$ rpki-client -vvf rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa File: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (raw, json) Hash identifier: zqwI6m4XrFv8eZM9FUpfWXpZ18MF12p+MPV+FGxatII= Subject key identifier: 1F:90:B0:E4:1C:C2:40:B3:30:37:4E:D9:C2:C0:AF:34:AE:66:76:EE Certificate issuer: /CN=95C2241DAF3580597A730032BDD8356019AA8598 Certificate serial: 3B490E57C539D5B7A5EA81227B152B0905D54EA3 Authority key identifier: 95:C2:24:1D:AF:35:80:59:7A:73:00:32:BD:D8:35:60:19:AA:85:98 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa Signing time: Sun 03 May 2026 02:44:49 +0000 ROA not before: Sun 03 May 2026 02:39:49 +0000 ROA not after: Sun 02 May 2027 02:44:49 +0000 asID: 150922 IP address blocks: 2001:df2:f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.crl rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:49:0e:57:c5:39:d5:b7:a5:ea:81:22:7b:15:2b:09:05:d5:4e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C2241DAF3580597A730032BDD8356019AA8598 Validity Not Before: May 3 02:39:49 2026 GMT Not After : May 2 02:44:49 2027 GMT Subject: CN=1F90B0E41CC240B330374ED9C2C0AF34AE6676EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:45:96:76:d8:47:59:8a:b7:61:4d:b2:d2: 2b:e2:29:c6:57:ae:11:b1:49:f5:0b:58:e7:94:8d: 18:d3:e6:9e:90:b7:a6:db:23:3f:57:87:fc:ac:63: 80:e0:d7:22:f5:67:23:87:53:ba:86:7f:77:0b:11: 52:e2:33:9b:ef:21:fa:db:65:3b:14:07:ed:83:a0: 22:b8:5a:34:d8:f8:2f:7a:d0:84:cd:1b:99:16:0c: 43:2a:5b:09:30:3a:d7:5f:c0:73:3e:0c:ce:e8:f3: 70:85:13:1d:2a:32:55:9b:9b:06:f1:09:c5:25:db: f0:1e:3a:04:dc:34:1d:4d:d6:ba:78:95:4e:dd:ae: a7:2f:39:69:2e:ff:5d:3b:7d:00:08:80:a0:66:43: ef:bf:5d:ef:41:de:40:d2:3f:0f:d6:80:01:7d:d9: 33:c6:14:e0:8a:92:a6:a0:a2:f4:51:18:ae:c3:e9: 6c:8d:b1:49:55:47:1b:4e:6a:4f:f6:bd:66:43:09: 3f:69:ee:6e:a2:40:a8:18:a3:51:50:a7:5a:97:c3: 26:b2:23:7f:da:77:45:8c:8a:c2:54:49:14:ba:48: 19:31:21:3f:c2:72:cf:f5:a1:8f:4d:43:53:89:e7: 3f:d8:16:9c:7b:50:5e:0d:6e:00:93:83:0c:6f:83: ea:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:90:B0:E4:1C:C2:40:B3:30:37:4E:D9:C2:C0:AF:34:AE:66:76:EE X509v3 Authority Key Identifier: keyid:95:C2:24:1D:AF:35:80:59:7A:73:00:32:BD:D8:35:60:19:AA:85:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/95C2241DAF3580597A730032BDD8356019AA8598.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/95C2241DAF3580597A730032BDD8356019AA8598.