$ rpki-client -vvf rpki-rsync.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa File: 323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa (raw, json) Hash identifier: ufeXbfr/jLc+wJlLQ93DC6bBsAaagmv1lEQKSFaOyLc= Subject key identifier: 1D:D6:AA:D0:5B:B6:DA:BE:DD:66:F6:A3:14:BC:07:83:BE:94:75:18 Certificate issuer: /CN=91C44F4E918B247652B1384F03FD41D436EEC992 Certificate serial: 74F0096DB141F1403B32084F8FAA87DF5F378028 Authority key identifier: 91:C4:4F:4E:91:8B:24:76:52:B1:38:4F:03:FD:41:D4:36:EE:C9:92 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91C44F4E918B247652B1384F03FD41D436EEC992.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa Signing time: Sun 03 May 2026 02:31:50 +0000 ROA not before: Sun 03 May 2026 02:26:50 +0000 ROA not after: Sun 02 May 2027 02:31:50 +0000 asID: 137356 IP address blocks: 2001:df5:2500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/91C44F4E918B247652B1384F03FD41D436EEC992.crl rsync://rpki-rsync.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/91C44F4E918B247652B1384F03FD41D436EEC992.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91C44F4E918B247652B1384F03FD41D436EEC992.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f0:09:6d:b1:41:f1:40:3b:32:08:4f:8f:aa:87:df:5f:37:80:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91C44F4E918B247652B1384F03FD41D436EEC992 Validity Not Before: May 3 02:26:50 2026 GMT Not After : May 2 02:31:50 2027 GMT Subject: CN=1DD6AAD05BB6DABEDD66F6A314BC0783BE947518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:2e:49:1a:bb:1b:64:47:71:25:a8:13:d1: 9d:bb:36:e9:4c:35:66:ff:fe:28:f7:8f:8e:ee:1a: f1:a9:96:1a:dc:a6:3f:15:3e:0f:61:45:76:e4:0b: 28:4a:81:96:6c:a0:57:84:dd:9d:09:50:8e:e1:0f: 20:a3:ee:01:32:29:13:4c:04:15:b3:60:b0:3c:2d: 25:65:e4:b4:24:53:2e:67:73:f7:a7:3a:21:ae:18: 5f:40:c3:64:55:57:26:44:ee:52:aa:c3:49:b2:31: a4:b8:fb:3e:33:60:e9:cb:1d:fc:2a:e3:a5:83:da: 49:7b:36:01:24:05:4c:c9:d3:e8:ec:62:d1:c8:0d: c4:1a:bd:3c:fd:17:07:eb:9e:0f:e7:01:2d:43:e8: ff:36:4b:c0:1b:fd:1f:66:2f:92:3d:57:fc:64:70: 86:ca:aa:87:e6:3b:cd:6a:87:bb:36:bd:83:9e:fe: 0b:4e:0b:97:33:16:3a:71:ee:13:08:29:94:1f:c8: 83:39:d9:de:c7:f2:4d:39:39:ed:71:7c:9e:fc:c8: e3:8d:fa:53:b5:05:70:60:e3:ad:84:c4:a8:fe:d5: 9d:d5:10:19:0c:2f:93:7f:b7:19:94:fb:d3:73:ec: 42:b1:ee:f4:ad:af:36:ea:aa:8b:55:9b:9b:4c:ef: 7c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D6:AA:D0:5B:B6:DA:BE:DD:66:F6:A3:14:BC:07:83:BE:94:75:18 X509v3 Authority Key Identifier: keyid:91:C4:4F:4E:91:8B:24:76:52:B1:38:4F:03:FD:41:D4:36:EE:C9:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/91C44F4E918B247652B1384F03FD41D436EEC992.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/91C44F4E918B247652B1384F03FD41D436EEC992.