$ rpki-client -vvf rpki-rsync.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa File: 323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa (raw, json) Hash identifier: MB43wivyVMcmejyDt+ILCLmOnQIliDhhXU3YyNcO9+8= Subject key identifier: 1D:5F:2B:24:CA:AB:27:AC:C6:48:A5:8A:BD:C5:59:80:D6:09:EF:5C Certificate issuer: /CN=7D45B2EDA19AFFB2D113112B9507298311C5DB85 Certificate serial: 24F522926B6DDDE864F52F7803A19698F5C2274F Authority key identifier: 7D:45:B2:ED:A1:9A:FF:B2:D1:13:11:2B:95:07:29:83:11:C5:DB:85 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D45B2EDA19AFFB2D113112B9507298311C5DB85.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa Signing time: Sun 03 May 2026 02:35:57 +0000 ROA not before: Sun 03 May 2026 02:30:57 +0000 ROA not after: Sun 02 May 2027 02:35:57 +0000 asID: 136057 IP address blocks: 2001:df7:7a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/7D45B2EDA19AFFB2D113112B9507298311C5DB85.crl rsync://rpki-rsync.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/7D45B2EDA19AFFB2D113112B9507298311C5DB85.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D45B2EDA19AFFB2D113112B9507298311C5DB85.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f5:22:92:6b:6d:dd:e8:64:f5:2f:78:03:a1:96:98:f5:c2:27:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D45B2EDA19AFFB2D113112B9507298311C5DB85 Validity Not Before: May 3 02:30:57 2026 GMT Not After : May 2 02:35:57 2027 GMT Subject: CN=1D5F2B24CAAB27ACC648A58ABDC55980D609EF5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:24:99:38:42:2c:f9:c9:e3:e0:53:c0:49:3c: fa:2e:14:48:67:b0:41:97:9b:89:b4:5c:7f:ee:59: 4a:ea:f8:9e:21:f5:e7:e6:81:82:42:9f:31:48:f9: 97:38:98:ac:b4:f6:fd:96:4f:c2:fe:10:b1:21:f4: ec:62:9c:a9:50:fa:23:51:64:d5:07:b1:ef:16:65: 6d:b8:f7:29:53:df:e4:72:18:ca:3e:ce:81:49:eb: 31:cc:16:82:bc:24:fc:5f:a4:94:19:30:0a:62:ee: a8:31:de:0b:ca:12:af:d6:1c:37:c2:ee:cf:8d:9a: 5f:aa:39:12:d6:02:9e:42:a1:9d:c2:14:2c:97:3e: d0:af:00:89:2d:ec:24:a2:64:55:a3:b4:41:6d:74: b5:9f:93:74:21:76:49:e7:3d:da:d9:52:ef:a3:bc: 15:27:7f:52:bf:6b:87:4b:1d:19:2b:66:35:db:2b: c1:b2:c5:40:03:a1:ea:be:a2:ef:00:4b:fb:7e:4d: f5:f8:8b:c2:ef:d8:48:d5:2c:96:62:e4:f7:4f:7a: 9c:65:b9:35:77:af:02:e9:f8:46:51:85:dc:e8:05: 04:b5:32:46:4f:8a:61:84:5a:e8:27:db:d2:9b:05: 13:5c:9f:f4:06:f7:1d:5b:62:71:83:08:21:19:4e: 76:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5F:2B:24:CA:AB:27:AC:C6:48:A5:8A:BD:C5:59:80:D6:09:EF:5C X509v3 Authority Key Identifier: keyid:7D:45:B2:ED:A1:9A:FF:B2:D1:13:11:2B:95:07:29:83:11:C5:DB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/7D45B2EDA19AFFB2D113112B9507298311C5DB85.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D45B2EDA19AFFB2D113112B9507298311C5DB85.