$ rpki-client -vvf rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa File: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (raw, json) Hash identifier: VVOefWlNgIrxkTxjv4HjTw9WKSQHPhLghu8AquJqLFo= Subject key identifier: 2A:16:CD:E5:97:0A:39:F7:81:E2:E5:93:30:46:E7:E6:3D:0F:54:AE Certificate issuer: /CN=29F8953D3BD13D74F60BACA61E02811B4D6A6AD4 Certificate serial: 08F127F8A1FCFED6AD96ABE72D4394541F0ACBBB Authority key identifier: 29:F8:95:3D:3B:D1:3D:74:F6:0B:AC:A6:1E:02:81:1B:4D:6A:6A:D4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa Signing time: Sun 03 May 2026 02:29:37 +0000 ROA not before: Sun 03 May 2026 02:24:37 +0000 ROA not after: Sun 02 May 2027 02:29:37 +0000 asID: 139399 IP address blocks: 2001:df0:f700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.crl rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f1:27:f8:a1:fc:fe:d6:ad:96:ab:e7:2d:43:94:54:1f:0a:cb:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29F8953D3BD13D74F60BACA61E02811B4D6A6AD4 Validity Not Before: May 3 02:24:37 2026 GMT Not After : May 2 02:29:37 2027 GMT Subject: CN=2A16CDE5970A39F781E2E5933046E7E63D0F54AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:32:0a:c3:b1:f6:c2:86:13:59:06:44:ed: c9:89:40:14:bf:e0:98:55:cc:1b:45:a0:13:12:af: 41:a4:c5:ba:a5:df:35:c6:73:c2:e3:7d:75:0e:ed: fb:54:fc:3e:45:94:ad:63:36:8f:28:75:b9:53:c8: 8b:b3:bd:78:f8:41:8f:34:10:c8:01:ec:db:72:ad: d8:ed:a6:3b:cf:d4:76:13:00:0a:3d:23:a5:3b:4c: 49:67:4d:9c:e4:91:a6:31:36:54:f9:23:23:13:27: a9:d6:93:40:28:50:e4:4d:24:bb:0b:fd:4f:1e:04: d9:53:44:4b:69:c7:ff:df:a1:a9:94:fe:52:75:c1: 73:7f:9a:59:66:3a:57:8a:8d:91:d3:e5:13:81:ce: d7:2b:49:0c:32:9a:31:7e:d6:46:de:bb:ad:8e:64: 1c:e6:36:1d:5a:f3:b4:15:ba:74:b6:10:4c:42:54: 49:26:dc:64:1b:26:d3:f1:e6:9c:db:5b:a2:9d:19: 9e:9d:33:73:f2:90:24:ea:aa:48:fc:c3:19:e6:5b: 28:83:c3:c4:3f:fc:7e:5c:fc:e5:47:9f:bd:97:58: 6f:ba:8f:55:93:be:65:52:09:1c:4b:4f:30:00:99: a8:d8:db:dd:30:fd:c3:7d:f6:0e:06:90:76:73:d7: 27:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:16:CD:E5:97:0A:39:F7:81:E2:E5:93:30:46:E7:E6:3D:0F:54:AE X509v3 Authority Key Identifier: keyid:29:F8:95:3D:3B:D1:3D:74:F6:0B:AC:A6:1E:02:81:1B:4D:6A:6A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/29F8953D3BD13D74F60BACA61E02811B4D6A6AD4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:f700::/48 Signature Algorithm: sha256WithRSAEncryption 33:58:b2:92:6e:8c:a4:d3:3c:91:a1:52:3f:c7:5d:76:e2:8f: e7:cf:c5:84:ea:30:bc:64:34:82:16:85:79:49:73:98:79:ea: