$ rpki-client -vvf rpki-rsync.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa File: 323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa (raw, json) Hash identifier: 4RQga7sC7v8Tfsu3sFFTumIkJvaZxGdgZNTnQPnNeyc= Subject key identifier: DF:C4:AE:89:D4:A6:4D:2E:AE:2D:54:17:6B:05:37:47:2A:A6:B4:46 Certificate issuer: /CN=06AAF713D939AC6C090B6343B6905318B83A1DE3 Certificate serial: 37807A84E7F47387C522C08032907289B84C793D Authority key identifier: 06:AA:F7:13:D9:39:AC:6C:09:0B:63:43:B6:90:53:18:B8:3A:1D:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/06AAF713D939AC6C090B6343B6905318B83A1DE3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa Signing time: Sun 03 May 2026 02:37:27 +0000 ROA not before: Sun 03 May 2026 02:32:27 +0000 ROA not after: Sun 02 May 2027 02:37:27 +0000 asID: 55697 IP address blocks: 2001:df0:2a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/06AAF713D939AC6C090B6343B6905318B83A1DE3.crl rsync://rpki-rsync.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/06AAF713D939AC6C090B6343B6905318B83A1DE3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/06AAF713D939AC6C090B6343B6905318B83A1DE3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:80:7a:84:e7:f4:73:87:c5:22:c0:80:32:90:72:89:b8:4c:79:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06AAF713D939AC6C090B6343B6905318B83A1DE3 Validity Not Before: May 3 02:32:27 2026 GMT Not After : May 2 02:37:27 2027 GMT Subject: CN=DFC4AE89D4A64D2EAE2D54176B0537472AA6B446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d7:db:20:bc:04:3e:74:41:0c:94:14:ca:6a: 86:ba:33:aa:75:f5:12:37:23:30:f2:cc:b8:cf:c4: 18:c4:53:28:e0:ce:aa:61:32:5f:db:d1:eb:4d:e0: 30:d9:09:2a:a0:82:ca:37:9d:49:d7:f3:3f:14:38: 41:2a:fd:05:cb:43:10:b0:3e:09:45:fc:fd:a4:b6: d1:c3:cf:f3:42:c1:53:8c:f1:47:51:22:1e:45:ed: f8:44:68:40:32:7c:d4:df:87:e9:cf:68:39:f6:2d: 70:e2:55:3b:60:77:91:19:b7:86:f7:a1:56:0b:32: 72:18:db:6b:ad:ae:02:3b:90:02:39:8f:62:2f:aa: 15:c1:9d:da:de:d2:c2:43:ec:fd:1f:50:8d:1b:ae: ed:b2:85:35:c8:a0:3d:98:e8:09:58:6a:11:67:a2: 60:28:51:c8:15:86:2b:43:3a:22:f7:6c:22:c2:9e: 45:c4:0a:60:02:9c:c3:79:e1:1d:7b:23:7d:1d:af: fe:84:f7:87:4f:83:26:52:17:d6:33:b7:95:ef:ac: 46:0e:30:12:71:57:43:39:6c:ad:ae:37:4e:ba:a3: 54:b2:cd:71:bb:bc:e2:18:b8:c0:52:5c:d0:76:be: fb:ad:8e:70:6b:9e:7b:dc:82:9f:ed:1c:de:30:56: 76:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C4:AE:89:D4:A6:4D:2E:AE:2D:54:17:6B:05:37:47:2A:A6:B4:46 X509v3 Authority Key Identifier: keyid:06:AA:F7:13:D9:39:AC:6C:09:0B:63:43:B6:90:53:18:B8:3A:1D:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/06AAF713D939AC6C090B6343B6905318B83A1DE3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/06AAF713D939AC6C090B6343B6905318B83A1DE3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2a7::/48 