$ rpki-client -vvf rpki-rsync.idnic.net/repo/62afdf50-df51-495a-b1b0-a13a0139ab15/0/323030313a6466313a6134303a3a2f34382d3438203d3e20313431363432.roa File: 323030313a6466313a6134303a3a2f34382d3438203d3e20313431363432.roa (raw, json) Hash identifier: 0xOHl6zogrJ/obuZkR90hNTz1cxwOXlWuGkSveuKIyE= Subject key identifier: 99:5A:7A:69:44:29:4F:34:53:7C:5D:11:F9:50:17:02:10:02:7E:6A Certificate issuer: /CN=C61D938B5D87EBE0E627EE07FC45036B2BBA4F39 Certificate serial: 324C35089E41ECC2687B11CEE343115AC3452242 Authority key identifier: C6:1D:93:8B:5D:87:EB:E0:E6:27:EE:07:FC:45:03:6B:2B:BA:4F:39 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C61D938B5D87EBE0E627EE07FC45036B2BBA4F39.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/62afdf50-df51-495a-b1b0-a13a0139ab15/0/323030313a6466313a6134303a3a2f34382d3438203d3e20313431363432.roa Signing time: Sun 03 May 2026 02:38:15 +0000 ROA not before: Sun 03 May 2026 02:33:15 +0000 ROA not after: Sun 02 May 2027 02:38:15 +0000 asID: 141642 IP address blocks: 2001:df1:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/62afdf50-df51-495a-b1b0-a13a0139ab15/0/C61D938B5D87EBE0E627EE07FC45036B2BBA4F39.crl rsync://rpki-rsync.idnic.net/repo/62afdf50-df51-495a-b1b0-a13a0139ab15/0/C61D938B5D87EBE0E627EE07FC45036B2BBA4F39.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C61D938B5D87EBE0E627EE07FC45036B2BBA4F39.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:4c:35:08:9e:41:ec:c2:68:7b:11:ce:e3:43:11:5a:c3:45:22:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C61D938B5D87EBE0E627EE07FC45036B2BBA4F39 Validity Not Before: May 3 02:33:15 2026 GMT Not After : May 2 02:38:15 2027 GMT Subject: CN=995A7A6944294F34537C5D11F950170210027E6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:23:c2:c6:55:46:57:85:0a:70:0b:20:2f:f6: 36:c6:76:55:be:55:0f:e9:cb:5e:ec:31:e4:5d:d2: 91:03:10:bd:15:b5:b0:e5:63:a9:5b:a6:54:0b:38: 80:44:69:07:bc:f1:5f:f0:7c:99:6b:10:e8:00:6c: 60:93:97:4f:dc:c4:41:f7:a5:60:8d:e5:14:85:dc: d2:c1:fd:aa:0c:bd:69:7e:1d:82:c2:ff:f0:4d:83: 96:cd:6f:88:fb:65:28:9f:e2:e4:ad:87:7e:05:c4: 54:c7:ae:c4:ca:d8:8e:5e:b6:98:1b:de:bd:2d:e3: d6:4d:8e:64:58:3d:ac:ba:34:12:b0:c4:e3:01:e5: ce:cb:b8:92:92:f3:69:3a:14:49:c6:1e:00:05:ca: 6b:7d:a3:1f:55:6b:4c:4a:bf:00:a0:1b:5b:95:71: f1:3e:21:b5:3e:6d:35:c4:f2:da:f8:09:cd:09:87: 2e:e5:db:a4:00:c8:63:04:9c:b4:d5:25:72:33:7c: a2:21:51:7e:7e:6d:a4:a6:92:bc:49:cd:91:14:c9: 2b:a2:eb:6c:c4:0e:63:97:b2:f4:05:d9:38:d9:f8: f8:e3:f5:99:74:57:47:e0:41:ac:71:35:19:60:8c: 33:f4:1c:1d:85:91:cd:34:9c:57:cb:48:83:1b:41: d3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5A:7A:69:44:29:4F:34:53:7C:5D:11:F9:50:17:02:10:02:7E:6A X509v3 Authority Key Identifier: keyid:C6:1D:93:8B:5D:87:EB:E0:E6:27:EE:07:FC:45:03:6B:2B:BA:4F:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/62afdf50-df51-495a-b1b0-a13a0139ab15/0/C61D938B5D87EBE0E627EE07FC45036B2BBA4F39.