e8:b9:56:98:ee:07:f3:a5:93:20:c1:86:c2:54:53:22:d0:38: d0:36:77:6e:fe:49:86:34:7f:72:1b:6f:cd:2c:dc:04:bf:44: 0c:ab:c0:35:41:aa:fe:62:c3:1c:78:05:73:6e:a3:8a:e8:04: 28:87:cc:96:a3:ea:65:bf:f8:1b:a7:42:2a:e9:83:9c:97:c4: 8c:ef:be:48:b4:1d:92:53:00:56:73:17:dc:40:16:46:42:76: 57:58:bf:45:99:2d:45:ea:8f:72:e4:88:36:65:93:3a:a6:40: 3d:14:55:f7:da:ab:84:50:b7:40:e8:f3:6f:67:ce:97:5f:9a: 93:c3:08:18:78:b5:5d:f0:81:e4:4a:44:b9:9e:0b:3d:3d:63: 41:32:99:70:72:3f:8a:38:29:b5:1b:11:fe:ec:c2:17:e3:95: 8c:37:dd:97:51:72:c0:75:38:d3:f2:ad:30:60:84:60:a2:0c: ce:a9:c7:8f:53:95:33:2b:35:3f:1d:22:72:f7:4b:a0:eb:56: 9b:76:81:1d:7e:ab:a7:38:63:ea:7c:fe:af:de:4a:b7:da:93: 06:b1:ea:b5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCPEn+KH8/tatlqvnLUOUVB8Ky7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlGODk1M0QzQkQxM0Q3NEY2MEJBQ0E2MUUwMjgxMUI0 RDZBNkFENDAeFw0yNjA1MDMwMjI0MzdaFw0yNzA1MDIwMjI5MzdaMDMxMTAvBgNV BAMTKDJBMTZDREU1OTcwQTM5Rjc4MUUyRTU5MzMwNDZFN0U2M0QwRjU0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHGTIKw7H2woYTWQZE7cmJQBS/ 4JhVzBtFoBMSr0Gkxbql3zXGc8LjfXUO7ftU/D5FlK1jNo8odblTyIuzvXj4QY80 EMgB7NtyrdjtpjvP1HYTAAo9I6U7TElnTZzkkaYxNlT5IyMTJ6nWk0AoUORNJLsL /U8eBNlTREtpx//foamU/lJ1wXN/mllmOleKjZHT5ROBztcrSQwymjF+1kbeu62O ZBzmNh1a87QVunS2EExCVEkm3GQbJtPx5pzbW6KdGZ6dM3PykCTqqkj8wxnmWyiD w8Q//H5c/OVHn72XWG+6j1WTvmVSCRxLTzAAmajY290w/cN99g4GkHZz1yfTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKhbN5ZcKOfeB4uWTMEbn5j0PVK4wHwYDVR0j BBgwFoAUKfiVPTvRPXT2C6ymHgKBG01qatQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDQyMTk4NWItYTBlNi00ZTA1LWJlZjYtZmU2ZjVhNmUyZjQzLzAvMjlGODk1M0Qz QkQxM0Q3NEY2MEJBQ0E2MUUwMjgxMUI0RDZBNkFENC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOUY4OTUzRDNCRDEzRDc0RjYwQkFDQTYxRTAyODExQjRENkE2 QUQ0LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzQ0MjE5ODViLWEwZTYtNGUwNS1i ZWY2LWZlNmY1YTZlMmY0My8wLzMyMzAzMDMxM2E2NDY2MzAzYTY2MzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzOTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8PcAMA0GCSqGSIb3DQEBCwUAA4IBAQAzWLKSboyk0zyRoVI/x1124o/nz8WE6jC8 ZDSCFoV5SXOYeerouVaY7gfzpZMgwYbCVFMi0DjQNndu/kmGNH9yG2/NLNwEv0QM q8A1Qar+YsMceAVzbqOK6AQoh8yWo+plv/gbp0Iq6YOcl8SM775ItB2SUwBWcxfc QBZGQnZXWL9FmS1F6o9y5Ig2ZZM6pkA9FFX32quEULdA6PNvZ86XX5qTwwgYeLVd 8IHkSkS5ngs9PWNBMplwcj+KOCm1GxH+7MIX45WMN92XUXLAdTjT8q0wYIRgogzO qcePU5UzKzU/HSJy90ug61abdoEdfqunOGPqfP6v3kq32pMGseq1 -----END CERTIFICATE-----Generated at Wed May 13 09:11:45 2026 by rpki-client