$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa File: 323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa (raw, json) Hash identifier: eoYACoknq6vSui9USgokAQRX8xZkoLYZMEzPSOjPAZU= Subject key identifier: 86:CB:53:5D:90:3C:10:02:7C:EC:C8:76:3E:4A:A6:A9:7B:14:33:46 Certificate issuer: /CN=EECD640133988CFFC0BF1D58079BA5921C041DB9 Certificate serial: 134991D696B769E4D160558B60000CCEED5021F2 Authority key identifier: EE:CD:64:01:33:98:8C:FF:C0:BF:1D:58:07:9B:A5:92:1C:04:1D:B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EECD640133988CFFC0BF1D58079BA5921C041DB9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa Signing time: Sun 03 May 2026 02:27:52 +0000 ROA not before: Sun 03 May 2026 02:22:52 +0000 ROA not after: Sun 02 May 2027 02:27:52 +0000 asID: 140025 IP address blocks: 2001:df3:780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/EECD640133988CFFC0BF1D58079BA5921C041DB9.crl rsync://rpki-rsync.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/EECD640133988CFFC0BF1D58079BA5921C041DB9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EECD640133988CFFC0BF1D58079BA5921C041DB9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:49:91:d6:96:b7:69:e4:d1:60:55:8b:60:00:0c:ce:ed:50:21:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EECD640133988CFFC0BF1D58079BA5921C041DB9 Validity Not Before: May 3 02:22:52 2026 GMT Not After : May 2 02:27:52 2027 GMT Subject: CN=86CB535D903C10027CECC8763E4AA6A97B143346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:c6:8f:6d:a4:fc:6b:59:8a:15:e5:24:83: 87:64:6f:13:59:e1:f8:66:4f:8a:73:f4:1d:06:10: c2:09:07:d0:dc:68:86:61:cd:81:55:27:f0:68:59: c1:ad:7c:a6:61:a0:6e:06:a4:3f:37:e9:ab:d5:9c: 0e:7b:3b:70:36:b0:5b:94:ea:af:47:3e:2e:f8:a4: 4e:02:68:67:f9:5b:75:22:12:6f:73:5e:9c:aa:a5: fc:a5:bd:cf:6b:e0:74:3b:d1:25:b9:fb:f5:7e:ac: 79:02:d5:8d:59:e3:7b:0b:ba:95:82:52:de:f7:4d: 7f:65:81:fb:d3:b7:a3:72:4d:9a:df:f8:1d:e3:cd: 9a:d3:dd:32:fd:42:86:82:70:4f:a4:69:4f:4f:7d: f7:f5:fd:bc:ac:9a:05:b9:0c:db:aa:e3:d1:1f:50: 70:42:6c:2d:10:a1:7d:04:78:12:19:1b:d0:be:6f: be:50:fc:99:f7:21:2d:4e:e9:d5:55:cf:cc:be:34: 96:f0:08:3b:96:68:3c:21:b0:75:27:45:0e:12:49: f5:92:b5:13:3c:76:3b:0e:6e:df:f9:da:dd:ae:26: 31:93:fc:40:c3:69:ed:24:18:57:d9:2e:36:e1:6d: 3f:93:3f:fe:62:46:4d:cc:f4:28:c3:bf:cf:9d:5d: 82:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CB:53:5D:90:3C:10:02:7C:EC:C8:76:3E:4A:A6:A9:7B:14:33:46 X509v3 Authority Key Identifier: keyid:EE:CD:64:01:33:98:8C:FF:C0:BF:1D:58:07:9B:A5:92:1C:04:1D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/EECD640133988CFFC0BF1D58079BA5921C041DB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EECD640133988CFFC0BF1D58079BA5921C041DB9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c93c25c-ce55-4870-8169-5eae8d9dfbc1/0/323030313a6466333a3738303a3a2f34382d3438203d3e20313430303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:780::/48 