$ rpki-client -vvf rpki-rsync.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa File: 323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa (raw, json) Hash identifier: +e+HfMOZldBa/LpS7h6lb+TbzFgEj7Ip8GzPugbfqcc= Subject key identifier: F1:1A:F0:47:E9:E2:A6:6B:D5:4D:AC:A9:18:28:03:EC:F5:92:CE:AC Certificate issuer: /CN=3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B Certificate serial: 4DD8B41B144B125D15BEC79C2188F4DA130B0D76 Authority key identifier: 3D:C0:C4:48:BD:DF:D9:66:8A:E1:A0:D8:F1:5A:22:3F:0E:63:83:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa Signing time: Sun 03 May 2026 02:45:26 +0000 ROA not before: Sun 03 May 2026 02:40:26 +0000 ROA not after: Sun 02 May 2027 02:45:26 +0000 asID: 55688 IP address blocks: 2001:df2:ed40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B.crl rsync://rpki-rsync.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d8:b4:1b:14:4b:12:5d:15:be:c7:9c:21:88:f4:da:13:0b:0d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B Validity Not Before: May 3 02:40:26 2026 GMT Not After : May 2 02:45:26 2027 GMT Subject: CN=F11AF047E9E2A66BD54DACA9182803ECF592CEAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:05:d1:34:7c:e2:8f:7f:f3:93:86:67:aa:23: c8:2d:d0:74:68:5b:b2:db:4e:76:9e:80:f1:7f:01: 97:26:9f:00:cd:8c:8c:21:94:a5:46:52:a4:58:70: 4a:6e:fa:d6:28:63:76:f6:64:a8:d7:c5:6e:b9:84: 99:e1:a4:91:d0:e1:5b:dd:4b:2c:25:c9:ae:25:7e: 36:31:52:3b:0a:c3:2d:79:64:a2:c2:c9:47:3d:9e: 9c:a4:1a:d7:58:a3:a5:9c:c4:ae:e0:7a:1d:37:72: 7c:14:a5:22:53:50:13:63:18:05:49:3e:5b:66:48: 7f:3d:ca:89:24:4b:56:8c:4b:36:c7:a2:8b:e3:f3: 6b:cf:1f:a0:55:b2:c9:78:4b:1f:8b:49:90:6c:d8: 11:c0:3a:9e:96:d8:8a:fa:9b:d7:74:ae:e1:6b:ba: 42:f0:56:ed:fa:62:f6:cf:a4:42:16:0a:16:36:bd: bb:06:46:fe:68:11:da:2c:e8:a3:09:d8:07:5b:fb: 23:04:0e:4d:f7:9a:47:c4:af:60:dd:61:53:58:64: 63:c3:74:d0:55:64:4d:34:ff:1c:e4:3b:50:29:58: 0f:f2:4f:9a:10:c1:22:f4:50:df:af:f6:97:65:b8: 26:f8:d2:86:c7:c6:a6:a6:98:c4:ce:0b:ae:7a:79: b6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1A:F0:47:E9:E2:A6:6B:D5:4D:AC:A9:18:28:03:EC:F5:92:CE:AC X509v3 Authority Key Identifier: keyid:3D:C0:C4:48:BD:DF:D9:66:8A:E1:A0:D8:F1:5A:22:3F:0E:63:83:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DC0C448BDDFD9668AE1A0D8F15A223F0E63838B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/323030313a6466323a656434303a3a2f34382d3438203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:ed40::/48 Signature Algorithm: sha256WithRSAEncryption 