$ rpki-client -vvf rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa File: 323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa (raw, json) Hash identifier: WjZRwtvJki8cX6/hev6SY7XFmEOdsbw7GQ4iNASnaI0= Subject key identifier: 4D:EB:C0:5D:59:35:63:89:DF:29:2C:AB:8B:DD:5E:1A:FD:D4:12:EB Certificate issuer: /CN=DF6A987E2F9BF104B9938911E8F83F4C51C5A74D Certificate serial: 1BF40F58290D1DE878B3700A1274AB04697FE832 Authority key identifier: DF:6A:98:7E:2F:9B:F1:04:B9:93:89:11:E8:F8:3F:4C:51:C5:A7:4D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa Signing time: Sun 03 May 2026 02:42:24 +0000 ROA not before: Sun 03 May 2026 02:37:24 +0000 ROA not after: Sun 02 May 2027 02:42:24 +0000 asID: 4787 IP address blocks: 2001:df2:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.crl rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f4:0f:58:29:0d:1d:e8:78:b3:70:0a:12:74:ab:04:69:7f:e8:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF6A987E2F9BF104B9938911E8F83F4C51C5A74D Validity Not Before: May 3 02:37:24 2026 GMT Not After : May 2 02:42:24 2027 GMT Subject: CN=4DEBC05D59356389DF292CAB8BDD5E1AFDD412EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ee:5e:cd:92:36:99:33:f9:77:11:0b:5b:c7: ea:ab:ec:da:3a:84:03:9a:9c:5b:76:28:5e:2a:0e: 1e:96:0e:39:d6:5d:7b:20:57:b5:79:ed:9f:8e:6b: 36:ff:e9:b7:e8:6b:93:0f:da:3c:65:a9:3e:4c:41: 29:af:65:1f:f7:8f:3b:4b:2b:9a:7d:a6:b5:6a:59: ef:df:1b:c2:42:06:39:dd:5b:36:5b:d1:17:3a:b3: 56:c7:92:f5:f3:c4:10:3f:f2:d9:d2:d5:c7:eb:1c: b4:91:a3:4f:a7:eb:de:8d:4a:15:0f:86:4c:bf:89: 6d:6a:e8:46:cd:3c:86:b7:92:cf:c8:e6:29:73:5f: c3:c8:db:26:f9:06:c8:06:87:b0:06:e2:73:09:b0: 36:68:cb:22:fd:06:ee:9f:5a:a9:53:6f:db:38:96: 77:6f:b9:b7:18:76:fa:b5:e7:a3:27:05:da:cd:78: fe:78:2b:c0:d6:69:54:b6:74:9e:ac:42:1d:03:6a: 84:ae:a8:fd:6a:c1:ca:e9:ef:40:ed:9e:8d:c7:fb: ba:30:09:cf:97:16:b0:20:f3:4f:a6:75:6b:c1:5b: 26:fe:2c:73:dc:65:c8:1a:d4:42:84:87:80:87:f3: 05:23:81:15:60:23:ac:de:76:3e:c4:54:3c:01:3e: b1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EB:C0:5D:59:35:63:89:DF:29:2C:AB:8B:DD:5E:1A:FD:D4:12:EB X509v3 Authority Key Identifier: keyid:DF:6A:98:7E:2F:9B:F1:04:B9:93:89:11:E8:F8:3F:4C:51:C5:A7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF6A987E2F9BF104B9938911E8F83F4C51C5A74D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e880::/48 Signature Algorithm: sha256WithRSAEncryption 