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:f40::/48 Signature Algorithm: sha256WithRSAEncryption 24:df:b8:30:68:22:31:f0:2b:77:27:ec:d9:6a:2d:d4:3d:88: 64:02:3f:ab:c8:48:7d:cd:04:a3:d7:c5:91:f3:9f:32:ec:9c: 2d:f0:87:2d:6c:c2:5c:a1:43:26:ed:2c:7a:83:02:a5:fb:09: 1d:91:c0:a7:37:bd:62:94:36:16:f1:6e:02:5b:dc:e7:ef:9c: 40:fd:50:a6:4b:35:2a:a5:6a:49:ce:e4:e7:92:84:bf:3e:92: 98:6e:83:f0:a0:07:f1:a1:1d:12:ba:8f:ba:6e:f5:a9:45:31: aa:ea:c7:fa:67:e7:cd:1d:a7:b8:77:cb:ec:c3:df:27:6a:34: 6e:d7:21:59:8c:c1:2b:22:dc:3b:94:02:ba:80:72:db:81:8d: ea:15:8b:8c:c9:9d:d7:7f:44:38:18:48:b5:a2:81:10:9c:72: c5:6c:28:b7:77:ea:df:d5:a4:aa:35:d1:67:55:01:89:e0:ef: d1:19:10:a0:23:ec:61:c9:a0:4f:90:db:e8:5c:d3:42:db:5c: be:d4:3b:83:27:d8:bd:ab:e3:2f:97:01:00:e7:e1:57:be:e2: 65:cb:22:f3:e4:f2:16:de:69:8d:f7:fa:70:51:1b:0f:74:a5: 94:df:78:7b:05:07:ab:6a:63:56:f3:f8:8f:ee:3f:93:2f:e4: 7b:22:9b:d5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUO0kOV8U51bel6oEiexUrCQXVTqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDMjI0MURBRjM1ODA1OTdBNzMwMDMyQkREODM1NjAx OUFBODU5ODAeFw0yNjA1MDMwMjM5NDlaFw0yNzA1MDIwMjQ0NDlaMDMxMTAvBgNV BAMTKDFGOTBCMEU0MUNDMjQwQjMzMDM3NEVEOUMyQzBBRjM0QUU2Njc2RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA10WWdthHWYq3YU2y0iviKcZX rhGxSfULWOeUjRjT5p6Qt6bbIz9Xh/ysY4Dg1yL1ZyOHU7qGf3cLEVLiM5vvIfrb ZTsUB+2DoCK4WjTY+C960ITNG5kWDEMqWwkwOtdfwHM+DM7o83CFEx0qMlWbmwbx CcUl2/AeOgTcNB1N1rp4lU7drqcvOWku/107fQAIgKBmQ++/Xe9B3kDSPw/WgAF9 2TPGFOCKkqagovRRGK7D6WyNsUlVRxtOak/2vWZDCT9p7m6iQKgYo1FQp1qXwyay I3/ad0WMisJUSRS6SBkxIT/Ccs/1oY9NQ1OJ5z/YFpx7UF4NbgCTgwxvg+odAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUH5Cw5BzCQLMwN07ZwsCvNK5mdu4wHwYDVR0j BBgwFoAUlcIkHa81gFl6cwAyvdg1YBmqhZgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ExYzRjMWYtNzE0MS00N2Q2LWE3ZjgtZTM1ZmZlMTE3NDA0LzAvOTVDMjI0MURB RjM1ODA1OTdBNzMwMDMyQkREODM1NjAxOUFBODU5OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NUMyMjQxREFGMzU4MDU5N0E3MzAwMzJCREQ4MzU2MDE5QUE4 NTk4LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2MzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfIP QDANBgkqhkiG9w0BAQsFAAOCAQEAJN+4MGgiMfArdyfs2Wot1D2IZAI/q8hIfc0E o9fFkfOfMuycLfCHLWzCXKFDJu0seoMCpfsJHZHApze9YpQ2FvFuAlvc5++cQP1Q pks1KqVqSc7k55KEvz6SmG6D8KAH8aEdErqPum71qUUxqurH+mfnzR2nuHfL7MPf J2o0btchWYzBKyLcO5QCuoBy24GN6hWLjMmd139EOBhItaKBEJxyxWwot3fq39Wk qjXRZ1UBieDv0RkQoCPsYcmgT5Db6FzTQttcvtQ7gyfYvavjL5cBAOfhV77iZcsi 8+TyFt5pjff6cFEbD3SllN94ewUHq2pjVvP4j+4/ky/keyKb1Q== -----END CERTIFICATE-----Generated at Wed May 13 12:25:03 2026 by rpki-client