$ rpki-client -vvf rpki-rsync.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/323030313a6466303a373434303a3a2f34382d3438203d3e20313331313132.roa File: 323030313a6466303a373434303a3a2f34382d3438203d3e20313331313132.roa (raw, json) Hash identifier: mxf66wCv3huHr7+y00gKhj0SFSiQHrPhglnN0dDJ4UY= Subject key identifier: 34:40:53:5F:4D:00:69:F6:D7:FD:3B:3D:05:E3:14:DA:B6:C1:9B:10 Certificate issuer: /CN=5EC020FF41231134DE16F43F92714D434626A05B Certificate serial: 40308824F7F36914FF03A283A0CD7670166217ED Authority key identifier: 5E:C0:20:FF:41:23:11:34:DE:16:F4:3F:92:71:4D:43:46:26:A0:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5EC020FF41231134DE16F43F92714D434626A05B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/323030313a6466303a373434303a3a2f34382d3438203d3e20313331313132.roa Signing time: Sun 03 May 2026 02:21:19 +0000 ROA not before: Sun 03 May 2026 02:16:19 +0000 ROA not after: Sun 02 May 2027 02:21:19 +0000 asID: 131112 IP address blocks: 2001:df0:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/5EC020FF41231134DE16F43F92714D434626A05B.crl rsync://rpki-rsync.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/5EC020FF41231134DE16F43F92714D434626A05B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5EC020FF41231134DE16F43F92714D434626A05B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:30:88:24:f7:f3:69:14:ff:03:a2:83:a0:cd:76:70:16:62:17:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC020FF41231134DE16F43F92714D434626A05B Validity Not Before: May 3 02:16:19 2026 GMT Not After : May 2 02:21:19 2027 GMT Subject: CN=3440535F4D0069F6D7FD3B3D05E314DAB6C19B10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:af:57:71:c5:b4:c1:f5:08:97:c4:c8:51: 69:8e:91:b0:77:a0:02:a8:2d:f0:be:34:3f:17:00: f4:57:18:ac:a2:4d:5b:a4:c6:28:ce:9a:68:fa:62: 0b:0e:93:9e:ab:fa:90:91:d3:99:15:05:27:0f:10: ca:d2:7b:0a:22:42:88:2f:29:ee:9c:d2:3b:da:8c: 53:92:70:11:d3:80:f3:db:cc:95:b9:bb:eb:29:47: a3:1c:4b:68:6e:71:12:47:ce:a0:fa:04:9e:3f:ad: 56:a9:28:5c:75:26:8c:61:7b:9e:a2:a4:71:1f:c6: a6:93:7f:a8:cd:22:87:fe:90:f1:22:6d:b2:ec:80: 6d:93:42:9d:35:26:68:52:eb:7c:ec:96:9c:a5:94: 12:d2:d6:36:e4:0a:5e:98:f8:75:d6:ae:5d:d8:ca: 1d:83:bc:55:cd:76:6f:21:af:0c:0e:73:5d:de:ce: 6c:81:42:74:af:9b:80:78:cc:2d:88:7a:25:09:14: 65:bf:b2:69:bc:24:fe:c4:d7:01:77:27:b7:29:7a: 3d:b4:10:b0:1e:29:48:6a:f8:64:5c:88:f7:2a:57: 0f:29:7a:65:4e:97:7e:98:7a:be:57:3a:ca:14:57: 93:97:0a:94:05:30:07:80:18:39:fa:d7:00:d4:a6: a1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:40:53:5F:4D:00:69:F6:D7:FD:3B:3D:05:E3:14:DA:B6:C1:9B:10 X509v3 Authority Key Identifier: keyid:5E:C0:20:FF:41:23:11:34:DE:16:F4:3F:92:71:4D:43:46:26:A0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/5EC020FF41231134DE16F43F92714D434626A05B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5EC020FF41231134DE16F43F92714D434626A05B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/323030313a6466303a373434303a3a2f34382d3438203d3e20313331313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:7440::/48 