$ rpki-client -vvf rpki-rsync.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa File: 323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa (raw, json) Hash identifier: +rxATWvogOmG58QtPOl3t5ZnCAWvuClI+FAmj6pibBE= Subject key identifier: 90:CD:D6:C5:F0:11:F3:00:CE:67:6A:97:35:B8:6A:D2:B6:46:B1:FF Certificate issuer: /CN=C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C Certificate serial: 34DE042C2822117827CDAF48A1972BC5BD176439 Authority key identifier: C0:43:3C:FC:2E:06:4A:77:FD:CB:37:B4:9C:2C:93:C4:D0:A0:52:6C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa Signing time: Sun 03 May 2026 02:39:22 +0000 ROA not before: Sun 03 May 2026 02:34:22 +0000 ROA not after: Sun 02 May 2027 02:39:22 +0000 asID: 138115 IP address blocks: 2001:df7:5300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C.crl rsync://rpki-rsync.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:de:04:2c:28:22:11:78:27:cd:af:48:a1:97:2b:c5:bd:17:64:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C Validity Not Before: May 3 02:34:22 2026 GMT Not After : May 2 02:39:22 2027 GMT Subject: CN=90CDD6C5F011F300CE676A9735B86AD2B646B1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:7b:78:b9:8a:e2:4b:aa:7a:27:db:3d:74: 42:25:aa:c8:29:93:6d:83:bb:96:a5:3c:b1:68:1c: df:04:1e:ad:60:6c:d8:41:16:2e:61:ed:dc:70:f7: 18:89:ee:1e:46:8b:eb:37:92:8a:c9:b0:50:d9:fc: e3:8c:19:75:1e:c2:e7:47:e3:94:ba:eb:f3:00:22: 5d:f4:28:54:61:27:5d:da:28:9f:69:a0:01:d6:2a: ad:83:f3:df:b9:b0:48:de:b6:27:2a:1a:43:5b:5a: 73:25:27:2b:fd:ef:29:06:08:ad:f7:74:85:5a:42: 87:33:14:cf:f2:ee:bb:da:c4:40:e1:47:fb:82:07: 82:b5:54:15:47:28:78:0c:ac:de:5c:10:da:fe:97: da:68:04:6f:0e:1c:de:e4:40:32:6c:65:2a:85:39: 64:66:a7:82:64:de:a8:b1:87:e6:3b:0b:f6:bc:fd: 21:f9:d6:ce:14:63:15:4c:c6:8f:9e:e1:e5:9a:e6: 9a:67:6e:ad:63:d5:b0:d1:af:11:0b:79:96:14:3e: c6:c4:9f:9f:81:1f:18:dc:05:d4:d4:47:d0:85:bc: 92:77:24:5f:77:0a:3c:2b:ed:39:e2:4a:d1:ab:92: c8:ea:ab:68:58:d3:2b:94:9f:c8:56:ef:51:94:5b: 86:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CD:D6:C5:F0:11:F3:00:CE:67:6A:97:35:B8:6A:D2:B6:46:B1:FF X509v3 Authority Key Identifier: keyid:C0:43:3C:FC:2E:06:4A:77:FD:CB:37:B4:9C:2C:93:C4:D0:A0:52:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C0433CFC2E064A77FDCB37B49C2C93C4D0A0526C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/323030313a6466373a353330303a3a2f34382d3438203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:5300::/48 Signature Algorithm: sha256WithRSAEncryption 42:66:ab:eb:45:c4:d5:fa:a6:04:50:6c:39:f0:d9:03:fc:9c: 43:92:fb:9b:4f:f2:5b:5c:4a:ce:4d:1a:15:ac:b8:27:96:d1: cf:fc:b0:15:0f:b9:ed:33:0c:a8:18:5f:d1:54:c1:55:6c:af: 3c:90:dd:57:68:cf:eb:67:ff:b4:6a:20:ea:b5:98:4e:e5:d9: 8b:f0:ad:2c:db:ed:a5:f8:82:b7:1a:79:f6:5f:c8:d8:41:75: 4e:7f:8e:51:f9:4d:b4:7e:8b:73:91:69:25:1d:91:0d:cc:50: 88:44:5f:b8:33:25:3b:2e:de:3f:c9:32:4c:66:f4:00:e6:7c: 9c:aa:3f:c5:9e:76:5b:29:15:a5:90:ae:40:de:55:a6:3a:9e: 04:5d:09:99:2b:59:34:32:d8:a1:b5:ef:17:0a:3b:df:96:c2: a3:f5:96:4c:36:3d:a1:8f:93:f0:3d:55:ee:78:7e:25:f7:20: e5:ab:03:cc:fb:8a:0e:f0:e6:41:e5:44:0a:4e:35:26:74:8a: 6e:f3:23:60:28:1e:bb:17:b2:f6:f0:fa:e8:e9:9d:d2:61:4e: 07:b7:92:ba:62:32:29:32:79:a2:5d:17:c9:d9:3b:77:e2:5a: d4:b1:27:f6:53:8d:be:78:53:d9:5a:f2:9b:84:c9:00:90:f0: ea:49:39:bb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNN4ELCgiEXgnza9IoZcrxb0XZDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzA0MzNDRkMyRTA2NEE3N0ZEQ0IzN0I0OUMyQzkzQzRE MEEwNTI2QzAeFw0yNjA1MDMwMjM0MjJaFw0yNzA1MDIwMjM5MjJaMDMxMTAvBgNV BAMTKDkwQ0RENkM1RjAxMUYzMDBDRTY3NkE5NzM1Qjg2QUQyQjY0NkIxRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUXnt4uYriS6p6J9s9dEIlqsgp k22Du5alPLFoHN8EHq1gbNhBFi5h7dxw9xiJ7h5Gi+s3korJsFDZ/OOMGXUewudH 45S66/MAIl30KFRhJ13aKJ9poAHWKq2D89+5sEjeticqGkNbWnMlJyv97ykGCK33 dIVaQoczFM/y7rvaxEDhR/uCB4K1VBVHKHgMrN5cENr+l9poBG8OHN7kQDJsZSqF OWRmp4Jk3qixh+Y7C/a8/SH51s4UYxVMxo+e4eWa5ppnbq1j1bDRrxELeZYUPsbE n5+BHxjcBdTUR9CFvJJ3JF93Cjwr7TniStGrksjqq2hY0yuUn8hW71GUW4aXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkM3WxfAR8wDOZ2qXNbhq0rZGsf8wHwYDVR0j BBgwFoAUwEM8/C4GSnf9yze0nCyTxNCgUmwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjRjZjYzMmQtZDYxYS00ODI2LWI1NzItOWYxOTQ4YWU1ODBjLzAvQzA0MzNDRkMy RTA2NEE3N0ZEQ0IzN0I0OUMyQzkzQzREMEEwNTI2Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMDQzM0NGQzJFMDY0QTc3RkRDQjM3QjQ5QzJDOTNDNEQwQTA1 MjZDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMyMzAzMDMxM2E2NDY2MzczYTM1MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 91MAMA0GCSqGSIb3DQEBCwUAA4IBAQBCZqvrRcTV+qYEUGw58NkD/JxDkvubT/Jb XErOTRoVrLgnltHP/LAVD7ntMwyoGF/RVMFVbK88kN1XaM/rZ/+0aiDqtZhO5dmL 8K0s2+2l+IK3Gnn2X8jYQXVOf45R+U20fotzkWklHZENzFCIRF+4MyU7Lt4/yTJM ZvQA5nycqj/FnnZbKRWlkK5A3lWmOp4EXQmZK1k0Mtihte8XCjvflsKj9ZZMNj2h j5PwPVXueH4l9yDlqwPM+4oO8OZB5UQKTjUmdIpu8yNgKB67F7L28Pro6Z3SYU4H t5K6YjIpMnmiXRfJ2Tt34lrUsSf2U42+eFPZWvKbhMkAkPDqSTm7 -----END CERTIFICATE-----Generated at Wed May 13 14:57:43 2026 by rpki-client