$ rpki-client -vvf rpki-rsync.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa File: 323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa (raw, json) Hash identifier: GPQzQ2Y9IpoZxGxlL+qxlZ5PT+jJ6xJj6pibO+05n+M= Subject key identifier: 03:8C:C5:07:EE:A9:03:43:88:25:7B:D7:FC:B5:77:06:C0:49:C5:A4 Certificate issuer: /CN=15253A2B5044241610CA488254A5FBDEFCA83946 Certificate serial: 4F15D21394A04E0342213C09FDA5ED62980B172F Authority key identifier: 15:25:3A:2B:50:44:24:16:10:CA:48:82:54:A5:FB:DE:FC:A8:39:46 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15253A2B5044241610CA488254A5FBDEFCA83946.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa Signing time: Sun 03 May 2026 02:34:46 +0000 ROA not before: Sun 03 May 2026 02:29:46 +0000 ROA not after: Sun 02 May 2027 02:34:46 +0000 asID: 136128 IP address blocks: 2001:df1:6900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/15253A2B5044241610CA488254A5FBDEFCA83946.crl rsync://rpki-rsync.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/15253A2B5044241610CA488254A5FBDEFCA83946.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15253A2B5044241610CA488254A5FBDEFCA83946.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:15:d2:13:94:a0:4e:03:42:21:3c:09:fd:a5:ed:62:98:0b:17:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15253A2B5044241610CA488254A5FBDEFCA83946 Validity Not Before: May 3 02:29:46 2026 GMT Not After : May 2 02:34:46 2027 GMT Subject: CN=038CC507EEA9034388257BD7FCB57706C049C5A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:ab:79:5c:23:67:33:65:a7:1d:d7:11:72:b3: e2:59:82:4a:c3:64:be:d0:c2:9a:3f:52:20:0e:cf: a3:f0:7a:22:b6:7e:2f:50:27:d7:e0:f6:ee:eb:92: 07:97:dc:8c:ee:99:ac:cd:42:96:6d:69:fc:20:b3: e4:c9:42:31:9c:f9:24:26:bc:cb:d1:fe:62:a6:2d: d9:48:43:60:eb:28:08:00:dd:ec:cd:61:1f:82:99: 3d:1c:e4:ab:b5:9f:de:76:84:c1:fb:5c:d5:f0:eb: 70:c0:19:77:07:c3:c6:a7:67:94:e4:19:30:94:e0: 5d:45:86:87:ea:b0:6e:d5:a0:cf:ad:f4:d1:fd:ea: 53:7d:dd:95:48:c0:2d:09:ec:99:ee:e7:72:ca:62: 97:cf:cc:36:39:89:37:66:1e:97:f5:78:8c:5f:37: dc:47:f5:70:82:8a:e8:7c:1a:05:2a:3f:d3:54:8e: 8c:d8:54:4e:60:58:ea:2b:6e:15:3f:9b:71:98:eb: 12:c9:67:e4:3b:61:6e:2e:0b:d3:58:5b:d7:1c:12: 47:fd:b0:32:d2:ae:d3:bb:f9:5c:0f:49:62:fd:38: 68:f8:86:c7:6b:4e:68:43:97:db:0f:38:0e:69:af: 51:cd:34:f8:6a:35:24:1f:06:d5:83:5b:11:92:fe: 75:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8C:C5:07:EE:A9:03:43:88:25:7B:D7:FC:B5:77:06:C0:49:C5:A4 X509v3 Authority Key Identifier: keyid:15:25:3A:2B:50:44:24:16:10:CA:48:82:54:A5:FB:DE:FC:A8:39:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/15253A2B5044241610CA488254A5FBDEFCA83946.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15253A2B5044241610CA488254A5FBDEFCA83946.