$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa (raw, json) Hash identifier: g14LcNrrW54yrzbA/vRmcLiMXBlSRO/YFYlVg+H2Jjk= Subject key identifier: 43:5A:58:40:06:A1:CC:EC:FB:82:40:26:17:38:2C:DE:4F:76:69:97 Certificate issuer: /CN=58775F16B86C66299D9AF904F73786CD365D8787 Certificate serial: 4E3DC7CB5ECCC9528BE7B842AE4E63D3FF3FCEAD Authority key identifier: 58:77:5F:16:B8:6C:66:29:9D:9A:F9:04:F7:37:86:CD:36:5D:87:87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/58775F16B86C66299D9AF904F73786CD365D8787.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa Signing time: Sun 03 May 2026 02:17:27 +0000 ROA not before: Sun 03 May 2026 02:12:27 +0000 ROA not after: Sun 02 May 2027 02:17:27 +0000 asID: 149347 IP address blocks: 2001:df0:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/58775F16B86C66299D9AF904F73786CD365D8787.crl rsync://rpki-rsync.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/58775F16B86C66299D9AF904F73786CD365D8787.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/58775F16B86C66299D9AF904F73786CD365D8787.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3d:c7:cb:5e:cc:c9:52:8b:e7:b8:42:ae:4e:63:d3:ff:3f:ce:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58775F16B86C66299D9AF904F73786CD365D8787 Validity Not Before: May 3 02:12:27 2026 GMT Not After : May 2 02:17:27 2027 GMT Subject: CN=435A584006A1CCECFB82402617382CDE4F766997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:89:9f:96:22:16:cb:ae:25:fa:1e:4b:b9: fd:bc:73:78:3b:76:4c:e3:6b:09:94:53:83:f2:9b: eb:78:99:3e:15:50:a3:9f:de:9f:4b:a4:b6:61:75: 7f:e3:cc:73:7e:aa:04:d1:be:97:b0:e1:27:de:cd: d6:1d:c8:b5:b5:8e:8e:16:c7:de:82:00:e0:b3:3a: ba:5f:35:85:1b:60:7f:48:13:bb:f9:22:44:a0:4c: 4f:9d:61:8a:7b:d4:db:3c:f6:f5:dc:a2:a7:dc:ec: dd:ec:e0:0b:86:1c:c3:2f:3b:7a:e0:75:90:02:2a: e2:23:b8:59:c2:a9:73:df:b5:bc:a8:6e:cd:64:d6: 20:47:80:00:1d:9b:d7:eb:7b:50:5d:5a:80:9b:cf: 99:85:f6:75:89:53:6f:5d:45:b0:fb:14:9b:b3:7e: f1:8d:e4:de:08:5d:87:48:a7:cf:b9:99:e2:97:7f: e8:b7:7f:7f:5b:d2:50:7f:d0:6f:59:c3:b8:df:86: 3b:63:d0:11:88:3b:f6:85:0e:9c:e5:8f:6e:85:73: 74:3a:0f:aa:a1:46:ec:bc:18:e6:15:3f:e5:24:d7: 2b:fc:5d:5c:24:43:37:2e:bc:ed:86:e3:d1:48:31: c6:df:ba:73:27:53:0a:d7:aa:ae:d6:f5:62:0b:24: f9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5A:58:40:06:A1:CC:EC:FB:82:40:26:17:38:2C:DE:4F:76:69:97 X509v3 Authority Key Identifier: keyid:58:77:5F:16:B8:6C:66:29:9D:9A:F9:04:F7:37:86:CD:36:5D:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/58775F16B86C66299D9AF904F73786CD365D8787.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/58775F16B86C66299D9AF904F73786CD365D8787.