$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa File: 323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa (raw, json) Hash identifier: vIUoSFhkJP5hkDIwcTRzx7ooCpVifIbFa0ihUfETBXw= Subject key identifier: 9C:05:B2:40:19:A6:F7:8D:29:43:CD:35:C3:9D:78:5E:7A:AE:A9:BE Certificate issuer: /CN=FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15 Certificate serial: 078CA7DA9877E37A9A45BEEB3C586BEF06F5C573 Authority key identifier: FD:61:E7:6E:14:05:9B:62:14:C0:D1:7E:9C:49:BE:A7:E1:AE:3A:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa Signing time: Sun 03 May 2026 02:44:46 +0000 ROA not before: Sun 03 May 2026 02:39:46 +0000 ROA not after: Sun 02 May 2027 02:44:46 +0000 asID: 152830 IP address blocks: 2001:df3:f840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15.crl rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8c:a7:da:98:77:e3:7a:9a:45:be:eb:3c:58:6b:ef:06:f5:c5:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15 Validity Not Before: May 3 02:39:46 2026 GMT Not After : May 2 02:44:46 2027 GMT Subject: CN=9C05B24019A6F78D2943CD35C39D785E7AAEA9BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cf:57:3b:4f:f0:ad:b5:a9:5b:f1:d1:d7:eb: 8f:a4:a8:3d:e1:c3:d4:b0:7c:6f:68:59:89:b1:8c: ae:8b:77:c2:8b:d2:2d:42:ac:59:b2:c7:ea:67:a7: 0d:fd:16:c0:c7:df:20:88:89:1d:3d:52:5d:b6:8f: 65:e4:e3:03:d0:97:29:27:11:91:01:8a:28:16:22: 18:9c:87:48:3a:39:bf:81:4d:5c:23:66:6d:3a:be: a8:d3:9f:1a:ac:4f:10:52:99:07:71:8c:e4:da:fe: 3b:fa:3b:61:d3:f5:a3:37:ab:0e:62:6b:b2:39:66: 58:8f:4f:a5:e2:ab:0d:79:8d:21:93:a3:52:d2:41: fb:d3:4f:05:67:1e:ff:af:19:00:d6:4c:17:bd:42: 00:34:58:9d:44:a6:8d:3c:b6:ee:e1:4c:d6:cb:d3: e4:fb:9d:7d:0d:ba:b5:7c:e7:74:46:54:4f:04:87: c6:38:51:55:f8:57:d3:9e:e6:3b:7b:8c:5b:db:22: 40:b9:33:04:84:6c:cc:06:3f:57:1e:24:b8:8d:ac: ab:04:96:e6:cc:c5:9e:49:ee:e7:ba:a7:e2:d4:30: 40:88:26:67:3e:86:d7:64:ca:c6:50:5c:d7:8e:e9: 66:b8:80:34:77:c3:e4:d4:34:55:2b:fe:ac:d7:7e: cf:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:05:B2:40:19:A6:F7:8D:29:43:CD:35:C3:9D:78:5E:7A:AE:A9:BE X509v3 Authority Key Identifier: keyid:FD:61:E7:6E:14:05:9B:62:14:C0:D1:7E:9C:49:BE:A7:E1:AE:3A:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD61E76E14059B6214C0D17E9C49BEA7E1AE3A15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/323030313a6466333a663834303a3a2f34382d3438203d3e20313532383330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:f840::/48 Signature Algorithm: sha256WithRSAEncryption 