$ rpki-client -vvf rpki-rsync.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa File: 323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa (raw, json) Hash identifier: 4bKBlVxqedWSCh5v8weNHekAQ9GKb4xy7LR81Mjy5FE= Subject key identifier: 20:67:D1:2F:01:DA:AD:AC:AE:5C:BA:B7:A3:12:21:FF:7C:1B:38:7E Certificate issuer: /CN=7045262D5ECBD080FD7E90BD57C5CAC14767D7D9 Certificate serial: 29355A7E9A2AACD4B69FDEA8D35D4D51689911D6 Authority key identifier: 70:45:26:2D:5E:CB:D0:80:FD:7E:90:BD:57:C5:CA:C1:47:67:D7:D9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7045262D5ECBD080FD7E90BD57C5CAC14767D7D9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa Signing time: Sun 03 May 2026 02:46:37 +0000 ROA not before: Sun 03 May 2026 02:41:37 +0000 ROA not after: Sun 02 May 2027 02:46:37 +0000 asID: 141108 IP address blocks: 2001:df5:c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/7045262D5ECBD080FD7E90BD57C5CAC14767D7D9.crl rsync://rpki-rsync.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/7045262D5ECBD080FD7E90BD57C5CAC14767D7D9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7045262D5ECBD080FD7E90BD57C5CAC14767D7D9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:35:5a:7e:9a:2a:ac:d4:b6:9f:de:a8:d3:5d:4d:51:68:99:11:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7045262D5ECBD080FD7E90BD57C5CAC14767D7D9 Validity Not Before: May 3 02:41:37 2026 GMT Not After : May 2 02:46:37 2027 GMT Subject: CN=2067D12F01DAADACAE5CBAB7A31221FF7C1B387E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ce:84:36:17:87:70:79:81:46:50:14:20:e7: bf:bc:a0:c2:96:07:57:08:71:fe:27:10:fc:72:bf: ba:24:4a:66:4c:4c:79:62:aa:08:de:8e:86:26:74: 1a:0c:a7:63:3e:08:43:d7:54:8a:93:72:04:73:5c: d3:8d:83:28:a6:e7:c2:4d:69:d2:04:27:60:14:81: 77:b6:5f:e4:c5:8e:01:bc:a2:9e:d5:25:c3:4d:eb: 77:71:d8:72:d0:c4:93:cb:3e:91:c2:85:03:d0:f5: 42:c4:40:69:93:c2:b6:43:23:13:28:8d:ee:a8:e8: be:60:ff:f6:05:37:29:c7:05:b8:52:8a:43:87:a7: 80:92:4f:95:38:f8:b1:25:a5:d5:c4:55:b3:c0:b2: 4a:67:16:f0:b1:0c:97:65:92:4a:f3:fe:63:95:78: c2:97:00:c5:17:24:b2:91:34:ff:e3:fd:80:3a:28: c9:eb:25:0c:1d:4f:73:32:82:b0:ed:4d:18:09:65: 85:41:0c:5d:4f:11:0d:15:82:45:1f:23:c8:cf:d3: 45:63:25:a4:3f:2b:1d:74:40:c2:75:52:62:61:eb: 57:3d:61:2d:f6:87:98:2e:b7:b5:ad:a0:be:ee:17: 73:34:1f:2c:72:03:08:97:ff:8d:1b:cb:33:5a:4c: d4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:67:D1:2F:01:DA:AD:AC:AE:5C:BA:B7:A3:12:21:FF:7C:1B:38:7E X509v3 Authority Key Identifier: keyid:70:45:26:2D:5E:CB:D0:80:FD:7E:90:BD:57:C5:CA:C1:47:67:D7:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/7045262D5ECBD080FD7E90BD57C5CAC14767D7D9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7045262D5ECBD080FD7E90BD57C5CAC14767D7D9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/801b79ac-3351-4705-8c3d-602adcd79bb7/0/323030313a6466353a6338303a3a2f34382d3438203d3e20313431313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:c80::/48 Signature Algorithm: sha256WithRSAEncryption 01:8a:7d:c0:00:85:ad:2f:d5:1e:7d:ad:65:46:82:1c:37:f2: 68:f9:c6:e1:1e:ff:81:d1:81:54:06:1d:59:eb:77:64:cd:6b: f6:d4:a6:79:b1:38:74:37:37:eb:1b:44:