$ rpki-client -vvf rpki-rsync.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa File: 323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa (raw, json) Hash identifier: UOVDSlhXigw/Uz77MSYpnkR4v33gbqMyBOUU19NWXlU= Subject key identifier: 1E:6C:2C:58:45:96:1C:CC:52:81:5D:6A:6C:50:79:CA:B6:04:82:1B Certificate issuer: /CN=1587930E115B02B61F9967A961669E9C2E5D3155 Certificate serial: 62451EBA3583C0B72073F0854F5DE09E5B3C9105 Authority key identifier: 15:87:93:0E:11:5B:02:B6:1F:99:67:A9:61:66:9E:9C:2E:5D:31:55 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1587930E115B02B61F9967A961669E9C2E5D3155.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa Signing time: Sun 03 May 2026 02:20:11 +0000 ROA not before: Sun 03 May 2026 02:15:11 +0000 ROA not after: Sun 02 May 2027 02:20:11 +0000 asID: 46056 IP address blocks: 2001:df0:44a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/1587930E115B02B61F9967A961669E9C2E5D3155.crl rsync://rpki-rsync.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/1587930E115B02B61F9967A961669E9C2E5D3155.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1587930E115B02B61F9967A961669E9C2E5D3155.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:45:1e:ba:35:83:c0:b7:20:73:f0:85:4f:5d:e0:9e:5b:3c:91:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1587930E115B02B61F9967A961669E9C2E5D3155 Validity Not Before: May 3 02:15:11 2026 GMT Not After : May 2 02:20:11 2027 GMT Subject: CN=1E6C2C5845961CCC52815D6A6C5079CAB604821B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:89:94:f0:b2:c6:34:37:a2:90:07:b4:a7:c4: 0e:7c:fa:fc:15:b5:34:92:4d:f7:bb:15:3b:d1:ab: d5:87:3e:51:a6:b2:ce:b4:87:b8:2e:c3:b2:ee:8e: 6b:18:90:93:71:af:17:89:78:0b:6f:8b:5d:9b:f6: 0f:7d:60:8c:fd:21:1a:55:6e:57:1a:eb:bc:84:1e: 35:04:6d:36:e9:5a:1f:c9:79:0f:61:84:43:f3:2f: e2:21:fe:d6:6a:0e:97:ca:8e:a0:dd:7c:f0:9c:6a: 17:41:82:a2:b1:ed:ff:94:dc:28:93:04:4c:05:f6: 52:c2:1d:a3:18:7a:a1:ae:a5:7e:54:dc:8f:77:79: f7:66:8f:91:cd:a0:0f:83:03:74:47:e8:1b:25:b6: c7:87:75:d2:69:62:dc:8a:b6:e2:2b:b3:fb:fa:86: 86:b0:75:42:16:17:5e:54:07:72:ab:5e:ac:62:b7: d1:5c:5c:02:e0:e4:74:38:d4:a1:da:b7:ff:96:82: 1c:8a:59:6f:3b:6a:6f:70:8c:f8:87:26:ea:2d:61: df:80:36:1c:00:0c:81:6f:8b:cd:3b:87:75:54:0b: 49:59:79:e9:fa:9b:ae:17:4e:ab:e2:20:fd:71:2f: 7d:45:d1:e7:18:bd:e7:52:48:11:d0:a2:74:89:81: 34:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6C:2C:58:45:96:1C:CC:52:81:5D:6A:6C:50:79:CA:B6:04:82:1B X509v3 Authority Key Identifier: keyid:15:87:93:0E:11:5B:02:B6:1F:99:67:A9:61:66:9E:9C:2E:5D:31:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/1587930E115B02B61F9967A961669E9C2E5D3155.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1587930E115B02B61F9967A961669E9C2E5D3155.