Signature Algorithm: sha256WithRSAEncryption 77:a3:29:b7:95:87:4e:ce:7a:a1:6c:7f:cf:41:fb:08:cb:48: d8:e4:41:9e:9e:61:69:69:b4:d7:2f:be:28:4d:1f:fe:27:6e: 54:1b:27:c4:fd:f3:64:35:d5:09:fe:31:bb:3d:f8:ac:02:0a: 1e:5f:b6:70:6f:15:20:aa:f1:8b:21:f4:e4:21:72:89:a8:fa: 38:f9:34:43:25:cc:6b:aa:29:7a:07:1f:85:95:98:d1:be:5e: 98:ce:7b:d6:13:64:00:e2:2b:0b:c3:9c:cf:53:0b:b4:82:df: d8:58:91:0f:44:c4:90:0b:9f:48:9b:ba:6a:3b:a6:6e:11:fc: 8d:83:0e:81:27:fa:8c:b9:6b:81:e2:22:7c:32:fb:c5:a7:d9: 9a:6d:96:57:b0:bd:ee:1b:e8:64:ca:2f:8a:e9:49:94:a6:6f: 61:3f:14:e5:b4:0e:b1:47:be:0c:2d:e5:25:a4:c9:e3:b5:b2: 0c:17:43:72:7a:21:0b:e8:86:73:d5:48:a6:0c:07:04:95:1b: 58:1d:c0:3a:b3:f4:86:55:05:eb:a5:48:41:dd:91:e4:c5:0f: 3e:7e:83:c1:15:4c:3d:7a:a9:d2:03:ae:b6:c3:c9:8f:89:63: 9d:4f:44:c3:69:b2:e3:9e:ce:e9:d0:e5:bc:0c:03:bb:53:70: 88:d9:cf:17 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUE0mR1pa3aeTRYFWLYAAMzu1QIfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVDRDY0MDEzMzk4OENGRkMwQkYxRDU4MDc5QkE1OTIx QzA0MURCOTAeFw0yNjA1MDMwMjIyNTJaFw0yNzA1MDIwMjI3NTJaMDMxMTAvBgNV BAMTKDg2Q0I1MzVEOTAzQzEwMDI3Q0VDQzg3NjNFNEFBNkE5N0IxNDMzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB78aPbaT8a1mKFeUkg4dkbxNZ 4fhmT4pz9B0GEMIJB9DcaIZhzYFVJ/BoWcGtfKZhoG4GpD836avVnA57O3A2sFuU 6q9HPi74pE4CaGf5W3UiEm9zXpyqpfylvc9r4HQ70SW5+/V+rHkC1Y1Z43sLupWC Ut73TX9lgfvTt6NyTZrf+B3jzZrT3TL9QoaCcE+kaU9Pfff1/bysmgW5DNuq49Ef UHBCbC0QoX0EeBIZG9C+b75Q/Jn3IS1O6dVVz8y+NJbwCDuWaDwhsHUnRQ4SSfWS tRM8djsObt/52t2uJjGT/EDDae0kGFfZLjbhbT+TP/5iRk3M9CjDv8+dXYKdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUhstTXZA8EAJ87Mh2PkqmqXsUM0YwHwYDVR0j BBgwFoAU7s1kATOYjP/Avx1YB5ulkhwEHbkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M5M2MyNWMtY2U1NS00ODcwLTgxNjktNWVhZThkOWRmYmMxLzAvRUVDRDY0MDEz Mzk4OENGRkMwQkYxRDU4MDc5QkE1OTIxQzA0MURCOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRUNENjQwMTMzOTg4Q0ZGQzBCRjFENTgwNzlCQTU5MjFDMDQx REI5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjOTNjMjVjLWNlNTUtNDg3MC04 MTY5LTVlYWU4ZDlkZmJjMS8wLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMDMwMzIzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfMH gDANBgkqhkiG9w0BAQsFAAOCAQEAd6Mpt5WHTs56oWx/z0H7CMtI2ORBnp5haWm0 1y++KE0f/iduVBsnxP3zZDXVCf4xuz34rAIKHl+2cG8VIKrxiyH05CFyiaj6OPk0 QyXMa6opegcfhZWY0b5emM571hNkAOIrC8Ocz1MLtILf2FiRD0TEkAufSJu6ajum bhH8jYMOgSf6jLlrgeIifDL7xafZmm2WV7C97hvoZMoviulJlKZvYT8U5bQOsUe+ DC3lJaTJ47WyDBdDcnohC+iGc9VIpgwHBJUbWB3AOrP0hlUF66VIQd2R5MUPPn6D wRVMPXqp0gOutsPJj4ljnU9Ew2my457O6dDlvAwDu1NwiNnPFw== -----END CERTIFICATE-----Generated at Wed May 13 09:21:07 2026 by rpki-client