74:53:c4:ba:7b:90:55:dc:bd:03:fc:96:ea:89:1f:0e:ad:39: 6a:47:6e:fe:72:c5:2f:1a:37:95:2d:2d:92:49:6c:28:5a:6a: bb:98:c8:a2:25:7b:bd:99:75:d5:58:8f:b6:49:b1:f0:1b:fd: f9:81:2d:e5:c2:22:16:fc:dc:d1:fe:b0:de:dc:b7:7a:3f:bc: b2:d1:40:54:42:53:3b:28:98:75:20:bc:c2:3f:b2:55:95:ac: 32:b9:96:09:c0:ce:4d:58:f1:c7:94:62:53:9a:0d:49:2e:bc: 14:76:14:13:d0:76:bd:2f:8d:b6:25:6b:f8:87:97:e4:9b:2a: 56:33:b5:f3:f2:e7:ad:23:b7:38:fe:2c:1d:9b:f9:59:44:cf: 80:5a:25:ec:65:14:7b:be:d5:03:ec:ce:c4:33:2a:c5:f4:bd: c4:2d:34:ff:f8:bb:c1:73:e5:d5:28:26:5e:63:27:70:45:3c: b3:c5:5d:6a:06:f8:c6:38:7d:5f:f9:b6:c5:52:25:43:2a:e8: a9:a1:69:74:98:ac:db:d8:a2:64:eb:37:29:4e:45:09:08:f5: 3e:a5:1e:60:85:33:c4:c7:47:31:6f:c8:63:e8:a5:c8:ed:61: 0c:8f:b0:11:c9:34:57:7b:02:d6:2f:e8:8c:fe:7b:14:7d:a7: 70:24:ef:e8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUG/QPWCkNHeh4s3AKEnSrBGl/6DIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY2QTk4N0UyRjlCRjEwNEI5OTM4OTExRThGODNGNEM1 MUM1QTc0RDAeFw0yNjA1MDMwMjM3MjRaFw0yNzA1MDIwMjQyMjRaMDMxMTAvBgNV BAMTKDRERUJDMDVENTkzNTYzODlERjI5MkNBQjhCREQ1RTFBRkRENDEyRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh7l7NkjaZM/l3EQtbx+qr7No6 hAOanFt2KF4qDh6WDjnWXXsgV7V57Z+Oazb/6bfoa5MP2jxlqT5MQSmvZR/3jztL K5p9prVqWe/fG8JCBjndWzZb0Rc6s1bHkvXzxBA/8tnS1cfrHLSRo0+n696NShUP hky/iW1q6EbNPIa3ks/I5ilzX8PI2yb5BsgGh7AG4nMJsDZoyyL9Bu6fWqlTb9s4 lndvubcYdvq156MnBdrNeP54K8DWaVS2dJ6sQh0DaoSuqP1qwcrp70Dtno3H+7ow Cc+XFrAg80+mdWvBWyb+LHPcZcga1EKEh4CH8wUjgRVgI6zedj7EVDwBPrF/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTevAXVk1Y4nfKSyri91eGv3UEuswHwYDVR0j BBgwFoAU32qYfi+b8QS5k4kR6Pg/TFHFp00wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzBjMmExM2ItMWY0MC00YzAzLWJjMzUtZjY5NjE1MTZkNGQ5LzAvREY2QTk4N0Uy RjlCRjEwNEI5OTM4OTExRThGODNGNEM1MUM1QTc0RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERjZBOTg3RTJGOUJGMTA0Qjk5Mzg5MTFFOEY4M0Y0QzUxQzVB NzRELmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3y6IAw DQYJKoZIhvcNAQELBQADggEBAHRTxLp7kFXcvQP8luqJHw6tOWpHbv5yxS8aN5Ut LZJJbChaaruYyKIle72ZddVYj7ZJsfAb/fmBLeXCIhb83NH+sN7ct3o/vLLRQFRC UzsomHUgvMI/slWVrDK5lgnAzk1Y8ceUYlOaDUkuvBR2FBPQdr0vjbYla/iHl+Sb KlYztfPy560jtzj+LB2b+VlEz4BaJexlFHu+1QPszsQzKsX0vcQtNP/4u8Fz5dUo Jl5jJ3BFPLPFXWoG+MY4fV/5tsVSJUMq6KmhaXSYrNvYomTrNylORQkI9T6lHmCF M8THRzFvyGPopcjtYQyPsBHJNFd7AtYv6Iz+exR9p3Ak7+g= -----END CERTIFICATE-----Generated at Wed May 13 15:07:40 2026 by rpki-client