$ rpki-client -vvf rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa File: 323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa (raw, json) Hash identifier: 6lgQliV3qWJWSqE96iH08yO2bxxIknhiUKxtAeSrcOo= Subject key identifier: 5C:44:57:27:37:C1:0D:93:95:0E:3E:AC:81:37:E0:D1:D0:4D:20:13 Certificate issuer: /CN=2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E Certificate serial: 1309AF2120B37E204E5AC78FA03B2D2B8A61D85E Authority key identifier: 2A:0F:66:41:16:FB:E2:E0:71:7E:83:DF:D4:F2:B6:ED:EB:09:E1:7E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa Signing time: Sun 03 May 2026 02:25:54 +0000 ROA not before: Sun 03 May 2026 02:20:54 +0000 ROA not after: Sun 02 May 2027 02:25:54 +0000 asID: 152005 IP address blocks: 2001:df3:1cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.crl rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:09:af:21:20:b3:7e:20:4e:5a:c7:8f:a0:3b:2d:2b:8a:61:d8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E Validity Not Before: May 3 02:20:54 2026 GMT Not After : May 2 02:25:54 2027 GMT Subject: CN=5C44572737C10D93950E3EAC8137E0D1D04D2013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:f5:74:6d:c0:73:67:f8:f7:55:94:b4:48: 7b:bb:32:eb:5c:a7:9c:a3:00:ff:86:53:b4:68:18: 1e:ab:5b:ce:c2:cd:1b:ba:63:88:b9:c9:c0:52:a3: 76:85:4a:7b:a9:ac:b2:68:a3:75:97:d3:b0:e6:20: e3:10:72:91:f5:41:d7:95:65:27:ad:98:2f:3c:ba: 52:f5:51:44:70:73:9d:07:87:33:70:87:c5:9a:62: e7:ca:dd:fb:43:6d:55:99:a1:b8:ff:85:32:c3:c9: 4e:b4:ee:27:b0:d9:b8:71:00:96:5d:db:de:b5:bc: 1b:be:38:73:50:05:33:e4:f7:8e:7d:2d:95:67:c8: 54:f9:4a:9b:39:d4:9e:46:19:91:26:06:16:cc:88: fa:e0:91:0c:0b:af:ef:88:06:05:d7:f1:20:2c:bc: 75:22:5d:4a:fc:0a:eb:3e:13:6d:9e:b5:21:7c:2a: 26:70:b5:1b:65:d0:3d:ea:0d:01:f6:12:9b:aa:2e: 8b:1b:72:ca:73:03:af:88:ee:1e:de:36:2c:3f:c6: 58:20:d2:df:ed:64:86:ab:ce:e6:95:9b:60:56:b8: dd:29:01:f5:b6:89:83:f4:af:d9:cd:95:74:73:c5: 06:46:42:e2:22:bb:0a:3c:ba:95:6f:d4:97:5d:5d: 92:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:44:57:27:37:C1:0D:93:95:0E:3E:AC:81:37:E0:D1:D0:4D:20:13 X509v3 Authority Key Identifier: keyid:2A:0F:66:41:16:FB:E2:E0:71:7E:83:DF:D4:F2:B6:ED:EB:09:E1:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:1cc0::/48 Signature Algorithm: sha256WithRSAEncryption 57:96:2d:c5:bd:53:2c:9f:4e:e0:e3:0c:8a:ed:4e:8f:1b:09: 6a:fa:da:0c:36:74:34:e6:29:41:c0:a1:55:1b:dc:8c:a1:9f: 33:bf:e3:1b:14:a7:fe:37:06:f7:e1:3f:85:9b:13:6d:93:32: d5:04:46:8f:14:dd:45:1c:6f:86:0f:b1:ca:c0:99:3c:c6:20: 92:d4:74:c1:02:eb:97:00:ae:01:77:fe:84:d7:04:ac:8a:74: 75:79:3a:ee:28:a8:3d:0a:d2:3b:cb:6c:c3:38:5a:77:79:cb: 34:11:d9:bf:d9:20:de:1d:5b:c5:64:5e:ea:82:6b:30:b6:de: 0a:88:a3:90:dc:fa:63:ca:3f:e5:1b:e1:42:f3:8f:bc:57:d7: c6:e0:08:22:fe:49:8d:b4:2b:f5:75:56:5f:c8:0f:b7:21:ae: 08:4b:fd:91:80:ac:3d:77:3d:57:42:6b:d5:4c:9f:49:fd:14: fb:cc:aa:c8:d8:41:3d:a8:62:66:f0:8d:5e:8a:bf:e6:b7:10: 63:01:94:77:f9:f1:35:da:06:56:89:4d:25:82:3e:7f:42:4d: 52:56:b5:e0:e8:da:3e:e0:9d:d1:88:9f:36:8d:d4:f4:00:31: ad:5d:6b:8c:d0:da:4b:d6:9a:60:f9:c2:e5:47:5d:d7:82:9f: be:39:87:d5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEwmvISCzfiBOWsePoDstK4ph2F4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEwRjY2NDExNkZCRTJFMDcxN0U4M0RGRDRGMkI2RURF QjA5RTE3RTAeFw0yNjA1MDMwMjIwNTRaFw0yNzA1MDIwMjI1NTRaMDMxMTAvBgNV BAMTKDVDNDQ1NzI3MzdDMTBEOTM5NTBFM0VBQzgxMzdFMEQxRDA0RDIwMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6NvV0bcBzZ/j3VZS0SHu7Mutc p5yjAP+GU7RoGB6rW87CzRu6Y4i5ycBSo3aFSnuprLJoo3WX07DmIOMQcpH1QdeV ZSetmC88ulL1UURwc50HhzNwh8WaYufK3ftDbVWZobj/hTLDyU607iew2bhxAJZd 2961vBu+OHNQBTPk9459LZVnyFT5Sps51J5GGZEmBhbMiPrgkQwLr++IBgXX8SAs vHUiXUr8Cus+E22etSF8KiZwtRtl0D3qDQH2EpuqLosbcspzA6+I7h7eNiw/xlgg 0t/tZIarzuaVm2BWuN0pAfW2iYP0r9nNlXRzxQZGQuIiuwo8upVv1JddXZL7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXERXJzfBDZOVDj6sgTfg0dBNIBMwHwYDVR0j BBgwFoAUKg9mQRb74uBxfoPf1PK27esJ4X4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg0ODg1MTktOGYwNC00NGY1LTgzMTItOGQ5ZDM2MTZkMGQ5LzAvMkEwRjY2NDEx NkZCRTJFMDcxN0U4M0RGRDRGMkI2RURFQjA5RTE3RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTBGNjY0MTE2RkJFMkUwNzE3RTgzREZENEYyQjZFREVCMDlF MTdFLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4NDg4NTE5LThmMDQtNDRmNS04 MzEyLThkOWQzNjE2ZDBkOS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMxNjM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzMDM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8xzAMA0GCSqGSIb3DQEBCwUAA4IBAQBXli3FvVMsn07g4wyK7U6PGwlq+toMNnQ0 5ilBwKFVG9yMoZ8zv+MbFKf+Nwb34T+FmxNtkzLVBEaPFN1FHG+GD7HKwJk8xiCS 1HTBAuuXAK4Bd/6E1wSsinR1eTruKKg9CtI7y2zDOFp3ecs0Edm/2SDeHVvFZF7q gmswtt4KiKOQ3Ppjyj/lG+FC84+8V9fG4Agi/kmNtCv1dVZfyA+3Ia4IS/2RgKw9 dz1XQmvVTJ9J/RT7zKrI2EE9qGJm8I1eir/mtxBjAZR3+fE12gZWiU0lgj5/Qk1S VrXg6No+4J3RiJ82jdT0ADGtXWuM0NpL1ppg+cLlR13Xgp++OYfV -----END CERTIFICATE-----Generated at Wed May 13 13:58:11 2026 by rpki-client