$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa File: 323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa (raw, json) Hash identifier: vY/Ub03xqcj72v4RHCIezucQY4Qdw7prwT9UpJT80Mk= Subject key identifier: 23:89:9C:26:97:F3:FE:12:90:CF:E4:E2:2D:60:72:BC:C6:0B:C4:43 Certificate issuer: /CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Certificate serial: 2E89961BBA2ACEF4410813808F59BF894A7EE714 Authority key identifier: 91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa Signing time: Sun 03 May 2026 02:22:50 +0000 ROA not before: Sun 03 May 2026 02:17:50 +0000 ROA not after: Sun 02 May 2027 02:22:50 +0000 asID: 58487 IP address blocks: 2001:df1:7800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:89:96:1b:ba:2a:ce:f4:41:08:13:80:8f:59:bf:89:4a:7e:e7:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91D8B8BF467FE8EAC193DF4D263C87F5A91259A9 Validity Not Before: May 3 02:17:50 2026 GMT Not After : May 2 02:22:50 2027 GMT Subject: CN=23899C2697F3FE1290CFE4E22D6072BCC60BC443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:da:b6:ac:fd:0a:a3:94:ca:e3:ed:1e:07:bb: 06:a6:f4:28:54:28:b6:47:ca:43:8e:94:d6:7c:94: 57:50:97:7d:a3:d3:6d:a1:53:48:e4:9d:7b:47:22: 7d:54:e7:72:a3:ae:29:27:94:b9:2c:05:c8:bd:1e: cc:c0:36:e9:d2:2e:b8:90:ca:31:26:c0:6b:b8:53: a6:69:12:be:92:20:22:37:1b:7d:16:8b:81:2e:4d: ba:68:09:19:06:1c:57:72:d0:e2:f9:40:37:68:51: b2:b8:02:16:18:6a:4c:7c:1e:1c:b3:6f:29:5c:f8: 0c:ec:32:41:bf:95:2f:21:6f:d9:0b:d0:76:3a:3d: fe:e0:c2:06:52:13:40:c5:34:fc:42:44:e9:f9:b5: 26:18:b5:c6:06:48:ba:f4:b8:00:b3:b2:5c:fe:4c: b5:3a:33:d0:cb:d2:44:36:79:06:3e:9c:12:31:01: 07:07:7a:28:ce:2b:2b:db:18:dd:b8:61:be:42:7c: e9:b7:29:8c:bf:29:a6:99:0f:35:74:47:2f:2c:75: 4c:3f:35:04:67:db:89:c1:5e:e2:f8:a1:97:e9:e1: 21:ba:24:48:05:ca:64:f6:47:a4:1b:a8:5c:43:4b: 4e:d1:4d:d7:ee:eb:29:88:c3:6c:32:02:99:4c:23: 9b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:89:9C:26:97:F3:FE:12:90:CF:E4:E2:2D:60:72:BC:C6:0B:C4:43 X509v3 Authority Key Identifier: keyid:91:D8:B8:BF:46:7F:E8:EA:C1:93:DF:4D:26:3C:87:F5:A9:12:59:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91D8B8BF467FE8EAC193DF4D263C87F5A91259A9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/323030313a6466313a373830303a3a2f34382d3438203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7800::/48 Signature Algorithm: sha256WithRSAEncryption 4c:3a:ec:0d:e5:c0:62:6f:a5:51:90:fa:5c:99:ae:26:84:ac: 