$ rpki-client -vvf rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/323030313a6466303a633330303a3a2f34382d3438203d3e20313336303939.roa File: 323030313a6466303a633330303a3a2f34382d3438203d3e20313336303939.roa (raw, json) Hash identifier: lYcIqG++R3KlJJ8gdHbn639yTY/SuMx9BoynL2RsVYg= Subject key identifier: D9:7E:B9:3E:EA:B6:DA:36:40:2D:AB:EB:79:59:7B:DD:87:C2:2C:41 Certificate issuer: /CN=FF75FBD7DDDE14F5EFE796A5B7284660D46E7206 Certificate serial: 592478DC108066B7DAF2BBE9ADEAF78CCE84F24A Authority key identifier: FF:75:FB:D7:DD:DE:14:F5:EF:E7:96:A5:B7:28:46:60:D4:6E:72:06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF75FBD7DDDE14F5EFE796A5B7284660D46E7206.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/323030313a6466303a633330303a3a2f34382d3438203d3e20313336303939.roa Signing time: Sun 03 May 2026 02:28:58 +0000 ROA not before: Sun 03 May 2026 02:23:58 +0000 ROA not after: Sun 02 May 2027 02:28:58 +0000 asID: 136099 IP address blocks: 2001:df0:c300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/FF75FBD7DDDE14F5EFE796A5B7284660D46E7206.crl rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/FF75FBD7DDDE14F5EFE796A5B7284660D46E7206.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF75FBD7DDDE14F5EFE796A5B7284660D46E7206.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:24:78:dc:10:80:66:b7:da:f2:bb:e9:ad:ea:f7:8c:ce:84:f2:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF75FBD7DDDE14F5EFE796A5B7284660D46E7206 Validity Not Before: May 3 02:23:58 2026 GMT Not After : May 2 02:28:58 2027 GMT Subject: CN=D97EB93EEAB6DA36402DABEB79597BDD87C22C41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:8d:2d:07:80:a1:d4:65:b5:c8:0f:64:f0: 55:d0:d8:ca:6f:1f:50:2f:aa:16:c9:bb:ca:09:d1: 3b:77:1b:8c:11:54:52:0c:b8:fb:08:0c:ef:42:03: ba:25:60:44:8c:e4:59:56:6c:31:b0:f1:e8:d5:dd: 1c:60:77:f0:f1:2d:24:a5:50:5d:50:79:ae:ea:de: 4a:68:7c:b8:36:14:b6:1f:f2:a6:5c:bc:5a:1b:d8: 96:6a:c6:ff:56:2c:5b:9c:8d:e3:fa:c6:36:c7:8f: 92:20:41:de:8b:25:ec:92:44:7b:97:4b:99:ec:67: 1b:6f:f2:f9:09:85:a8:78:d8:39:b6:89:cf:6d:3a: 45:e6:79:24:4d:de:ae:38:4c:1d:a8:a3:a2:db:68: d6:1b:d6:d7:e3:d2:ad:c9:9c:ed:77:d8:d6:35:8d: e6:29:b1:3f:b0:f2:0d:2a:16:58:9d:7f:af:39:92: b1:32:cd:8e:33:a8:d4:6b:74:52:ec:ad:65:31:84: 15:b6:65:22:ef:f0:0a:9e:0a:6f:a1:ab:f6:a8:d7: b7:08:84:94:83:79:ce:ca:43:c6:94:4b:e0:79:2b: ab:1a:4a:04:59:e4:47:ff:ee:3c:cd:5c:e1:d4:c0: 6e:61:0e:a3:52:4f:04:fa:d7:a2:59:53:18:9d:fb: 4b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7E:B9:3E:EA:B6:DA:36:40:2D:AB:EB:79:59:7B:DD:87:C2:2C:41 X509v3 Authority Key Identifier: keyid:FF:75:FB:D7:DD:DE:14:F5:EF:E7:96:A5:B7:28:46:60:D4:6E:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/FF75FBD7DDDE14F5EFE796A5B7284660D46E7206.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FF75FBD7DDDE14F5EFE796A5B7284660D46E7206.