$ rpki-client -vvf rpki-rsync.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa File: 323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa (raw, json) Hash identifier: pkKcse6FAG/fonitREHg6JjHOyjvDxDYEKdlzUzTsLU= Subject key identifier: A3:30:4E:AF:2A:A6:4F:A1:6A:6B:BB:24:2D:6C:3D:41:74:5F:F3:32 Certificate issuer: /CN=A41BCBCB508379B7E70D77F4DAE7DE0A437E885B Certificate serial: 6D2DC707F1FBC015F3D71746907ED8B198B16C6E Authority key identifier: A4:1B:CB:CB:50:83:79:B7:E7:0D:77:F4:DA:E7:DE:0A:43:7E:88:5B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A41BCBCB508379B7E70D77F4DAE7DE0A437E885B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa Signing time: Sun 03 May 2026 02:32:34 +0000 ROA not before: Sun 03 May 2026 02:27:34 +0000 ROA not after: Sun 02 May 2027 02:32:34 +0000 asID: 58392 IP address blocks: 2001:df2:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/A41BCBCB508379B7E70D77F4DAE7DE0A437E885B.crl rsync://rpki-rsync.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/A41BCBCB508379B7E70D77F4DAE7DE0A437E885B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A41BCBCB508379B7E70D77F4DAE7DE0A437E885B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2d:c7:07:f1:fb:c0:15:f3:d7:17:46:90:7e:d8:b1:98:b1:6c:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A41BCBCB508379B7E70D77F4DAE7DE0A437E885B Validity Not Before: May 3 02:27:34 2026 GMT Not After : May 2 02:32:34 2027 GMT Subject: CN=A3304EAF2AA64FA16A6BBB242D6C3D41745FF332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:67:89:3b:42:bd:4a:8e:41:7f:44:36:2f:9a: 00:50:b3:61:40:80:af:3c:49:d5:46:6e:8b:24:ac: a9:c2:fb:4d:d4:70:93:5a:49:cf:7c:20:9b:a2:e9: d3:34:44:0c:a7:7e:41:41:4d:d7:62:b1:20:1f:41: 08:d2:64:61:77:af:e9:29:35:b2:17:79:de:d2:f5: 12:43:20:c3:95:fe:8a:4e:9f:3e:d6:31:2b:c0:f2: 27:ce:c9:69:1c:b5:ac:db:6b:75:57:5a:ed:7a:02: dd:cb:3c:ff:3b:de:78:db:78:c3:17:be:01:4b:65: 97:15:d5:ba:f2:97:62:f3:08:39:9f:87:3a:dd:ad: 1f:fd:8b:4b:8f:6f:2f:63:7a:a7:f5:85:ed:0b:dd: 28:a3:bf:2d:49:76:e1:df:16:34:ba:38:c5:6e:9b: fb:b3:33:65:b2:5b:55:9d:9e:4f:df:c4:72:9e:b1: 5f:9a:72:e9:7b:97:1c:63:85:af:22:c3:b4:03:68: 64:7b:fb:f7:8c:0d:11:b9:59:fd:65:6a:60:55:68: 48:8a:9a:47:9d:dd:86:cb:b4:78:52:19:4f:4e:cf: 46:38:1c:59:b7:53:8c:b2:78:61:13:b0:5b:dd:e3: d8:59:d8:64:19:c9:18:ee:d0:70:f1:d5:2e:3e:9e: 19:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:30:4E:AF:2A:A6:4F:A1:6A:6B:BB:24:2D:6C:3D:41:74:5F:F3:32 X509v3 Authority Key Identifier: keyid:A4:1B:CB:CB:50:83:79:B7:E7:0D:77:F4:DA:E7:DE:0A:43:7E:88:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/A41BCBCB508379B7E70D77F4DAE7DE0A437E885B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A41BCBCB508379B7E70D77F4DAE7DE0A437E885B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:6000::/48 