$ rpki-client -vvf rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa File: 323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa (raw, json) Hash identifier: 6kElF6lyRfaEOBJkx0qFZUv24i4o0ISe0pvRjTce7Do= Subject key identifier: B3:AF:B9:37:37:55:D9:44:84:A4:D0:22:5A:73:38:AC:7C:47:69:3C Certificate issuer: /CN=3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C Certificate serial: 15EC3347CF549E9FD3E03E33886959EA1630D8C0 Authority key identifier: 3D:F4:C4:A2:6A:65:14:EF:33:7E:24:D3:AE:F2:28:F7:F9:A6:25:2C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa Signing time: Sun 03 May 2026 02:45:16 +0000 ROA not before: Sun 03 May 2026 02:40:16 +0000 ROA not after: Sun 02 May 2027 02:45:16 +0000 asID: 139365 IP address blocks: 2001:df1:1d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.crl rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ec:33:47:cf:54:9e:9f:d3:e0:3e:33:88:69:59:ea:16:30:d8:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C Validity Not Before: May 3 02:40:16 2026 GMT Not After : May 2 02:45:16 2027 GMT Subject: CN=B3AFB9373755D94484A4D0225A7338AC7C47693C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:7e:e5:b1:03:f6:07:e9:1d:1e:f7:03:86: 2d:64:ea:e5:58:aa:48:8f:bf:97:08:80:99:22:18: 02:16:a3:34:5d:1b:03:97:40:88:7a:b4:94:bc:18: 70:b6:86:20:3f:8e:4a:dc:81:c8:6e:cd:68:11:0c: 97:46:71:20:0f:1f:40:dc:4b:b8:39:01:60:49:c9: 1d:bc:51:e2:4c:cc:63:25:c2:d2:8e:58:ad:1d:d5: ca:45:c3:0e:f8:f5:7b:88:b9:d9:06:7b:11:ee:1e: f5:67:31:7a:9e:e3:01:77:2a:36:1a:da:d0:de:a6: ec:3f:bf:d1:a4:a9:9e:9d:37:5d:bb:86:20:7f:25: 37:77:d8:3c:46:ef:14:a7:45:00:0d:9c:b1:cd:9e: 65:f7:11:d4:2a:c3:bb:aa:57:54:79:63:3e:67:00: ac:04:f7:89:ba:ad:08:1a:ba:a3:00:8c:9e:7c:42: e3:a5:d5:c9:db:3a:db:bc:6a:7e:b2:31:0c:b3:23: 2c:cf:57:97:49:3a:fb:0e:9a:f7:1d:72:09:67:84: 28:5c:c7:82:93:67:ba:17:da:3b:a4:94:d9:55:45: 54:9c:c9:6c:89:0d:a8:88:e3:46:64:aa:36:15:84: 94:f4:7b:ce:75:c5:3d:31:51:3d:31:fe:4c:eb:ea: 4b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:AF:B9:37:37:55:D9:44:84:A4:D0:22:5A:73:38:AC:7C:47:69:3C X509v3 Authority Key Identifier: keyid:3D:F4:C4:A2:6A:65:14:EF:33:7E:24:D3:AE:F2:28:F7:F9:A6:25:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1d80::/48 Signature Algorithm: sha256WithRSAEncryption 6c:67:ec:ec:0e:2c:1a:53:d6:7a:97:7d:60:b8:bc:84:fd:4e: 98:58:eb:2f:5d:ad:a5:5f:a5:d1:48:92:c4:25:65:95:70:83: 