$ rpki-client -vvf rpki-rsync.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa File: 323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa (raw, json) Hash identifier: eTUbqesIcChEYqu+yl9YWDoBDuBVF3h4letj7vLE80U= Subject key identifier: 5D:6D:C4:22:0B:D7:9B:B9:5F:84:6F:CF:44:6C:C1:3D:6E:40:8D:B3 Certificate issuer: /CN=C80F1ABFA2D82FD943F357E54256F9D077A237B6 Certificate serial: 5ED563D6CC6DB79E6AFCEEC4223E9F7D2474D9DA Authority key identifier: C8:0F:1A:BF:A2:D8:2F:D9:43:F3:57:E5:42:56:F9:D0:77:A2:37:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C80F1ABFA2D82FD943F357E54256F9D077A237B6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa Signing time: Sun 03 May 2026 02:37:06 +0000 ROA not before: Sun 03 May 2026 02:32:06 +0000 ROA not after: Sun 02 May 2027 02:37:06 +0000 asID: 132678 IP address blocks: 2001:df3:7000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/C80F1ABFA2D82FD943F357E54256F9D077A237B6.crl rsync://rpki-rsync.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/C80F1ABFA2D82FD943F357E54256F9D077A237B6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C80F1ABFA2D82FD943F357E54256F9D077A237B6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d5:63:d6:cc:6d:b7:9e:6a:fc:ee:c4:22:3e:9f:7d:24:74:d9:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C80F1ABFA2D82FD943F357E54256F9D077A237B6 Validity Not Before: May 3 02:32:06 2026 GMT Not After : May 2 02:37:06 2027 GMT Subject: CN=5D6DC4220BD79BB95F846FCF446CC13D6E408DB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2a:ef:c2:28:57:54:a2:ae:b1:06:a0:d3:cd: 17:16:17:60:37:69:97:c4:32:fc:8a:90:72:b7:33: 35:92:91:22:3b:76:77:c0:84:32:3a:43:87:03:a7: e6:8d:38:31:91:b6:81:16:22:59:44:9f:76:6c:3b: f6:5e:71:5d:e6:73:0e:88:21:05:58:90:48:5b:e2: 27:f9:17:8c:d6:32:60:a3:3f:c5:dc:e8:a4:4a:26: ea:ca:e0:d7:1a:aa:3a:15:a2:d8:db:ea:0e:46:6d: a5:7f:e6:ef:42:50:cb:2b:67:b0:86:f4:b6:37:21: 92:ae:69:91:7a:64:76:8e:f0:ac:df:d6:cc:1f:49: ce:e8:33:ca:73:3f:0f:08:b0:65:b2:db:fd:fd:bf: c1:28:84:47:69:b8:d9:1c:1c:a8:14:97:34:6e:1a: c4:0d:a4:8d:f6:22:2d:55:a6:c4:b8:5c:48:9b:8e: 59:13:91:15:45:c1:16:39:01:54:f8:36:03:95:85: df:db:84:3e:7e:5f:12:b7:40:1a:0d:0b:05:fd:9e: 42:54:a5:4a:4a:8c:30:79:65:db:92:9c:ae:25:02: 89:15:7e:af:d5:fb:78:53:c1:c3:d6:41:ed:c4:59: 65:b6:8a:09:1c:f7:b5:22:7e:40:ee:88:53:df:ea: 19:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6D:C4:22:0B:D7:9B:B9:5F:84:6F:CF:44:6C:C1:3D:6E:40:8D:B3 X509v3 Authority Key Identifier: keyid:C8:0F:1A:BF:A2:D8:2F:D9:43:F3:57:E5:42:56:F9:D0:77:A2:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/C80F1ABFA2D82FD943F357E54256F9D077A237B6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C80F1ABFA2D82FD943F357E54256F9D077A237B6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5ea0cf9a-c57d-4395-9249-bfcf46724282/0/323030313a6466333a373030303a3a2f34382d3438203d3e20313332363738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:7000::/48 