Signature Algorithm: sha256WithRSAEncryption b6:3f:ca:8b:46:20:77:2f:86:92:c1:c3:cb:b1:87:66:1f:03: a2:3f:a6:5e:63:33:3a:18:ac:0c:62:db:4a:a0:de:01:36:5a: c3:ed:e2:2d:51:f3:75:44:93:09:33:81:80:1c:bd:13:78:38: 2c:b4:fe:a7:d8:94:20:c5:a7:20:99:5c:9b:99:f7:86:32:05: 18:36:35:15:06:8b:88:28:ac:79:89:6c:9e:34:32:6b:69:9b: 9e:2b:85:7d:7d:70:67:e2:0d:9c:bd:78:9d:a9:ce:5d:b6:77: c7:52:17:d4:cd:fc:4b:7c:a3:c9:76:6a:17:45:c2:40:86:4a: 70:58:28:ce:90:92:3b:0b:2b:8e:7a:bb:e3:d7:43:2e:b3:80: 52:3b:71:4e:97:4c:b9:24:64:7a:0a:94:1d:62:69:fc:3d:e8: 92:17:d0:89:23:78:c6:a2:cd:16:a0:26:5d:40:c1:17:52:6d: 28:e6:1d:e3:5f:53:c4:2b:21:3b:6f:08:aa:91:70:59:23:54: 6e:38:f8:14:76:c0:db:64:82:6e:95:d0:f8:94:7c:86:36:a6: 54:e1:4a:54:96:15:a5:21:7f:01:ef:f1:17:72:66:11:61:fe: f8:6d:50:47:4c:5c:67:5a:be:25:d5:37:39:03:c3:78:bf:2c: d1:a1:21:1c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUN4B6hOf0c4fFIsCAMpByibhMeT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZBQUY3MTNEOTM5QUM2QzA5MEI2MzQzQjY5MDUzMThC ODNBMURFMzAeFw0yNjA1MDMwMjMyMjdaFw0yNzA1MDIwMjM3MjdaMDMxMTAvBgNV BAMTKERGQzRBRTg5RDRBNjREMkVBRTJENTQxNzZCMDUzNzQ3MkFBNkI0NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC419sgvAQ+dEEMlBTKaoa6M6p1 9RI3IzDyzLjPxBjEUyjgzqphMl/b0etN4DDZCSqggso3nUnX8z8UOEEq/QXLQxCw PglF/P2kttHDz/NCwVOM8UdRIh5F7fhEaEAyfNTfh+nPaDn2LXDiVTtgd5EZt4b3 oVYLMnIY22utrgI7kAI5j2IvqhXBndre0sJD7P0fUI0bru2yhTXIoD2Y6AlYahFn omAoUcgVhitDOiL3bCLCnkXECmACnMN54R17I30dr/6E94dPgyZSF9Yzt5XvrEYO MBJxV0M5bK2uN066o1SyzXG7vOIYuMBSXNB2vvutjnBrnnvcgp/tHN4wVnYjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU38SuidSmTS6uLVQXawU3RyqmtEYwHwYDVR0j BBgwFoAUBqr3E9k5rGwJC2NDtpBTGLg6HeMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjA0NDIwNDMtMjQ0ZS00Yjg3LWIwMGMtZTU3ZjQ4NzFkMGVmLzAvMDZBQUY3MTNE OTM5QUM2QzA5MEI2MzQzQjY5MDUzMThCODNBMURFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNkFBRjcxM0Q5MzlBQzZDMDkwQjYzNDNCNjkwNTMxOEI4M0Ex REUzLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYwNDQyMDQzLTI0NGUtNGI4Ny1i MDBjLWU1N2Y0ODcxZDBlZi8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAqcw DQYJKoZIhvcNAQELBQADggEBALY/yotGIHcvhpLBw8uxh2YfA6I/pl5jMzoYrAxi 20qg3gE2WsPt4i1R83VEkwkzgYAcvRN4OCy0/qfYlCDFpyCZXJuZ94YyBRg2NRUG i4gorHmJbJ40Mmtpm54rhX19cGfiDZy9eJ2pzl22d8dSF9TN/Et8o8l2ahdFwkCG SnBYKM6QkjsLK456u+PXQy6zgFI7cU6XTLkkZHoKlB1iafw96JIX0IkjeMaizRag Jl1AwRdSbSjmHeNfU8QrITtvCKqRcFkjVG44+BR2wNtkgm6V0PiUfIY2plThSlSW FaUhfwHv8RdyZhFh/vhtUEdMXGdaviXVNzkDw3i/LNGhIRw= -----END CERTIFICATE-----Generated at Wed May 13 05:36:42 2026 by rpki-client