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/323030313a6466303a3434613a3a2f34382d3438203d3e203436303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:44a::/48 Signature Algorithm: sha256WithRSAEncryption 08:35:98:c2:b9:63:2b:88:65:c2:f3:e1:89:7f:72:41:5e:96: 2b:6a:6e:80:fb:fb:14:80:b8:e1:5d:c5:9c:49:67:cf:42:79: 03:f0:02:64:7d:b2:85:e6:46:2a:c0:8e:55:3f:e4:08:26:78: fd:af:9e:9d:63:aa:61:b9:c6:3d:2b:40:70:46:60:83:60:74: 6f:81:a3:61:48:bc:8e:ab:35:1d:51:dd:38:7b:8f:3b:e2:96: 12:1a:1d:93:f4:50:e3:a4:da:e1:d8:f1:55:14:d2:86:48:25: fc:84:19:8a:e2:0f:a1:fb:c4:ac:ad:c5:45:11:bd:21:e4:45: 70:f7:39:5c:68:a9:59:10:86:19:9e:05:8e:62:4e:c0:b3:5b: 4e:8c:2a:2f:de:22:59:8d:80:56:44:1b:20:65:e6:a9:70:48: 13:a7:e6:36:ad:5d:9c:95:6b:c9:7e:0c:30:79:cf:21:d5:15: 8f:88:70:d1:44:df:6c:d9:df:00:6e:6b:0f:15:9d:70:83:4f: 14:84:23:d3:cb:8e:88:a7:fb:3b:f8:4d:67:b6:bf:09:27:88: 44:a8:6a:08:fd:a1:f8:69:cb:79:c0:26:98:80:19:fb:e9:ec: 19:1c:8c:28:ec:6f:12:f7:02:21:72:ff:cf:d0:b8:52:b3:d0: 6e:61:a5:cf -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYkUeujWDwLcgc/CFT13gnls8kQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU4NzkzMEUxMTVCMDJCNjFGOTk2N0E5NjE2NjlFOUMy RTVEMzE1NTAeFw0yNjA1MDMwMjE1MTFaFw0yNzA1MDIwMjIwMTFaMDMxMTAvBgNV BAMTKDFFNkMyQzU4NDU5NjFDQ0M1MjgxNUQ2QTZDNTA3OUNBQjYwNDgyMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIiZTwssY0N6KQB7SnxA58+vwV tTSSTfe7FTvRq9WHPlGmss60h7guw7LujmsYkJNxrxeJeAtvi12b9g99YIz9IRpV blca67yEHjUEbTbpWh/JeQ9hhEPzL+Ih/tZqDpfKjqDdfPCcahdBgqKx7f+U3CiT BEwF9lLCHaMYeqGupX5U3I93efdmj5HNoA+DA3RH6BsltseHddJpYtyKtuIrs/v6 hoawdUIWF15UB3KrXqxit9FcXALg5HQ41KHat/+WghyKWW87am9wjPiHJuotYd+A NhwADIFvi807h3VUC0lZeen6m64XTqviIP1xL31F0ecYvedSSBHQonSJgTSvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUHmwsWEWWHMxSgV1qbFB5yrYEghswHwYDVR0j BBgwFoAUFYeTDhFbArYfmWepYWaenC5dMVUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjQxMGZhNDMtMGJlMy00NzFhLTljMjAtODEwNDYyOTFjYTExLzAvMTU4NzkzMEUx MTVCMDJCNjFGOTk2N0E5NjE2NjlFOUMyRTVEMzE1NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTg3OTMwRTExNUIwMkI2MUY5OTY3QTk2MTY2OUU5QzJFNUQz MTU1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI0MTBmYTQzLTBiZTMtNDcxYS05 YzIwLTgxMDQ2MjkxY2ExMS8wLzMyMzAzMDMxM2E2NDY2MzAzYTM0MzQ2MTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzYzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wBEow DQYJKoZIhvcNAQELBQADggEBAAg1mMK5YyuIZcLz4Yl/ckFelitqboD7+xSAuOFd xZxJZ89CeQPwAmR9soXmRirAjlU/5AgmeP2vnp1jqmG5xj0rQHBGYINgdG+Bo2FI vI6rNR1R3Th7jzvilhIaHZP0UOOk2uHY8VUU0oZIJfyEGYriD6H7xKytxUURvSHk RXD3OVxoqVkQhhmeBY5iTsCzW06MKi/eIlmNgFZEGyBl5qlwSBOn5jatXZyVa8l+ DDB5zyHVFY+IcNFE32zZ3wBuaw8VnXCDTxSEI9PLjoin+zv4TWe2vwkniESoagj9 ofhpy3nAJpiAGfvp7BkcjCjsbxL3AiFy/8/QuFKz0G5hpc8= -----END CERTIFICATE-----Generated at Wed May 13 13:00:12 2026 by rpki-client