$ rpki-client -vvf rpki-rsync.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa File: 323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa (raw, json) Hash identifier: itZ+8oqZQEHdOx3DPzPsElXFujBFH/zjw2oYoQ+F7xc= Subject key identifier: 3A:72:24:1B:E8:56:DA:B9:4C:B3:74:EA:7F:96:2A:3B:FA:48:CA:07 Certificate issuer: /CN=F9FC6CE84588F61CD7DD0552DEA32E1E565636BA Certificate serial: 283D613B6C289AA7D9FFBF9AA081AB1730BB1B46 Authority key identifier: F9:FC:6C:E8:45:88:F6:1C:D7:DD:05:52:DE:A3:2E:1E:56:56:36:BA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F9FC6CE84588F61CD7DD0552DEA32E1E565636BA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa Signing time: Sun 03 May 2026 02:23:56 +0000 ROA not before: Sun 03 May 2026 02:18:56 +0000 ROA not after: Sun 02 May 2027 02:23:56 +0000 asID: 138107 IP address blocks: 2001:df7:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/F9FC6CE84588F61CD7DD0552DEA32E1E565636BA.crl rsync://rpki-rsync.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/F9FC6CE84588F61CD7DD0552DEA32E1E565636BA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F9FC6CE84588F61CD7DD0552DEA32E1E565636BA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:3d:61:3b:6c:28:9a:a7:d9:ff:bf:9a:a0:81:ab:17:30:bb:1b:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9FC6CE84588F61CD7DD0552DEA32E1E565636BA Validity Not Before: May 3 02:18:56 2026 GMT Not After : May 2 02:23:56 2027 GMT Subject: CN=3A72241BE856DAB94CB374EA7F962A3BFA48CA07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:36:a0:76:9a:4f:c9:f6:59:8e:b5:23:36:76: 61:11:ec:42:3a:47:0c:a8:44:1f:e6:bb:de:f4:16: 1f:65:48:27:e4:1e:de:32:ca:fa:e8:3c:7f:5c:4f: 96:1d:36:9e:25:37:4e:6e:0f:d4:fc:b8:96:98:4e: 6a:4a:3b:4f:5d:94:26:93:98:0b:c9:5f:18:a2:7a: 79:1c:78:e4:05:48:7b:b1:df:52:90:11:9d:2a:ee: 29:34:b3:1f:75:ec:61:3c:f5:48:ed:bb:f9:f4:93: c7:ba:cd:75:cb:a6:59:0a:29:29:71:c7:f8:c1:89: 2c:1f:35:66:78:22:59:84:2d:8b:f8:f8:34:03:b7: 75:a0:ac:ba:6a:3b:30:53:b7:b4:58:72:df:33:98: 22:8d:01:2a:09:dc:09:e3:d5:12:e7:20:3e:8b:2b: f0:4d:ef:a2:e5:fe:bf:66:c7:8c:56:cf:d2:00:ef: 80:1d:ef:8f:a9:8c:b2:62:33:94:a0:4a:fe:98:a8: 0f:ca:4d:52:04:4f:23:81:ce:6b:94:5a:3c:66:7f: d8:be:00:84:4e:b5:95:30:03:60:2b:02:1c:e3:39: ea:a7:75:64:08:0c:db:9b:d8:d7:b1:37:04:7e:e9: f9:50:99:b0:cc:22:07:a8:ca:27:ea:2f:65:84:39: 48:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:72:24:1B:E8:56:DA:B9:4C:B3:74:EA:7F:96:2A:3B:FA:48:CA:07 X509v3 Authority Key Identifier: keyid:F9:FC:6C:E8:45:88:F6:1C:D7:DD:05:52:DE:A3:2E:1E:56:56:36:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/F9FC6CE84588F61CD7DD0552DEA32E1E565636BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F9FC6CE84588F61CD7DD0552DEA32E1E565636BA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:3b00::/48 