$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa File: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (raw, json) Hash identifier: uXr8DnKi8QtOAVEEstmImQaN4M7bPiEAwEuGTottsCo= Subject key identifier: 53:8D:93:68:1A:F9:49:EF:34:8D:51:74:8F:4A:4A:A3:4D:B8:23:AC Certificate issuer: /CN=46669355EBB0FE3AE6C06C8DF7A917BEB48849A0 Certificate serial: 16E80BCECE7837AFA6107ED82E6C60E72271B2D2 Authority key identifier: 46:66:93:55:EB:B0:FE:3A:E6:C0:6C:8D:F7:A9:17:BE:B4:88:49:A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/46669355EBB0FE3AE6C06C8DF7A917BEB48849A0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa Signing time: Sun 03 May 2026 02:17:40 +0000 ROA not before: Sun 03 May 2026 02:12:40 +0000 ROA not after: Sun 02 May 2027 02:17:40 +0000 asID: 139381 IP address blocks: 2001:df1:6380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/46669355EBB0FE3AE6C06C8DF7A917BEB48849A0.crl rsync://rpki-rsync.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/46669355EBB0FE3AE6C06C8DF7A917BEB48849A0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/46669355EBB0FE3AE6C06C8DF7A917BEB48849A0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e8:0b:ce:ce:78:37:af:a6:10:7e:d8:2e:6c:60:e7:22:71:b2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46669355EBB0FE3AE6C06C8DF7A917BEB48849A0 Validity Not Before: May 3 02:12:40 2026 GMT Not After : May 2 02:17:40 2027 GMT Subject: CN=538D93681AF949EF348D51748F4A4AA34DB823AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5e:bb:56:9a:87:f4:ad:63:8f:26:cb:a8:44: 1b:ec:5c:2e:bf:38:f2:87:a1:23:ca:5e:d0:77:b3: 71:eb:ee:ae:fe:70:e7:8f:86:bb:3c:fe:3b:ba:00: c6:57:19:1c:95:ec:32:78:c1:c4:fa:8f:06:4e:73: 63:64:0a:c5:0a:a6:c7:0d:27:82:80:26:1e:86:dc: 60:18:df:f0:b5:2e:28:56:09:38:98:20:c4:af:e3: 73:1c:83:c3:32:c2:c5:c1:16:51:35:a6:6a:c5:7d: 53:19:54:31:6c:c4:3c:65:84:dd:4e:5d:65:2c:d2: c0:a9:ba:e1:54:6a:51:35:42:09:33:e8:01:0d:b4: 2c:7a:43:cc:0a:38:0d:24:40:c3:7c:dc:32:6c:d0: af:80:ec:85:ac:e4:71:ed:33:2f:e8:44:ff:05:29: 7e:e3:75:c3:be:41:9e:d2:d0:bd:34:5c:de:f2:e1: 66:58:26:06:cc:b9:e8:ad:ae:e8:62:1c:d1:57:6c: 6a:30:2b:c3:95:84:f0:62:9e:cf:aa:fe:ad:f0:be: 8f:c7:c4:00:21:54:05:e6:56:64:6e:d1:62:21:a5: 64:75:20:07:bd:d4:a1:ab:f7:ee:f1:4d:6f:e2:59: 42:9e:3a:8f:09:fc:ca:79:b9:69:1d:83:10:d0:83: 54:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8D:93:68:1A:F9:49:EF:34:8D:51:74:8F:4A:4A:A3:4D:B8:23:AC X509v3 Authority Key Identifier: keyid:46:66:93:55:EB:B0:FE:3A:E6:C0:6C:8D:F7:A9:17:BE:B4:88:49:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/46669355EBB0FE3AE6C06C8DF7A917BEB48849A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/46669355EBB0FE3AE6C06C8DF7A917BEB48849A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6380::/48 