$ rpki-client -vvf rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa File: 323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa (raw, json) Hash identifier: jc5tVvOo4HL6FqWDRn17JJ3mtU1gi5BuQqtyRnuC4AA= Subject key identifier: 53:DE:57:B9:E5:46:AA:C2:D9:D7:31:41:83:1A:DB:55:A0:DB:C2:7D Certificate issuer: /CN=F9705E7510801B2BD073B5BE93CC35011C7E7ADA Certificate serial: 22AEA1729AB34D1F3ECE60833A56DA223B406FA3 Authority key identifier: F9:70:5E:75:10:80:1B:2B:D0:73:B5:BE:93:CC:35:01:1C:7E:7A:DA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F9705E7510801B2BD073B5BE93CC35011C7E7ADA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa Signing time: Sun 03 May 2026 02:36:51 +0000 ROA not before: Sun 03 May 2026 02:31:51 +0000 ROA not after: Sun 02 May 2027 02:36:51 +0000 asID: 152419 IP address blocks: 2001:df3:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/F9705E7510801B2BD073B5BE93CC35011C7E7ADA.crl rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/F9705E7510801B2BD073B5BE93CC35011C7E7ADA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F9705E7510801B2BD073B5BE93CC35011C7E7ADA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ae:a1:72:9a:b3:4d:1f:3e:ce:60:83:3a:56:da:22:3b:40:6f:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9705E7510801B2BD073B5BE93CC35011C7E7ADA Validity Not Before: May 3 02:31:51 2026 GMT Not After : May 2 02:36:51 2027 GMT Subject: CN=53DE57B9E546AAC2D9D73141831ADB55A0DBC27D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8e:d9:66:8c:24:d8:8d:47:42:73:d8:8c:1b: 84:56:e3:3d:37:1a:8c:fb:73:10:96:c6:34:73:44: f7:cf:6a:01:e7:74:61:50:a0:90:d3:a5:c6:b2:e9: 9b:58:28:7f:b5:a5:33:c6:21:12:56:5c:86:67:27: ca:9e:19:ca:ad:58:5f:86:0a:5b:b7:7c:2d:82:8b: ba:b7:83:04:df:b7:c7:e6:4a:bf:14:e3:a1:0a:88: 8a:7f:e4:be:ac:d0:39:e1:4a:c5:cb:2d:09:5e:8e: e3:0f:ef:51:37:56:f4:89:f4:05:14:b7:79:06:fb: 3a:fb:a8:32:97:c0:cb:71:ea:b2:00:d9:a5:bd:40: df:56:f6:fe:ba:74:9c:93:95:54:bc:1d:90:ef:de: 53:38:b0:51:e0:61:ec:ab:b8:a1:5f:53:cd:b7:aa: 32:8b:df:16:66:85:0f:49:22:59:ff:ac:a9:fc:f8: 6b:b0:85:c6:6c:08:4c:47:e5:78:8f:f7:1c:05:b8: db:41:56:8b:45:51:b2:41:c9:8f:fd:f4:9f:90:90: 15:ab:d1:61:14:d6:39:f8:d3:6c:25:b0:02:30:cd: 3b:62:97:43:cb:4a:5d:38:e5:f5:d9:85:93:bd:b6: 94:48:6c:c7:b5:d8:ce:6b:e1:38:80:1c:ad:24:7b: 7d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DE:57:B9:E5:46:AA:C2:D9:D7:31:41:83:1A:DB:55:A0:DB:C2:7D X509v3 Authority Key Identifier: keyid:F9:70:5E:75:10:80:1B:2B:D0:73:B5:BE:93:CC:35:01:1C:7E:7A:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/F9705E7510801B2BD073B5BE93CC35011C7E7ADA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F9705E7510801B2BD073B5BE93CC35011C7E7ADA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:9040::/48 