$ rpki-client -vvf rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa File: 323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa (raw, json) Hash identifier: qQsYjjc0UOS4U0mqMilyLxWp2Jg/oy/EO/6yTd0J1SE= Subject key identifier: CE:0A:8C:3C:27:7F:D8:FF:54:75:B7:E2:8D:7A:9A:C1:16:91:DC:90 Certificate issuer: /CN=100E5A40865841D56C5AB9D0CEE72188077EFAA3 Certificate serial: 6EE4BE18BF477917784E123608D270A02FE3ACF3 Authority key identifier: 10:0E:5A:40:86:58:41:D5:6C:5A:B9:D0:CE:E7:21:88:07:7E:FA:A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/100E5A40865841D56C5AB9D0CEE72188077EFAA3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa Signing time: Sun 03 May 2026 02:20:04 +0000 ROA not before: Sun 03 May 2026 02:15:04 +0000 ROA not after: Sun 02 May 2027 02:20:04 +0000 asID: 153069 IP address blocks: 2001:df4:c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/100E5A40865841D56C5AB9D0CEE72188077EFAA3.crl rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/100E5A40865841D56C5AB9D0CEE72188077EFAA3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/100E5A40865841D56C5AB9D0CEE72188077EFAA3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e4:be:18:bf:47:79:17:78:4e:12:36:08:d2:70:a0:2f:e3:ac:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=100E5A40865841D56C5AB9D0CEE72188077EFAA3 Validity Not Before: May 3 02:15:04 2026 GMT Not After : May 2 02:20:04 2027 GMT Subject: CN=CE0A8C3C277FD8FF5475B7E28D7A9AC11691DC90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:08:4b:ef:66:ba:7e:60:b1:39:fc:61:ba:a5: e6:b3:ec:3c:4d:3f:eb:95:be:d2:38:70:03:f9:7e: 66:4b:0b:12:36:e4:14:a4:0a:48:74:51:3f:b1:e5: 74:81:b5:dd:4b:cb:bf:f4:79:57:2a:95:d5:08:26: 8c:51:a9:2f:28:bf:36:56:34:98:a5:d1:8a:ff:de: e5:ef:d8:d6:23:56:e3:20:db:f7:42:9a:ee:19:11: b2:62:ee:4b:4f:c3:22:14:ef:fe:49:c2:00:9e:b5: 56:0f:07:56:ab:4b:4f:ca:fd:1b:9b:d8:d5:98:c0: f9:30:ad:d7:df:19:fd:5d:0b:6e:8e:af:16:7f:7d: 54:67:3a:4d:83:2d:82:12:30:b6:bc:a4:fe:7f:c0: 70:04:4e:72:17:5f:57:72:ab:8b:0e:dd:f8:37:9d: f7:b7:66:01:cd:7d:b0:4f:fd:5d:ca:bf:2c:93:a9: 72:ee:7f:30:22:2b:47:d5:a1:e6:9a:f0:10:0f:0e: b0:01:14:60:3c:7b:39:35:8d:fa:1e:1c:b7:62:73: 58:8a:10:f9:43:a8:53:ef:af:62:87:9d:c1:78:bc: a2:36:2b:8e:3d:97:87:9e:1d:36:bc:fb:ae:a7:0e: 8e:08:27:22:ef:61:80:e6:67:0d:4d:b5:cb:de:8c: e4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0A:8C:3C:27:7F:D8:FF:54:75:B7:E2:8D:7A:9A:C1:16:91:DC:90 X509v3 Authority Key Identifier: keyid:10:0E:5A:40:86:58:41:D5:6C:5A:B9:D0:CE:E7:21:88:07:7E:FA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/100E5A40865841D56C5AB9D0CEE72188077EFAA3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/100E5A40865841D56C5AB9D0CEE72188077EFAA3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/236561d4-23c8-4c9b-890e-4f2632e52c97/1/323030313a6466343a6334303a3a2f34382d3438203d3e20313533303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:c40::/48 