$ rpki-client -vvf rpki-rsync.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa File: 323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa (raw, json) Hash identifier: 6zf7vx7+kMHdnFJu/oDlY4/HuNaESvsIJtoWRx8KDTI= Subject key identifier: 70:62:6F:60:7F:26:6A:BA:08:47:0A:1B:D7:68:54:6D:78:F8:6F:06 Certificate issuer: /CN=1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A Certificate serial: 1E789797D20FF5C0F3C21F11F8A47E2401E37F45 Authority key identifier: 1E:DE:11:80:AE:9C:99:2B:64:85:CD:65:9C:5D:7E:1B:F2:70:AB:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa Signing time: Sun 03 May 2026 02:28:20 +0000 ROA not before: Sun 03 May 2026 02:23:20 +0000 ROA not after: Sun 02 May 2027 02:28:20 +0000 asID: 137315 IP address blocks: 2001:df4:4b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A.crl rsync://rpki-rsync.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:78:97:97:d2:0f:f5:c0:f3:c2:1f:11:f8:a4:7e:24:01:e3:7f:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A Validity Not Before: May 3 02:23:20 2026 GMT Not After : May 2 02:28:20 2027 GMT Subject: CN=70626F607F266ABA08470A1BD768546D78F86F06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:bf:0f:8c:15:10:29:44:ef:e6:e9:e1:ce: be:d4:69:42:e5:ee:1e:06:7d:00:14:c3:2f:7c:26: 7d:cd:11:fe:9a:f4:96:c1:a4:c3:e4:9e:e5:50:3e: d1:50:86:b0:e3:5f:a0:28:cb:d5:be:cc:47:77:98: d2:07:55:8b:04:42:fc:92:03:f7:59:30:84:6b:91: 84:9f:27:fb:da:6d:88:1e:1b:f6:e0:28:38:39:7d: 11:18:dc:04:b8:21:86:4c:d6:da:2f:ee:c0:36:eb: e9:09:42:63:6b:df:8d:67:34:c5:6e:03:53:19:2d: 78:12:b9:6e:03:5f:fa:b5:7a:db:73:7c:f6:66:4b: 30:59:6b:43:d0:d1:2b:55:78:5c:11:42:7a:31:e6: 6f:cc:68:16:42:76:76:0f:19:c4:54:eb:6c:b9:21: d3:53:fd:a8:af:8a:7b:80:de:b3:50:24:0e:2d:ba: ad:61:0a:17:af:7a:a3:37:ee:bf:a6:b3:2d:d7:98: 5c:11:f2:02:f9:53:0a:85:ce:7d:91:9c:4e:e3:e1: 71:91:67:e9:1f:d9:59:ed:90:09:a0:8b:03:ac:f9: b0:7e:09:1b:01:55:31:be:04:d9:5d:c6:00:ce:4d: a9:e1:06:2b:f9:b0:ac:8b:93:eb:10:01:78:cb:df: 69:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:62:6F:60:7F:26:6A:BA:08:47:0A:1B:D7:68:54:6D:78:F8:6F:06 X509v3 Authority Key Identifier: keyid:1E:DE:11:80:AE:9C:99:2B:64:85:CD:65:9C:5D:7E:1B:F2:70:AB:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1EDE1180AE9C992B6485CD659C5D7E1BF270AB7A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3df068bd-8e3a-4695-89ed-3b3250f875c9/0/323030313a6466343a346230303a3a2f34382d3438203d3e20313337333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4b00::/48 Signature Algorithm: sha256WithRSAEncryption 2b:b1:b8:f5:e4:5d:8b:67:a4:7e:f4:56:1f:2b:c0:bd:a3:95: a4:2b:07:9b:a1:46:d8:82:44:d3:5d:07:d5:f5:97:12:dd:c4: ac:18:e9:37:5e:6e:ad:62:64:4d:aa:29:36:f2:94:88:31:1a: 43:4f:75:e3:be:a1:50:40:0c:f8:36:f2:e8:80:55:58:bc:1c: 78:96:53:2b:d6:03:94:52:87:2c:1c:9a:b4:84:7b:df:63:a8: af:68:3d:82:f5:bb:9d:9a:da:87:94:f2:4e:32:f2:7b:65:da: 37:8a:6d:6b:1a:f8:27:5b:b2:fe:2e:b4:fe:c8:ad:d4:b7:55: 9c:76:89:54:57:b8:dc:1b:a6:a6:84:73:d6:8e:80:72:0e:d8: e4:c2:e1:ab:a9:6d:a7:b0:0a:8b:07:92:e8:a7:b9:63:55:9c: 66:20:49:8b:7a:95:64:48:d9:8e:63:f6:b2:30:d6:40:26:0a: 9e:40:75:88:66:e2:09:00:5b:c2:19:bc:51:d5:96:ee:01:fd: 70:52:1a:ac:91:2c:6d:ae:7d:b2:40:ce:20:82:07:81:ab:3a: 08:1d:9c:99:b1:66:5a:4a:98:9c:cc:8c:f4:12:3c:c1:31:8c: 2f:f7:b1:b4:9e:f1:7b:3b:01:3e:e1:8b:50:c4:e2:03:a9:cb: 18:ad:0e:d1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHniXl9IP9cDzwh8R+KR+JAHjf0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUVERTExODBBRTlDOTkyQjY0ODVDRDY1OUM1RDdFMUJG MjcwQUI3QTAeFw0yNjA1MDMwMjIzMjBaFw0yNzA1MDIwMjI4MjBaMDMxMTAvBgNV BAMTKDcwNjI2RjYwN0YyNjZBQkEwODQ3MEExQkQ3Njg1NDZENzhGODZGMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCts78PjBUQKUTv5unhzr7UaULl 7h4GfQAUwy98Jn3NEf6a9JbBpMPknuVQPtFQhrDjX6Aoy9W+zEd3mNIHVYsEQvyS A/dZMIRrkYSfJ/vabYgeG/bgKDg5fREY3AS4IYZM1tov7sA26+kJQmNr341nNMVu A1MZLXgSuW4DX/q1ettzfPZmSzBZa0PQ0StVeFwRQnox5m/MaBZCdnYPGcRU62y5 IdNT/aivinuA3rNQJA4tuq1hCheveqM37r+msy3XmFwR8gL5UwqFzn2RnE7j4XGR Z+kf2VntkAmgiwOs+bB+CRsBVTG+BNldxgDOTanhBiv5sKyLk+sQAXjL32lhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcGJvYH8maroIRwob12hUbXj4bwYwHwYDVR0j BBgwFoAUHt4RgK6cmStkhc1lnF1+G/Jwq3owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2RmMDY4YmQtOGUzYS00Njk1LTg5ZWQtM2IzMjUwZjg3NWM5LzAvMUVERTExODBB RTlDOTkyQjY0ODVDRDY1OUM1RDdFMUJGMjcwQUI3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRURFMTE4MEFFOUM5OTJCNjQ4NUNENjU5QzVEN0UxQkYyNzBB QjdBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNkZjA2OGJkLThlM2EtNDY5NS04 OWVkLTNiMzI1MGY4NzVjOS8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EsAMA0GCSqGSIb3DQEBCwUAA4IBAQArsbj15F2LZ6R+9FYfK8C9o5WkKweboUbY gkTTXQfV9ZcS3cSsGOk3Xm6tYmRNqik28pSIMRpDT3XjvqFQQAz4NvLogFVYvBx4 llMr1gOUUocsHJq0hHvfY6ivaD2C9budmtqHlPJOMvJ7Zdo3im1rGvgnW7L+LrT+ yK3Ut1WcdolUV7jcG6amhHPWjoByDtjkwuGrqW2nsAqLB5Lop7ljVZxmIEmLepVk SNmOY/ayMNZAJgqeQHWIZuIJAFvCGbxR1ZbuAf1wUhqskSxtrn2yQM4gggeBqzoI HZyZsWZaSpiczIz0EjzBMYwv97G0nvF7OwE+4YtQxOIDqcsYrQ7R -----END CERTIFICATE-----Generated at Wed May 13 13:44:48 2026 by rpki-client