$ rpki-client -vvf rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa File: 323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa (raw, json) Hash identifier: lJ60QC6hkGeg/VLRUN+YScgOEnnAlSVZ9ySMXaFKus8= Subject key identifier: 72:25:D0:07:E0:93:27:C8:77:A1:27:9D:0A:32:20:EE:19:30:DE:6E Certificate issuer: /CN=3B686CBC7943CB0EE971418DB2F41C3817F7DB0B Certificate serial: 6D2058861D532ED9F2A020F59F7556860D2E02E6 Authority key identifier: 3B:68:6C:BC:79:43:CB:0E:E9:71:41:8D:B2:F4:1C:38:17:F7:DB:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B686CBC7943CB0EE971418DB2F41C3817F7DB0B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa Signing time: Sun 03 May 2026 02:19:34 +0000 ROA not before: Sun 03 May 2026 02:14:34 +0000 ROA not after: Sun 02 May 2027 02:19:34 +0000 asID: 153127 IP address blocks: 2001:df4:58c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/3B686CBC7943CB0EE971418DB2F41C3817F7DB0B.crl rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/3B686CBC7943CB0EE971418DB2F41C3817F7DB0B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B686CBC7943CB0EE971418DB2F41C3817F7DB0B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:20:58:86:1d:53:2e:d9:f2:a0:20:f5:9f:75:56:86:0d:2e:02:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B686CBC7943CB0EE971418DB2F41C3817F7DB0B Validity Not Before: May 3 02:14:34 2026 GMT Not After : May 2 02:19:34 2027 GMT Subject: CN=7225D007E09327C877A1279D0A3220EE1930DE6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b2:e2:ca:98:01:f0:45:55:c9:46:0f:a5:11: 79:03:95:6d:b2:00:88:fb:7b:34:71:00:1e:6e:b2: ed:46:37:a2:0a:2e:e7:62:69:fe:3b:86:f3:bb:af: 6b:22:c9:15:62:3f:01:20:fe:ce:f0:86:7a:db:4b: f3:2a:33:b8:4c:b9:33:81:8c:d8:ef:42:8b:e2:a7: bc:c9:70:b6:bc:0b:10:3c:fd:b4:c0:95:ac:a8:52: 45:7c:d6:99:48:f4:d7:fb:48:00:a5:24:84:2e:78: ea:77:6d:5c:a9:2e:93:fc:18:00:8d:59:fd:5b:b2: fe:fd:2d:72:bb:96:30:0e:b9:c7:81:de:b2:0e:6a: 89:63:6a:69:90:e1:2e:a2:e8:65:e0:96:bf:6d:e2: 57:e4:bf:6e:c7:c3:f1:9b:0c:d7:ce:3a:80:9a:c3: 4a:36:c0:f6:1f:ad:6a:a3:84:44:b4:2d:41:d8:cd: 1c:e6:8a:a4:77:c3:f8:97:4a:85:3a:40:d2:15:d2: 60:71:37:23:36:ac:99:03:f1:ea:60:ce:ee:db:67: 9d:aa:4a:34:55:a3:c3:d6:3c:8c:5b:0d:f8:d0:91: ef:37:c1:55:b6:60:fa:bc:07:e7:42:94:7f:00:82: 7c:3e:9c:5d:ff:19:aa:69:56:19:4a:58:94:2c:06: 75:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:25:D0:07:E0:93:27:C8:77:A1:27:9D:0A:32:20:EE:19:30:DE:6E X509v3 Authority Key Identifier: keyid:3B:68:6C:BC:79:43:CB:0E:E9:71:41:8D:B2:F4:1C:38:17:F7:DB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/3B686CBC7943CB0EE971418DB2F41C3817F7DB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B686CBC7943CB0EE971418DB2F41C3817F7DB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/1/323030313a6466343a353863303a3a2f34382d3438203d3e20313533313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:58c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:ab:7f:2e:7f:61:da:58:cc:e6:91:85:78:94:83:33:b7:6a: 