$ rpki-client -vvf rpki-rsync.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa File: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (raw, json) Hash identifier: UMQrtxzU7bwTSmrEo5CM/EREbdAjBsi84Zf8mlGLlNk= Subject key identifier: 06:32:DD:81:95:AB:E3:55:ED:9C:DF:B2:52:CC:E6:24:18:81:DD:50 Certificate issuer: /CN=7031104FFCB4E1D0463476445BDFD8AAB4A4FB42 Certificate serial: 4C64C7D9E1EF5396C3D4E0CB02E8ABE8AC3E9F8E Authority key identifier: 70:31:10:4F:FC:B4:E1:D0:46:34:76:44:5B:DF:D8:AA:B4:A4:FB:42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7031104FFCB4E1D0463476445BDFD8AAB4A4FB42.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa Signing time: Sun 03 May 2026 02:22:02 +0000 ROA not before: Sun 03 May 2026 02:17:02 +0000 ROA not after: Sun 02 May 2027 02:22:02 +0000 asID: 149909 IP address blocks: 2001:df1:c2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/7031104FFCB4E1D0463476445BDFD8AAB4A4FB42.crl rsync://rpki-rsync.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/7031104FFCB4E1D0463476445BDFD8AAB4A4FB42.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7031104FFCB4E1D0463476445BDFD8AAB4A4FB42.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:64:c7:d9:e1:ef:53:96:c3:d4:e0:cb:02:e8:ab:e8:ac:3e:9f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7031104FFCB4E1D0463476445BDFD8AAB4A4FB42 Validity Not Before: May 3 02:17:02 2026 GMT Not After : May 2 02:22:02 2027 GMT Subject: CN=0632DD8195ABE355ED9CDFB252CCE6241881DD50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bb:97:be:b0:e3:91:32:9d:ab:6e:2b:3b:96: 67:ff:27:ee:c9:e4:6d:71:60:44:38:c2:47:97:05: 1d:ae:30:a9:4d:2f:93:a8:c0:39:ee:05:ea:cb:b4: 2b:e0:97:d5:65:bc:40:fb:6a:98:34:cc:60:ce:b4: f9:e3:35:51:9e:f3:50:7a:e6:22:a7:9f:f7:c9:37: 65:b5:c8:72:03:84:9c:3c:6a:c3:bd:ae:58:88:db: b0:12:74:1a:d9:61:9e:49:cb:89:9c:25:f1:53:31: 74:e8:56:0b:fc:74:20:74:8a:f6:b9:f1:64:0a:8f: 8d:68:d0:05:29:a9:39:6b:db:92:6b:ac:4b:ca:b9: 2a:c6:dd:39:6a:29:eb:bb:9c:c8:91:51:35:aa:c5: 14:f8:ea:a0:af:cd:12:98:c5:93:09:3a:4c:d7:a1: 6f:b9:69:46:20:27:2f:13:7c:79:d2:96:3f:77:b1: f6:cd:28:ef:43:55:b0:aa:15:0c:7c:91:c9:c8:f6: ae:38:65:50:6b:93:d9:82:d3:3a:04:0b:18:44:db: d2:ac:35:ee:49:93:d2:e3:3d:63:5c:e0:2a:18:45: e2:91:21:62:a0:63:60:42:fb:a1:8f:30:87:83:74: ca:51:ea:c5:7a:64:c6:63:fc:dc:19:e4:2e:98:be: 9a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:32:DD:81:95:AB:E3:55:ED:9C:DF:B2:52:CC:E6:24:18:81:DD:50 X509v3 Authority Key Identifier: keyid:70:31:10:4F:FC:B4:E1:D0:46:34:76:44:5B:DF:D8:AA:B4:A4:FB:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/7031104FFCB4E1D0463476445BDFD8AAB4A4FB42.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7031104FFCB4E1D0463476445BDFD8AAB4A4FB42.