$ rpki-client -vvf rpki-rsync.idnic.net/repo/7517e2fa-2f68-452e-a404-8e7ccb687215/0/323030313a6466303a323930303a3a2f34382d3438203d3e20313336303731.roa File: 323030313a6466303a323930303a3a2f34382d3438203d3e20313336303731.roa (raw, json) Hash identifier: 5L8OxoDBph/9fu+4CbtRAtlIzGmHICxIfDadaISFa44= Subject key identifier: A0:5A:D1:CD:76:CB:AA:6A:93:8F:94:FA:FC:69:25:75:CC:DA:5B:5D Certificate issuer: /CN=6F6EA0D16E8288D17A470BD51F92A349C0546C57 Certificate serial: 72FCA045F043ECDFD9E88DAC0AA9484E9647AEAE Authority key identifier: 6F:6E:A0:D1:6E:82:88:D1:7A:47:0B:D5:1F:92:A3:49:C0:54:6C:57 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6F6EA0D16E8288D17A470BD51F92A349C0546C57.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7517e2fa-2f68-452e-a404-8e7ccb687215/0/323030313a6466303a323930303a3a2f34382d3438203d3e20313336303731.roa Signing time: Sun 03 May 2026 02:43:32 +0000 ROA not before: Sun 03 May 2026 02:38:32 +0000 ROA not after: Sun 02 May 2027 02:43:32 +0000 asID: 136071 IP address blocks: 2001:df0:2900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7517e2fa-2f68-452e-a404-8e7ccb687215/0/6F6EA0D16E8288D17A470BD51F92A349C0546C57.crl rsync://rpki-rsync.idnic.net/repo/7517e2fa-2f68-452e-a404-8e7ccb687215/0/6F6EA0D16E8288D17A470BD51F92A349C0546C57.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6F6EA0D16E8288D17A470BD51F92A349C0546C57.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:fc:a0:45:f0:43:ec:df:d9:e8:8d:ac:0a:a9:48:4e:96:47:ae:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6EA0D16E8288D17A470BD51F92A349C0546C57 Validity Not Before: May 3 02:38:32 2026 GMT Not After : May 2 02:43:32 2027 GMT Subject: CN=A05AD1CD76CBAA6A938F94FAFC692575CCDA5B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6a:5e:41:bf:f3:bc:a5:4e:67:11:41:a8:54: 26:f5:46:37:68:ef:f5:81:ad:7b:18:58:c6:9b:81: 59:3a:56:8b:f0:78:2b:5e:04:70:6a:ec:56:57:da: 93:65:da:da:74:a4:bd:cd:f8:ba:89:b4:f2:f5:b0: 33:95:f8:25:78:0d:52:a0:27:92:40:10:20:3d:b1: 29:7e:1e:39:07:71:56:5d:ac:aa:32:39:01:4f:56: f5:fb:c3:fd:6e:12:cb:f0:c3:68:af:d4:ac:83:32: b4:52:76:88:86:62:fe:68:53:75:55:0d:49:8e:a0: 53:cd:a9:ea:c9:9b:f8:9d:db:af:a8:c8:0d:88:87: 2d:5f:c7:52:00:ed:56:9d:0f:83:2f:77:c2:16:24: 34:97:a9:cc:df:d4:c7:2f:71:06:15:33:42:a9:ee: b9:50:a2:a9:36:3d:3e:e1:90:ef:d5:e3:bf:e6:60: 25:95:39:cd:6b:15:1d:37:26:4d:a3:bf:20:c1:7a: 47:ee:4d:aa:25:06:ea:0f:a6:4e:cf:36:c3:86:7d: da:f8:03:74:86:fe:1d:31:0a:d6:60:08:f3:b2:6a: 31:66:6c:cc:d8:27:fb:a0:39:19:82:b2:b8:93:24: 1d:46:81:54:c4:bc:99:61:12:90:09:d7:61:7f:50: 6e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5A:D1:CD:76:CB:AA:6A:93:8F:94:FA:FC:69:25:75:CC:DA:5B:5D X509v3 Authority Key Identifier: keyid:6F:6E:A0:D1:6E:82:88:D1:7A:47:0B:D5:1F:92:A3:49:C0:54:6C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7517e2fa-2f68-452e-a404-8e7ccb687215/0/6F6EA0D16E8288D17A470BD51F92A349C0546C57.