$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa File: 323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa (raw, json) Hash identifier: h3C8yms9g4R1YiVLRu6ZS9/9U4FvJR5pkKQb8FutKck= Subject key identifier: 3D:D8:84:04:BC:C5:F7:6B:69:58:31:A6:83:DE:7C:AE:D5:18:D9:B4 Certificate issuer: /CN=6A18E24186A3D3ED8D5089777A2464365FF00A27 Certificate serial: 0B95F734E2DCCC8C731144E3D2004CD7047EF1F1 Authority key identifier: 6A:18:E2:41:86:A3:D3:ED:8D:50:89:77:7A:24:64:36:5F:F0:0A:27 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6A18E24186A3D3ED8D5089777A2464365FF00A27.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa Signing time: Sun 03 May 2026 02:26:47 +0000 ROA not before: Sun 03 May 2026 02:21:47 +0000 ROA not after: Sun 02 May 2027 02:26:47 +0000 asID: 153123 IP address blocks: 2001:df4:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/6A18E24186A3D3ED8D5089777A2464365FF00A27.crl rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/6A18E24186A3D3ED8D5089777A2464365FF00A27.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6A18E24186A3D3ED8D5089777A2464365FF00A27.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:95:f7:34:e2:dc:cc:8c:73:11:44:e3:d2:00:4c:d7:04:7e:f1:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A18E24186A3D3ED8D5089777A2464365FF00A27 Validity Not Before: May 3 02:21:47 2026 GMT Not After : May 2 02:26:47 2027 GMT Subject: CN=3DD88404BCC5F76B695831A683DE7CAED518D9B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:1c:f5:1c:42:1e:69:6b:ad:69:83:d2:00:45: 43:51:d4:f9:c2:7c:10:47:7a:9d:eb:5a:21:a1:5f: c8:ea:de:7e:2a:49:a9:df:1f:52:36:ac:34:c5:af: 77:47:83:4f:6b:bf:82:7d:6a:81:8c:69:ad:6b:be: fd:66:1d:d3:60:44:78:40:04:5f:7a:ad:df:10:d2: 51:30:76:82:79:6a:d1:37:e5:be:92:07:45:e0:37: 31:26:b1:42:a0:62:15:f6:75:fe:1c:d4:af:50:79: eb:88:11:de:5d:9f:0d:54:3e:7a:c7:ef:91:9d:12: 82:e7:61:d0:42:d0:83:a4:81:b5:59:5e:df:35:65: 38:a5:03:b2:da:f0:71:08:00:d8:70:48:d0:70:bc: c9:9a:af:1a:d6:7e:3d:87:a0:9e:83:a2:c0:0a:01: d0:49:8f:89:a3:b0:6b:b6:ec:10:80:3b:bd:43:65: af:97:d8:cc:56:35:6e:d7:e6:f7:eb:f5:4b:c3:53: 23:1d:8f:4d:c5:82:21:19:6e:98:89:00:4a:92:99: e3:c8:87:15:c2:10:7b:f9:b2:51:ba:f8:2d:64:9a: 9d:ff:13:02:15:39:32:31:14:45:13:11:01:89:6a: e8:77:b2:c1:6f:37:b8:29:66:a6:7b:e9:d4:e9:92: 47:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D8:84:04:BC:C5:F7:6B:69:58:31:A6:83:DE:7C:AE:D5:18:D9:B4 X509v3 Authority Key Identifier: keyid:6A:18:E2:41:86:A3:D3:ED:8D:50:89:77:7A:24:64:36:5F:F0:0A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/6A18E24186A3D3ED8D5089777A2464365FF00A27.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6A18E24186A3D3ED8D5089777A2464365FF00A27.