$ rpki-client -vvf rpki-rsync.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa File: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (raw, json) Hash identifier: Mx1Bs+uk4ORbPOJY3X4OSkdxpVJJ2TqdAiAI7XjMvYw= Subject key identifier: 2A:86:A1:4B:B8:F6:44:49:37:B9:32:57:8F:17:3C:DC:AB:60:33:FD Certificate issuer: /CN=5E25E75EAD14FB9C877775CFA5C768C99BF831CB Certificate serial: 3FB64922CAA4FD6FF3E28C68AC439BCA7B2FA08F Authority key identifier: 5E:25:E7:5E:AD:14:FB:9C:87:77:75:CF:A5:C7:68:C9:9B:F8:31:CB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5E25E75EAD14FB9C877775CFA5C768C99BF831CB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa Signing time: Sun 03 May 2026 02:26:01 +0000 ROA not before: Sun 03 May 2026 02:21:01 +0000 ROA not after: Sun 02 May 2027 02:26:01 +0000 asID: 149913 IP address blocks: 2001:df0:fe40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/5E25E75EAD14FB9C877775CFA5C768C99BF831CB.crl rsync://rpki-rsync.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/5E25E75EAD14FB9C877775CFA5C768C99BF831CB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5E25E75EAD14FB9C877775CFA5C768C99BF831CB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b6:49:22:ca:a4:fd:6f:f3:e2:8c:68:ac:43:9b:ca:7b:2f:a0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E25E75EAD14FB9C877775CFA5C768C99BF831CB Validity Not Before: May 3 02:21:01 2026 GMT Not After : May 2 02:26:01 2027 GMT Subject: CN=2A86A14BB8F6444937B932578F173CDCAB6033FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7b:4c:fc:bd:a9:e3:54:08:8a:e4:01:ee:4c: 3d:ec:64:b4:46:b4:1a:9d:ca:6c:3d:63:f6:f0:9f: 8c:53:cd:c0:9c:67:11:a2:49:10:f2:f8:19:3e:eb: 66:22:da:e8:83:2d:65:48:17:b9:97:fd:a9:b3:7b: 99:b6:e2:3c:9f:05:d1:72:42:92:d7:00:bc:ef:32: aa:8d:58:3a:d0:73:56:ca:77:9a:e5:6b:66:e1:66: 44:d5:63:d4:0a:b2:d4:ff:28:90:f7:6f:41:8f:38: ef:7d:46:07:10:42:53:f8:b5:94:92:ff:d7:e4:f0: 8f:bc:b0:c7:f0:cd:98:13:9a:9c:79:4d:0c:23:a5: 71:e0:ac:06:eb:75:fb:13:29:2d:71:2e:ea:a3:15: de:d0:83:b0:fe:26:42:a3:1c:5a:4a:21:74:9b:81: dc:97:ee:60:00:b1:8a:54:f3:13:e9:7d:63:59:28: 1e:d3:6a:2b:78:49:5f:b1:54:40:0a:83:89:97:21: de:48:89:d0:f6:b4:58:69:12:75:2c:7a:63:4c:f8: b9:ca:3f:51:a4:9e:12:ea:4b:c1:99:e6:52:1a:60: 7b:4b:ac:46:94:82:1c:1c:e3:be:dd:c2:94:1c:06: 63:f2:5f:5b:51:f8:49:72:98:b8:55:be:6f:bf:60: c0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:86:A1:4B:B8:F6:44:49:37:B9:32:57:8F:17:3C:DC:AB:60:33:FD X509v3 Authority Key Identifier: keyid:5E:25:E7:5E:AD:14:FB:9C:87:77:75:CF:A5:C7:68:C9:9B:F8:31:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/5E25E75EAD14FB9C877775CFA5C768C99BF831CB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5E25E75EAD14FB9C877775CFA5C768C99BF831CB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 