Signature Algorithm: sha256WithRSAEncryption 83:9a:6a:66:fc:a2:dd:08:17:b8:6d:3d:73:95:66:d7:81:ce: 90:89:df:84:55:2a:3d:1c:98:98:a1:5a:3b:48:37:15:2c:d8: ff:f5:85:c3:f6:00:74:b2:5f:8a:b0:68:26:f0:db:48:1d:e7: df:b4:cf:8c:4b:f9:7f:a5:48:bc:4e:38:b4:0c:f5:0c:64:2e: 3e:fa:cd:ce:a9:95:49:f6:51:a0:6f:cf:c6:12:67:b9:3c:70: 2f:3a:8a:4e:7f:52:a0:f6:0d:d3:13:79:a3:73:3e:16:2f:7f: 4a:cc:f8:a9:be:dd:71:91:86:7a:2c:06:38:23:2a:8a:56:15: df:8b:14:4e:08:fb:24:4e:0f:26:d0:26:81:de:dc:90:95:de: 14:3d:91:22:6d:a1:c5:5f:5f:ea:20:03:57:4e:c5:c5:a2:ca: 05:b0:c4:61:1c:f9:e0:d9:9e:57:db:62:dc:6e:f5:c3:3d:c3: 21:57:95:ce:9f:1a:78:4a:d5:ea:92:ed:2a:7e:7b:b6:b6:00: f0:65:e2:91:b3:4d:84:bb:e5:bd:9d:ba:c2:48:cf:ec:fb:dc: b3:8a:56:70:46:ff:c7:ac:55:0d:02:6a:8a:16:bd:1e:35:b2: 5a:49:57:f8:f3:d1:f7:21:b1:d4:d6:74:3a:2c:ae:72:83:87: 94:ce:08:1f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbS3HB/H7wBXz1xdGkH7YsZixbG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQxQkNCQ0I1MDgzNzlCN0U3MEQ3N0Y0REFFN0RFMEE0 MzdFODg1QjAeFw0yNjA1MDMwMjI3MzRaFw0yNzA1MDIwMjMyMzRaMDMxMTAvBgNV BAMTKEEzMzA0RUFGMkFBNjRGQTE2QTZCQkIyNDJENkMzRDQxNzQ1RkYzMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Z4k7Qr1KjkF/RDYvmgBQs2FA gK88SdVGboskrKnC+03UcJNaSc98IJui6dM0RAynfkFBTddisSAfQQjSZGF3r+kp NbIXed7S9RJDIMOV/opOnz7WMSvA8ifOyWkctazba3VXWu16At3LPP873njbeMMX vgFLZZcV1bryl2LzCDmfhzrdrR/9i0uPby9jeqf1he0L3Sijvy1JduHfFjS6OMVu m/uzM2WyW1Wdnk/fxHKesV+acul7lxxjha8iw7QDaGR7+/eMDRG5Wf1lamBVaEiK mked3YbLtHhSGU9Oz0Y4HFm3U4yyeGETsFvd49hZ2GQZyRju0HDx1S4+nhm1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUozBOryqmT6Fqa7skLWw9QXRf8zIwHwYDVR0j BBgwFoAUpBvLy1CDebfnDXf02ufeCkN+iFswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGZmYjc3NjctM2RlOS00ODMzLWI0ZTctYjFiNjJlZTNjZDk5LzAvQTQxQkNCQ0I1 MDgzNzlCN0U3MEQ3N0Y0REFFN0RFMEE0MzdFODg1Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BNDFCQ0JDQjUwODM3OUI3RTcwRDc3RjREQUU3REUwQTQzN0U4 ODVCLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzRmZmI3NzY3LTNkZTktNDgzMy1i NGU3LWIxYjYyZWUzY2Q5OS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM2MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfJg ADANBgkqhkiG9w0BAQsFAAOCAQEAg5pqZvyi3QgXuG09c5Vm14HOkInfhFUqPRyY mKFaO0g3FSzY//WFw/YAdLJfirBoJvDbSB3n37TPjEv5f6VIvE44tAz1DGQuPvrN zqmVSfZRoG/PxhJnuTxwLzqKTn9SoPYN0xN5o3M+Fi9/Ssz4qb7dcZGGeiwGOCMq ilYV34sUTgj7JE4PJtAmgd7ckJXeFD2RIm2hxV9f6iADV07FxaLKBbDEYRz54Nme V9ti3G71wz3DIVeVzp8aeErV6pLtKn57trYA8GXikbNNhLvlvZ26wkjP7Pvcs4pW cEb/x6xVDQJqiha9HjWyWklX+PPR9yGx1NZ0OiyucoOHlM4IHw== -----END CERTIFICATE-----Generated at Wed May 13 02:11:50 2026 by rpki-client