$ rpki-client -vvf rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa File: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (raw, json) Hash identifier: Iadh95YULNi9WMbGAs3/Q3ZNW5dEBFpEr5CVUQ5/+x0= Subject key identifier: 8C:69:19:E5:C6:7B:05:68:95:52:87:39:35:F7:05:F0:E9:95:BF:D9 Certificate issuer: /CN=23A948EB16F42F91944CC667D8613DD9AD7F2481 Certificate serial: 4029C62CA370F6F6ACCF9A9023E31AFD419431D5 Authority key identifier: 23:A9:48:EB:16:F4:2F:91:94:4C:C6:67:D8:61:3D:D9:AD:7F:24:81 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa Signing time: Sun 03 May 2026 02:33:15 +0000 ROA not before: Sun 03 May 2026 02:28:15 +0000 ROA not after: Sun 02 May 2027 02:33:15 +0000 asID: 136052 IP address blocks: 2001:df7:7400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.crl rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:29:c6:2c:a3:70:f6:f6:ac:cf:9a:90:23:e3:1a:fd:41:94:31:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23A948EB16F42F91944CC667D8613DD9AD7F2481 Validity Not Before: May 3 02:28:15 2026 GMT Not After : May 2 02:33:15 2027 GMT Subject: CN=8C6919E5C67B05689552873935F705F0E995BFD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ff:44:7f:ab:23:31:76:9b:cc:8e:42:a8:21: 9c:92:ed:67:aa:d1:7a:64:4a:71:c5:d8:cf:d3:d2: 01:ca:d3:8a:f7:9e:13:5f:70:c1:1a:45:af:37:56: 66:21:09:c0:bc:60:d2:5a:f5:85:bb:e8:05:7e:9a: 39:a6:88:cb:5e:9c:90:a5:f9:ae:23:f7:b0:28:a8: 60:cd:29:e4:4c:9b:9d:4c:5e:d3:e8:1e:c5:80:5c: 20:2b:b9:d9:e8:2d:15:c4:11:95:3e:22:8a:9b:44: 5b:c9:ba:32:6b:0a:59:e9:ac:89:09:6b:67:d9:9c: ab:16:26:fc:aa:82:5e:4c:ac:d6:59:05:35:04:fa: 7f:35:e4:11:f0:63:5e:a7:ae:ef:6d:9a:46:0b:42: 55:c9:14:1c:98:c8:df:67:af:ac:a1:79:a8:80:be: b9:35:c3:32:39:29:39:cd:8d:2c:38:28:63:5b:0b: 80:c2:17:4b:3e:93:0d:ce:db:50:51:c1:2c:f1:b6: ee:4e:c7:2c:74:8b:be:fa:e8:6e:ea:f7:73:f3:ef: 7c:59:f8:7a:ba:cf:c3:a1:2b:d2:7f:fb:92:4f:72: 6e:cb:ea:7e:cb:87:e4:9d:d8:29:7a:32:40:3b:6c: e9:0c:df:8f:27:1d:f1:1e:10:73:83:2b:d6:9a:ee: 62:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:69:19:E5:C6:7B:05:68:95:52:87:39:35:F7:05:F0:E9:95:BF:D9 X509v3 Authority Key Identifier: keyid:23:A9:48:EB:16:F4:2F:91:94:4C:C6:67:D8:61:3D:D9:AD:7F:24:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/23A948EB16F42F91944CC667D8613DD9AD7F2481.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A948EB16F42F91944CC667D8613DD9AD7F2481.