Signature Algorithm: sha256WithRSAEncryption 2c:e6:1f:ba:b0:b3:98:d8:6c:ee:67:7f:4d:9a:24:e3:86:38: ed:92:76:61:64:cb:64:89:ea:b4:50:7f:ec:72:7e:9f:ce:28: d9:0e:83:99:ef:9f:bb:dc:76:60:3f:8e:ca:44:86:90:d8:63: 15:f2:9e:64:fd:81:1e:81:3f:34:9b:3a:c1:07:2f:9a:c0:83: 94:ed:d2:4d:8c:be:dc:13:3e:61:15:5b:d7:ab:d2:30:ef:7a: bf:d6:96:18:4d:1f:69:35:94:40:77:f7:c3:47:65:9a:cf:0e: 2f:51:25:5d:78:2c:bc:7c:d3:ab:c1:06:77:83:bf:5f:0a:e1: 7c:4d:61:bd:e7:cc:cd:e9:d8:01:f9:cb:82:c4:01:41:b9:e7: 2b:20:a5:b4:8a:99:48:66:eb:ba:9e:bb:78:36:b9:3d:9b:2d: 81:9b:95:97:4f:ed:9a:69:b8:c0:bc:79:23:e5:b7:89:4a:0d: 22:49:be:60:fa:31:67:64:e7:e3:43:e1:70:f3:82:24:1d:2d: a7:52:10:4f:ae:89:cc:6e:50:42:07:76:7b:67:d6:5a:91:c9: 76:db:04:c6:a7:d2:33:f5:64:66:cc:a5:91:73:c0:67:68:29: b9:c9:92:ae:88:03:03:ea:2d:7c:ef:a8:b1:7b:0e:66:41:74: 07:95:69:f2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKD1hO2womqfZ/7+aoIGrFzC7G0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlGQzZDRTg0NTg4RjYxQ0Q3REQwNTUyREVBMzJFMUU1 NjU2MzZCQTAeFw0yNjA1MDMwMjE4NTZaFw0yNzA1MDIwMjIzNTZaMDMxMTAvBgNV BAMTKDNBNzIyNDFCRTg1NkRBQjk0Q0IzNzRFQTdGOTYyQTNCRkE0OENBMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDINqB2mk/J9lmOtSM2dmER7EI6 RwyoRB/mu970Fh9lSCfkHt4yyvroPH9cT5YdNp4lN05uD9T8uJaYTmpKO09dlCaT mAvJXxiienkceOQFSHux31KQEZ0q7ik0sx917GE89Ujtu/n0k8e6zXXLplkKKSlx x/jBiSwfNWZ4IlmELYv4+DQDt3WgrLpqOzBTt7RYct8zmCKNASoJ3Anj1RLnID6L K/BN76Ll/r9mx4xWz9IA74Ad74+pjLJiM5SgSv6YqA/KTVIETyOBzmuUWjxmf9i+ AIROtZUwA2ArAhzjOeqndWQIDNub2NexNwR+6flQmbDMIgeoyifqL2WEOUh9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOnIkG+hW2rlMs3Tqf5YqO/pIygcwHwYDVR0j BBgwFoAU+fxs6EWI9hzX3QVS3qMuHlZWNrowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzE2MmQxNWItMTAyYi00MzFmLWE1MzktMGE5MzJiMzEzNjZjLzAvRjlGQzZDRTg0 NTg4RjYxQ0Q3REQwNTUyREVBMzJFMUU1NjU2MzZCQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOUZDNkNFODQ1ODhGNjFDRDdERDA1NTJERUEzMkUxRTU2NTYz NkJBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMxNjJkMTViLTEwMmItNDMxZi1h NTM5LTBhOTMyYjMxMzY2Yy8wLzMyMzAzMDMxM2E2NDY2MzczYTMzNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9zsAMA0GCSqGSIb3DQEBCwUAA4IBAQAs5h+6sLOY2GzuZ39NmiTjhjjtknZhZMtk ieq0UH/scn6fzijZDoOZ75+73HZgP47KRIaQ2GMV8p5k/YEegT80mzrBBy+awIOU 7dJNjL7cEz5hFVvXq9Iw73q/1pYYTR9pNZRAd/fDR2Wazw4vUSVdeCy8fNOrwQZ3 g79fCuF8TWG958zN6dgB+cuCxAFBuecrIKW0iplIZuu6nrt4Nrk9my2Bm5WXT+2a abjAvHkj5beJSg0iSb5g+jFnZOfjQ+Fw84IkHS2nUhBPronMblBCB3Z7Z9Zakcl2 2wTGp9Iz9WRmzKWRc8BnaCm5yZKuiAMD6i1876ixew5mQXQHlWny -----END CERTIFICATE-----Generated at Wed May 13 16:47:50 2026 by rpki-client