$ rpki-client -vvf rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa File: 323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa (raw, json) Hash identifier: sF9q1f3M6qWl1bUGKFEMzAqrj77WF6tSCHN75m99gpo= Subject key identifier: 4B:8D:27:D7:DF:90:83:C6:26:56:21:7F:4D:D2:FF:C2:BD:59:D3:5F Certificate issuer: /CN=51D2872389FAB3963625D56D9C53751581B4095A Certificate serial: 21F0FC3D9E347CED7F91FFDFF4E3157558FF1D6E Authority key identifier: 51:D2:87:23:89:FA:B3:96:36:25:D5:6D:9C:53:75:15:81:B4:09:5A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51D2872389FAB3963625D56D9C53751581B4095A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa Signing time: Sun 03 May 2026 02:28:45 +0000 ROA not before: Sun 03 May 2026 02:23:45 +0000 ROA not after: Sun 02 May 2027 02:28:45 +0000 asID: 59133 IP address blocks: 2001:df3:9540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/51D2872389FAB3963625D56D9C53751581B4095A.crl rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/51D2872389FAB3963625D56D9C53751581B4095A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51D2872389FAB3963625D56D9C53751581B4095A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f0:fc:3d:9e:34:7c:ed:7f:91:ff:df:f4:e3:15:75:58:ff:1d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51D2872389FAB3963625D56D9C53751581B4095A Validity Not Before: May 3 02:23:45 2026 GMT Not After : May 2 02:28:45 2027 GMT Subject: CN=4B8D27D7DF9083C62656217F4DD2FFC2BD59D35F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:b1:97:f1:78:0f:9f:c6:60:8d:79:80:a0: 21:fb:ab:2c:8b:08:58:c7:21:75:87:d3:a5:36:fa: 50:a9:4d:cd:bb:b6:95:ef:e9:29:3f:66:79:75:35: ae:a7:3f:73:d7:02:d9:23:08:63:05:ed:19:c8:14: e4:8a:9e:b0:e7:72:34:96:77:d6:17:a7:89:64:95: a9:99:82:a8:b8:4f:9f:1d:ee:41:9c:f7:d9:48:24: cd:01:f7:e3:1e:78:86:ef:ff:81:6c:5a:27:de:25: 49:f4:16:a6:fa:9f:1b:6c:24:27:71:95:d1:5c:b1: 45:0e:ac:94:57:6e:c9:04:e1:7e:5e:c6:71:df:07: f7:ea:c8:58:e9:81:30:3e:2d:1a:3b:75:fd:df:a3: d5:24:e3:e8:13:84:12:e0:26:01:3c:1c:18:a6:60: 0a:d5:99:8a:d5:cd:ff:e4:85:ea:fa:5a:ff:5f:f0: 30:73:ee:6f:3d:66:15:c7:ce:eb:9d:90:61:be:3b: 9e:39:5a:32:e0:04:16:5f:39:86:c1:b3:4e:3e:f2: 48:41:98:f2:e7:b6:12:85:b0:e0:0a:9a:15:9e:2c: 7a:33:9c:57:5a:62:4a:85:bd:30:04:00:f1:39:42: 78:75:cf:1f:11:e7:3e:42:ce:60:c7:1c:c3:d8:8c: aa:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:8D:27:D7:DF:90:83:C6:26:56:21:7F:4D:D2:FF:C2:BD:59:D3:5F X509v3 Authority Key Identifier: keyid:51:D2:87:23:89:FA:B3:96:36:25:D5:6D:9C:53:75:15:81:B4:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/51D2872389FAB3963625D56D9C53751581B4095A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/51D2872389FAB3963625D56D9C53751581B4095A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/400ec43b-433d-407d-bdee-eea6216a6ff4/0/323030313a6466333a393534303a3a2f34382d3438203d3e203539313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:9540::/48 