$ rpki-client -vvf rpki-rsync.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa File: 323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa (raw, json) Hash identifier: lmv+Kyq7Ss/MkyIqM6l/zx8khXHo4uyu4TTfeaMD1h4= Subject key identifier: 74:79:CD:69:56:38:20:AA:EB:E1:BF:B9:E7:D4:15:5A:C8:D7:C7:76 Certificate issuer: /CN=F24C627AA0685F68F1420C7F28860265CA26D303 Certificate serial: 4715D1D6AFF64188095DEE6A0082CCB054BF9591 Authority key identifier: F2:4C:62:7A:A0:68:5F:68:F1:42:0C:7F:28:86:02:65:CA:26:D3:03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F24C627AA0685F68F1420C7F28860265CA26D303.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa Signing time: Sun 03 May 2026 02:39:21 +0000 ROA not before: Sun 03 May 2026 02:34:21 +0000 ROA not after: Sun 02 May 2027 02:39:21 +0000 asID: 141937 IP address blocks: 2001:df2:22c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/F24C627AA0685F68F1420C7F28860265CA26D303.crl rsync://rpki-rsync.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/F24C627AA0685F68F1420C7F28860265CA26D303.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F24C627AA0685F68F1420C7F28860265CA26D303.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:15:d1:d6:af:f6:41:88:09:5d:ee:6a:00:82:cc:b0:54:bf:95:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F24C627AA0685F68F1420C7F28860265CA26D303 Validity Not Before: May 3 02:34:21 2026 GMT Not After : May 2 02:39:21 2027 GMT Subject: CN=7479CD69563820AAEBE1BFB9E7D4155AC8D7C776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ed:67:4c:9c:d1:84:77:2c:86:d4:0e:f8:69: 66:5a:c3:ef:46:2d:70:89:c6:aa:7d:87:e7:ec:b0: ed:d7:59:97:5b:4a:ba:07:fb:15:f7:ec:10:62:90: 29:e1:d1:ab:23:0b:e8:44:a9:b8:90:0f:40:48:0e: cc:a6:3b:b1:60:7f:4d:99:96:c4:54:f7:5b:03:c5: d7:4d:41:88:73:83:f7:b8:ce:b9:2c:25:7d:13:a0: 4f:51:36:8c:d3:c7:e0:f7:5e:9d:84:47:42:42:81: 3b:1f:40:3e:a9:b5:d5:2a:49:ad:68:95:16:e7:ce: 21:6f:da:9b:c3:e2:2f:c1:24:fe:05:ec:d5:a5:51: 64:1e:95:c4:ea:c2:fd:77:f1:b4:3b:f5:ac:6a:94: aa:b2:7a:93:27:22:4e:81:ee:4a:1c:c6:0e:56:c0: 89:37:9b:ae:1c:33:a9:da:45:52:81:88:ff:1a:45: ef:59:4a:60:8b:2e:2f:49:cb:82:5f:3b:05:b1:81: 60:36:32:cc:02:27:cc:ef:de:c3:99:9d:5f:a5:b2: 20:ec:3c:c7:c6:33:c4:e4:bb:c4:3d:97:f7:73:ce: 91:31:f5:17:ab:c3:a5:22:fc:1b:5c:e2:00:52:7d: 7b:bc:b3:e4:9c:19:af:41:e4:38:3e:e6:72:e1:5d: 66:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:79:CD:69:56:38:20:AA:EB:E1:BF:B9:E7:D4:15:5A:C8:D7:C7:76 X509v3 Authority Key Identifier: keyid:F2:4C:62:7A:A0:68:5F:68:F1:42:0C:7F:28:86:02:65:CA:26:D3:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/F24C627AA0685F68F1420C7F28860265CA26D303.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F24C627AA0685F68F1420C7F28860265CA26D303.