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/1/323030313a6466343a353463303a3a2f34382d3438203d3e20313533313233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 50:c7:f1:4f:a8:ce:e7:f1:eb:36:cc:b9:cf:4d:21:3e:e0:e8: 0b:05:3f:b2:7b:e5:e7:bb:4a:0b:49:75:11:56:96:a6:ef:d6: 0e:a0:81:bf:e3:36:7c:49:ef:3f:3c:b0:e2:c5:25:66:51:b5: 91:4a:fa:83:63:1e:9a:08:c6:60:19:3d:3c:3c:15:93:78:e4: ae:06:d6:82:eb:84:b4:8c:59:1c:8a:53:69:b0:b4:7a:ec:b9: ad:16:52:00:75:37:30:cf:6f:4b:bd:5f:87:a2:9d:ae:79:bf: e2:e8:19:31:b7:61:8e:ef:08:f9:51:1e:25:6e:04:d9:38:25: d1:f3:80:2e:5e:78:21:89:29:f0:f7:26:b9:15:96:8e:f6:bd: 1c:b1:77:0f:d7:0d:48:2c:1f:68:b3:dd:4e:ef:72:1d:71:2b: 89:9b:fc:9f:53:fb:99:35:ab:53:d0:bd:fc:df:ba:a3:05:b2: 5d:e3:76:92:20:24:f0:ce:33:24:f1:86:7f:52:73:a5:f9:0f: eb:6e:1e:03:80:7c:1b:7f:de:82:a0:ae:5e:33:7e:47:d4:0b: 65:47:8e:db:75:aa:ff:c0:da:db:8f:c1:1e:e6:40:da:3e:f4: 5e:48:70:58:8a:02:ab:c4:3c:cc:a7:83:4f:33:e6:36:59:0a: 59:47:72:d1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC5X3NOLczIxzEUTj0gBM1wR+8fEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkExOEUyNDE4NkEzRDNFRDhENTA4OTc3N0EyNDY0MzY1 RkYwMEEyNzAeFw0yNjA1MDMwMjIxNDdaFw0yNzA1MDIwMjI2NDdaMDMxMTAvBgNV BAMTKDNERDg4NDA0QkNDNUY3NkI2OTU4MzFBNjgzREU3Q0FFRDUxOEQ5QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHHPUcQh5pa61pg9IARUNR1PnC fBBHep3rWiGhX8jq3n4qSanfH1I2rDTFr3dHg09rv4J9aoGMaa1rvv1mHdNgRHhA BF96rd8Q0lEwdoJ5atE35b6SB0XgNzEmsUKgYhX2df4c1K9QeeuIEd5dnw1UPnrH 75GdEoLnYdBC0IOkgbVZXt81ZTilA7La8HEIANhwSNBwvMmarxrWfj2HoJ6DosAK AdBJj4mjsGu27BCAO71DZa+X2MxWNW7X5vfr9UvDUyMdj03FgiEZbpiJAEqSmePI hxXCEHv5slG6+C1kmp3/EwIVOTIxFEUTEQGJauh3ssFvN7gpZqZ76dTpkkf1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPdiEBLzF92tpWDGmg958rtUY2bQwHwYDVR0j BBgwFoAUahjiQYaj0+2NUIl3eiRkNl/wCicwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E5MjMzOTctOGNmOC00Y2VmLTg4NTYtMGQyNjhkNzNlZGIxLzEvNkExOEUyNDE4 NkEzRDNFRDhENTA4OTc3N0EyNDY0MzY1RkYwMEEyNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82QTE4RTI0MTg2QTNEM0VEOEQ1MDg5Nzc3QTI0NjQzNjVGRjAw QTI3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNhOTIzMzk3LThjZjgtNGNlZi04 ODU2LTBkMjY4ZDczZWRiMS8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FTAMA0GCSqGSIb3DQEBCwUAA4IBAQBQx/FPqM7n8es2zLnPTSE+4OgLBT+ye+Xn u0oLSXURVpam79YOoIG/4zZ8Se8/PLDixSVmUbWRSvqDYx6aCMZgGT08PBWTeOSu BtaC64S0jFkcilNpsLR67LmtFlIAdTcwz29LvV+Hop2ueb/i6Bkxt2GO7wj5UR4l bgTZOCXR84AuXnghiSnw9ya5FZaO9r0csXcP1w1ILB9os91O73IdcSuJm/yfU/uZ NatT0L3837qjBbJd43aSICTwzjMk8YZ/UnOl+Q/rbh4DgHwbf96CoK5eM35H1Atl R47bdar/wNrbj8Ee5kDaPvReSHBYigKrxDzMp4NPM+Y2WQpZR3LR -----END CERTIFICATE-----Generated at Wed May 13 16:42:34 2026 by rpki-client