6c:0f:27:7a:86:11:bb:4d:36:52:d3:22:15:f0:3f:50:81:c4: a4:a9:41:22:80:a5:0c:be:82:bb:56:3b:c9:47:0e:04:06:09: 8a:37:95:ba:d3:e4:d9:b2:cf:62:ee:86:05:cf:f0:b1:c9:c1: b0:0f:e8:c0:10:1b:e2:1b:4b:06:73:c9:d0:a5:e0:63:f2:f4: af:b1:86:1f:59:22:aa:4b:56:cc:39:8e:57:e3:2d:d9:e0:b5: 51:04:55:ad:3d:b3:e2:a9:c0:bc:3c:b1:79:cb:77:40:dd:26: c1:4d:57:17:66:6b:2c:ef:8f:dc:3d:f0:80:48:34:aa:5b:34: c8:38:38:02:c9:c8:17:03:e4:09:1d:5b:60:ad:fc:4c:88:2f: 98:90:11:04:b5:79:a8:a6:e1:46:b7:0d:8c:b1:18:ae:e7:0c: f8:f8:7a:eb:31:b7:22:e1:36:97:f1:ba:d6:5a:ce:e8:a1:fb: ec:3a:4c:cb:41:1a:97:e4:76:f8:2e:27:99:7d:ec:08:a5:32: 0d:8c:a5:9b:5d:e5:2d:9b:06:05:67:7a:7d:9b:a7:40:aa:28: 21:e9:ba:60:c9:df:d8:5d:02:1a:a6:16:d2:11:86:1a:44:ce: 05:67:0d:62:82:3d:42:1c:42:8d:d9:1f:ef:15:e7:34:cc:da: 8b:39:57:fb -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUTdi0GxRLEl0VvsecIYj02hMLDXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMEM0NDhCRERGRDk2NjhBRTFBMEQ4RjE1QTIyM0Yw RTYzODM4QjAeFw0yNjA1MDMwMjQwMjZaFw0yNzA1MDIwMjQ1MjZaMDMxMTAvBgNV BAMTKEYxMUFGMDQ3RTlFMkE2NkJENTREQUNBOTE4MjgwM0VDRjU5MkNFQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMBdE0fOKPf/OThmeqI8gt0HRo W7LbTnaegPF/AZcmnwDNjIwhlKVGUqRYcEpu+tYoY3b2ZKjXxW65hJnhpJHQ4Vvd Sywlya4lfjYxUjsKwy15ZKLCyUc9npykGtdYo6WcxK7geh03cnwUpSJTUBNjGAVJ PltmSH89yokkS1aMSzbHoovj82vPH6BVssl4Sx+LSZBs2BHAOp6W2Ir6m9d0ruFr ukLwVu36YvbPpEIWChY2vbsGRv5oEdos6KMJ2Adb+yMEDk33mkfEr2DdYVNYZGPD dNBVZE00/xzkO1ApWA/yT5oQwSL0UN+v9pdluCb40obHxqammMTOC656eba1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU8RrwR+nipmvVTaypGCgD7PWSzqwwHwYDVR0j BBgwFoAUPcDESL3f2WaK4aDY8VoiPw5jg4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2M0OTM1ZDgtOTZhMi00NTY0LTg1YTMtMzJhNTMxODkzNjdlLzAvM0RDMEM0NDhC RERGRDk2NjhBRTFBMEQ4RjE1QTIyM0YwRTYzODM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zREMwQzQ0OEJEREZEOTY2OEFFMUEwRDhGMTVBMjIzRjBFNjM4 MzhCLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzdjNDkzNWQ4LTk2YTItNDU2NC04 NWEzLTMyYTUzMTg5MzY3ZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfLt QDANBgkqhkiG9w0BAQsFAAOCAQEAbA8neoYRu002UtMiFfA/UIHEpKlBIoClDL6C u1Y7yUcOBAYJijeVutPk2bLPYu6GBc/wscnBsA/owBAb4htLBnPJ0KXgY/L0r7GG H1kiqktWzDmOV+Mt2eC1UQRVrT2z4qnAvDyxect3QN0mwU1XF2ZrLO+P3D3wgEg0 qls0yDg4AsnIFwPkCR1bYK38TIgvmJARBLV5qKbhRrcNjLEYrucM+Ph66zG3IuE2 l/G61lrO6KH77DpMy0Eal+R2+C4nmX3sCKUyDYylm13lLZsGBWd6fZunQKooIem6 YMnf2F0CGqYW0hGGGkTOBWcNYoI9QhxCjdkf7xXnNMzaizlX+w== -----END CERTIFICATE-----Generated at Wed May 13 11:04:08 2026 by rpki-client