Signature Algorithm: sha256WithRSAEncryption 53:2b:9a:1c:89:ae:92:cb:6d:9d:5c:86:ed:30:1d:97:61:74: aa:fb:ea:eb:46:26:1f:fc:a5:17:bc:12:46:de:e8:3c:44:f1: 33:a2:bd:15:15:79:6e:a9:f0:fd:69:c0:5b:1b:32:35:19:aa: 97:75:44:a9:cf:03:9f:13:c3:dd:07:23:57:ff:3b:b0:50:48: ff:ba:8d:a7:11:51:ec:47:43:96:7c:00:77:74:57:e2:b1:21: 3b:a6:3c:86:d2:ec:df:f9:eb:0c:88:8a:f3:26:23:b7:33:56: 59:bc:f6:28:c4:41:91:28:d7:1a:82:f4:12:be:be:ee:0f:26: fc:c7:4c:0d:ba:86:e1:3a:20:dc:22:96:f0:d0:71:f0:85:7b: 7e:52:5e:e3:a3:f7:17:47:d8:e7:f3:03:79:64:f7:b4:7d:60: 09:2f:6f:1b:75:6f:86:93:1e:15:c0:04:f2:17:89:ef:da:ac: 09:d0:1b:ee:7c:7d:00:dd:02:66:1f:b3:b9:a5:e1:2b:15:b7: 7c:47:c1:00:a9:cf:7f:3b:2c:69:70:15:d8:eb:10:9b:86:42: b1:b0:48:88:96:ef:6c:63:ed:ad:94:da:33:37:97:ce:ff:4b: 51:f0:86:94:10:30:ec:f4:9e:d5:99:fb:b7:0c:4a:71:7b:0f: 88:a2:f3:78 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIq6hcpqzTR8+zmCDOlbaIjtAb6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk3MDVFNzUxMDgwMUIyQkQwNzNCNUJFOTNDQzM1MDEx QzdFN0FEQTAeFw0yNjA1MDMwMjMxNTFaFw0yNzA1MDIwMjM2NTFaMDMxMTAvBgNV BAMTKDUzREU1N0I5RTU0NkFBQzJEOUQ3MzE0MTgzMUFEQjU1QTBEQkMyN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCejtlmjCTYjUdCc9iMG4RW4z03 Goz7cxCWxjRzRPfPagHndGFQoJDTpcay6ZtYKH+1pTPGIRJWXIZnJ8qeGcqtWF+G Clu3fC2Ci7q3gwTft8fmSr8U46EKiIp/5L6s0DnhSsXLLQlejuMP71E3VvSJ9AUU t3kG+zr7qDKXwMtx6rIA2aW9QN9W9v66dJyTlVS8HZDv3lM4sFHgYeyruKFfU823 qjKL3xZmhQ9JIln/rKn8+GuwhcZsCExH5XiP9xwFuNtBVotFUbJByY/99J+QkBWr 0WEU1jn402wlsAIwzTtil0PLSl045fXZhZO9tpRIbMe12M5r4TiAHK0ke31hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUU95XueVGqsLZ1zFBgxrbVaDbwn0wHwYDVR0j BBgwFoAU+XBedRCAGyvQc7W+k8w1ARx+etowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWQ4MjNiYjMtNWEwMS00NjU4LWE3ODMtZjhlODlmYWRjZjQ1LzEvRjk3MDVFNzUx MDgwMUIyQkQwNzNCNUJFOTNDQzM1MDExQzdFN0FEQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOTcwNUU3NTEwODAxQjJCRDA3M0I1QkU5M0NDMzUwMTFDN0U3 QURBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVkODIzYmIzLTVhMDEtNDY1OC1h NzgzLWY4ZTg5ZmFkY2Y0NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85BAMA0GCSqGSIb3DQEBCwUAA4IBAQBTK5ocia6Sy22dXIbtMB2XYXSq++rrRiYf /KUXvBJG3ug8RPEzor0VFXluqfD9acBbGzI1GaqXdUSpzwOfE8PdByNX/zuwUEj/ uo2nEVHsR0OWfAB3dFfisSE7pjyG0uzf+esMiIrzJiO3M1ZZvPYoxEGRKNcagvQS vr7uDyb8x0wNuobhOiDcIpbw0HHwhXt+Ul7jo/cXR9jn8wN5ZPe0fWAJL28bdW+G kx4VwATyF4nv2qwJ0BvufH0A3QJmH7O5peErFbd8R8EAqc9/OyxpcBXY6xCbhkKx sEiIlu9sY+2tlNozN5fO/0tR8IaUEDDs9J7Vmfu3DEpxew+IovN4 -----END CERTIFICATE-----Generated at Wed May 13 15:30:30 2026 by rpki-client