86:1b:99:a8:68:c4:4e:40:47:1e:c1:cd:7b:5e:9c:04:70:14: 40:a9:3b:3a:2b:f6:ca:a6:14:50:e1:e1:1d:06:51:4f:cc:38: 3f:03:60:b6:1e:25:24:42:7d:f9:c6:a0:45:51:72:f2:ca:59: bc:63:d7:ff:da:19:47:68:ef:78:fd:79:de:6e:a9:0c:8e:03: e4:52:24:86:c6:fa:5a:97:49:5d:a5:f6:87:4b:7b:11:9f:a3: af:0d:f5:6a:3f:1f:af:2b:dd:84:d0:d4:59:92:07:e5:de:66: 40:06:6a:e4:12:37:e4:c6:82:57:2d:81:8d:66:c6:7f:54:6a: 49:de:2a:85:c0:67:71:fb:9e:f3:3d:9c:38:65:08:4f:5b:cd: 8c:40:97:82:24:dd:b9:7a:11:f8:d4:94:87:71:38:4c:43:b3: 3d:34:6f:d0:ab:20:1b:3d:bf:f8:34:9a:37:a1:7b:65:99:05: 9d:77:1b:2d:8a:17:b7:56:65:39:bf:eb:28:bc:c1:22:05:d3: e3:d2:07:1c:3c:f1:cf:c9:32:1a:d5:14:3d:8a:17:a5:11:6f: cd:75:08:91:2b:cf:dd:3e:0a:38:58:78:43:94:6a:92:5c:6e: 02:ee:54:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbSBYhh1TLtnyoCD1n3VWhg0uAuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I2ODZDQkM3OTQzQ0IwRUU5NzE0MThEQjJGNDFDMzgx N0Y3REIwQjAeFw0yNjA1MDMwMjE0MzRaFw0yNzA1MDIwMjE5MzRaMDMxMTAvBgNV BAMTKDcyMjVEMDA3RTA5MzI3Qzg3N0ExMjc5RDBBMzIyMEVFMTkzMERFNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcsuLKmAHwRVXJRg+lEXkDlW2y AIj7ezRxAB5usu1GN6IKLudiaf47hvO7r2siyRViPwEg/s7whnrbS/MqM7hMuTOB jNjvQovip7zJcLa8CxA8/bTAlayoUkV81plI9Nf7SAClJIQueOp3bVypLpP8GACN Wf1bsv79LXK7ljAOuceB3rIOaoljammQ4S6i6GXglr9t4lfkv27Hw/GbDNfOOoCa w0o2wPYfrWqjhES0LUHYzRzmiqR3w/iXSoU6QNIV0mBxNyM2rJkD8epgzu7bZ52q SjRVo8PWPIxbDfjQke83wVW2YPq8B+dClH8Agnw+nF3/GappVhlKWJQsBnUBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUciXQB+CTJ8h3oSedCjIg7hkw3m4wHwYDVR0j BBgwFoAUO2hsvHlDyw7pcUGNsvQcOBf32wswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjFkOTdiNDAtYzAzMS00ZTViLTliNDItZDJhZTFjOWNmOTg3LzEvM0I2ODZDQkM3 OTQzQ0IwRUU5NzE0MThEQjJGNDFDMzgxN0Y3REIwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjY4NkNCQzc5NDNDQjBFRTk3MTQxOERCMkY0MUMzODE3RjdE QjBCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIxZDk3YjQwLWMwMzEtNGU1Yi05 YjQyLWQyYWUxYzljZjk4Ny8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1Mzg2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FjAMA0GCSqGSIb3DQEBCwUAA4IBAQA7q38uf2HaWMzmkYV4lIMzt2qGG5moaMRO QEcewc17XpwEcBRAqTs6K/bKphRQ4eEdBlFPzDg/A2C2HiUkQn35xqBFUXLyylm8 Y9f/2hlHaO94/XnebqkMjgPkUiSGxvpal0ldpfaHS3sRn6OvDfVqPx+vK92E0NRZ kgfl3mZABmrkEjfkxoJXLYGNZsZ/VGpJ3iqFwGdx+57zPZw4ZQhPW82MQJeCJN25 ehH41JSHcThMQ7M9NG/QqyAbPb/4NJo3oXtlmQWddxstihe3VmU5v+sovMEiBdPj 0gccPPHPyTIa1RQ9ihelEW/NdQiRK8/dPgo4WHhDlGqSXG4C7lSu -----END CERTIFICATE-----Generated at Wed May 13 06:55:20 2026 by rpki-client