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/323030313a6466303a633330303a3a2f34382d3438203d3e20313336303939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:c300::/48 Signature Algorithm: sha256WithRSAEncryption cd:0c:34:6e:2f:3e:7c:68:71:3c:cc:52:42:39:18:9c:0f:c9: b0:ce:8a:71:88:10:8b:06:45:8a:29:db:b3:07:39:49:7c:e8: 82:d3:b5:8a:fc:d9:a7:c5:f9:a5:c8:66:9f:75:88:cf:2e:f6: 6a:62:81:f6:fb:40:e0:8a:20:fe:49:8a:9f:09:42:c6:1e:fa: 6f:94:76:0f:5c:28:f5:b6:46:ca:85:e1:e0:29:ae:74:f7:76: 18:c8:fd:2c:97:0d:53:8d:aa:e3:98:1c:0c:b1:97:93:4b:0c: 0e:2c:3a:a9:1d:c8:f0:5b:1a:82:f8:bf:1e:c2:b1:c2:f7:d5: db:6c:db:55:2e:cd:43:23:b4:4e:ed:91:d3:55:96:6c:43:14: 34:ce:b4:a4:7b:6d:b6:a5:ec:b2:3b:4d:8e:38:99:aa:c3:fe: 74:43:15:f6:93:9d:39:6f:69:d3:42:2c:aa:59:08:e6:4f:60: 97:4c:96:02:6e:97:1b:94:87:b9:79:c4:82:6b:f5:ab:f9:37: 07:1d:f0:f9:b3:89:80:93:b1:c0:63:80:26:48:a5:79:51:28: 60:5e:0f:f6:c3:f5:0d:8d:0b:52:06:cd:66:24:ba:2c:ce:e7: 7f:2e:36:01:b2:d9:be:88:54:49:29:01:31:38:63:fc:f9:09: 00:ed:30:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWSR43BCAZrfa8rvprer3jM6E8kowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NUZCRDdERERFMTRGNUVGRTc5NkE1QjcyODQ2NjBE NDZFNzIwNjAeFw0yNjA1MDMwMjIzNThaFw0yNzA1MDIwMjI4NThaMDMxMTAvBgNV BAMTKEQ5N0VCOTNFRUFCNkRBMzY0MDJEQUJFQjc5NTk3QkREODdDMjJDNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIgo0tB4Ch1GW1yA9k8FXQ2Mpv H1AvqhbJu8oJ0Tt3G4wRVFIMuPsIDO9CA7olYESM5FlWbDGw8ejV3Rxgd/DxLSSl UF1Qea7q3kpofLg2FLYf8qZcvFob2JZqxv9WLFucjeP6xjbHj5IgQd6LJeySRHuX S5nsZxtv8vkJhah42Dm2ic9tOkXmeSRN3q44TB2oo6LbaNYb1tfj0q3JnO132NY1 jeYpsT+w8g0qFlidf685krEyzY4zqNRrdFLsrWUxhBW2ZSLv8AqeCm+hq/ao17cI hJSDec7KQ8aUS+B5K6saSgRZ5Ef/7jzNXOHUwG5hDqNSTwT616JZUxid+0uZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2X65Puq22jZALavreVl73YfCLEEwHwYDVR0j BBgwFoAU/3X7193eFPXv55altyhGYNRucgYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDE0MDU1NDUtYzM1ZC00ZGUxLTk2MTgtNDRiNWY0MTdhMzAzLzEvRkY3NUZCRDdE RERFMTRGNUVGRTc5NkE1QjcyODQ2NjBENDZFNzIwNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRjc1RkJEN0REREUxNEY1RUZFNzk2QTVCNzI4NDY2MEQ0NkU3 MjA2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQxNDA1NTQ1LWMzNWQtNGRlMS05 NjE4LTQ0YjVmNDE3YTMwMy8xLzMyMzAzMDMxM2E2NDY2MzAzYTYzMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8MMAMA0GCSqGSIb3DQEBCwUAA4IBAQDNDDRuLz58aHE8zFJCORicD8mwzopxiBCL BkWKKduzBzlJfOiC07WK/NmnxfmlyGafdYjPLvZqYoH2+0DgiiD+SYqfCULGHvpv lHYPXCj1tkbKheHgKa5093YYyP0slw1TjarjmBwMsZeTSwwOLDqpHcjwWxqC+L8e wrHC99XbbNtVLs1DI7RO7ZHTVZZsQxQ0zrSke222peyyO02OOJmqw/50QxX2k505 b2nTQiyqWQjmT2CXTJYCbpcblIe5ecSCa/Wr+TcHHfD5s4mAk7HAY4AmSKV5UShg Xg/2w/UNjQtSBs1mJLoszud/LjYBstm+iFRJKQExOGP8+QkA7TDj -----END CERTIFICATE-----Generated at Wed May 13 15:39:10 2026 by rpki-client