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:c2c0::/48 Signature Algorithm: sha256WithRSAEncryption 3e:97:fe:1c:73:b7:f9:c7:7b:13:c5:5f:66:8b:26:47:43:cb: 02:af:2b:ea:23:bf:13:e8:b3:bb:95:6c:47:f0:e2:63:7f:e0: 1e:f8:cb:48:fd:fc:24:d2:03:f4:d7:aa:9e:c4:2c:b1:8e:ec: a9:8d:59:d2:d6:a3:72:a2:2a:35:09:d1:aa:6e:1c:14:c8:2c: c2:3a:11:d2:6e:13:a6:46:ce:f9:6c:9a:25:20:24:51:c7:da: 3c:d4:56:72:31:84:62:03:7a:73:b9:e5:12:20:eb:c1:c6:4a: 48:8b:a3:a8:c6:81:db:2f:b2:24:47:8a:85:90:22:44:ae:ae: 5b:eb:d4:36:a3:94:74:80:a3:79:15:59:dc:03:8d:2e:ae:63: 55:79:25:6d:02:ea:3f:72:c2:9e:cd:d6:98:96:06:25:41:51: 4e:4c:ac:df:eb:4b:d9:a1:d9:86:b8:d7:03:9b:54:73:16:5d: 97:54:68:8b:17:58:6f:63:a5:9a:e0:f2:3d:06:8d:e2:71:da: cf:3d:6b:29:28:9d:11:19:21:e1:38:76:5c:e9:1b:62:46:60: 1e:46:b2:3f:35:6c:7f:82:ba:9b:69:cb:ff:61:69:6e:24:fc: bb:14:cc:a0:ab:4f:b0:36:40:03:41:c9:b3:9f:85:3b:d6:8c: b6:59:e1:4b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTGTH2eHvU5bD1ODLAuir6Kw+n44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAzMTEwNEZGQ0I0RTFEMDQ2MzQ3NjQ0NUJERkQ4QUFC NEE0RkI0MjAeFw0yNjA1MDMwMjE3MDJaFw0yNzA1MDIwMjIyMDJaMDMxMTAvBgNV BAMTKDA2MzJERDgxOTVBQkUzNTVFRDlDREZCMjUyQ0NFNjI0MTg4MURENTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2u5e+sOORMp2rbis7lmf/J+7J 5G1xYEQ4wkeXBR2uMKlNL5OowDnuBerLtCvgl9VlvED7apg0zGDOtPnjNVGe81B6 5iKnn/fJN2W1yHIDhJw8asO9rliI27ASdBrZYZ5Jy4mcJfFTMXToVgv8dCB0iva5 8WQKj41o0AUpqTlr25JrrEvKuSrG3TlqKeu7nMiRUTWqxRT46qCvzRKYxZMJOkzX oW+5aUYgJy8TfHnSlj93sfbNKO9DVbCqFQx8kcnI9q44ZVBrk9mC0zoECxhE29Ks Ne5Jk9LjPWNc4CoYReKRIWKgY2BC+6GPMIeDdMpR6sV6ZMZj/NwZ5C6YvpqHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBjLdgZWr41XtnN+yUszmJBiB3VAwHwYDVR0j BBgwFoAUcDEQT/y04dBGNHZEW9/YqrSk+0IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmJiZTY4MTUtMzEwZS00MjA2LWE1MDAtNmJiOWQzMjYzYWJmLzAvNzAzMTEwNEZG Q0I0RTFEMDQ2MzQ3NjQ0NUJERkQ4QUFCNEE0RkI0Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MDMxMTA0RkZDQjRFMUQwNDYzNDc2NDQ1QkRGRDhBQUI0QTRG QjQyLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJiYmU2ODE1LTMxMGUtNDIwNi1h NTAwLTZiYjlkMzI2M2FiZi8wLzMyMzAzMDMxM2E2NDY2MzEzYTYzMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8cLAMA0GCSqGSIb3DQEBCwUAA4IBAQA+l/4cc7f5x3sTxV9miyZHQ8sCryvqI78T 6LO7lWxH8OJjf+Ae+MtI/fwk0gP016qexCyxjuypjVnS1qNyoio1CdGqbhwUyCzC OhHSbhOmRs75bJolICRRx9o81FZyMYRiA3pzueUSIOvBxkpIi6OoxoHbL7IkR4qF kCJErq5b69Q2o5R0gKN5FVncA40urmNVeSVtAuo/csKezdaYlgYlQVFOTKzf60vZ odmGuNcDm1RzFl2XVGiLF1hvY6Wa4PI9Bo3icdrPPWspKJ0RGSHhOHZc6RtiRmAe RrI/NWx/grqbacv/YWluJPy7FMygq0+wNkADQcmzn4U71oy2WeFL -----END CERTIFICATE-----Generated at Wed May 13 12:42:03 2026 by rpki-client