$ rpki-client -vvf rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: lNPR2Tg6FsNQHU8b29t3TQ5Lu6T1+vm92/GyLs+/lXo= Subject key identifier: 2B:9E:D9:F3:3B:FC:DE:3A:70:04:4D:D0:DA:F3:50:75:F7:53:B2:48 Certificate issuer: /CN=9C58C1C6AFBB5B66C640694A98597306CC88DA0B Certificate serial: 4D9731FDE755DEE688D8F2E735D11AA22172421F Authority key identifier: 9C:58:C1:C6:AF:BB:5B:66:C6:40:69:4A:98:59:73:06:CC:88:DA:0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa Signing time: Sun 03 May 2026 02:41:34 +0000 ROA not before: Sun 03 May 2026 02:36:34 +0000 ROA not after: Sun 02 May 2027 02:41:34 +0000 asID: 58404 IP address blocks: 2001:df0:2fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.crl rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:97:31:fd:e7:55:de:e6:88:d8:f2:e7:35:d1:1a:a2:21:72:42:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C58C1C6AFBB5B66C640694A98597306CC88DA0B Validity Not Before: May 3 02:36:34 2026 GMT Not After : May 2 02:41:34 2027 GMT Subject: CN=2B9ED9F33BFCDE3A70044DD0DAF35075F753B248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:80:00:f3:ec:42:75:f5:1c:0e:04:d0:bd: 03:6e:b2:d6:4c:a5:06:ec:3a:ac:4f:f5:2e:da:7a: 65:f2:7e:e9:0f:7e:2d:eb:b0:ac:1d:71:df:ed:5a: f7:40:54:5a:4f:82:46:38:12:35:d6:60:3b:cb:b9: 8b:ac:c4:c3:b2:c6:e3:2c:3d:20:b4:53:76:88:15: 89:81:b8:91:11:86:19:c7:25:5a:f9:8e:fc:d4:07: a4:78:00:e6:ef:1a:68:7e:68:a7:92:56:b3:4a:15: 7e:5e:52:62:f2:a1:b1:5a:49:9b:45:0e:ac:2f:c0: a1:b6:7c:e1:95:8a:d6:64:35:e3:fa:ca:ce:40:e0: 88:a2:11:b1:a0:d1:ff:a7:ca:34:b1:84:92:99:0e: 58:1d:7f:8c:24:3f:b8:02:22:ab:93:34:26:69:cb: 0a:08:73:f4:67:61:56:cc:45:b5:73:b5:92:f7:a7: cf:94:d0:e6:36:9d:d7:4a:c3:70:9b:b0:81:fe:ea: 5f:43:84:9b:85:22:82:32:68:43:fb:41:ae:db:d7: 6e:be:77:8b:8b:41:11:19:f4:cc:58:28:d8:5a:f1: 27:a8:20:28:0a:9e:6a:53:09:83:c5:32:45:e0:14: 99:4f:e5:4a:49:cf:8f:1c:0b:0e:0d:e0:a4:29:c7: bd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9E:D9:F3:3B:FC:DE:3A:70:04:4D:D0:DA:F3:50:75:F7:53:B2:48 X509v3 Authority Key Identifier: keyid:9C:58:C1:C6:AF:BB:5B:66:C6:40:69:4A:98:59:73:06:CC:88:DA:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9C58C1C6AFBB5B66C640694A98597306CC88DA0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2fc::/48 Signature Algorithm: sha256WithRSAEncryption 13:d7:97:57:fc:c6:31:d1:96:77:57:dc:70:a0:c3:b7:df:23: de:1a:cf:88:a1:3d:b0:c3:30:55:7e:07:74:d7:d9:ae:19:1f: fe:84:4f:f6:52:7e:28:51:cd:3c:d7:45:d6:70:44:60:6a:47: 2e:f5:73:27:0a:f1:1d:3f:e4:7c:95:69:bc:6f:08:ea:41:a7: 8a:24:65:62:63:77:d1:3b:83:44:32:17:c9:3c:b7:69:05:fb: d1:86:92:e1:bb:7f:82:74:eb:15:55:13:ec:b5:c0:f1:92:73: 0b:3a:0f:e3:58:6b:65:37:35:d4:b9:c2:35:93:94:4b:77:19: b2:64:2b:8a:a8:b1:a7:d6:de:0e:bc:3c:10:93:97:d7:8b:0c: d8:ee:95:06:54:fd:f6:bc:bb:ee:01:3c:e8:9a:e7:44:e8:7c: 9e:4f:c7:52:db:1b:72:cf:81:bf:9d:d4:5a:cf:ab:4d:ed:b5: 5f:01:50:7e:e4:a1:57:21:1b:16:87:51:e8:03:ac:d8:26:e0: a5:82:5b:e5:2c:49:69:f3:97:40:ac:d0:75:fb:5a:94:73:e8: 46:19:5c:c1:5e:d7:08:db:ad:de:80:63:57:c9:b3:c7:d5:ce: 40:93:45:cd:64:e8:79:88:af:d1:2e:7f:aa:ad:19:2a:62:ab: c0:4e:c9:e2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTZcx/edV3uaI2PLnNdEaoiFyQh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM1OEMxQzZBRkJCNUI2NkM2NDA2OTRBOTg1OTczMDZD Qzg4REEwQjAeFw0yNjA1MDMwMjM2MzRaFw0yNzA1MDIwMjQxMzRaMDMxMTAvBgNV BAMTKDJCOUVEOUYzM0JGQ0RFM0E3MDA0NEREMERBRjM1MDc1Rjc1M0IyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+mIAA8+xCdfUcDgTQvQNustZM pQbsOqxP9S7aemXyfukPfi3rsKwdcd/tWvdAVFpPgkY4EjXWYDvLuYusxMOyxuMs PSC0U3aIFYmBuJERhhnHJVr5jvzUB6R4AObvGmh+aKeSVrNKFX5eUmLyobFaSZtF DqwvwKG2fOGVitZkNeP6ys5A4IiiEbGg0f+nyjSxhJKZDlgdf4wkP7gCIquTNCZp ywoIc/RnYVbMRbVztZL3p8+U0OY2nddKw3CbsIH+6l9DhJuFIoIyaEP7Qa7b126+ d4uLQREZ9MxYKNha8SeoICgKnmpTCYPFMkXgFJlP5UpJz48cCw4N4KQpx70JAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUK57Z8zv83jpwBE3Q2vNQdfdTskgwHwYDVR0j BBgwFoAUnFjBxq+7W2bGQGlKmFlzBsyI2gswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmUwZjkxNjMtM2U1YS00ZWZhLThiZDktNGFjNGJjNjMwNDE0LzAvOUM1OEMxQzZB RkJCNUI2NkM2NDA2OTRBOTg1OTczMDZDQzg4REEwQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85QzU4QzFDNkFGQkI1QjY2QzY0MDY5NEE5ODU5NzMwNkNDODhE QTBCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjY2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAvww DQYJKoZIhvcNAQELBQADggEBABPXl1f8xjHRlndX3HCgw7ffI94az4ihPbDDMFV+ B3TX2a4ZH/6ET/ZSfihRzTzXRdZwRGBqRy71cycK8R0/5HyVabxvCOpBp4okZWJj d9E7g0QyF8k8t2kF+9GGkuG7f4J06xVVE+y1wPGScws6D+NYa2U3NdS5wjWTlEt3 GbJkK4qosafW3g68PBCTl9eLDNjulQZU/fa8u+4BPOia50TofJ5Px1LbG3LPgb+d 1FrPq03ttV8BUH7koVchGxaHUegDrNgm4KWCW+UsSWnzl0Cs0HX7WpRz6EYZXMFe 1wjbrd6AY1fJs8fVzkCTRc1k6HmIr9Euf6qtGSpiq8BOyeI= -----END CERTIFICATE-----Generated at Wed May 13 11:47:03 2026 by rpki-client