Signature Algorithm: sha256WithRSAEncryption 61:05:53:6a:eb:14:ea:0e:dd:2e:81:05:3e:01:0d:61:4d:51: 4a:15:7f:dd:17:7f:98:fa:14:5f:57:c5:8c:d0:d3:9b:cf:85: 01:36:ad:71:b0:b9:a2:cd:95:6a:de:84:2d:78:44:6c:b1:07: 7d:4f:94:12:6f:f2:ff:2a:fb:5e:c3:1f:5d:14:70:cb:d4:21: 10:73:83:57:a7:f7:1c:24:80:c9:6d:0e:66:6d:39:0c:40:85: b6:39:f0:b4:23:2b:ca:97:b3:d2:3e:a9:d7:96:60:d7:18:5a: ef:90:24:a5:8d:64:73:61:9e:a3:24:69:f9:db:39:13:7c:e7: 58:96:52:74:17:8b:d5:ca:d5:97:f1:14:f7:ac:f8:56:39:73: c6:2b:0f:90:c9:09:b3:c4:1c:e5:95:01:73:67:6e:5c:50:be: 7a:10:b2:08:6b:c5:c8:58:12:c3:10:1c:b6:ed:bb:85:11:43: 82:44:61:42:e6:12:98:58:c5:13:88:af:7e:07:64:af:ce:91: 29:d4:c6:e8:51:7f:99:fe:3c:31:0a:3c:cc:70:27:ea:e4:10: ed:15:d5:9c:a7:04:61:24:00:9c:75:e9:95:e6:60:a0:97:06: c3:24:d0:74:f8:e3:f6:d5:8f:07:ad:5a:54:6f:9d:32:ed:d9: 94:aa:dc:f9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbuS+GL9HeRd4ThI2CNJwoC/jrPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAwRTVBNDA4NjU4NDFENTZDNUFCOUQwQ0VFNzIxODgw NzdFRkFBMzAeFw0yNjA1MDMwMjE1MDRaFw0yNzA1MDIwMjIwMDRaMDMxMTAvBgNV BAMTKENFMEE4QzNDMjc3RkQ4RkY1NDc1QjdFMjhEN0E5QUMxMTY5MURDOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5CEvvZrp+YLE5/GG6peaz7DxN P+uVvtI4cAP5fmZLCxI25BSkCkh0UT+x5XSBtd1Ly7/0eVcqldUIJoxRqS8ovzZW NJil0Yr/3uXv2NYjVuMg2/dCmu4ZEbJi7ktPwyIU7/5JwgCetVYPB1arS0/K/Rub 2NWYwPkwrdffGf1dC26OrxZ/fVRnOk2DLYISMLa8pP5/wHAETnIXX1dyq4sO3fg3 nfe3ZgHNfbBP/V3KvyyTqXLufzAiK0fVoeaa8BAPDrABFGA8ezk1jfoeHLdic1iK EPlDqFPvr2KHncF4vKI2K449l4eeHTa8+66nDo4IJyLvYYDmZw1NtcvejOSNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUzgqMPCd/2P9UdbfijXqawRaR3JAwHwYDVR0j BBgwFoAUEA5aQIZYQdVsWrnQzuchiAd++qMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjM2NTYxZDQtMjNjOC00YzliLTg5MGUtNGYyNjMyZTUyYzk3LzEvMTAwRTVBNDA4 NjU4NDFENTZDNUFCOUQwQ0VFNzIxODgwNzdFRkFBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDBFNUE0MDg2NTg0MUQ1NkM1QUI5RDBDRUU3MjE4ODA3N0VG QUEzLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzIzNjU2MWQ0LTIzYzgtNGM5Yi04 OTBlLTRmMjYzMmU1MmM5Ny8xLzMyMzAzMDMxM2E2NDY2MzQzYTYzMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMzMwMzYzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQM QDANBgkqhkiG9w0BAQsFAAOCAQEAYQVTausU6g7dLoEFPgENYU1RShV/3Rd/mPoU X1fFjNDTm8+FATatcbC5os2Vat6ELXhEbLEHfU+UEm/y/yr7XsMfXRRwy9QhEHOD V6f3HCSAyW0OZm05DECFtjnwtCMrypez0j6p15Zg1xha75AkpY1kc2GeoyRp+ds5 E3znWJZSdBeL1crVl/EU96z4VjlzxisPkMkJs8Qc5ZUBc2duXFC+ehCyCGvFyFgS wxActu27hRFDgkRhQuYSmFjFE4ivfgdkr86RKdTG6FF/mf48MQo8zHAn6uQQ7RXV nKcEYSQAnHXpleZgoJcGwyTQdPjj9tWPB61aVG+dMu3ZlKrc+Q== -----END CERTIFICATE-----Generated at Wed May 13 09:09:14 2026 by rpki-client