZCMTc2OERFODc0QkMyRTQzODY2Nzg3MThD NjhBQzU4QzAeFw0yNjA1MDMwMjExNTdaFw0yNzA1MDIwMjE2NTdaMDMxMTAvBgNV BAMTKEY3Nzg5MTA0RTk0MkEyMDREQkI1QkFFQUNENjU2NENDQUI1MzBFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC29fOBxVbCdPN7F0g6q03v/kgE xXOicYGOw5/DpB50GtJi0PzlCnv8Qe1BcHXlazaAV62yHxZnKxDXha0DcOKo7Yd/ SrKvSYLqD/y5pkHYN+V+x612tC5K17if5CLbXbOhLltyCjvdx8RDo9jpe0C8Anp2 WJ2nI3JU8PRdn9LjGLydKqTFkxt0pdl3rqBmq58Uxq4jiUlJFyqB7DDY4Rs6/cUq QS1twwuZuhVnY0XO41hr+JSeOQTQ24UYIBF/G5tWklraHkBhJVum0sfGEJVYu/Lh TxzVz/4o5HSwKqEqQqPM4jhwCDcJ5Kajb7hK1RA3vh4adc7jENFWswgvQiIhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU93iRBOlCogTbtbrqzWVkzKtTDjUwHwYDVR0j BBgwFoAUrfQ+NrF2jeh0vC5DhmeHGMaKxYwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWIxYzk1NzktNTZiYS00YTcwLWJhMTMtM2IwNWE2Y2NiMjFlLzAvQURGNDNFMzZC MTc2OERFODc0QkMyRTQzODY2Nzg3MThDNjhBQzU4Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BREY0M0UzNkIxNzY4REU4NzRCQzJFNDM4NjY3ODcxOEM2OEFD NThDLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiMWM5NTc5LTU2YmEtNGE3MC1i YTEzLTNiMDVhNmNjYjIxZS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYzMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wDIAw DQYJKoZIhvcNAQELBQADggEBAGIkzMnTlpzyh4dbtqDtLU1n8tjYmLQ+0aAUSwPa 28EZjTyzNfJq1gv9SLqgI9AdGPuaazuxwoGLnHCNN2rC0DCD9UkAm1PylP/mdBkj FZs5EubnwsZ3iFC8FnLSx6V1oDq6OyGNb1Fko5w2JIiAbTduxRovJUrtz8H/8fPJ DzKi+m8R3MCe92nPXY/WzTk+9MqYwsgojzFJ47X86LuaZLgqW3cJ7TagNfcWTgfT iczIILvrbel5SkWcSIXPFuMw47DNebtrp50HdHnOrtM5RMWC0sMENK8qFHwFR9V/ vI1kZESQcuX3P0/WOGPjWrx/deIAlgs0/7sWWEYf8Ga8MQE= -----END CERTIFICATE-----Generated at Wed May 13 13:07:50 2026 by rpki-client