$ rpki-client -vvf rpki-rsync.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa File: 323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa (raw, json) Hash identifier: /GUQyhQCCG48GVOr5PjkMlvyumHtwdaSkLWzQJVBKPU= Subject key identifier: 98:F7:80:1B:12:10:E4:54:E1:91:7D:59:87:0B:61:00:BC:59:40:70 Certificate issuer: /CN=E8F23942C871B1A23D50AA7027A74ABDC7172EA3 Certificate serial: 302E1EA182E5E2C2026E0D5D47C30C529A9F8584 Authority key identifier: E8:F2:39:42:C8:71:B1:A2:3D:50:AA:70:27:A7:4A:BD:C7:17:2E:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E8F23942C871B1A23D50AA7027A74ABDC7172EA3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa Signing time: Sun 03 May 2026 02:17:15 +0000 ROA not before: Sun 03 May 2026 02:12:15 +0000 ROA not after: Sun 02 May 2027 02:17:15 +0000 asID: 131778 IP address blocks: 2001:df0:229::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/E8F23942C871B1A23D50AA7027A74ABDC7172EA3.crl rsync://rpki-rsync.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/E8F23942C871B1A23D50AA7027A74ABDC7172EA3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E8F23942C871B1A23D50AA7027A74ABDC7172EA3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:2e:1e:a1:82:e5:e2:c2:02:6e:0d:5d:47:c3:0c:52:9a:9f:85:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E8F23942C871B1A23D50AA7027A74ABDC7172EA3 Validity Not Before: May 3 02:12:15 2026 GMT Not After : May 2 02:17:15 2027 GMT Subject: CN=98F7801B1210E454E1917D59870B6100BC594070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:af:96:f6:db:a5:0f:65:40:f9:e9:15:56: ca:35:66:1f:e4:f2:b6:59:f3:95:78:62:6b:27:5c: 46:d5:41:96:57:46:84:4f:22:b3:da:3f:97:01:fc: c7:71:f6:ba:7f:32:51:37:54:d2:aa:b1:ab:76:2c: 7e:9a:89:c7:bb:95:46:c7:46:54:e2:55:56:bb:53: 7f:18:97:99:31:e3:e7:1b:41:6c:a6:b4:8d:80:5a: df:d6:e8:6a:a4:0c:06:ae:c9:29:b2:be:43:75:b1: e5:29:24:4c:ca:db:d7:c0:b3:04:01:c7:40:2c:af: 82:b5:35:28:57:99:50:11:76:ec:3f:3f:2e:30:d2: 24:a4:f2:11:13:af:42:dd:b2:eb:49:7e:2f:dc:aa: e1:dc:66:3d:56:90:91:3f:1d:c8:bc:ff:bb:44:44: 15:81:3c:c9:2f:95:b8:69:5d:bd:36:af:21:0d:62: 34:20:a7:d3:e0:c5:cc:ef:70:e3:98:9b:c4:39:47: 4f:5f:b7:67:90:17:10:87:50:4c:23:8f:f3:97:aa: 26:c5:34:70:03:9b:41:3c:bf:26:07:ea:d5:d2:78: af:63:b2:21:2f:a7:da:79:78:09:b0:b2:63:2f:42: e7:24:f9:1e:2a:55:2b:f8:87:a7:7e:61:fd:e1:64: a9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F7:80:1B:12:10:E4:54:E1:91:7D:59:87:0B:61:00:BC:59:40:70 X509v3 Authority Key Identifier: keyid:E8:F2:39:42:C8:71:B1:A2:3D:50:AA:70:27:A7:4A:BD:C7:17:2E:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/E8F23942C871B1A23D50AA7027A74ABDC7172EA3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E8F23942C871B1A23D50AA7027A74ABDC7172EA3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:229::/48 