$ rpki-client -vvf rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa File: 323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa (raw, json) Hash identifier: 8mVUx2m6cehmTjXBEOh2fhiknIQmwcR5DCPv3UxdfA4= Subject key identifier: 60:87:4E:63:E5:72:9E:AF:2D:3E:BE:26:88:08:73:48:2F:F5:AB:DB Certificate issuer: /CN=3B49013F73B5A7AF137F414DE362E405F31D32DC Certificate serial: 4B5F820F6BC967DA805ABAF745E77B18086CDBE3 Authority key identifier: 3B:49:01:3F:73:B5:A7:AF:13:7F:41:4D:E3:62:E4:05:F3:1D:32:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B49013F73B5A7AF137F414DE362E405F31D32DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa Signing time: Sun 03 May 2026 02:24:20 +0000 ROA not before: Sun 03 May 2026 02:19:20 +0000 ROA not after: Sun 02 May 2027 02:24:20 +0000 asID: 141920 IP address blocks: 2001:df3:1940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3B49013F73B5A7AF137F414DE362E405F31D32DC.crl rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3B49013F73B5A7AF137F414DE362E405F31D32DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B49013F73B5A7AF137F414DE362E405F31D32DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:5f:82:0f:6b:c9:67:da:80:5a:ba:f7:45:e7:7b:18:08:6c:db:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B49013F73B5A7AF137F414DE362E405F31D32DC Validity Not Before: May 3 02:19:20 2026 GMT Not After : May 2 02:24:20 2027 GMT Subject: CN=60874E63E5729EAF2D3EBE26880873482FF5ABDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:54:ed:6a:68:76:7b:21:e8:9e:29:04:bf: e8:62:c2:fc:e5:11:3a:f0:da:5e:c3:ea:44:13:ff: 4f:e0:a4:70:74:28:06:11:90:24:cb:ad:41:ab:fa: 7c:c6:13:d7:d7:1e:d1:2d:9b:75:3a:de:10:16:e4: b9:f7:48:fb:15:83:2a:f1:dc:b2:75:dc:f9:66:2c: 69:1d:14:5b:9f:ef:6a:e8:a4:cc:95:57:6b:27:dd: 41:1d:55:07:ab:23:e0:1f:5d:80:ce:1e:4e:7c:99: 5f:fc:bc:c2:9f:b4:ab:23:9a:b6:e5:d8:de:31:dc: 6b:84:64:4d:f3:eb:44:ec:6b:2c:19:c4:2e:84:e2: 20:5e:c8:93:aa:69:bc:da:f3:19:f0:f9:4d:5e:ab: 60:c1:69:b6:25:ed:ab:e6:b8:89:0e:37:31:db:5c: 5c:1c:b1:c0:2e:07:0a:ea:ad:7c:8f:a0:68:1b:cd: 41:99:f5:ec:15:e8:69:92:40:4d:a8:6b:69:ba:35: 8d:89:e9:c2:e4:fa:b8:d9:ef:4d:6b:b9:a0:95:4e: 4d:15:c9:fa:03:bf:e2:76:4d:fd:b5:72:b6:fb:ad: 60:6a:c0:9e:ef:a6:0b:56:56:d3:98:de:ab:33:52: 6c:3f:b3:3f:fc:57:9c:43:ce:06:8a:4a:f9:78:98: fd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:87:4E:63:E5:72:9E:AF:2D:3E:BE:26:88:08:73:48:2F:F5:AB:DB X509v3 Authority Key Identifier: keyid:3B:49:01:3F:73:B5:A7:AF:13:7F:41:4D:E3:62:E4:05:F3:1D:32:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3B49013F73B5A7AF137F414DE362E405F31D32DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B49013F73B5A7AF137F414DE362E405F31D32DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/323030313a6466333a313934303a3a2f34382d3438203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1940::/48 