$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa File: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (raw, json) Hash identifier: +zXAXB63RMz7uGSWbbDCPnLGVqN8tZG7EPNtc0tQGQw= Subject key identifier: 30:1B:7A:EA:61:D8:D4:02:EF:3D:C9:D4:11:36:F8:C3:2E:87:B7:D0 Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 41D85712B29924C24930674047BDD08E02AA4B31 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa Signing time: Sun 03 May 2026 02:31:30 +0000 ROA not before: Sun 03 May 2026 02:26:30 +0000 ROA not after: Sun 02 May 2027 02:31:30 +0000 asID: 58477 IP address blocks: 2001:df0:273::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d8:57:12:b2:99:24:c2:49:30:67:40:47:bd:d0:8e:02:aa:4b:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 3 02:26:30 2026 GMT Not After : May 2 02:31:30 2027 GMT Subject: CN=301B7AEA61D8D402EF3DC9D41136F8C32E87B7D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c9:fd:33:cd:8c:d0:4e:ba:62:87:ff:20:c0: f2:44:37:8c:e3:4c:9a:6c:46:49:29:ae:c3:fd:8e: 9a:d1:34:48:33:95:9b:d7:a0:67:9b:5c:a7:13:89: e6:b0:e6:b6:27:b7:ab:f9:40:96:84:88:2c:1b:9a: 8f:3f:86:60:2a:0b:2a:ed:1b:e3:7d:20:b6:fc:0f: 07:a1:d9:fb:d8:17:21:7f:1d:15:45:29:6b:9a:55: 12:4c:c2:bb:7d:6b:5b:0f:6b:80:be:6c:2e:f7:b6: 48:ed:68:89:a4:db:9d:db:25:20:79:d4:dd:ca:98: 6b:21:05:1d:74:5f:93:91:c0:cc:61:c0:3f:76:07: 71:54:8d:66:e3:0c:bc:13:41:bd:5b:1e:50:14:7b: b5:47:97:62:f0:56:7f:a8:4c:50:33:58:8f:7b:d5: b0:cf:0e:be:07:ee:1c:1a:5f:01:f0:d1:04:be:53: b6:37:5b:a0:88:ef:75:42:0f:14:36:98:30:bd:91: e0:10:3a:81:fa:e1:91:64:4b:cd:83:dc:3a:29:24: 88:4c:d4:ef:9e:fb:2d:cc:f6:d5:c5:c5:c1:a6:d9: 4b:4b:c8:ff:f8:fe:b6:6a:5b:56:84:e0:4b:a4:e1: 76:1d:96:46:93:2f:6b:08:18:17:da:25:3d:7b:b6: 33:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1B:7A:EA:61:D8:D4:02:EF:3D:C9:D4:11:36:F8:C3:2E:87:B7:D0 X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:273::/48 Signature Algorithm: sha256WithRSAEncryption 75:18:05:7d:13:f6:33:20:eb:02:8a:ec:2d:5b:1a:41:bd:ab: 21:52:7a:f6:55:f0:36:b7:83:ca:43:0c:e6:07:e8:fb:7d:c5: 05:f2:c2:45:78:77:c3:09:91:17:67:76:35:c3:16:a3:bc:a5: 86:f0:26:35:05:22:c8:e9:6d:2a:88:34:67:b4:e7:b6:77:d8: e2:7b:75:8e:4c:e7:c1:26:2d:e2:c3:98:80:5e:5d:5d:09:db: e9:81:09:a6:e2:cd:ec:ce:d4:48:c1:3d:b4:fc:a8:d1:e6:3c: 66:6b:c2:37:55:36:e5:9c:1d:5d:0f:e9:ea:85:c7:73:8f:0e: e8:62:d9:88:9e:20:f4:46:de:7c:58:48:21:ce:20:18:d8:26: 32:15:3e:a8:e9:e9:f0:24:45:fd:63:ad:37:cf:a0:fe:bb:f6: c1:48:3c:cd:eb:bc:09:e0:4c:6a:0b:8b:f7:fe:c3:79:07:4b: 18:b9:18:ce:a1:5d:43:b5:1f:b3:92:76:c2:ee:6e:1a:99:5b: 81:fe:86:33:f1:17:b5:e4:7a:ef:b7:3f:65:50:61:dd:65:af: ba:45:8c:45:c1:ae:89:7e:fb:7d:48:4a:0d:89:47:35:96:1d: 09:24:c6:84:c7:a1:60:0c:22:bf:fe:08:ab:ff:5d:8d:59:63: 91:26:3c:cc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQdhXErKZJMJJMGdAR73QjgKqSzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MDMwMjI2MzBaFw0yNzA1MDIwMjMxMzBaMDMxMTAvBgNV BAMTKDMwMUI3QUVBNjFEOEQ0MDJFRjNEQzlENDExMzZGOEMzMkU4N0I3RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeyf0zzYzQTrpih/8gwPJEN4zj TJpsRkkprsP9jprRNEgzlZvXoGebXKcTieaw5rYnt6v5QJaEiCwbmo8/hmAqCyrt G+N9ILb8Dweh2fvYFyF/HRVFKWuaVRJMwrt9a1sPa4C+bC73tkjtaImk253bJSB5 1N3KmGshBR10X5ORwMxhwD92B3FUjWbjDLwTQb1bHlAUe7VHl2LwVn+oTFAzWI97 1bDPDr4H7hwaXwHw0QS+U7Y3W6CI73VCDxQ2mDC9keAQOoH64ZFkS82D3DopJIhM 1O+e+y3M9tXFxcGm2UtLyP/4/rZqW1aE4Euk4XYdlkaTL2sIGBfaJT17tjMJAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMBt66mHY1ALvPcnUETb4wy6Ht9AwHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAzLTFiNGQtNDM4ZS1h OWYzLWVmZWFhZTZiMDkyMS8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzczMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAnMw DQYJKoZIhvcNAQELBQADggEBAHUYBX0T9jMg6wKK7C1bGkG9qyFSevZV8Da3g8pD DOYH6Pt9xQXywkV4d8MJkRdndjXDFqO8pYbwJjUFIsjpbSqINGe057Z32OJ7dY5M 58EmLeLDmIBeXV0J2+mBCabizezO1EjBPbT8qNHmPGZrwjdVNuWcHV0P6eqFx3OP Duhi2YieIPRG3nxYSCHOIBjYJjIVPqjp6fAkRf1jrTfPoP679sFIPM3rvAngTGoL i/f+w3kHSxi5GM6hXUO1H7OSdsLubhqZW4H+hjPxF7Xkeu+3P2VQYd1lr7pFjEXB rol++31ISg2JRzWWHQkkxoTHoWAMIr/+CKv/XY1ZY5EmPMw= -----END CERTIFICATE-----Generated at Wed May 13 02:11:42 2026 by rpki-client