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7400::/48 Signature Algorithm: sha256WithRSAEncryption 55:77:73:ee:37:d4:02:ef:7e:dd:df:74:c2:62:23:2c:f4:da: 6d:e2:96:3f:22:00:4e:78:30:7a:32:90:f8:31:ee:41:ef:ec: fa:29:8c:e3:15:65:94:32:7f:73:35:ad:89:84:d0:6c:0a:f0: fd:35:9c:78:e7:e9:52:97:4b:cd:aa:50:0b:52:b5:1d:32:7d: 2c:6d:3c:ee:3d:50:81:90:35:7c:24:8b:1f:50:5a:8b:d0:7f: c6:db:24:42:1a:b3:7b:80:cc:0e:da:2d:b1:ee:68:5a:f6:06: 0a:8f:fa:cd:37:91:58:c4:08:a0:58:1f:0d:71:a2:7c:a5:9f: 3a:f0:5e:23:81:6e:14:b0:f5:24:50:41:15:7c:88:24:d5:67: 2b:d9:81:dc:73:b7:52:45:81:e7:f8:a5:69:86:76:3b:92:48: 82:92:72:e1:9a:94:da:2a:b1:4c:df:58:c4:70:f7:47:97:77: ec:43:ab:3e:aa:7c:bc:7e:66:15:b2:b5:11:f2:f7:6b:07:2f: cf:13:a8:b8:58:17:c3:30:0b:df:22:b8:a0:08:d6:85:bd:3d: 91:90:50:19:28:92:16:4c:d7:c2:bd:9a:52:5c:78:0a:79:3f: ae:81:03:60:f9:5f:04:2a:53:f1:9d:b0:f5:5b:08:47:ad:35: 92:c9:e7:d5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQCnGLKNw9vasz5qQI+Ma/UGUMdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNBOTQ4RUIxNkY0MkY5MTk0NENDNjY3RDg2MTNERDlB RDdGMjQ4MTAeFw0yNjA1MDMwMjI4MTVaFw0yNzA1MDIwMjMzMTVaMDMxMTAvBgNV BAMTKDhDNjkxOUU1QzY3QjA1Njg5NTUyODczOTM1RjcwNUYwRTk5NUJGRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC/0R/qyMxdpvMjkKoIZyS7Weq 0XpkSnHF2M/T0gHK04r3nhNfcMEaRa83VmYhCcC8YNJa9YW76AV+mjmmiMtenJCl +a4j97AoqGDNKeRMm51MXtPoHsWAXCArudnoLRXEEZU+IoqbRFvJujJrClnprIkJ a2fZnKsWJvyqgl5MrNZZBTUE+n815BHwY16nru9tmkYLQlXJFByYyN9nr6yheaiA vrk1wzI5KTnNjSw4KGNbC4DCF0s+kw3O21BRwSzxtu5Oxyx0i7766G7q93Pz73xZ +Hq6z8OhK9J/+5JPcm7L6n7Lh+Sd2Cl6MkA7bOkM348nHfEeEHODK9aa7mKJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjGkZ5cZ7BWiVUoc5NfcF8OmVv9kwHwYDVR0j BBgwFoAUI6lI6xb0L5GUTMZn2GE92a1/JIEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTJhYzBjYTUtNWNlNy00ZTZlLTlmZmYtNzIxM2VmMWVmMzY0LzAvMjNBOTQ4RUIx NkY0MkY5MTk0NENDNjY3RDg2MTNERDlBRDdGMjQ4MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yM0E5NDhFQjE2RjQyRjkxOTQ0Q0M2NjdEODYxM0REOUFEN0Yy NDgxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzUyYWMwY2E1LTVjZTctNGU2ZS05 ZmZmLTcyMTNlZjFlZjM2NC8wLzMyMzAzMDMxM2E2NDY2MzczYTM3MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93QAMA0GCSqGSIb3DQEBCwUAA4IBAQBVd3PuN9QC737d33TCYiMs9Npt4pY/IgBO eDB6MpD4Me5B7+z6KYzjFWWUMn9zNa2JhNBsCvD9NZx45+lSl0vNqlALUrUdMn0s bTzuPVCBkDV8JIsfUFqL0H/G2yRCGrN7gMwO2i2x7mha9gYKj/rNN5FYxAigWB8N caJ8pZ868F4jgW4UsPUkUEEVfIgk1Wcr2YHcc7dSRYHn+KVphnY7kkiCknLhmpTa KrFM31jEcPdHl3fsQ6s+qny8fmYVsrUR8vdrBy/PE6i4WBfDMAvfIrigCNaFvT2R kFAZKJIWTNfCvZpSXHgKeT+ugQNg+V8EKlPxnbD1WwhHrTWSyefV -----END CERTIFICATE-----Generated at Wed May 13 07:01:36 2026 by rpki-client