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C61D938B5D87EBE0E627EE07FC45036B2BBA4F39.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/62afdf50-df51-495a-b1b0-a13a0139ab15/0/323030313a6466313a6134303a3a2f34382d3438203d3e20313431363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:a40::/48 Signature Algorithm: sha256WithRSAEncryption c7:86:73:a3:ba:88:52:a8:ff:41:f8:aa:1b:e4:40:24:16:ba: b6:34:c1:b6:6d:3e:57:c9:c1:7f:0a:fb:95:ec:f6:c0:21:47: 90:49:b4:36:c8:7d:8a:57:a8:2d:34:03:52:94:5e:7f:3f:9c: 8e:ad:1a:8a:00:fa:96:85:95:75:7c:5b:9a:af:1d:fb:ab:d5: 53:fb:1b:81:20:63:9c:1d:8e:54:66:16:75:9a:8b:72:3a:4a: bd:0a:83:a8:80:0d:3d:88:4d:f4:ab:c6:fa:2a:76:d4:84:0c: 2b:74:f6:d4:6d:65:77:2d:38:ca:31:07:ae:16:e6:bd:75:a4: 9a:e8:a0:f4:9b:b1:d5:4d:81:ec:0a:43:ea:1f:56:68:f3:50: 70:8e:0a:7b:15:25:f6:7c:41:50:28:c9:75:78:85:da:8e:28: 64:9d:7c:f9:cf:46:e0:fa:c5:30:b7:13:9d:78:22:1d:cd:1a: 67:8b:e8:03:9e:a6:77:16:e7:c4:6b:84:1e:99:ff:15:87:ee: 04:98:66:b6:ee:59:03:95:b8:7d:8f:6a:e2:64:96:a8:52:88: 03:8e:2a:e2:e0:58:f3:d7:eb:fa:a4:a3:95:16:fe:be:9f:b2: 4f:b2:54:19:ff:2c:b5:af:8c:8b:df:cb:a4:75:bb:f1:b2:03: 92:c9:d5:d3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMkw1CJ5B7MJoexHO40MRWsNFIkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzYxRDkzOEI1RDg3RUJFMEU2MjdFRTA3RkM0NTAzNkIy QkJBNEYzOTAeFw0yNjA1MDMwMjMzMTVaFw0yNzA1MDIwMjM4MTVaMDMxMTAvBgNV BAMTKDk5NUE3QTY5NDQyOTRGMzQ1MzdDNUQxMUY5NTAxNzAyMTAwMjdFNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCII8LGVUZXhQpwCyAv9jbGdlW+ VQ/py17sMeRd0pEDEL0VtbDlY6lbplQLOIBEaQe88V/wfJlrEOgAbGCTl0/cxEH3 pWCN5RSF3NLB/aoMvWl+HYLC//BNg5bNb4j7ZSif4uSth34FxFTHrsTK2I5etpgb 3r0t49ZNjmRYPay6NBKwxOMB5c7LuJKS82k6FEnGHgAFymt9ox9Va0xKvwCgG1uV cfE+IbU+bTXE8tr4Cc0Jhy7l26QAyGMEnLTVJXIzfKIhUX5+baSmkrxJzZEUySui 62zEDmOXsvQF2TjZ+Pjj9Zl0V0fgQaxxNRlgjDP0HB2Fkc00nFfLSIMbQdP7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmVp6aUQpTzRTfF0R+VAXAhACfmowHwYDVR0j BBgwFoAUxh2Ti12H6+DmJ+4H/EUDayu6TzkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjJhZmRmNTAtZGY1MS00OTVhLWIxYjAtYTEzYTAxMzlhYjE1LzAvQzYxRDkzOEI1 RDg3RUJFMEU2MjdFRTA3RkM0NTAzNkIyQkJBNEYzOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNjFEOTM4QjVEODdFQkUwRTYyN0VFMDdGQzQ1MDM2QjJCQkE0 RjM5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzYyYWZkZjUwLWRmNTEtNDk1YS1i MWIwLWExM2EwMTM5YWIxNS8wLzMyMzAzMDMxM2E2NDY2MzEzYTYxMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM2MzQzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfEK QDANBgkqhkiG9w0BAQsFAAOCAQEAx4Zzo7qIUqj/QfiqG+RAJBa6tjTBtm0+V8nB fwr7lez2wCFHkEm0Nsh9ileoLTQDUpRefz+cjq0aigD6loWVdXxbmq8d+6vVU/sb gSBjnB2OVGYWdZqLcjpKvQqDqIANPYhN9KvG+ip21IQMK3T21G1ldy04yjEHrhbm vXWkmuig9Jux1U2B7ApD6h9WaPNQcI4KexUl9nxBUCjJdXiF2o4oZJ18+c9G4PrF MLcTnXgiHc0aZ4voA56mdxbnxGuEHpn/FYfuBJhmtu5ZA5W4fY9q4mSWqFKIA44q 4uBY89fr+qSjlRb+vp+yT7JUGf8sta+Mi9/LpHW78bIDksnV0w== -----END CERTIFICATE-----Generated at Wed May 13 15:37:03 2026 by rpki-client