Signature Algorithm: sha256WithRSAEncryption 9c:1a:80:1f:c4:41:9a:1b:ad:6a:dd:27:c6:6d:9e:85:b3:79: e1:59:8a:09:83:81:56:65:e0:9e:fb:e2:77:ce:d7:59:b7:c5: 64:84:24:b2:20:1c:5c:f0:81:35:0b:2a:49:49:4b:d2:84:29: 5b:0e:59:f9:70:d8:e9:15:23:2f:f1:51:84:49:d2:a3:32:7c: a7:04:e4:bd:78:ef:39:af:94:be:40:ed:29:ee:86:1f:7c:04: af:c2:3c:ba:c4:dd:89:71:9b:ac:46:4d:15:ba:98:4f:e7:3e: 37:05:f8:ad:62:fc:7e:2f:5e:ce:b4:90:57:35:09:35:36:28: 1e:e1:ef:d5:41:a2:6f:8c:ce:99:06:ca:11:34:74:a5:75:df: 20:e8:56:ac:83:b8:76:8b:4a:95:ed:65:6d:ee:90:a2:e7:6c: 3d:bb:6b:05:90:7e:39:a1:07:48:24:60:c6:8a:2d:8f:c9:db: 63:32:4d:51:9f:0e:f5:6e:0d:66:fd:de:ce:ed:be:b1:8c:8b: 35:c4:b2:88:91:8b:06:e3:74:23:7d:ec:8b:b2:07:13:1c:e0: 6c:65:4f:0c:9c:3f:64:94:29:63:cd:cb:8a:fa:1b:3f:98:59: de:b7:38:b3:2f:9d:8d:43:5e:cc:37:6e:e6:42:f5:b1:c9:0c: 1b:4e:65:2b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUS1+CD2vJZ9qAWrr3Red7GAhs2+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I0OTAxM0Y3M0I1QTdBRjEzN0Y0MTRERTM2MkU0MDVG MzFEMzJEQzAeFw0yNjA1MDMwMjE5MjBaFw0yNzA1MDIwMjI0MjBaMDMxMTAvBgNV BAMTKDYwODc0RTYzRTU3MjlFQUYyRDNFQkUyNjg4MDg3MzQ4MkZGNUFCREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5alTtamh2eyHonikEv+hiwvzl ETrw2l7D6kQT/0/gpHB0KAYRkCTLrUGr+nzGE9fXHtEtm3U63hAW5Ln3SPsVgyrx 3LJ13PlmLGkdFFuf72ropMyVV2sn3UEdVQerI+AfXYDOHk58mV/8vMKftKsjmrbl 2N4x3GuEZE3z60TsaywZxC6E4iBeyJOqabza8xnw+U1eq2DBabYl7avmuIkONzHb XFwcscAuBwrqrXyPoGgbzUGZ9ewV6GmSQE2oa2m6NY2J6cLk+rjZ701ruaCVTk0V yfoDv+J2Tf21crb7rWBqwJ7vpgtWVtOY3qszUmw/sz/8V5xDzgaKSvl4mP2fAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYIdOY+Vynq8tPr4miAhzSC/1q9swHwYDVR0j BBgwFoAUO0kBP3O1p68Tf0FN42LkBfMdMtwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzJmM2Y1ZDktY2ZiOC00MTIzLWEyYjEtYjBiNTI5OWY5YzZlLzAvM0I0OTAxM0Y3 M0I1QTdBRjEzN0Y0MTRERTM2MkU0MDVGMzFEMzJEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjQ5MDEzRjczQjVBN0FGMTM3RjQxNERFMzYyRTQwNUYzMUQz MkRDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxMzkzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMjMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xlAMA0GCSqGSIb3DQEBCwUAA4IBAQCcGoAfxEGaG61q3SfGbZ6Fs3nhWYoJg4FW ZeCe++J3ztdZt8VkhCSyIBxc8IE1CypJSUvShClbDln5cNjpFSMv8VGESdKjMnyn BOS9eO85r5S+QO0p7oYffASvwjy6xN2JcZusRk0VuphP5z43BfitYvx+L17OtJBX NQk1Nige4e/VQaJvjM6ZBsoRNHSldd8g6Fasg7h2i0qV7WVt7pCi52w9u2sFkH45 oQdIJGDGii2PydtjMk1Rnw71bg1m/d7O7b6xjIs1xLKIkYsG43QjfeyLsgcTHOBs ZU8MnD9klCljzcuK+hs/mFnetzizL52NQ17MN27mQvWxyQwbTmUr -----END CERTIFICATE-----Generated at Wed May 13 11:35:45 2026 by rpki-client