$ rpki-client -vvf rpki-rsync.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa File: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (raw, json) Hash identifier: +fmCqGE1N+8rTm5OExPB+Qrmtcx74bskEpH/ZHGnYVA= Subject key identifier: 0B:34:B0:49:76:3B:54:E8:E3:B9:57:7E:87:51:1E:AE:0D:5C:61:22 Certificate issuer: /CN=F34A43AF25B736BEF1074375C5FBFF562E2BB91D Certificate serial: 5E3794E865443B036E69FD92D307D636DBA9014C Authority key identifier: F3:4A:43:AF:25:B7:36:BE:F1:07:43:75:C5:FB:FF:56:2E:2B:B9:1D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F34A43AF25B736BEF1074375C5FBFF562E2BB91D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa Signing time: Sun 03 May 2026 02:21:14 +0000 ROA not before: Sun 03 May 2026 02:16:14 +0000 ROA not after: Sun 02 May 2027 02:21:14 +0000 asID: 150523 IP address blocks: 2001:df1:dfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/F34A43AF25B736BEF1074375C5FBFF562E2BB91D.crl rsync://rpki-rsync.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/F34A43AF25B736BEF1074375C5FBFF562E2BB91D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F34A43AF25B736BEF1074375C5FBFF562E2BB91D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:37:94:e8:65:44:3b:03:6e:69:fd:92:d3:07:d6:36:db:a9:01:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F34A43AF25B736BEF1074375C5FBFF562E2BB91D Validity Not Before: May 3 02:16:14 2026 GMT Not After : May 2 02:21:14 2027 GMT Subject: CN=0B34B049763B54E8E3B9577E87511EAE0D5C6122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fc:8b:84:56:4e:ef:93:52:8b:a5:e7:0c:a3: 8e:63:af:01:28:19:6c:72:ac:c0:af:b7:db:63:59: 71:33:33:26:a7:f2:50:da:b7:cb:bb:c0:e0:39:f3: e7:fc:ae:63:2b:76:be:43:87:77:a6:fd:e6:1a:55: 03:43:27:c8:40:de:bc:5b:62:6b:1f:63:72:e2:75: 5b:67:14:12:52:73:a0:2c:74:0d:66:78:5b:bf:3f: 63:2f:5d:f0:e6:9a:0b:45:3f:2e:44:36:b6:be:e2: 6d:34:a7:5f:08:cb:e8:bd:6e:74:62:2c:a5:76:18: 3a:38:c7:92:29:74:df:31:13:de:ee:bc:65:b6:05: 64:d0:e6:21:51:c6:f1:6f:c0:2a:aa:87:62:c0:de: 64:1a:ee:6c:96:4f:5a:62:5c:29:b8:57:53:44:4b: 14:4b:ae:61:c7:43:7d:37:5b:65:94:9b:66:9c:a9: b3:f0:5f:19:52:e5:0e:b8:c8:a3:b8:9c:b1:3c:20: 34:e5:71:de:74:4d:87:44:43:a4:bc:20:5b:8a:c5: 52:ca:79:e0:e3:56:03:3d:1b:56:a3:41:df:fa:63: 19:8c:1e:37:39:52:b5:e7:18:8c:39:60:b0:ed:37: 8b:b5:ae:3d:eb:bd:0f:9d:32:90:36:0b:aa:27:83: f1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:34:B0:49:76:3B:54:E8:E3:B9:57:7E:87:51:1E:AE:0D:5C:61:22 X509v3 Authority Key Identifier: keyid:F3:4A:43:AF:25:B7:36:BE:F1:07:43:75:C5:FB:FF:56:2E:2B:B9:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/F34A43AF25B736BEF1074375C5FBFF562E2BB91D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F34A43AF25B736BEF1074375C5FBFF562E2BB91D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:dfc0::/48 