Signature Algorithm: sha256WithRSAEncryption 1f:05:50:63:03:ba:06:a0:98:5b:9c:08:ee:9c:a7:26:9b:15: 00:31:b9:d7:14:1f:94:cc:3e:08:47:d5:58:68:1c:e2:3a:21: 88:d1:a7:31:77:60:45:61:b7:f8:6b:5a:50:29:bc:17:ec:cc: 25:24:77:64:5f:b6:44:e8:94:c3:fe:47:de:6c:86:3b:66:da: c5:99:63:47:e7:fa:3d:3a:f1:0c:0a:78:5d:49:50:72:82:06: 18:91:92:7d:85:a8:b0:32:d4:e7:e7:ca:a6:b2:05:10:9a:54: ab:5b:11:5b:b7:f5:4a:2a:20:b0:ce:05:fe:1c:bc:ee:2f:a9: 28:49:90:e4:22:8b:42:9d:48:f6:59:fe:80:40:13:90:f9:eb: 44:99:20:22:99:3b:1e:1c:63:14:a1:84:35:3a:42:95:a3:06: f4:ec:d1:3e:8c:60:a4:29:a8:52:c2:5f:ba:a8:fd:0f:8b:e0: e5:cb:d1:8d:bf:2a:db:fe:bc:80:d0:91:6a:8b:e3:42:ef:66: 45:d4:d0:04:81:38:f2:24:12:7f:d7:7b:1c:d8:40:cc:14:96: f3:8b:3f:50:69:b6:af:31:75:ba:6a:ce:b4:71:be:d6:9c:a9: 97:e5:8e:20:19:36:54:1f:09:30:9a:c3:41:9a:3d:27:00:02: b0:b2:c3:90 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXtVj1sxtt55q/O7EIj6ffSR02dowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzgwRjFBQkZBMkQ4MkZEOTQzRjM1N0U1NDI1NkY5RDA3 N0EyMzdCNjAeFw0yNjA1MDMwMjMyMDZaFw0yNzA1MDIwMjM3MDZaMDMxMTAvBgNV BAMTKDVENkRDNDIyMEJENzlCQjk1Rjg0NkZDRjQ0NkNDMTNENkU0MDhEQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdKu/CKFdUoq6xBqDTzRcWF2A3 aZfEMvyKkHK3MzWSkSI7dnfAhDI6Q4cDp+aNODGRtoEWIllEn3ZsO/ZecV3mcw6I IQVYkEhb4if5F4zWMmCjP8Xc6KRKJurK4NcaqjoVotjb6g5GbaV/5u9CUMsrZ7CG 9LY3IZKuaZF6ZHaO8Kzf1swfSc7oM8pzPw8IsGWy2/39v8EohEdpuNkcHKgUlzRu GsQNpI32Ii1VpsS4XEibjlkTkRVFwRY5AVT4NgOVhd/bhD5+XxK3QBoNCwX9nkJU pUpKjDB5ZduSnK4lAokVfq/V+3hTwcPWQe3EWWW2igkc97UifkDuiFPf6hmlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXW3EIgvXm7lfhG/PRGzBPW5AjbMwHwYDVR0j BBgwFoAUyA8av6LYL9lD81flQlb50HeiN7YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWVhMGNmOWEtYzU3ZC00Mzk1LTkyNDktYmZjZjQ2NzI0MjgyLzAvQzgwRjFBQkZB MkQ4MkZEOTQzRjM1N0U1NDI1NkY5RDA3N0EyMzdCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DODBGMUFCRkEyRDgyRkQ5NDNGMzU3RTU0MjU2RjlEMDc3QTIz N0I2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVlYTBjZjlhLWM1N2QtNDM5NS05 MjQ5LWJmY2Y0NjcyNDI4Mi8wLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMyMzYzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 83AAMA0GCSqGSIb3DQEBCwUAA4IBAQAfBVBjA7oGoJhbnAjunKcmmxUAMbnXFB+U zD4IR9VYaBziOiGI0acxd2BFYbf4a1pQKbwX7MwlJHdkX7ZE6JTD/kfebIY7ZtrF mWNH5/o9OvEMCnhdSVByggYYkZJ9haiwMtTn58qmsgUQmlSrWxFbt/VKKiCwzgX+ HLzuL6koSZDkIotCnUj2Wf6AQBOQ+etEmSAimTseHGMUoYQ1OkKVowb07NE+jGCk KahSwl+6qP0Pi+Dly9GNvyrb/ryA0JFqi+NC72ZF1NAEgTjyJBJ/13sc2EDMFJbz iz9QabavMXW6as60cb7WnKmX5Y4gGTZUHwkwmsNBmj0nAAKwssOQ -----END CERTIFICATE-----Generated at Wed May 13 13:20:22 2026 by rpki-client