$ rpki-client -vvf rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa File: 323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa (raw, json) Hash identifier: F4M8MHNpJyjK8JMP4omDLl+coBkk4H80wSqlzMtwEQs= Subject key identifier: EE:AF:30:CD:4D:67:8D:7D:45:98:13:C2:45:E2:26:CD:92:01:41:DC Certificate issuer: /CN=7AE9491DE111DAFB09BAC86C9777FC44A7E8D941 Certificate serial: 53E0207D7232A82BB7033E3CEBB770D9F06AF241 Authority key identifier: 7A:E9:49:1D:E1:11:DA:FB:09:BA:C8:6C:97:77:FC:44:A7:E8:D9:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa Signing time: Sun 03 May 2026 02:40:12 +0000 ROA not before: Sun 03 May 2026 02:35:12 +0000 ROA not after: Sun 02 May 2027 02:40:12 +0000 asID: 140442 IP address blocks: 2001:df3:fd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.crl rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e0:20:7d:72:32:a8:2b:b7:03:3e:3c:eb:b7:70:d9:f0:6a:f2:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7AE9491DE111DAFB09BAC86C9777FC44A7E8D941 Validity Not Before: May 3 02:35:12 2026 GMT Not After : May 2 02:40:12 2027 GMT Subject: CN=EEAF30CD4D678D7D459813C245E226CD920141DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:84:43:51:37:ed:ea:d6:32:f8:2a:eb:94:fa: d4:d8:8a:1a:c4:22:e3:83:43:20:7b:3e:82:e3:94: 9b:fa:63:c1:1f:38:27:e8:82:85:fa:67:41:4f:f1: 5b:ec:e1:8d:91:3c:74:58:22:d7:fa:e3:25:41:8f: b8:d1:f9:d5:65:f5:56:50:e5:ee:f9:f1:ac:5e:b6: 5a:41:89:23:cc:40:f5:49:80:e0:d6:d4:e4:8f:e1: 7c:de:a2:d3:25:53:2a:b2:9b:49:de:90:14:db:19: 20:9f:11:a1:e5:c7:56:fb:3a:94:ba:b0:e8:7c:2b: 62:ba:02:7d:4f:74:79:4c:d7:b7:b5:38:0e:e6:4a: 5a:2f:00:a4:9c:a6:83:e2:f5:cd:8e:6a:72:ad:27: 91:67:68:14:bf:e8:a4:79:9f:58:5a:ed:d5:68:c5: 7c:38:cc:04:44:ce:a7:4c:9d:e6:a6:4c:89:53:4e: 52:d6:cd:83:dd:7e:c7:f0:0d:df:3a:1b:09:0b:10: 8e:0d:97:ae:95:05:8d:8b:7b:e1:3f:22:c0:aa:11: 7d:3d:73:8e:31:e9:aa:c7:8c:eb:88:15:4f:07:91: 50:1d:6c:a1:43:f3:85:d8:56:b3:aa:35:d3:ce:b2: 28:ac:b4:bc:06:42:02:42:66:aa:2f:e6:d4:08:48: 38:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AF:30:CD:4D:67:8D:7D:45:98:13:C2:45:E2:26:CD:92:01:41:DC X509v3 Authority Key Identifier: keyid:7A:E9:49:1D:E1:11:DA:FB:09:BA:C8:6C:97:77:FC:44:A7:E8:D9:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7AE9491DE111DAFB09BAC86C9777FC44A7E8D941.