Signature Algorithm: sha256WithRSAEncryption 20:d4:7b:88:53:c5:7c:40:7b:cc:24:d7:68:24:c2:8f:c4:b6: 6c:ec:66:d4:f2:14:c6:cd:34:02:97:ba:85:f6:4c:1f:c9:35: 7f:38:3a:a4:32:f2:af:5e:57:21:31:c7:14:ca:74:21:c4:13: 87:f1:0f:aa:9d:e7:14:00:b9:1e:04:bc:19:c2:02:db:db:c3: 2b:42:28:b8:bc:ca:37:03:4f:0b:ce:16:06:9b:63:81:d4:f1: 5b:f5:59:cf:95:32:c1:7f:b2:60:d6:7c:7b:7d:cd:25:09:5b: 16:ae:ae:ba:3d:98:05:ca:e8:af:68:6a:0b:26:97:40:c0:c1: a2:3e:50:7f:e8:04:2c:37:2b:d8:30:b8:f3:63:3b:bb:31:e1: 96:7e:20:9b:3b:8f:a8:16:83:33:09:ab:2f:1a:76:33:33:85: 08:da:81:9c:47:93:b6:34:ed:b3:02:97:ed:17:00:e2:c9:08: 0e:67:34:31:34:2d:42:e2:18:52:8d:57:a9:ef:57:5d:0f:95: fb:bc:c6:a1:dd:85:ae:0a:cd:29:2b:45:43:e4:8d:74:bc:88: c2:1c:46:3d:9a:c2:a3:80:0f:45:cd:1f:1e:ad:93:60:05:a3: 7d:d6:47:6d:ca:78:2d:55:33:50:c4:65:a6:8d:5a:0b:89:cc: 2f:8c:c8:f0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQDCIJPfzaRT/A6KDoM12cBZiF+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDMDIwRkY0MTIzMTEzNERFMTZGNDNGOTI3MTRENDM0 NjI2QTA1QjAeFw0yNjA1MDMwMjE2MTlaFw0yNzA1MDIwMjIxMTlaMDMxMTAvBgNV BAMTKDM0NDA1MzVGNEQwMDY5RjZEN0ZEM0IzRDA1RTMxNERBQjZDMTlCMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC42q9XccW0wfUIl8TIUWmOkbB3 oAKoLfC+ND8XAPRXGKyiTVukxijOmmj6YgsOk56r+pCR05kVBScPEMrSewoiQogv Ke6c0jvajFOScBHTgPPbzJW5u+spR6McS2hucRJHzqD6BJ4/rVapKFx1Joxhe56i pHEfxqaTf6jNIof+kPEibbLsgG2TQp01JmhS63zslpyllBLS1jbkCl6Y+HXWrl3Y yh2DvFXNdm8hrwwOc13ezmyBQnSvm4B4zC2IeiUJFGW/smm8JP7E1wF3J7cpej20 ELAeKUhq+GRciPcqVw8pemVOl36Yer5XOsoUV5OXCpQFMAeAGDn61wDUpqHVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNEBTX00AafbX/Ts9BeMU2rbBmxAwHwYDVR0j BBgwFoAUXsAg/0EjETTeFvQ/knFNQ0YmoFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mjg3ZjhmODItMzdiYi00OTgzLTkzY2EtNWUwNjcwYWIwMmUzLzAvNUVDMDIwRkY0 MTIzMTEzNERFMTZGNDNGOTI3MTRENDM0NjI2QTA1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RUMwMjBGRjQxMjMxMTM0REUxNkY0M0Y5MjcxNEQ0MzQ2MjZB MDVCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI4N2Y4ZjgyLTM3YmItNDk4My05 M2NhLTVlMDY3MGFiMDJlMy8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3MzQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzEzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8HRAMA0GCSqGSIb3DQEBCwUAA4IBAQAg1HuIU8V8QHvMJNdoJMKPxLZs7GbU8hTG zTQCl7qF9kwfyTV/ODqkMvKvXlchMccUynQhxBOH8Q+qnecUALkeBLwZwgLb28Mr Qii4vMo3A08LzhYGm2OB1PFb9VnPlTLBf7Jg1nx7fc0lCVsWrq66PZgFyuivaGoL JpdAwMGiPlB/6AQsNyvYMLjzYzu7MeGWfiCbO4+oFoMzCasvGnYzM4UI2oGcR5O2 NO2zApftFwDiyQgOZzQxNC1C4hhSjVep71ddD5X7vMah3YWuCs0pK0VD5I10vIjC HEY9msKjgA9FzR8erZNgBaN91kdtyngtVTNQxGWmjVoLicwvjMjw -----END CERTIFICATE-----Generated at Wed May 13 12:28:48 2026 by rpki-client