79:9c:61:fc:58:53:68:e5:62:a9:56:f1:c8:44:96:fc:1f:66: 85:cf:52:8b:19:1a:bb:09:b6:97:ec:38:4e:a8:1c:f1:d5:74: 49:21:f7:63:df:8e:c8:c8:33:63:91:f5:b7:6c:ba:bf:e8:5e: 69:70:aa:fb:9a:d2:fa:38:41:33:17:1d:5b:7c:3a:82:d0:b4: 25:14:72:88:ff:df:85:da:0b:62:c6:6b:8c:b4:79:e3:75:51: 56:81:3b:22:50:a2:d6:b7:f7:53:cf:45:90:34:9d:3b:f0:fd: d9:7f:ed:21:0b:a4:df:cb:5c:13:34:91:4b:6a:4c:8b:6f:60: 2c:d9:e2:d5:73:13:0a:3e:f8:4e:12:a7:68:cf:14:c9:2d:e6: 98:37:2b:ac:a8:85:5e:c2:db:0a:9f:fe:6a:df:63:e6:ef:9b: 86:55:93:fe:a3:c3:68:3e:c1:41:ec:bf:88:3c:2c:7d:43:d5: f3:44:24:4c:3c:4a:ae:c6:45:cd:ee:ef:2a:58:26:9d:19:c0: d7:b7:e7:0f:e3:01:45:47:35:57:1f:b7:c8:4c:62:1d:28:e5: 76:c2:9c:f2:12:ce:68:5f:09:8b:aa:d1:38:44:2e:bd:54:e9: 5d:24:d4:93:c2:87:b4:2b:4e:55:25:f6:4e:af:9a:1d:05:2c: 8a:25:33:b6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUB4yn2ph343qaRb7rPFhr7wb1xXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ2MUU3NkUxNDA1OUI2MjE0QzBEMTdFOUM0OUJFQTdF MUFFM0ExNTAeFw0yNjA1MDMwMjM5NDZaFw0yNzA1MDIwMjQ0NDZaMDMxMTAvBgNV BAMTKDlDMDVCMjQwMTlBNkY3OEQyOTQzQ0QzNUMzOUQ3ODVFN0FBRUE5QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXz1c7T/Cttalb8dHX64+kqD3h w9SwfG9oWYmxjK6Ld8KL0i1CrFmyx+pnpw39FsDH3yCIiR09Ul22j2Xk4wPQlykn EZEBiigWIhich0g6Ob+BTVwjZm06vqjTnxqsTxBSmQdxjOTa/jv6O2HT9aM3qw5i a7I5ZliPT6Xiqw15jSGTo1LSQfvTTwVnHv+vGQDWTBe9QgA0WJ1Epo08tu7hTNbL 0+T7nX0NurV853RGVE8Eh8Y4UVX4V9Oe5jt7jFvbIkC5MwSEbMwGP1ceJLiNrKsE lubMxZ5J7ue6p+LUMECIJmc+htdkysZQXNeO6Wa4gDR3w+TUNFUr/qzXfs+lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUnAWyQBmm940pQ801w514Xnquqb4wHwYDVR0j BBgwFoAU/WHnbhQFm2IUwNF+nEm+p+GuOhUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2EwMjEwYjMtY2NhMi00M2M1LTg5ZjktNWE5MDg2YTYwNzAzLzEvRkQ2MUU3NkUx NDA1OUI2MjE0QzBEMTdFOUM0OUJFQTdFMUFFM0ExNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRDYxRTc2RTE0MDU5QjYyMTRDMEQxN0U5QzQ5QkVBN0UxQUUz QTE1LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIzLWNjYTItNDNjNS04 OWY5LTVhOTA4NmE2MDcwMy8xLzMyMzAzMDMxM2E2NDY2MzMzYTY2MzgzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/hAMA0GCSqGSIb3DQEBCwUAA4IBAQB5nGH8WFNo5WKpVvHIRJb8H2aFz1KLGRq7 CbaX7DhOqBzx1XRJIfdj347IyDNjkfW3bLq/6F5pcKr7mtL6OEEzFx1bfDqC0LQl FHKI/9+F2gtixmuMtHnjdVFWgTsiUKLWt/dTz0WQNJ078P3Zf+0hC6Tfy1wTNJFL akyLb2As2eLVcxMKPvhOEqdozxTJLeaYNyusqIVewtsKn/5q32Pm75uGVZP+o8No PsFB7L+IPCx9Q9XzRCRMPEquxkXN7u8qWCadGcDXt+cP4wFFRzVXH7fITGIdKOV2 wpzyEs5oXwmLqtE4RC69VOldJNSTwoe0K05VJfZOr5odBSyKJTO2 -----END CERTIFICATE-----Generated at Wed May 13 13:26:56 2026 by rpki-client