10:65:1d:01:0c:79:79:a6:2f:d4:a4:84:4c:fe:93:54:69:74: 69:57:65:fa:ad:95:02:13:69:6a:7d:3c:b2:ce:01:0e:f0:0d: 31:cf:b5:b4:7d:e5:b0:b9:e4:33:af:24:23:50:6f:78:92:c8: 8e:0d:e7:8b:71:2d:60:06:bc:fc:bd:df:f4:80:67:c2:09:df: de:a2:6d:f9:bd:96:f1:70:ba:96:0f:0d:87:25:bb:6c:19:2b: cb:8d:1d:4e:5c:c0:72:4c:95:d6:46:5a:a4:73:ad:03:c0:df: c0:a5:d2:33:69:81:71:dd:dc:98:05:41:c2:66:05:99:8c:38: b2:85:55:87:b4:17:9e:ad:cc:e1:43:5f:c5:cd:5f:48:18:20: 34:13:07:30:8d:62:47:d9:0d:7c:56:b9:eb:26:3f:a9:6b:3e: eb:07:d6:14:05:86:d9:35:1f:41:43:b7:18:ca:ba:64:33:ba: 4c:16:a2:70:38:ca:45:8c:a4:8e:db:f1:2f:84:9b:d6:96:94: 37:24:4e:39:a6:14:63:1e:0f:2c:44:ff:af:02:39:e3:2a:b0: 03:d2:15:07 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFewzR89Unp/T4D4ziGlZ6hYw2MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RGNEM0QTI2QTY1MTRFRjMzN0UyNEQzQUVGMjI4RjdG OUE2MjUyQzAeFw0yNjA1MDMwMjQwMTZaFw0yNzA1MDIwMjQ1MTZaMDMxMTAvBgNV BAMTKEIzQUZCOTM3Mzc1NUQ5NDQ4NEE0RDAyMjVBNzMzOEFDN0M0NzY5M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4bX7lsQP2B+kdHvcDhi1k6uVY qkiPv5cIgJkiGAIWozRdGwOXQIh6tJS8GHC2hiA/jkrcgchuzWgRDJdGcSAPH0Dc S7g5AWBJyR28UeJMzGMlwtKOWK0d1cpFww749XuIudkGexHuHvVnMXqe4wF3KjYa 2tDepuw/v9GkqZ6dN127hiB/JTd32DxG7xSnRQANnLHNnmX3EdQqw7uqV1R5Yz5n AKwE94m6rQgauqMAjJ58QuOl1cnbOtu8an6yMQyzIyzPV5dJOvsOmvcdcglnhChc x4KTZ7oX2juklNlVRVScyWyJDaiI40ZkqjYVhJT0e851xT0xUT0x/kzr6kv/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUs6+5NzdV2USEpNAiWnM4rHxHaTwwHwYDVR0j BBgwFoAUPfTEomplFO8zfiTTrvIo9/mmJSwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2JlZDgzYmQtODk4Ni00NDI5LWEwMTEtYWM1OTA3MjRkNTg2LzAvM0RGNEM0QTI2 QTY1MTRFRjMzN0UyNEQzQUVGMjI4RjdGOUE2MjUyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zREY0QzRBMjZBNjUxNEVGMzM3RTI0RDNBRUYyMjhGN0Y5QTYy NTJDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdiZWQ4M2JkLTg5ODYtNDQyOS1h MDExLWFjNTkwNzI0ZDU4Ni8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8R2AMA0GCSqGSIb3DQEBCwUAA4IBAQBsZ+zsDiwaU9Z6l31guLyE/U6YWOsvXa2l X6XRSJLEJWWVcIMQZR0BDHl5pi/UpIRM/pNUaXRpV2X6rZUCE2lqfTyyzgEO8A0x z7W0feWwueQzryQjUG94ksiODeeLcS1gBrz8vd/0gGfCCd/eom35vZbxcLqWDw2H JbtsGSvLjR1OXMByTJXWRlqkc60DwN/ApdIzaYFx3dyYBUHCZgWZjDiyhVWHtBee rczhQ1/FzV9IGCA0EwcwjWJH2Q18VrnrJj+paz7rB9YUBYbZNR9BQ7cYyrpkM7pM FqJwOMpFjKSO2/EvhJvWlpQ3JE45phRjHg8sRP+vAjnjKrAD0hUH -----END CERTIFICATE-----Generated at Wed May 13 16:12:04 2026 by rpki-client