29:d5:3f:d3:ff:ae:3e:98:02:ad:09:05:fa:f8:d1:fc:db:0b: bb:34:52:2c:8a:89:51:10:77:37:af:79:1c:75:6a:44:c4:7e: 72:48:a1:8f:ed:74:09:85:30:e4:29:65:e2:8c:62:87:04:f4: 9a:57:37:c0:43:f4:00:6c:47:fb:d9:55:60:04:bb:11:7e:45: 84:30:bf:d0:a4:64:d3:c3:48:a6:af:e9:55:b2:01:b6:e1:d2: 98:d1:aa:22:2a:97:32:da:5b:a5:78:be:42:17:bd:5c:39:90: 53:4b:65:9e:79:9f:ae:83:e1:1e:d2:8e:27:19:92:90:0a:29: 5c:9b:65:17:9c:e3:2a:ed:29:d2:85:32:f8:16:41:f8:7f:81: 09:ec:ca:4d:e3:d5:6a:f6:2a:a3:2d:e0:04:8e:53:04:dc:50: de:d5:81:e5:48:5a:3c:68:0d:6b:76:fd:c7:f5:de:d5:c6:25: 5f:9a:53:39:89:17:59:8a:7b:43:a5:4a:1f:1e:91:03:da:66: f2:4e:ab:e3:e7:20:c6:69:37:ec:32:33:41:c3:a8:0c:ff:ba: 31:e2:a9:06:13:e6:f5:da:e6:2e:d9:fe:ea:58:48:41:05:d9: 1a:23:3f:06 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULomWG7oqzvRBCBOAj1m/iUp+5xQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFEOEI4QkY0NjdGRThFQUMxOTNERjREMjYzQzg3RjVB OTEyNTlBOTAeFw0yNjA1MDMwMjE3NTBaFw0yNzA1MDIwMjIyNTBaMDMxMTAvBgNV BAMTKDIzODk5QzI2OTdGM0ZFMTI5MENGRTRFMjJENjA3MkJDQzYwQkM0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd2ras/QqjlMrj7R4Huwam9ChU KLZHykOOlNZ8lFdQl32j022hU0jknXtHIn1U53KjriknlLksBci9HszANunSLriQ yjEmwGu4U6ZpEr6SICI3G30Wi4EuTbpoCRkGHFdy0OL5QDdoUbK4AhYYakx8Hhyz bylc+AzsMkG/lS8hb9kL0HY6Pf7gwgZSE0DFNPxCROn5tSYYtcYGSLr0uACzslz+ TLU6M9DL0kQ2eQY+nBIxAQcHeijOKyvbGN24Yb5CfOm3KYy/KaaZDzV0Ry8sdUw/ NQRn24nBXuL4oZfp4SG6JEgFymT2R6QbqFxDS07RTdfu6ymIw2wyAplMI5u5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUI4mcJpfz/hKQz+TiLWByvMYLxEMwHwYDVR0j BBgwFoAUkdi4v0Z/6OrBk99NJjyH9akSWakwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ4ZjA2MGYtZTRiMy00YTRlLTk3ZmQtZjYxYWIxN2RlZWVkLzAvOTFEOEI4QkY0 NjdGRThFQUMxOTNERjREMjYzQzg3RjVBOTEyNTlBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUQ4QjhCRjQ2N0ZFOEVBQzE5M0RGNEQyNjNDODdGNUE5MTI1 OUE5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM3MzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfF4 ADANBgkqhkiG9w0BAQsFAAOCAQEATDrsDeXAYm+lUZD6XJmuJoSsKdU/0/+uPpgC rQkF+vjR/NsLuzRSLIqJURB3N695HHVqRMR+ckihj+10CYUw5Cll4oxihwT0mlc3 wEP0AGxH+9lVYAS7EX5FhDC/0KRk08NIpq/pVbIBtuHSmNGqIiqXMtpbpXi+Qhe9 XDmQU0tlnnmfroPhHtKOJxmSkAopXJtlF5zjKu0p0oUy+BZB+H+BCezKTePVavYq oy3gBI5TBNxQ3tWB5UhaPGgNa3b9x/Xe1cYlX5pTOYkXWYp7Q6VKHx6RA9pm8k6r 4+cgxmk37DIzQcOoDP+6MeKpBhPm9drmLtn+6lhIQQXZGiM/Bg== -----END CERTIFICATE-----Generated at Wed May 13 03:17:01 2026 by rpki-client