$ rpki-client -vvf rpki-rsync.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa File: 323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa (raw, json) Hash identifier: cHfAqVSrYWCvGTjmxTN9VKckgkvEOepk7bQUQ5YDUTM= Subject key identifier: C8:9D:F7:47:CE:7E:34:91:5E:66:9B:5D:1B:89:27:D4:1E:4A:62:41 Certificate issuer: /CN=D9E4B9E5C20C5D24545E4B3744B724232423EDB7 Certificate serial: 495E80752796696DCC9C18CB314AF0C51F4CC58D Authority key identifier: D9:E4:B9:E5:C2:0C:5D:24:54:5E:4B:37:44:B7:24:23:24:23:ED:B7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D9E4B9E5C20C5D24545E4B3744B724232423EDB7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa Signing time: Sun 03 May 2026 02:23:46 +0000 ROA not before: Sun 03 May 2026 02:18:46 +0000 ROA not after: Sun 02 May 2027 02:23:46 +0000 asID: 138097 IP address blocks: 2001:df6:ef00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/D9E4B9E5C20C5D24545E4B3744B724232423EDB7.crl rsync://rpki-rsync.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/D9E4B9E5C20C5D24545E4B3744B724232423EDB7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D9E4B9E5C20C5D24545E4B3744B724232423EDB7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:5e:80:75:27:96:69:6d:cc:9c:18:cb:31:4a:f0:c5:1f:4c:c5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9E4B9E5C20C5D24545E4B3744B724232423EDB7 Validity Not Before: May 3 02:18:46 2026 GMT Not After : May 2 02:23:46 2027 GMT Subject: CN=C89DF747CE7E34915E669B5D1B8927D41E4A6241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d6:c1:e0:1f:b0:d2:a4:a0:e0:d4:04:07:df: 8b:d4:2d:da:a3:f7:97:1b:41:b6:be:41:42:1f:a0: ed:24:23:87:06:2d:83:e0:33:b7:cd:70:e1:5b:54: a0:9f:23:cc:3a:97:96:d2:32:65:61:a5:cb:b0:ee: fb:48:e7:dd:2d:9b:a8:3f:c2:bc:e0:4e:eb:8d:98: d9:63:1d:a9:c2:aa:46:6c:36:7b:e0:4e:54:6b:c2: c9:6b:81:54:88:f0:ef:2f:e1:a4:b6:9b:e3:35:70: a9:6b:40:58:64:2e:9f:26:c2:87:43:fe:e2:3f:90: 64:6d:8b:57:98:30:7a:bc:e7:a5:76:e5:3a:72:9e: b2:13:69:4f:31:1f:12:13:e0:92:63:d9:f2:c8:dc: 99:ad:d1:d2:b2:27:7a:b6:fb:a6:03:fe:ec:14:41: 62:12:12:bd:fa:4f:36:14:50:8a:3b:95:56:c5:bf: 89:b4:54:75:52:22:03:88:9b:90:66:52:b4:18:4a: 1e:8c:4d:20:50:43:4c:e6:20:17:5f:ff:dc:6f:1f: ef:96:21:70:eb:35:eb:fb:df:33:46:a4:5b:b4:93: 75:0a:e7:58:34:03:6b:e7:90:8e:44:ad:2d:f1:11: 39:ae:78:70:78:43:38:a4:56:27:5e:73:8b:53:19: 97:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:9D:F7:47:CE:7E:34:91:5E:66:9B:5D:1B:89:27:D4:1E:4A:62:41 X509v3 Authority Key Identifier: keyid:D9:E4:B9:E5:C2:0C:5D:24:54:5E:4B:37:44:B7:24:23:24:23:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/D9E4B9E5C20C5D24545E4B3744B724232423EDB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D9E4B9E5C20C5D24545E4B3744B724232423EDB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:ef00::/48 