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/323030313a6466373a376130303a3a2f34382d3438203d3e20313336303537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:7a00::/48 Signature Algorithm: sha256WithRSAEncryption 73:f2:0c:0c:31:44:82:61:35:d1:a0:04:4c:79:b3:46:b6:9d: a7:b9:72:87:24:cb:25:be:9a:c8:c3:3d:29:23:da:8b:bb:70: 1f:37:5e:97:77:09:fe:61:f8:ee:d1:ef:fb:ff:42:47:c8:f6: b0:2e:e4:dd:e0:95:d1:3c:95:ad:a4:67:7f:7a:60:41:4a:ef: 79:cd:2b:c7:a3:9c:af:a9:cf:56:92:58:36:b5:6c:e6:b4:a4: 95:53:e1:a8:3a:ec:69:1b:4b:80:9a:3d:18:47:0a:0c:1c:84: 1f:53:d9:de:9e:68:1d:c5:0a:6f:cd:d1:fc:c5:43:89:ec:10: 21:8e:74:4f:88:5e:4c:49:97:f6:17:b2:49:70:80:d3:2e:cc: e5:0d:b6:4c:7b:12:ce:08:b9:60:59:f7:07:81:9a:bf:31:2c: 5a:5b:13:50:75:fd:12:eb:68:6a:12:b2:38:d8:60:54:42:97: 4f:21:5d:f4:7f:2f:02:00:47:38:2a:3f:1c:bc:97:ae:08:f4: c8:24:0a:5e:1b:a5:1c:9e:a0:29:96:57:a3:37:2d:21:ec:fe: 85:5a:ec:d3:1d:e1:d8:00:d0:19:77:47:f1:c0:30:18:38:da: e4:1f:ed:25:0f:30:e4:73:14:60:ec:f3:21:17:63:21:5f:37: 5c:38:9e:72 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJPUikmtt3ehk9S94A6GWmPXCJ08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0NUIyRURBMTlBRkZCMkQxMTMxMTJCOTUwNzI5ODMx MUM1REI4NTAeFw0yNjA1MDMwMjMwNTdaFw0yNzA1MDIwMjM1NTdaMDMxMTAvBgNV BAMTKDFENUYyQjI0Q0FBQjI3QUNDNjQ4QTU4QUJEQzU1OTgwRDYwOUVGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJJk4Qiz5yePgU8BJPPouFEhn sEGXm4m0XH/uWUrq+J4h9efmgYJCnzFI+Zc4mKy09v2WT8L+ELEh9OxinKlQ+iNR ZNUHse8WZW249ylT3+RyGMo+zoFJ6zHMFoK8JPxfpJQZMApi7qgx3gvKEq/WHDfC 7s+Nml+qORLWAp5CoZ3CFCyXPtCvAIkt7CSiZFWjtEFtdLWfk3QhdknnPdrZUu+j vBUnf1K/a4dLHRkrZjXbK8GyxUADoeq+ou8AS/t+TfX4i8Lv2EjVLJZi5PdPepxl uTV3rwLp+EZRhdzoBQS1MkZPimGEWugn29KbBRNcn/QG9x1bYnGDCCEZTnaZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHV8rJMqrJ6zGSKWKvcVZgNYJ71wwHwYDVR0j BBgwFoAUfUWy7aGa/7LRExErlQcpgxHF24UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWJkNDM0MGItMjFjNC00ZmM3LWEyNTktZTIzNTRjNTNmZGQyLzAvN0Q0NUIyRURB MTlBRkZCMkQxMTMxMTJCOTUwNzI5ODMxMUM1REI4NS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RDQ1QjJFREExOUFGRkIyRDExMzExMkI5NTA3Mjk4MzExQzVE Qjg1LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzViZDQzNDBiLTIxYzQtNGZjNy1h MjU5LWUyMzU0YzUzZmRkMi8wLzMyMzAzMDMxM2E2NDY2MzczYTM3NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 93oAMA0GCSqGSIb3DQEBCwUAA4IBAQBz8gwMMUSCYTXRoARMebNGtp2nuXKHJMsl vprIwz0pI9qLu3AfN16Xdwn+Yfju0e/7/0JHyPawLuTd4JXRPJWtpGd/emBBSu95 zSvHo5yvqc9Wklg2tWzmtKSVU+GoOuxpG0uAmj0YRwoMHIQfU9nenmgdxQpvzdH8 xUOJ7BAhjnRPiF5MSZf2F7JJcIDTLszlDbZMexLOCLlgWfcHgZq/MSxaWxNQdf0S 62hqErI42GBUQpdPIV30fy8CAEc4Kj8cvJeuCPTIJApeG6UcnqApllejNy0h7P6F WuzTHeHYANAZd0fxwDAYONrkH+0lDzDkcxRg7PMhF2MhXzdcOJ5y -----END CERTIFICATE-----Generated at Wed May 13 06:58:18 2026 by rpki-client