Signature Algorithm: sha256WithRSAEncryption 9b:9c:dc:47:ca:f5:fe:3d:bf:4b:c8:b4:42:2b:07:3d:90:20: e2:dc:c4:c1:89:fc:7a:c5:09:7e:c3:bf:23:84:7f:78:23:fe: 63:70:7f:ea:44:63:38:b5:a8:3b:f6:5f:a9:b8:0b:f1:32:45: 0a:66:bd:46:51:d8:a7:69:7b:92:f6:3e:75:2b:7d:8a:90:0a: 73:15:e5:fc:ca:bc:e4:db:47:d0:5e:07:97:5a:38:b5:d5:b6: 81:63:38:41:83:46:9a:e9:33:f9:81:a5:42:be:1c:cf:81:89: a9:0e:7a:76:97:4b:bd:7f:2b:63:02:7c:c7:ee:a0:93:70:31: 19:72:b2:c7:ec:b8:98:f5:0e:b0:b5:d2:eb:48:c0:ba:31:f6: 6b:12:4e:5b:0f:4f:86:7e:3c:59:d3:1b:d9:8b:3e:6e:71:08: 23:8b:44:df:77:69:da:87:6d:00:3c:ef:40:95:00:b6:a4:42: d5:b3:b7:d1:47:56:2b:6c:6d:92:30:8f:15:b1:42:b5:da:5a: 8b:d8:56:d1:59:84:c7:50:de:d9:b8:62:b7:6b:a6:a5:d4:13: 4a:55:61:fb:3a:43:1d:f9:1e:f8:04:2a:97:33:27:65:6a:08: f3:53:b5:94:c1:37:0a:14:4f:73:01:aa:c6:38:38:31:8a:e9: dd:35:fd:f5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIfD8PZ40fO1/kf/f9OMVdVj/HW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTFEMjg3MjM4OUZBQjM5NjM2MjVENTZEOUM1Mzc1MTU4 MUI0MDk1QTAeFw0yNjA1MDMwMjIzNDVaFw0yNzA1MDIwMjI4NDVaMDMxMTAvBgNV BAMTKDRCOEQyN0Q3REY5MDgzQzYyNjU2MjE3RjRERDJGRkMyQkQ1OUQzNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ybGX8XgPn8ZgjXmAoCH7qyyL CFjHIXWH06U2+lCpTc27tpXv6Sk/Znl1Na6nP3PXAtkjCGMF7RnIFOSKnrDncjSW d9YXp4lklamZgqi4T58d7kGc99lIJM0B9+MeeIbv/4FsWifeJUn0Fqb6nxtsJCdx ldFcsUUOrJRXbskE4X5exnHfB/fqyFjpgTA+LRo7df3fo9Uk4+gThBLgJgE8HBim YArVmYrVzf/kher6Wv9f8DBz7m89ZhXHzuudkGG+O545WjLgBBZfOYbBs04+8khB mPLnthKFsOAKmhWeLHoznFdaYkqFvTAEAPE5Qnh1zx8R5z5CzmDHHMPYjKqzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUS40n19+Qg8YmViF/TdL/wr1Z018wHwYDVR0j BBgwFoAUUdKHI4n6s5Y2JdVtnFN1FYG0CVowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDAwZWM0M2ItNDMzZC00MDdkLWJkZWUtZWVhNjIxNmE2ZmY0LzAvNTFEMjg3MjM4 OUZBQjM5NjM2MjVENTZEOUM1Mzc1MTU4MUI0MDk1QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MUQyODcyMzg5RkFCMzk2MzYyNUQ1NkQ5QzUzNzUxNTgxQjQw OTVBLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQwMGVjNDNiLTQzM2QtNDA3ZC1i ZGVlLWVlYTYyMTZhNmZmNC8wLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMxMzMzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfOV QDANBgkqhkiG9w0BAQsFAAOCAQEAm5zcR8r1/j2/S8i0QisHPZAg4tzEwYn8esUJ fsO/I4R/eCP+Y3B/6kRjOLWoO/ZfqbgL8TJFCma9RlHYp2l7kvY+dSt9ipAKcxXl /Mq85NtH0F4Hl1o4tdW2gWM4QYNGmukz+YGlQr4cz4GJqQ56dpdLvX8rYwJ8x+6g k3AxGXKyx+y4mPUOsLXS60jAujH2axJOWw9Phn48WdMb2Ys+bnEII4tE33dp2odt ADzvQJUAtqRC1bO30UdWK2xtkjCPFbFCtdpai9hW0VmEx1De2bhit2umpdQTSlVh +zpDHfke+AQqlzMnZWoI81O1lME3ChRPcwGqxjg4MYrp3TX99Q== -----END CERTIFICATE-----Generated at Wed May 13 07:11:16 2026 by rpki-client