$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa File: 323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa (raw, json) Hash identifier: uBR3IGblPNZJ3jWpF0OXwKYD/CzwZlm+xMvRiWr2v+Q= Subject key identifier: F7:92:56:0A:E6:AC:EF:2A:1B:13:25:24:5E:71:B8:2C:0D:AC:F4:48 Certificate issuer: /CN=4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F Certificate serial: 0543BCA9959A2AAD6B3BBA9602318628A44BD1E9 Authority key identifier: 4F:9D:EF:EA:18:F9:7C:95:D8:6B:C7:B3:9D:B7:D8:00:C1:F1:92:0F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa Signing time: Sun 03 May 2026 02:21:53 +0000 ROA not before: Sun 03 May 2026 02:16:53 +0000 ROA not after: Sun 02 May 2027 02:21:53 +0000 asID: 131755 IP address blocks: 2001:df6:1800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F.crl rsync://rpki-rsync.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:43:bc:a9:95:9a:2a:ad:6b:3b:ba:96:02:31:86:28:a4:4b:d1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F Validity Not Before: May 3 02:16:53 2026 GMT Not After : May 2 02:21:53 2027 GMT Subject: CN=F792560AE6ACEF2A1B1325245E71B82C0DACF448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6d:3b:7f:b7:ec:86:53:5c:81:bc:0f:b4:93: bf:c8:fa:8e:54:63:83:f2:b9:7a:25:d7:ec:49:4c: 00:de:06:c0:47:64:6d:86:c5:da:b9:71:34:62:bf: 28:05:5c:78:38:a6:95:14:3a:8f:11:5a:d4:0e:62: 37:23:38:70:0b:ed:ae:de:9a:35:67:79:78:2d:95: 36:4c:08:8e:48:4a:bb:c3:0a:3b:15:e9:15:e9:af: 03:ff:3e:35:8b:cb:69:46:f9:cb:1c:d0:c8:04:64: 2c:98:8e:3f:f4:2b:26:50:52:51:16:c0:de:79:0e: 45:aa:99:71:54:09:83:85:43:b5:5b:00:37:3a:74: 74:c6:69:5a:3c:e7:47:b9:9d:be:18:15:b8:a4:aa: 9a:8c:37:a8:b8:fb:22:ed:3d:3c:87:06:b1:38:38: 75:66:15:0d:28:06:e6:89:e6:f8:61:14:5c:cc:67: 00:ff:b5:a4:70:f9:26:54:58:e2:91:29:80:e6:dc: 32:1d:96:8b:31:7d:b6:c1:54:58:f9:2f:9a:8e:5b: f9:db:72:cc:c1:03:22:bd:aa:00:f5:96:f9:18:a5: 00:24:9a:4a:d0:45:64:12:c2:69:83:a4:95:cf:62: cc:45:bb:1a:28:7a:cb:99:74:09:d1:1b:e6:c3:85: d1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:92:56:0A:E6:AC:EF:2A:1B:13:25:24:5E:71:B8:2C:0D:AC:F4:48 X509v3 Authority Key Identifier: keyid:4F:9D:EF:EA:18:F9:7C:95:D8:6B:C7:B3:9D:B7:D8:00:C1:F1:92:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4F9DEFEA18F97C95D86BC7B39DB7D800C1F1920F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a8f0435-4d38-47ef-850f-51ba4617fb3d/0/323030313a6466363a313830303a3a2f34382d3438203d3e20313331373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:1800::/48 Signature Algorithm: sha256WithRSAEncryption 0b:1f:a6:2f:0d:64:b8:15:9d:b4:db:d7:6f:3c:3f:5e:96:d6: d4:e9:08:38:23:9e:9a:75:23:9c:4f:6f:9f:5e:43:18:2c:20: e0:5f:db:de:cf:b9:6b:37:b6:c2:40:49:79:64:c9:6d:93:18: e4:72:0d:9b:e9:f4:25:59:8b:b9:58:7d:16:cc:ce:da:8e:ad: 3c:01:63:37:e4:df:af:57:38:17:3a:72:36:63:e5:c3:ef:ac: 40:4f:8a:fe:d9:d8:cf:ff:28:68:4c:5c:44:db:d6:52:8a:a9: b2:b3:53:ff:10:84:21:f1:7d:07:37:a2:c0:c6:07:3a:0b:4c: 6f:80:51:d2:b3:b6:86:f4:fe:86:72:94:3c:80:44:c8:56:a7: 22:dc:13:9a:56:2a:7c:e4:10:52:23:5a:d6:d1:1d:6e:81:df: c5:57:a7:2c:47:99:9a:65:0b:7f:c5:7b:73:93:b8:44:c9:03: 96:f4:8d:03:28:06:e0:cf:4f:0d:50:5d:f6:dd:b2:b2:07:56: be:bd:a9:0c:23:95:d5:33:5c:0b:69:3b:b8:9f:97:cf:93:f8: 9c:1a:8b:eb:f0:2e:50:c1:8e:b1:e2:a4:4b:fc:20:70:00:26: 3a:68:46:89:7f:29:12:7d:49:17:0b:3a:ef:9c:9d:da:7d:b6: 6b:07:b7:6c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBUO8qZWaKq1rO7qWAjGGKKRL0ekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEY5REVGRUExOEY5N0M5NUQ4NkJDN0IzOURCN0Q4MDBD MUYxOTIwRjAeFw0yNjA1MDMwMjE2NTNaFw0yNzA1MDIwMjIxNTNaMDMxMTAvBgNV BAMTKEY3OTI1NjBBRTZBQ0VGMkExQjEzMjUyNDVFNzFCODJDMERBQ0Y0NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbbTt/t+yGU1yBvA+0k7/I+o5U Y4PyuXol1+xJTADeBsBHZG2Gxdq5cTRivygFXHg4ppUUOo8RWtQOYjcjOHAL7a7e mjVneXgtlTZMCI5ISrvDCjsV6RXprwP/PjWLy2lG+csc0MgEZCyYjj/0KyZQUlEW wN55DkWqmXFUCYOFQ7VbADc6dHTGaVo850e5nb4YFbikqpqMN6i4+yLtPTyHBrE4 OHVmFQ0oBuaJ5vhhFFzMZwD/taRw+SZUWOKRKYDm3DIdlosxfbbBVFj5L5qOW/nb cszBAyK9qgD1lvkYpQAkmkrQRWQSwmmDpJXPYsxFuxooesuZdAnRG+bDhdFPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU95JWCuas7yobEyUkXnG4LA2s9EgwHwYDVR0j BBgwFoAUT53v6hj5fJXYa8eznbfYAMHxkg8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE4ZjA0MzUtNGQzOC00N2VmLTg1MGYtNTFiYTQ2MTdmYjNkLzAvNEY5REVGRUEx OEY5N0M5NUQ4NkJDN0IzOURCN0Q4MDBDMUYxOTIwRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80RjlERUZFQTE4Rjk3Qzk1RDg2QkM3QjM5REI3RDgwMEMxRjE5 MjBGLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhOGYwNDM1LTRkMzgtNDdlZi04 NTBmLTUxYmE0NjE3ZmIzZC8wLzMyMzAzMDMxM2E2NDY2MzYzYTMxMzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzczNTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9hgAMA0GCSqGSIb3DQEBCwUAA4IBAQALH6YvDWS4FZ2029dvPD9eltbU6Qg4I56a dSOcT2+fXkMYLCDgX9vez7lrN7bCQEl5ZMltkxjkcg2b6fQlWYu5WH0WzM7ajq08 AWM35N+vVzgXOnI2Y+XD76xAT4r+2djP/yhoTFxE29ZSiqmys1P/EIQh8X0HN6LA xgc6C0xvgFHSs7aG9P6GcpQ8gETIVqci3BOaVip85BBSI1rW0R1ugd/FV6csR5ma ZQt/xXtzk7hEyQOW9I0DKAbgz08NUF323bKyB1a+vakMI5XVM1wLaTu4n5fPk/ic Govr8C5QwY6x4qRL/CBwACY6aEaJfykSfUkXCzrvnJ3afbZrB7ds -----END CERTIFICATE-----Generated at Wed May 13 12:20:59 2026 by rpki-client