Signature Algorithm: sha256WithRSAEncryption 93:74:cd:44:d6:8e:1a:cc:ff:46:b0:39:15:06:ed:dc:5d:26: 7d:0f:fb:28:19:29:2f:8c:db:f4:27:8c:c0:ca:e5:31:bb:7b: c4:de:ee:98:f3:aa:48:98:6c:46:8f:ee:ee:ee:c1:a3:fe:da: c4:db:4d:40:b3:55:cb:b4:dd:77:90:9d:c2:39:f3:12:79:8d: 7b:ca:db:e1:28:9d:01:99:5e:ca:2d:7f:ad:87:1d:08:88:a7: a4:90:49:5e:48:43:69:7a:bd:80:7d:17:38:92:f0:a2:6d:d8: f5:42:c5:22:1f:67:fa:5d:f1:64:19:41:7a:24:14:f9:80:fd: bf:3d:09:64:41:7b:bb:23:be:ec:44:23:93:33:47:90:96:18: 67:6b:de:fc:75:47:15:55:76:a5:80:e4:4f:23:11:ba:c0:f7: 7d:12:ac:c2:ee:8b:28:32:9b:52:16:44:ea:fb:92:75:ed:9f: af:bc:87:e5:90:fc:fb:d4:44:82:86:c1:6c:d9:84:19:02:35: c3:33:7b:c1:a1:78:89:46:6b:41:43:f5:21:fa:aa:08:18:26: 96:79:5e:70:fb:4b:d3:4d:aa:ad:2c:1f:81:fa:18:f3:cc:c5: 79:0a:c0:35:ce:63:63:d2:4f:1c:c9:fd:40:44:e7:bc:29:ba: 74:fc:f0:69 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFugLzs54N6+mEH7YLmxg5yJxstIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDY2NjkzNTVFQkIwRkUzQUU2QzA2QzhERjdBOTE3QkVC NDg4NDlBMDAeFw0yNjA1MDMwMjEyNDBaFw0yNzA1MDIwMjE3NDBaMDMxMTAvBgNV BAMTKDUzOEQ5MzY4MUFGOTQ5RUYzNDhENTE3NDhGNEE0QUEzNERCODIzQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwXrtWmof0rWOPJsuoRBvsXC6/ OPKHoSPKXtB3s3Hr7q7+cOePhrs8/ju6AMZXGRyV7DJ4wcT6jwZOc2NkCsUKpscN J4KAJh6G3GAY3/C1LihWCTiYIMSv43Mcg8MywsXBFlE1pmrFfVMZVDFsxDxlhN1O XWUs0sCpuuFUalE1Qgkz6AENtCx6Q8wKOA0kQMN83DJs0K+A7IWs5HHtMy/oRP8F KX7jdcO+QZ7S0L00XN7y4WZYJgbMueitruhiHNFXbGowK8OVhPBins+q/q3wvo/H xAAhVAXmVmRu0WIhpWR1IAe91KGr9+7xTW/iWUKeOo8J/Mp5uWkdgxDQg1QzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUU42TaBr5Se80jVF0j0pKo024I6wwHwYDVR0j BBgwFoAURmaTVeuw/jrmwGyN96kXvrSISaAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRkYzFkZDgtNmQyNS00N2M3LWFhYTQtYmRkZjFiOWQ2NzdlLzAvNDY2NjkzNTVF QkIwRkUzQUU2QzA2QzhERjdBOTE3QkVCNDg4NDlBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80NjY2OTM1NUVCQjBGRTNBRTZDMDZDOERGN0E5MTdCRUI0ODg0 OUEwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM2MzMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzODMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8WOAMA0GCSqGSIb3DQEBCwUAA4IBAQCTdM1E1o4azP9GsDkVBu3cXSZ9D/soGSkv jNv0J4zAyuUxu3vE3u6Y86pImGxGj+7u7sGj/trE201As1XLtN13kJ3COfMSeY17 ytvhKJ0BmV7KLX+thx0IiKekkEleSENper2AfRc4kvCibdj1QsUiH2f6XfFkGUF6 JBT5gP2/PQlkQXu7I77sRCOTM0eQlhhna978dUcVVXalgORPIxG6wPd9EqzC7oso MptSFkTq+5J17Z+vvIflkPz71ESChsFs2YQZAjXDM3vBoXiJRmtBQ/Uh+qoIGCaW eV5w+0vTTaqtLB+B+hjzzMV5CsA1zmNj0k8cyf1AROe8Kbp0/PBp -----END CERTIFICATE-----Generated at Wed May 13 08:39:36 2026 by rpki-client