$ rpki-client -vvf rpki-rsync.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa File: 323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa (raw, json) Hash identifier: tw5oikVlx6lbDw0PXuWWK4JNZ7QDnCFmUnX8Ug8gws8= Subject key identifier: D5:B2:F5:0F:D7:D0:43:C5:3D:21:49:C3:BD:9D:E6:7F:F5:44:0C:6C Certificate issuer: /CN=9290697B92D08AFAAFB01253090BE0FE28871EA9 Certificate serial: 19F19C508F67E8A664A6BE4B2FC2C44F7FB99006 Authority key identifier: 92:90:69:7B:92:D0:8A:FA:AF:B0:12:53:09:0B:E0:FE:28:87:1E:A9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9290697B92D08AFAAFB01253090BE0FE28871EA9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa Signing time: Sun 03 May 2026 02:28:48 +0000 ROA not before: Sun 03 May 2026 02:23:48 +0000 ROA not after: Sun 02 May 2027 02:28:48 +0000 asID: 141909 IP address blocks: 2001:df7:7d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/9290697B92D08AFAAFB01253090BE0FE28871EA9.crl rsync://rpki-rsync.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/9290697B92D08AFAAFB01253090BE0FE28871EA9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9290697B92D08AFAAFB01253090BE0FE28871EA9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f1:9c:50:8f:67:e8:a6:64:a6:be:4b:2f:c2:c4:4f:7f:b9:90:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9290697B92D08AFAAFB01253090BE0FE28871EA9 Validity Not Before: May 3 02:23:48 2026 GMT Not After : May 2 02:28:48 2027 GMT Subject: CN=D5B2F50FD7D043C53D2149C3BD9DE67FF5440C6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:09:f6:1c:fc:50:c1:d4:a1:46:9d:e5:66:82: 93:33:b6:40:78:c9:61:9b:86:20:bf:e4:43:f1:3d: 8a:51:e9:c6:9e:c1:d8:47:31:a3:fb:a6:17:0d:8e: 6b:11:ac:58:91:e0:34:73:60:57:64:63:b6:34:de: 13:a8:94:b1:03:a9:d4:12:c6:f6:d7:a7:7f:27:bf: e1:6c:f0:57:33:15:90:2f:00:4d:f0:9f:9c:d8:74: 12:b5:b2:c9:e1:02:b1:f8:a9:78:d7:3a:94:0f:a4: 20:35:6d:47:60:59:cd:8b:42:fd:8c:07:08:95:2e: 29:1b:35:64:99:52:8d:17:90:55:1b:a1:80:60:1f: 52:3a:01:5f:3e:49:11:91:c5:48:a7:1c:6f:b6:87: 87:33:41:a1:eb:78:58:97:9f:fd:2e:7e:ca:6e:1a: 1b:87:f8:87:d1:26:93:da:d3:42:f9:55:5b:62:d5: e5:a3:8c:c9:89:76:53:cc:20:8c:0a:e0:70:df:cc: 11:d2:51:f5:23:14:37:ee:2d:60:1f:b4:1f:cf:85: 5f:7e:d5:f8:28:32:59:61:d8:e4:80:69:ba:4a:6d: 18:94:71:57:e3:8a:1c:ae:80:7c:ad:18:6f:dd:99: 9d:ed:9b:88:fd:73:9b:ce:3b:27:85:ac:a0:91:b7: 70:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B2:F5:0F:D7:D0:43:C5:3D:21:49:C3:BD:9D:E6:7F:F5:44:0C:6C X509v3 Authority Key Identifier: keyid:92:90:69:7B:92:D0:8A:FA:AF:B0:12:53:09:0B:E0:FE:28:87:1E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/9290697B92D08AFAAFB01253090BE0FE28871EA9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9290697B92D08AFAAFB01253090BE0FE28871EA9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/323030313a6466373a376438303a3a2f34382d3438203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7d80::/48 