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313439333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 37:ff:2e:fb:47:b6:f1:90:0f:47:fc:ec:48:34:ec:bc:63:71: 96:8d:71:6f:91:31:96:d1:8d:8d:d2:7e:a3:4d:a5:c4:78:78: 33:25:f1:c5:66:ff:a7:ab:97:28:38:13:88:da:e5:d5:3e:95: d5:43:f0:14:72:45:62:62:6d:43:80:80:b6:e9:c4:2a:dc:2c: 59:72:85:1b:45:25:0e:c0:f7:06:a6:c9:9a:50:bf:c5:8d:61: 40:38:b4:89:47:a0:49:bf:bf:9d:6d:82:52:ee:d3:33:a0:3a: 0a:1b:a8:1a:11:8b:d9:7e:86:e4:92:a4:50:d8:59:0d:ce:1d: 9b:66:87:e7:f8:cf:b9:3a:ff:a4:15:ca:ea:e5:35:56:bf:4d: 17:95:88:ec:64:87:21:10:71:59:20:b6:ac:eb:50:be:8c:64: e2:e8:03:b7:70:cf:db:e3:18:31:e9:6a:67:28:9a:13:61:d8: a8:83:86:8e:2a:1a:80:b2:16:7d:3e:32:55:15:54:ff:b0:4d: fb:0e:65:a1:91:fb:b4:28:e3:32:08:b1:a6:75:03:42:aa:9d: be:aa:b9:32:10:6c:25:9d:46:02:91:af:19:69:f8:f7:09:5b: ec:1f:96:51:81:ef:4c:9c:78:fa:5a:6a:f1:24:dd:32:4b:6d: 35:df:0c:9f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTj3Hy17MyVKL57hCrk5j0/8/zq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg3NzVGMTZCODZDNjYyOTlEOUFGOTA0RjczNzg2Q0Qz NjVEODc4NzAeFw0yNjA1MDMwMjEyMjdaFw0yNzA1MDIwMjE3MjdaMDMxMTAvBgNV BAMTKDQzNUE1ODQwMDZBMUNDRUNGQjgyNDAyNjE3MzgyQ0RFNEY3NjY5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpI4mfliIWy64l+h5Luf28c3g7 dkzjawmUU4Pym+t4mT4VUKOf3p9LpLZhdX/jzHN+qgTRvpew4SfezdYdyLW1jo4W x96CAOCzOrpfNYUbYH9IE7v5IkSgTE+dYYp71Ns89vXcoqfc7N3s4AuGHMMvO3rg dZACKuIjuFnCqXPftbyobs1k1iBHgAAdm9fre1BdWoCbz5mF9nWJU29dRbD7FJuz fvGN5N4IXYdIp8+5meKXf+i3f39b0lB/0G9Zw7jfhjtj0BGIO/aFDpzlj26Fc3Q6 D6qhRuy8GOYVP+Uk1yv8XVwkQzcuvO2G49FIMcbfunMnUwrXqq7W9WILJPnjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQ1pYQAahzOz7gkAmFzgs3k92aZcwHwYDVR0j BBgwFoAUWHdfFrhsZimdmvkE9zeGzTZdh4cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWNhMjkyYjItNGFlNC00MWRmLTg4N2EtYzE3MmMzZTFhZTczLzAvNTg3NzVGMTZC ODZDNjYyOTlEOUFGOTA0RjczNzg2Q0QzNjVEODc4Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81ODc3NUYxNkI4NkM2NjI5OUQ5QUY5MDRGNzM3ODZDRDM2NUQ4 Nzg3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMyMzAzMDMxM2E2NDY2MzAzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8FTAMA0GCSqGSIb3DQEBCwUAA4IBAQA3/y77R7bxkA9H/OxINOy8Y3GWjXFvkTGW 0Y2N0n6jTaXEeHgzJfHFZv+nq5coOBOI2uXVPpXVQ/AUckViYm1DgIC26cQq3CxZ coUbRSUOwPcGpsmaUL/FjWFAOLSJR6BJv7+dbYJS7tMzoDoKG6gaEYvZfobkkqRQ 2FkNzh2bZofn+M+5Ov+kFcrq5TVWv00XlYjsZIchEHFZILas61C+jGTi6AO3cM/b 4xgx6WpnKJoTYdiog4aOKhqAshZ9PjJVFVT/sE37DmWhkfu0KOMyCLGmdQNCqp2+ qrkyEGwlnUYCka8Zafj3CVvsH5ZRge9MnHj6WmrxJN0yS2013wyf -----END CERTIFICATE-----Generated at Wed May 13 12:02:09 2026 by rpki-client