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/6F6EA0D16E8288D17A470BD51F92A349C0546C57.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7517e2fa-2f68-452e-a404-8e7ccb687215/0/323030313a6466303a323930303a3a2f34382d3438203d3e20313336303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2900::/48 Signature Algorithm: sha256WithRSAEncryption 76:ed:b9:9e:b6:78:c5:43:dc:a1:92:fa:03:93:50:95:24:fb: 00:95:87:55:5f:02:97:3e:f4:7b:01:a1:ba:66:92:45:87:15: 37:82:a0:77:c8:c5:a9:db:7d:10:b6:46:64:b7:5c:77:21:3a: ca:6e:16:e5:f1:3d:ba:c1:78:ae:9a:f2:8b:9c:3c:d0:94:dd: f2:f5:70:a1:53:c3:30:44:32:dd:c3:cc:6b:03:cf:42:18:f7: fe:75:28:8e:f9:1d:59:a7:f3:6c:da:54:cf:a0:15:cf:32:49: bd:99:a0:2f:5e:2c:a1:b3:e5:ee:38:5c:97:b7:74:39:d1:e5: 69:ef:c6:67:29:da:f7:d7:91:b8:fe:fc:5d:75:79:aa:17:96: b7:11:44:fb:79:ae:48:c9:8c:a8:9a:8f:1d:f9:41:f6:ba:1a: c0:6b:29:83:ea:da:b8:df:17:31:6a:bd:26:fa:5e:e6:dc:41: 64:5b:20:1b:3e:e0:c0:cc:d7:eb:7b:00:a2:69:5a:8d:20:d1: 26:03:6e:c3:57:84:9b:06:2c:26:2f:62:9c:c2:02:2e:9e:7e: 10:7c:c9:a7:21:2c:cf:9c:68:6c:29:10:f5:f4:3a:d3:4e:18: a9:15:b5:98:1f:1b:b4:b2:6a:73:5d:65:31:40:dc:df:a0:ee: 37:6f:28:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcvygRfBD7N/Z6I2sCqlITpZHrq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2RUEwRDE2RTgyODhEMTdBNDcwQkQ1MUY5MkEzNDlD MDU0NkM1NzAeFw0yNjA1MDMwMjM4MzJaFw0yNzA1MDIwMjQzMzJaMDMxMTAvBgNV BAMTKEEwNUFEMUNENzZDQkFBNkE5MzhGOTRGQUZDNjkyNTc1Q0NEQTVCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPal5Bv/O8pU5nEUGoVCb1Rjdo 7/WBrXsYWMabgVk6VovweCteBHBq7FZX2pNl2tp0pL3N+LqJtPL1sDOV+CV4DVKg J5JAECA9sSl+HjkHcVZdrKoyOQFPVvX7w/1uEsvww2iv1KyDMrRSdoiGYv5oU3VV DUmOoFPNqerJm/id26+oyA2Ihy1fx1IA7VadD4Mvd8IWJDSXqczf1McvcQYVM0Kp 7rlQoqk2PT7hkO/V47/mYCWVOc1rFR03Jk2jvyDBekfuTaolBuoPpk7PNsOGfdr4 A3SG/h0xCtZgCPOyajFmbMzYJ/ugORmCsriTJB1GgVTEvJlhEpAJ12F/UG4zAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoFrRzXbLqmqTj5T6/GkldczaW10wHwYDVR0j BBgwFoAUb26g0W6CiNF6RwvVH5KjScBUbFcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzUxN2UyZmEtMmY2OC00NTJlLWE0MDQtOGU3Y2NiNjg3MjE1LzAvNkY2RUEwRDE2 RTgyODhEMTdBNDcwQkQ1MUY5MkEzNDlDMDU0NkM1Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82RjZFQTBEMTZFODI4OEQxN0E0NzBCRDUxRjkyQTM0OUMwNTQ2 QzU3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzc1MTdlMmZhLTJmNjgtNDUyZS1h NDA0LThlN2NjYjY4NzIxNS8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzNzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8CkAMA0GCSqGSIb3DQEBCwUAA4IBAQB27bmetnjFQ9yhkvoDk1CVJPsAlYdVXwKX PvR7AaG6ZpJFhxU3gqB3yMWp230QtkZkt1x3ITrKbhbl8T26wXiumvKLnDzQlN3y 9XChU8MwRDLdw8xrA89CGPf+dSiO+R1Zp/Ns2lTPoBXPMkm9maAvXiyhs+XuOFyX t3Q50eVp78ZnKdr315G4/vxddXmqF5a3EUT7ea5IyYyomo8d+UH2uhrAaymD6tq4 3xcxar0m+l7m3EFkWyAbPuDAzNfrewCiaVqNINEmA27DV4SbBiwmL2KcwgIunn4Q fMmnISzPnGhsKRD19DrTThipFbWYHxu0smpzXWUxQNzfoO43byhw -----END CERTIFICATE-----Generated at Wed May 13 07:46:15 2026 by rpki-client