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/57edcb7e-c38d-4e67-82bd-4e8150b88561/0/323030313a6466313a363930303a3a2f34382d3438203d3e20313336313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6900::/48 Signature Algorithm: sha256WithRSAEncryption b3:f8:0f:2c:b8:b1:cd:8e:ab:e0:a9:60:95:f5:1f:03:50:e2: 65:d0:47:82:48:16:09:86:68:bf:6d:22:2e:4c:6c:19:1d:dd: 69:7c:68:e1:99:58:39:05:e6:71:cf:2f:75:76:f4:98:e3:70: 8f:52:34:aa:05:12:29:bd:f9:8e:fb:0f:e0:81:87:f7:f6:5f: cb:83:0d:9c:a8:59:25:af:83:77:8c:44:b1:5a:be:6e:f4:d1: 3e:cf:69:8c:f1:7d:02:9a:66:fe:a1:b3:c8:73:d1:c5:4c:b7: cc:30:0b:76:98:41:a0:87:54:75:84:82:d7:3d:bf:aa:d1:bd: 05:71:57:58:60:e2:94:ee:fe:1b:4c:82:fd:7a:02:b8:b2:c8: d5:d8:75:a4:4a:79:5d:ef:57:4c:58:64:ad:e1:5e:e4:ec:74: 5d:0d:46:a1:e7:79:69:bf:70:0e:2a:44:9b:0e:c8:d4:21:20: 32:bb:ee:1c:82:66:c6:ab:f3:fb:c4:ea:4d:8e:7a:19:80:5b: dd:f2:df:dc:9d:b4:b9:3b:4a:93:24:17:a4:2e:22:ba:38:a0: fa:d2:7a:a8:62:e5:60:80:f3:76:b1:93:44:7f:20:1a:f9:a9: 3c:31:f3:58:46:b1:59:d6:e8:a6:79:a7:4f:47:25:78:31:bf: b6:97:d2:8e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTxXSE5SgTgNCITwJ/aXtYpgLFy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyNTNBMkI1MDQ0MjQxNjEwQ0E0ODgyNTRBNUZCREVG Q0E4Mzk0NjAeFw0yNjA1MDMwMjI5NDZaFw0yNzA1MDIwMjM0NDZaMDMxMTAvBgNV BAMTKDAzOENDNTA3RUVBOTAzNDM4ODI1N0JEN0ZDQjU3NzA2QzA0OUM1QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPq3lcI2czZacd1xFys+JZgkrD ZL7Qwpo/UiAOz6PweiK2fi9QJ9fg9u7rkgeX3IzumazNQpZtafwgs+TJQjGc+SQm vMvR/mKmLdlIQ2DrKAgA3ezNYR+CmT0c5Ku1n952hMH7XNXw63DAGXcHw8anZ5Tk GTCU4F1FhofqsG7VoM+t9NH96lN93ZVIwC0J7Jnu53LKYpfPzDY5iTdmHpf1eIxf N9xH9XCCiuh8GgUqP9NUjozYVE5gWOorbhU/m3GY6xLJZ+Q7YW4uC9NYW9ccEkf9 sDLSrtO7+VwPSWL9OGj4hsdrTmhDl9sPOA5pr1HNNPhqNSQfBtWDWxGS/nXHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUA4zFB+6pA0OIJXvX/LV3BsBJxaQwHwYDVR0j BBgwFoAUFSU6K1BEJBYQykiCVKX73vyoOUYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTdlZGNiN2UtYzM4ZC00ZTY3LTgyYmQtNGU4MTUwYjg4NTYxLzAvMTUyNTNBMkI1 MDQ0MjQxNjEwQ0E0ODgyNTRBNUZCREVGQ0E4Mzk0Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTI1M0EyQjUwNDQyNDE2MTBDQTQ4ODI1NEE1RkJERUZDQTgz OTQ2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU3ZWRjYjdlLWMzOGQtNGU2Ny04 MmJkLTRlODE1MGI4ODU2MS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM2MzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8WkAMA0GCSqGSIb3DQEBCwUAA4IBAQCz+A8suLHNjqvgqWCV9R8DUOJl0EeCSBYJ hmi/bSIuTGwZHd1pfGjhmVg5BeZxzy91dvSY43CPUjSqBRIpvfmO+w/ggYf39l/L gw2cqFklr4N3jESxWr5u9NE+z2mM8X0Cmmb+obPIc9HFTLfMMAt2mEGgh1R1hILX Pb+q0b0FcVdYYOKU7v4bTIL9egK4ssjV2HWkSnld71dMWGSt4V7k7HRdDUah53lp v3AOKkSbDsjUISAyu+4cgmbGq/P7xOpNjnoZgFvd8t/cnbS5O0qTJBekLiK6OKD6 0nqoYuVggPN2sZNEfyAa+ak8MfNYRrFZ1uimeadPRyV4Mb+2l9KO -----END CERTIFICATE-----Generated at Wed May 13 04:09:57 2026 by rpki-client