Signature Algorithm: sha256WithRSAEncryption 38:ed:17:d1:a0:4c:80:c6:6a:60:51:ad:c2:08:13:c9:d9:a4: 13:5a:6d:ea:a0:dc:b6:5e:80:ec:e8:85:20:f6:d1:4d:22:fc: 95:cd:5f:74:eb:5e:1f:d1:81:01:36:85:0d:77:e2:bb:48:be: 3c:6d:ff:ab:32:a7:6b:3a:2e:ec:74:0d:fd:a6:49:54:84:80: da:47:8c:52:22:3e:01:0f:e5:e0:67:c7:21:03:e9:95:9b:d7: 66:e9:20:4b:79:d6:70:5c:3c:d1:c5:fc:5c:41:71:6c:d5:53: 7d:7f:ce:08:22:df:4e:d1:fb:8b:c2:f5:e1:c8:d2:d0:04:36: 44:98:0f:82:2d:7c:ea:4a:d9:a7:f9:ac:a4:33:4e:81:67:f4: d2:14:08:8c:db:01:e0:e8:31:94:42:50:d8:58:12:8d:02:ac: 55:a9:11:2d:6b:ff:34:60:8f:8b:9f:01:d3:f5:db:27:45:a6: 55:f3:4c:b3:c8:98:92:bd:95:2f:36:18:a6:84:7d:1d:51:0d: 5f:d3:1a:e8:e7:51:ff:10:31:c8:42:ed:20:cf:5e:7f:70:0f: cd:4b:b2:14:a2:65:f9:92:e6:93:7f:a3:bd:cc:53:9b:65:9a: 7c:44:e1:44:c7:bb:15:58:3a:8e:0c:aa:d2:71:58:fe:59:7b: 90:5c:b5:ee -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMC4eoYLl4sICbg1dR8MMUpqfhYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRThGMjM5NDJDODcxQjFBMjNENTBBQTcwMjdBNzRBQkRD NzE3MkVBMzAeFw0yNjA1MDMwMjEyMTVaFw0yNzA1MDIwMjE3MTVaMDMxMTAvBgNV BAMTKDk4Rjc4MDFCMTIxMEU0NTRFMTkxN0Q1OTg3MEI2MTAwQkM1OTQwNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGda+W9tulD2VA+ekVVso1Zh/k 8rZZ85V4YmsnXEbVQZZXRoRPIrPaP5cB/Mdx9rp/MlE3VNKqsat2LH6aice7lUbH RlTiVVa7U38Yl5kx4+cbQWymtI2AWt/W6GqkDAauySmyvkN1seUpJEzK29fAswQB x0Asr4K1NShXmVARduw/Py4w0iSk8hETr0LdsutJfi/cquHcZj1WkJE/Hci8/7tE RBWBPMkvlbhpXb02ryENYjQgp9PgxczvcOOYm8Q5R09ft2eQFxCHUEwjj/OXqibF NHADm0E8vyYH6tXSeK9jsiEvp9p5eAmwsmMvQuck+R4qVSv4h6d+Yf3hZKkxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmPeAGxIQ5FThkX1ZhwthALxZQHAwHwYDVR0j BBgwFoAU6PI5QshxsaI9UKpwJ6dKvccXLqMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWJhZTU4YWMtNTkxNy00MDY5LTlhNmMtODNkYzFiYTMyMTI2LzAvRThGMjM5NDJD ODcxQjFBMjNENTBBQTcwMjdBNzRBQkRDNzE3MkVBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FOEYyMzk0MkM4NzFCMUEyM0Q1MEFBNzAyN0E3NEFCREM3MTcy RUEzLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFiYWU1OGFjLTU5MTctNDA2OS05 YTZjLTgzZGMxYmEzMjEyNi8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzIzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzczOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAC KTANBgkqhkiG9w0BAQsFAAOCAQEAOO0X0aBMgMZqYFGtwggTydmkE1pt6qDctl6A 7OiFIPbRTSL8lc1fdOteH9GBATaFDXfiu0i+PG3/qzKnazou7HQN/aZJVISA2keM UiI+AQ/l4GfHIQPplZvXZukgS3nWcFw80cX8XEFxbNVTfX/OCCLfTtH7i8L14cjS 0AQ2RJgPgi186krZp/mspDNOgWf00hQIjNsB4OgxlEJQ2FgSjQKsVakRLWv/NGCP i58B0/XbJ0WmVfNMs8iYkr2VLzYYpoR9HVENX9Ma6OdR/xAxyELtIM9ef3APzUuy FKJl+ZLmk3+jvcxTm2WafEThRMe7FVg6jgyq0nFY/ll7kFy17g== -----END CERTIFICATE-----Generated at Wed May 13 15:27:30 2026 by rpki-client