$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa File: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (raw, json) Hash identifier: jOCXET8yniqJ02iHiMoBI6iwGo2/5oUN4/jc3LtL0jQ= Subject key identifier: 1D:77:27:39:AF:51:20:BC:84:AB:2E:4D:CD:58:92:B1:15:7A:3D:2B Certificate issuer: /CN=5843958BB240779320D7F0C2B674ACF5EF6122BC Certificate serial: 3F80B5EC54C9DFA9FA3AD307750E0918AA29F0A6 Authority key identifier: 58:43:95:8B:B2:40:77:93:20:D7:F0:C2:B6:74:AC:F5:EF:61:22:BC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa Signing time: Sun 03 May 2026 02:23:01 +0000 ROA not before: Sun 03 May 2026 02:18:01 +0000 ROA not after: Sun 02 May 2027 02:23:01 +0000 asID: 45305 IP address blocks: 2001:df0:a3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.crl rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:80:b5:ec:54:c9:df:a9:fa:3a:d3:07:75:0e:09:18:aa:29:f0:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5843958BB240779320D7F0C2B674ACF5EF6122BC Validity Not Before: May 3 02:18:01 2026 GMT Not After : May 2 02:23:01 2027 GMT Subject: CN=1D772739AF5120BC84AB2E4DCD5892B1157A3D2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:6b:73:2c:af:9a:92:62:c2:c8:4c:df:0d: 97:8a:72:15:39:8b:0c:3a:6f:87:a9:36:35:49:77: d5:1b:a0:b1:c0:99:54:fa:3c:1a:84:ae:5c:11:dc: 0f:f0:7d:ee:46:b6:ca:af:2a:19:4f:b2:77:3f:ef: ee:20:39:57:15:01:b1:7b:01:62:fe:9f:39:d3:7d: 2b:35:b7:98:f7:ba:ad:03:b1:37:23:83:24:fd:14: 50:77:1f:c3:15:c6:20:6e:de:f6:93:98:d4:f6:2b: 0f:80:8d:85:94:9f:42:d1:d6:72:db:94:ff:3e:4e: 25:85:ca:ef:3f:ff:f4:50:c5:58:a0:68:09:3b:39: 12:48:45:89:9d:f0:0b:72:78:53:da:1b:5f:3a:cf: ba:f6:f7:86:1b:9d:9c:99:35:2b:0b:bf:a0:95:db: 41:ac:d3:ed:ee:b6:b5:f5:16:8c:67:6c:4c:cb:77: 4d:28:2c:9f:0a:cd:3b:3d:c5:49:8d:bb:d9:91:c1: e6:17:fd:31:e6:8b:c7:61:69:b3:19:45:70:f9:db: 4a:f9:08:65:07:60:08:51:99:d7:ab:46:8d:a9:4f: 7a:13:de:b6:c6:c8:53:b2:65:3b:8b:65:44:d5:b7: 02:2e:3f:3f:a0:5a:5c:11:6c:68:24:bf:8b:a4:1d: 42:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:77:27:39:AF:51:20:BC:84:AB:2E:4D:CD:58:92:B1:15:7A:3D:2B X509v3 Authority Key Identifier: keyid:58:43:95:8B:B2:40:77:93:20:D7:F0:C2:B6:74:AC:F5:EF:61:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/5843958BB240779320D7F0C2B674ACF5EF6122BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5843958BB240779320D7F0C2B674ACF5EF6122BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a3::/48 Signature Algorithm: sha256WithRSAEncryption 7d:5b:20:4b:4e:90:66:a4:ec:af:0a:da:03:0d:67:54:82:89: 56:00:9c:10:d2:27:49:ae:8a:d5:d9:38:57:fd:f3:96:7d:5e: 2e:0d:b4:82:93:10:d4:ba:83:05:cb:6e:ad:76:8a:3c:43:05: 3c:32:27:86:a1:92:27:0c:2d:e8:fb:37:7b:15:4c:eb:be:ad: 32:16:e6:80:39:3b:5e:4f:7d:65:11:35:27:72:c3:02:86:bd: 2e:40:60:8d:a2:b9:05:08:6b:73:42:16:5e:5d:82:3c:ce:50: 55:73:e4:6d:7f:68:b0:f6:d0:ca:55:15:84:76:10:92:e8:4b: cc:9f:e9:06:8c:27:df:44:68:f1:6f:83:32:c4:2e:13:23:73: b6:e3:15:5a:f3:09:65:fd:ea:61:34:c8:5b:5b:32:e7:9c:ab: 97:d8:74:aa:33:ab:4a:48:47:6f:4d:f4:84:7b:1a:ac:db:ba: 83:02:58:a8:7e:1d:b6:74:3d:d6:9a:a5:ff:31:7f:70:37:52: ab:15:fd:93:dd:62:1e:a2:67:b7:48:b6:1f:db:d1:6f:8b:e5: 09:04:65:92:00:48:6e:b3:fa:25:f8:dc:9b:db:6d:6c:dd:3b: 1e:6f:82:05:01:70:c9:05:b3:a5:cf:5e:09:ee:69:ff:d6:35: b7:ee:94:fe -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUP4C17FTJ36n6OtMHdQ4JGKop8KYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg0Mzk1OEJCMjQwNzc5MzIwRDdGMEMyQjY3NEFDRjVF RjYxMjJCQzAeFw0yNjA1MDMwMjE4MDFaFw0yNzA1MDIwMjIzMDFaMDMxMTAvBgNV BAMTKDFENzcyNzM5QUY1MTIwQkM4NEFCMkU0RENENTg5MkIxMTU3QTNEMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAj2tzLK+akmLCyEzfDZeKchU5 iww6b4epNjVJd9UboLHAmVT6PBqErlwR3A/wfe5GtsqvKhlPsnc/7+4gOVcVAbF7 AWL+nznTfSs1t5j3uq0DsTcjgyT9FFB3H8MVxiBu3vaTmNT2Kw+AjYWUn0LR1nLb lP8+TiWFyu8///RQxVigaAk7ORJIRYmd8AtyeFPaG186z7r294YbnZyZNSsLv6CV 20Gs0+3utrX1FoxnbEzLd00oLJ8KzTs9xUmNu9mRweYX/THmi8dhabMZRXD520r5 CGUHYAhRmderRo2pT3oT3rbGyFOyZTuLZUTVtwIuPz+gWlwRbGgkv4ukHUJrAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUHXcnOa9RILyEqy5NzViSsRV6PSswHwYDVR0j BBgwFoAUWEOVi7JAd5Mg1/DCtnSs9e9hIrwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ5NWMxOWMtMzI2Mi00OGM3LWFmMDItMzdhODM1ZDBhNzc5LzAvNTg0Mzk1OEJC MjQwNzc5MzIwRDdGMEMyQjY3NEFDRjVFRjYxMjJCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81ODQzOTU4QkIyNDA3NzkzMjBEN0YwQzJCNjc0QUNGNUVGNjEy MkJDLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACjMA0G CSqGSIb3DQEBCwUAA4IBAQB9WyBLTpBmpOyvCtoDDWdUgolWAJwQ0idJrorV2ThX /fOWfV4uDbSCkxDUuoMFy26tdoo8QwU8MieGoZInDC3o+zd7FUzrvq0yFuaAOTte T31lETUncsMChr0uQGCNorkFCGtzQhZeXYI8zlBVc+Rtf2iw9tDKVRWEdhCS6EvM n+kGjCffRGjxb4MyxC4TI3O24xVa8wll/ephNMhbWzLnnKuX2HSqM6tKSEdvTfSE exqs27qDAliofh22dD3WmqX/MX9wN1KrFf2T3WIeome3SLYf29Fvi+UJBGWSAEhu s/ol+Nyb221s3Tseb4IFAXDJBbOlz14J7mn/1jW37pT+ -----END CERTIFICATE-----Generated at Wed May 13 02:26:00 2026 by rpki-client