Signature Algorithm: sha256WithRSAEncryption 12:89:6d:67:e5:8b:9a:de:04:22:a3:0e:c1:88:93:3d:28:b4: fb:37:aa:17:25:4a:8d:f4:d2:fb:c2:d8:01:00:11:47:dc:c7: 67:49:4d:a9:fd:4b:0e:51:f5:45:06:9b:b0:18:81:1f:ab:57: 12:f9:cb:10:8b:aa:5d:07:12:49:2b:97:97:8f:c3:27:b4:d2: 9a:ff:3a:8f:a9:0c:18:29:57:18:88:28:fe:e4:77:00:5b:0a: bb:2d:16:b2:9c:76:f2:4e:c3:c7:00:33:e9:4a:07:15:64:0d: 17:9b:61:c3:6a:9d:a2:6b:0b:8e:33:a9:01:e2:3b:f7:c6:df: de:77:5a:97:8b:7e:62:11:be:ab:21:4d:83:d3:84:6a:ea:68: dd:90:62:7a:6e:5f:65:f0:27:9e:b7:9f:39:0d:1e:5e:99:3d: 58:21:87:e3:8c:43:4a:53:23:69:0b:db:98:61:85:ac:d2:49: 60:79:cd:a5:47:ee:78:b4:bb:fc:21:bf:01:fd:72:59:c5:84: 4b:3f:05:97:32:fb:ff:68:ba:ee:6c:56:77:28:65:ec:df:b6: 7a:42:6f:3d:87:b0:30:90:aa:35:74:f1:f2:bd:b7:bd:4b:c4: 5b:84:14:9e:6d:07:4b:e1:e7:97:21:fd:9a:5c:dd:f6:36:b2: 5f:7d:45:71 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXjeU6GVEOwNuaf2S0wfWNtupAUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM0QTQzQUYyNUI3MzZCRUYxMDc0Mzc1QzVGQkZGNTYy RTJCQjkxRDAeFw0yNjA1MDMwMjE2MTRaFw0yNzA1MDIwMjIxMTRaMDMxMTAvBgNV BAMTKDBCMzRCMDQ5NzYzQjU0RThFM0I5NTc3RTg3NTExRUFFMEQ1QzYxMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5/IuEVk7vk1KLpecMo45jrwEo GWxyrMCvt9tjWXEzMyan8lDat8u7wOA58+f8rmMrdr5Dh3em/eYaVQNDJ8hA3rxb YmsfY3LidVtnFBJSc6AsdA1meFu/P2MvXfDmmgtFPy5ENra+4m00p18Iy+i9bnRi LKV2GDo4x5IpdN8xE97uvGW2BWTQ5iFRxvFvwCqqh2LA3mQa7myWT1piXCm4V1NE SxRLrmHHQ303W2WUm2acqbPwXxlS5Q64yKO4nLE8IDTlcd50TYdEQ6S8IFuKxVLK eeDjVgM9G1ajQd/6YxmMHjc5UrXnGIw5YLDtN4u1rj3rvQ+dMpA2C6ong/H1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCzSwSXY7VOjjuVd+h1Eerg1cYSIwHwYDVR0j BBgwFoAU80pDryW3Nr7xB0N1xfv/Vi4ruR0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mjg0NjMyODUtN2MyOC00MzVhLTgyYmItZmNjMzJkNTgwMjBlLzAvRjM0QTQzQUYy NUI3MzZCRUYxMDc0Mzc1QzVGQkZGNTYyRTJCQjkxRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMzRBNDNBRjI1QjczNkJFRjEwNzQzNzVDNUZCRkY1NjJFMkJC OTFELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI4NDYzMjg1LTdjMjgtNDM1YS04 MmJiLWZjYzMyZDU4MDIwZS8wLzMyMzAzMDMxM2E2NDY2MzEzYTY0NjY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzUzMjMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8d/AMA0GCSqGSIb3DQEBCwUAA4IBAQASiW1n5Yua3gQiow7BiJM9KLT7N6oXJUqN 9NL7wtgBABFH3MdnSU2p/UsOUfVFBpuwGIEfq1cS+csQi6pdBxJJK5eXj8MntNKa /zqPqQwYKVcYiCj+5HcAWwq7LRaynHbyTsPHADPpSgcVZA0Xm2HDap2iawuOM6kB 4jv3xt/ed1qXi35iEb6rIU2D04Rq6mjdkGJ6bl9l8Ceet585DR5emT1YIYfjjENK UyNpC9uYYYWs0klgec2lR+54tLv8Ib8B/XJZxYRLPwWXMvv/aLrubFZ3KGXs37Z6 Qm89h7AwkKo1dPHyvbe9S8RbhBSebQdL4eeXIf2aXN32NrJffUVx -----END CERTIFICATE-----Generated at Wed May 13 15:03:19 2026 by rpki-client