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fd80::/48 Signature Algorithm: sha256WithRSAEncryption 92:56:64:1a:15:68:1e:8f:8e:a1:1b:af:19:6a:db:4c:9e:ad: c2:7a:33:e6:50:cb:c4:fb:24:25:d9:85:d0:40:a6:1c:82:7d: b6:70:6d:b3:5d:17:a4:40:24:a0:35:87:90:b0:28:89:99:00: 3e:4f:07:2c:7c:c0:f4:5e:31:d1:30:83:ba:f1:3c:5d:b9:21: d7:a1:b0:f3:3f:6f:2d:c7:a2:2d:92:13:b4:bd:dc:ca:59:3f: 86:45:fb:34:cc:97:0d:98:cf:32:ee:b1:1f:13:c0:6a:79:f9: 3b:87:79:8d:10:6b:a4:51:46:60:71:5a:9f:68:6a:9b:d9:a0: 18:6a:61:e4:a9:8a:6d:72:51:5d:53:64:93:f5:a5:20:48:90: 70:29:82:79:91:86:7c:c3:20:5f:b1:f5:bf:f6:62:23:ac:31: 4a:61:e5:39:9a:b8:60:6c:7d:88:e8:0e:6a:10:5c:9f:da:ab: c1:50:f5:dd:87:62:17:64:65:47:34:b8:ad:0f:9a:b0:8e:a4: 31:2c:ce:5f:53:4e:9d:64:4a:1d:5c:4c:a2:d9:7b:d7:2b:7d: 7a:19:b8:25:de:33:df:50:2e:4b:f3:44:b7:e7:3e:58:4c:87: d7:03:8f:35:d8:22:e0:05:ec:0a:ba:be:d9:b1:39:c2:7a:f2: ab:e5:5f:4f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUU+AgfXIyqCu3Az4867dw2fBq8kEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0FFOTQ5MURFMTExREFGQjA5QkFDODZDOTc3N0ZDNDRB N0U4RDk0MTAeFw0yNjA1MDMwMjM1MTJaFw0yNzA1MDIwMjQwMTJaMDMxMTAvBgNV BAMTKEVFQUYzMENENEQ2NzhEN0Q0NTk4MTNDMjQ1RTIyNkNEOTIwMTQxREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0hENRN+3q1jL4KuuU+tTYihrE IuODQyB7PoLjlJv6Y8EfOCfogoX6Z0FP8Vvs4Y2RPHRYItf64yVBj7jR+dVl9VZQ 5e758axetlpBiSPMQPVJgODW1OSP4XzeotMlUyqym0nekBTbGSCfEaHlx1b7OpS6 sOh8K2K6An1PdHlM17e1OA7mSlovAKScpoPi9c2OanKtJ5FnaBS/6KR5n1ha7dVo xXw4zAREzqdMneamTIlTTlLWzYPdfsfwDd86GwkLEI4Nl66VBY2Le+E/IsCqEX09 c44x6arHjOuIFU8HkVAdbKFD84XYVrOqNdPOsiistLwGQgJCZqov5tQISDh1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7q8wzU1njX1FmBPCReImzZIBQdwwHwYDVR0j BBgwFoAUeulJHeER2vsJushsl3f8RKfo2UEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjcyOGM3N2ItMjEwMC00ZjJhLTkwZDktMDhjNTNlODQxZTFiLzAvN0FFOTQ5MURF MTExREFGQjA5QkFDODZDOTc3N0ZDNDRBN0U4RDk0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83QUU5NDkxREUxMTFEQUZCMDlCQUM4NkM5Nzc3RkM0NEE3RThE OTQxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2NjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/2AMA0GCSqGSIb3DQEBCwUAA4IBAQCSVmQaFWgej46hG68ZattMnq3CejPmUMvE +yQl2YXQQKYcgn22cG2zXRekQCSgNYeQsCiJmQA+TwcsfMD0XjHRMIO68TxduSHX obDzP28tx6ItkhO0vdzKWT+GRfs0zJcNmM8y7rEfE8Bqefk7h3mNEGukUUZgcVqf aGqb2aAYamHkqYptclFdU2ST9aUgSJBwKYJ5kYZ8wyBfsfW/9mIjrDFKYeU5mrhg bH2I6A5qEFyf2qvBUPXdh2IXZGVHNLitD5qwjqQxLM5fU06dZEodXEyi2XvXK316 Gbgl3jPfUC5L80S35z5YTIfXA4812CLgBewKur7ZsTnCevKr5V9P -----END CERTIFICATE-----Generated at Wed May 13 11:49:50 2026 by rpki-client