0a:53:9e:ff:66:31:91:95:f7:e3:b6:df:d9:4b:a7:dc:9b:7e: 6b:a4:4e:26:ec:6c:c4:66:7b:11:8e:c7:96:e1:b4:36:46:36: 8d:ff:2a:8b:82:6b:3b:33:46:fc:91:f4:c2:0a:fd:54:bf:4b: a8:1a:18:4b:3f:d2:16:05:03:06:1c:41:4f:c2:ab:07:b7:2b: 25:2c:3a:39:da:71:0a:14:d4:ef:3b:5e:66:2f:72:6c:ed:2a: 37:9e:71:ca:c2:b5:17:03:d1:9d:ac:f4:54:1e:14:81:e6:82: 6d:4b:34:af:65:6a:ea:0c:e1:43:4b:49:cc:8f:2d:c2:03:d0: e1:5d:bf:29:e2:ed:f5:41:e4:c2:82:aa:a9:7a:df:4f:6d:8a: 68:12:4a:c7:cb:ea:68:01:00:8a:0b:13:6b:5a:b8:4e:b4:4d: 46:1e:37:ea:13:7d:b5:80:a4:0e:f9:8f:07:b7:75:7f:6c:0b: ea:c7:dc:d4:8c:eb:5b:9c:57:b4:39:55:1f:7d:a4:f7:15:d2: d2:3f:84:31:b9:75:11:d0:4f:00:f3:f2:02:48:63:ac:5b:3c: 78:52:bb:bd:a8:45:86:f9:59:e6:20:58:7a:cf:41:1c:7f:2b: 58:a1:b4:f7:34:1e:58:cf:69:d9:21:9c:b3:fa:0e:e2:fb:ff: 85:33:1e:df -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP7ZJIsqk/W/z4oxorEObynsvoI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUUyNUU3NUVBRDE0RkI5Qzg3Nzc3NUNGQTVDNzY4Qzk5 QkY4MzFDQjAeFw0yNjA1MDMwMjIxMDFaFw0yNzA1MDIwMjI2MDFaMDMxMTAvBgNV BAMTKDJBODZBMTRCQjhGNjQ0NDkzN0I5MzI1NzhGMTczQ0RDQUI2MDMzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3e0z8vanjVAiK5AHuTD3sZLRG tBqdymw9Y/bwn4xTzcCcZxGiSRDy+Bk+62Yi2uiDLWVIF7mX/amze5m24jyfBdFy QpLXALzvMqqNWDrQc1bKd5rla2bhZkTVY9QKstT/KJD3b0GPOO99RgcQQlP4tZSS /9fk8I+8sMfwzZgTmpx5TQwjpXHgrAbrdfsTKS1xLuqjFd7Qg7D+JkKjHFpKIXSb gdyX7mAAsYpU8xPpfWNZKB7Tait4SV+xVEAKg4mXId5IidD2tFhpEnUsemNM+LnK P1GknhLqS8GZ5lIaYHtLrEaUghwc477dwpQcBmPyX1tR+ElymLhVvm+/YMDBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKoahS7j2REk3uTJXjxc83KtgM/0wHwYDVR0j BBgwFoAUXiXnXq0U+5yHd3XPpcdoyZv4McswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg2ZDZiYTEtMWY3My00Nzc2LThhNmEtNGY0NTEyMDc5MmIxLzAvNUUyNUU3NUVB RDE0RkI5Qzg3Nzc3NUNGQTVDNzY4Qzk5QkY4MzFDQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RTI1RTc1RUFEMTRGQjlDODc3Nzc1Q0ZBNUM3NjhDOTlCRjgz MUNCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzM4NmQ2YmExLTFmNzMtNDc3Ni04 YTZhLTRmNDUxMjA3OTJiMS8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzMTMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8P5AMA0GCSqGSIb3DQEBCwUAA4IBAQAKU57/ZjGRlffjtt/ZS6fcm35rpE4m7GzE ZnsRjseW4bQ2RjaN/yqLgms7M0b8kfTCCv1Uv0uoGhhLP9IWBQMGHEFPwqsHtysl LDo52nEKFNTvO15mL3Js7So3nnHKwrUXA9GdrPRUHhSB5oJtSzSvZWrqDOFDS0nM jy3CA9DhXb8p4u31QeTCgqqpet9PbYpoEkrHy+poAQCKCxNrWrhOtE1GHjfqE321 gKQO+Y8Ht3V/bAvqx9zUjOtbnFe0OVUffaT3FdLSP4QxuXUR0E8A8/ICSGOsWzx4 Uru9qEWG+VnmIFh6z0EcfytYobT3NB5Yz2nZIZyz+g7i+/+FMx7f -----END CERTIFICATE-----Generated at Wed May 13 15:27:21 2026 by rpki-client