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/64aae3f0-9c70-42fc-ae3e-bb590046b0fe/0/323030313a6466323a323263303a3a2f34382d3438203d3e20313431393337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:22c0::/48 Signature Algorithm: sha256WithRSAEncryption 33:ab:e0:06:94:ae:b4:5e:ed:40:61:30:13:15:1c:a4:98:8a: 6f:04:3b:86:4e:6e:d3:a3:fd:fe:39:7c:76:c6:b9:05:77:99: a3:f6:1b:ca:dc:4f:e6:a9:81:0e:3b:c3:36:9f:3f:f9:94:38: 2f:83:e8:4f:dd:a5:4f:7c:de:cb:08:df:8b:2d:6b:5a:be:8b: 89:44:23:49:84:39:2a:d2:84:a4:80:1f:8d:7b:05:ef:aa:dd: c9:88:9f:dc:73:dc:4f:47:cc:0f:80:78:7b:d8:ad:24:d8:ae: 7f:dd:a8:28:8f:45:7a:da:12:1c:dd:2e:cc:80:8b:32:a6:43: 14:89:d1:90:2f:26:13:ec:bb:ff:9f:ae:a8:51:04:0f:03:05: 14:fc:e5:5f:8f:8e:6f:78:8f:b6:48:fb:47:31:c8:32:cf:85: a6:b1:16:2a:cd:b9:ec:ab:93:cd:da:c5:07:9b:d8:98:a2:fe: 41:9d:94:71:76:a6:6a:dd:9e:32:05:da:75:f7:dd:a2:a7:6a: bd:60:4e:99:d0:63:77:da:3a:74:d8:00:e9:5b:dd:15:ed:43: 98:96:e7:eb:8a:8b:20:e6:21:79:86:4d:c6:ad:c5:f4:70:3c: ce:39:16:99:de:1a:8b:31:ee:0c:ef:23:cc:fc:01:97:56:25: 82:ef:95:f0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURxXR1q/2QYgJXe5qAILMsFS/lZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI0QzYyN0FBMDY4NUY2OEYxNDIwQzdGMjg4NjAyNjVD QTI2RDMwMzAeFw0yNjA1MDMwMjM0MjFaFw0yNzA1MDIwMjM5MjFaMDMxMTAvBgNV BAMTKDc0NzlDRDY5NTYzODIwQUFFQkUxQkZCOUU3RDQxNTVBQzhEN0M3NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz7WdMnNGEdyyG1A74aWZaw+9G LXCJxqp9h+fssO3XWZdbSroH+xX37BBikCnh0asjC+hEqbiQD0BIDsymO7Fgf02Z lsRU91sDxddNQYhzg/e4zrksJX0ToE9RNozTx+D3Xp2ER0JCgTsfQD6ptdUqSa1o lRbnziFv2pvD4i/BJP4F7NWlUWQelcTqwv138bQ79axqlKqyepMnIk6B7kocxg5W wIk3m64cM6naRVKBiP8aRe9ZSmCLLi9Jy4JfOwWxgWA2MswCJ8zv3sOZnV+lsiDs PMfGM8Tku8Q9l/dzzpEx9Rerw6Ui/Btc4gBSfXu8s+ScGa9B5Dg+5nLhXWYdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdHnNaVY4IKrr4b+559QVWsjXx3YwHwYDVR0j BBgwFoAU8kxieqBoX2jxQgx/KIYCZcom0wMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjRhYWUzZjAtOWM3MC00MmZjLWFlM2UtYmI1OTAwNDZiMGZlLzAvRjI0QzYyN0FB MDY4NUY2OEYxNDIwQzdGMjg4NjAyNjVDQTI2RDMwMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMjRDNjI3QUEwNjg1RjY4RjE0MjBDN0YyODg2MDI2NUNBMjZE MzAzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0YWFlM2YwLTljNzAtNDJmYy1h ZTNlLWJiNTkwMDQ2YjBmZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTMyMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8iLAMA0GCSqGSIb3DQEBCwUAA4IBAQAzq+AGlK60Xu1AYTATFRykmIpvBDuGTm7T o/3+OXx2xrkFd5mj9hvK3E/mqYEOO8M2nz/5lDgvg+hP3aVPfN7LCN+LLWtavouJ RCNJhDkq0oSkgB+NewXvqt3JiJ/cc9xPR8wPgHh72K0k2K5/3agoj0V62hIc3S7M gIsypkMUidGQLyYT7Lv/n66oUQQPAwUU/OVfj45veI+2SPtHMcgyz4WmsRYqzbns q5PN2sUHm9iYov5BnZRxdqZq3Z4yBdp1992ip2q9YE6Z0GN32jp02ADpW90V7UOY lufriosg5iF5hk3GrcX0cDzOORaZ3hqLMe4M7yPM/AGXViWC75Xw -----END CERTIFICATE-----Generated at Wed May 13 07:59:46 2026 by rpki-client