Signature Algorithm: sha256WithRSAEncryption 85:eb:d9:fc:00:93:b8:ff:0b:b0:b3:c3:f7:d9:04:5e:99:9f: ed:07:b1:a8:c4:d2:51:b3:e7:c7:3c:f5:37:4e:0e:e2:5a:a2: b9:03:0a:20:ac:1e:74:ad:7a:6d:07:61:19:9f:ff:59:06:77: 42:b7:68:33:63:8b:18:dc:3a:9d:36:b8:9b:a1:87:3a:d7:6e: 81:c2:70:28:d2:7d:3d:57:8d:82:05:82:fd:e1:9e:24:b6:60: ec:8b:22:b6:28:43:b3:da:27:e1:48:13:18:75:65:aa:94:12: 76:79:17:ad:0e:17:ee:35:b9:8e:46:b5:68:eb:11:23:fc:84: c5:6c:93:84:c4:0f:a4:df:ee:ee:48:3d:a1:73:e5:d1:c8:e6: 00:36:ad:ea:65:8e:a5:c5:59:57:cd:21:e9:66:65:38:6f:8a: 10:b2:95:21:07:3b:26:99:7a:c9:19:35:39:d1:e7:eb:93:37: 15:6b:2c:e6:8f:62:53:61:fd:4e:41:0f:e3:39:27:61:fd:ac: 99:52:bd:cd:63:2c:2a:57:41:29:2d:7c:81:7f:52:18:f0:26: 2b:7d:6d:c2:80:b7:99:ce:aa:5c:65:ab:9b:e7:6b:a6:e3:0e: 27:14:a4:d4:69:d7:91:78:82:66:6c:64:79:bf:8e:aa:6b:6f: 01:85:2a:c0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGfGcUI9n6KZkpr5LL8LET3+5kAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI5MDY5N0I5MkQwOEFGQUFGQjAxMjUzMDkwQkUwRkUy ODg3MUVBOTAeFw0yNjA1MDMwMjIzNDhaFw0yNzA1MDIwMjI4NDhaMDMxMTAvBgNV BAMTKEQ1QjJGNTBGRDdEMDQzQzUzRDIxNDlDM0JEOURFNjdGRjU0NDBDNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRCfYc/FDB1KFGneVmgpMztkB4 yWGbhiC/5EPxPYpR6caewdhHMaP7phcNjmsRrFiR4DRzYFdkY7Y03hOolLEDqdQS xvbXp38nv+Fs8FczFZAvAE3wn5zYdBK1ssnhArH4qXjXOpQPpCA1bUdgWc2LQv2M BwiVLikbNWSZUo0XkFUboYBgH1I6AV8+SRGRxUinHG+2h4czQaHreFiXn/0ufspu GhuH+IfRJpPa00L5VVti1eWjjMmJdlPMIIwK4HDfzBHSUfUjFDfuLWAftB/PhV9+ 1fgoMllh2OSAabpKbRiUcVfjihyugHytGG/dmZ3tm4j9c5vOOyeFrKCRt3DjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1bL1D9fQQ8U9IUnDvZ3mf/VEDGwwHwYDVR0j BBgwFoAUkpBpe5LQivqvsBJTCQvg/iiHHqkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDAxYzRkNjEtZGNlZi00YTIwLWJkNGMtYTI4MmEzN2FhNjllLzAvOTI5MDY5N0I5 MkQwOEFGQUFGQjAxMjUzMDkwQkUwRkUyODg3MUVBOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MjkwNjk3QjkyRDA4QUZBQUZCMDEyNTMwOTBCRTBGRTI4ODcx RUE5LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQwMWM0ZDYxLWRjZWYtNGEyMC1i ZDRjLWEyODJhMzdhYTY5ZS8wLzMyMzAzMDMxM2E2NDY2MzczYTM3NjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 932AMA0GCSqGSIb3DQEBCwUAA4IBAQCF69n8AJO4/wuws8P32QRemZ/tB7GoxNJR s+fHPPU3Tg7iWqK5AwogrB50rXptB2EZn/9ZBndCt2gzY4sY3DqdNriboYc6126B wnAo0n09V42CBYL94Z4ktmDsiyK2KEOz2ifhSBMYdWWqlBJ2eRetDhfuNbmORrVo 6xEj/ITFbJOExA+k3+7uSD2hc+XRyOYANq3qZY6lxVlXzSHpZmU4b4oQspUhBzsm mXrJGTU50efrkzcVayzmj2JTYf1OQQ/jOSdh/ayZUr3NYywqV0EpLXyBf1IY8CYr fW3CgLeZzqpcZaub52um4w4nFKTUadeReIJmbGR5v46qa28BhSrA -----END CERTIFICATE-----Generated at Wed May 13 10:26:21 2026 by rpki-client