Signature Algorithm: sha256WithRSAEncryption 6b:3e:3e:d3:b5:8a:21:63:9c:02:a9:9a:76:0e:4f:ee:5f:0f: 71:4b:09:e2:f7:c7:e8:4d:e1:b8:3b:40:09:9e:35:b8:a4:db: fc:eb:3a:40:cc:d7:71:64:41:33:47:9d:6e:ed:65:0d:e9:b5: 70:00:24:79:42:79:f5:d2:5e:98:86:c0:23:e3:c5:e8:41:2e: 27:3c:6b:c4:0a:e9:b5:38:06:bc:5d:43:c4:ba:f5:da:54:65: b9:10:0b:fa:7a:ef:48:e7:2e:b0:71:5b:dd:8d:59:74:d8:ef: 7a:77:6d:09:44:d2:57:d7:2d:63:57:52:6d:a7:5e:7d:6f:67: 0f:52:9e:1e:7e:68:46:82:bb:00:94:16:f1:25:b0:ca:19:92: 98:d3:13:41:a8:2d:10:c2:9d:00:49:e3:54:97:75:f1:41:bf: 85:ad:8e:37:05:2b:bf:81:2d:2f:e5:ba:82:bb:b2:77:c5:73: 39:ed:2c:10:7b:dc:15:8e:17:3d:0d:1a:c2:44:b2:b3:73:ca: 8c:b2:32:4d:4a:6f:7b:4f:8e:a6:2c:8d:a6:bf:45:70:e3:d9: 1b:8f:53:1e:21:12:f7:8f:bd:38:5b:a3:51:29:f3:a1:e6:51: 13:2a:cf:a7:0a:c7:5b:cb:ce:43:92:5d:91:de:56:9f:93:3d: e7:cf:ee:62 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSV6AdSeWaW3MnBjLMUrwxR9MxY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlFNEI5RTVDMjBDNUQyNDU0NUU0QjM3NDRCNzI0MjMy NDIzRURCNzAeFw0yNjA1MDMwMjE4NDZaFw0yNzA1MDIwMjIzNDZaMDMxMTAvBgNV BAMTKEM4OURGNzQ3Q0U3RTM0OTE1RTY2OUI1RDFCODkyN0Q0MUU0QTYyNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC21sHgH7DSpKDg1AQH34vULdqj 95cbQba+QUIfoO0kI4cGLYPgM7fNcOFbVKCfI8w6l5bSMmVhpcuw7vtI590tm6g/ wrzgTuuNmNljHanCqkZsNnvgTlRrwslrgVSI8O8v4aS2m+M1cKlrQFhkLp8mwodD /uI/kGRti1eYMHq856V25TpynrITaU8xHxIT4JJj2fLI3Jmt0dKyJ3q2+6YD/uwU QWISEr36TzYUUIo7lVbFv4m0VHVSIgOIm5BmUrQYSh6MTSBQQ0zmIBdf/9xvH++W IXDrNev73zNGpFu0k3UK51g0A2vnkI5ErS3xETmueHB4QzikVidec4tTGZcbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyJ33R85+NJFeZptdG4kn1B5KYkEwHwYDVR0j BBgwFoAU2eS55cIMXSRUXks3RLckIyQj7bcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzBhMzkyZGMtMmU0ZS00NzcwLThmNjgtYmM2MWY4MGI3NGE3LzAvRDlFNEI5RTVD MjBDNUQyNDU0NUU0QjM3NDRCNzI0MjMyNDIzRURCNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EOUU0QjlFNUMyMEM1RDI0NTQ1RTRCMzc0NEI3MjQyMzI0MjNF REI3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMwYTM5MmRjLTJlNGUtNDc3MC04 ZjY4LWJjNjFmODBiNzRhNy8wLzMyMzAzMDMxM2E2NDY2MzYzYTY1NjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzOTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9u8AMA0GCSqGSIb3DQEBCwUAA4IBAQBrPj7TtYohY5wCqZp2Dk/uXw9xSwni98fo TeG4O0AJnjW4pNv86zpAzNdxZEEzR51u7WUN6bVwACR5Qnn10l6YhsAj48XoQS4n PGvECum1OAa8XUPEuvXaVGW5EAv6eu9I5y6wcVvdjVl02O96d20JRNJX1y1jV1Jt p159b2cPUp4efmhGgrsAlBbxJbDKGZKY0xNBqC0Qwp0ASeNUl3XxQb+FrY43BSu/ gS0v5bqCu7J3xXM57SwQe9wVjhc9DRrCRLKzc8qMsjJNSm97T46mLI2mv0Vw49kb j1MeIRL3j704W6NRKfOh5lETKs+nCsdby85Dkl2R3lafkz3nz+5i -----END CERTIFICATE-----Generated at Wed May 13 07:45:03 2026 by rpki-client