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4c4c2f62-f735-4d60-9237-927efad9dad0/0/323030313a6466353a323530303a3a2f34382d3438203d3e20313337333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:2500::/48 Signature Algorithm: sha256WithRSAEncryption 10:61:9c:b2:fd:db:77:90:4d:a9:7c:08:2e:bf:cb:79:61:f6: ed:46:42:a2:9f:68:4c:12:f7:5d:22:1d:97:e5:43:86:b2:fc: c6:f2:b7:3b:b0:f6:c2:a3:e5:c2:81:30:92:97:91:3f:b0:78: 0d:b3:4d:58:d7:d1:16:4f:03:1f:7f:88:42:7d:e6:a3:a9:17: f6:47:e2:d1:70:ed:3a:f9:61:15:a3:e6:42:d7:95:e2:0d:d6: d4:5d:29:3a:75:c4:7b:87:aa:75:69:4a:46:3e:7e:a5:d7:d4: 05:ad:f0:bf:9d:31:87:06:3b:0d:4f:b1:f4:bb:ff:0b:59:2d: ec:f4:a8:de:a5:e9:58:42:f9:39:7b:cd:ee:88:cc:bc:0c:ac: 00:05:7b:8f:d5:9a:66:18:19:4d:e2:a7:7c:30:fd:7f:a0:a1: ab:2c:d9:7d:17:0b:e0:9b:ee:82:e0:8f:b4:8c:82:df:a9:73: 2f:30:79:26:ef:d2:fb:fb:cd:fd:fb:7d:b3:ca:43:27:79:21: 0c:4f:88:2e:31:95:52:e1:97:d2:39:45:70:5d:40:83:13:2c: e2:a7:d9:f1:81:ed:37:96:c9:7d:5f:4b:8a:e3:e5:0a:a5:4d: 19:31:5e:1c:f8:8a:95:cc:43:30:e7:53:55:4c:ad:16:0a:f9: e1:a0:46:e9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdPAJbbFB8UA7MghPj6qH3183gCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFDNDRGNEU5MThCMjQ3NjUyQjEzODRGMDNGRDQxRDQz NkVFQzk5MjAeFw0yNjA1MDMwMjI2NTBaFw0yNzA1MDIwMjMxNTBaMDMxMTAvBgNV BAMTKDFERDZBQUQwNUJCNkRBQkVERDY2RjZBMzE0QkMwNzgzQkU5NDc1MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE3S5JGrsbZEdxJagT0Z27NulM NWb//ij3j47uGvGplhrcpj8VPg9hRXbkCyhKgZZsoFeE3Z0JUI7hDyCj7gEyKRNM BBWzYLA8LSVl5LQkUy5nc/enOiGuGF9Aw2RVVyZE7lKqw0myMaS4+z4zYOnLHfwq 46WD2kl7NgEkBUzJ0+jsYtHIDcQavTz9Fwfrng/nAS1D6P82S8Ab/R9mL5I9V/xk cIbKqofmO81qh7s2vYOe/gtOC5czFjpx7hMIKZQfyIM52d7H8k05Oe1xfJ78yOON +lO1BXBg462ExKj+1Z3VEBkML5N/txmU+9Nz7EKx7vStrzbqqotVm5tM73wxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHdaq0Fu22r7dZvajFLwHg76UdRgwHwYDVR0j BBgwFoAUkcRPTpGLJHZSsThPA/1B1DbuyZIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGM0YzJmNjItZjczNS00ZDYwLTkyMzctOTI3ZWZhZDlkYWQwLzAvOTFDNDRGNEU5 MThCMjQ3NjUyQjEzODRGMDNGRDQxRDQzNkVFQzk5Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85MUM0NEY0RTkxOEIyNDc2NTJCMTM4NEYwM0ZENDFENDM2RUVD OTkyLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRjNGMyZjYyLWY3MzUtNGQ2MC05 MjM3LTkyN2VmYWQ5ZGFkMC8wLzMyMzAzMDMxM2E2NDY2MzUzYTMyMzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9SUAMA0GCSqGSIb3DQEBCwUAA4IBAQAQYZyy/dt3kE2pfAguv8t5YfbtRkKin2hM EvddIh2X5UOGsvzG8rc7sPbCo+XCgTCSl5E/sHgNs01Y19EWTwMff4hCfeajqRf2 R+LRcO06+WEVo+ZC15XiDdbUXSk6dcR7h6p1aUpGPn6l19QFrfC/nTGHBjsNT7H0 u/8LWS3s9KjepelYQvk5e83uiMy8DKwABXuP1ZpmGBlN4qd8MP1/oKGrLNl9Fwvg m+6C4I+0jILfqXMvMHkm79L7+839+32zykMneSEMT4guMZVS4ZfSOUVwXUCDEyzi p9nxge03lsl9X0uK4+UKpU0ZMV4c+IqVzEMw51NVTK0WCvnhoEbp -----END CERTIFICATE-----Generated at Wed May 13 14:56:42 2026 by rpki-client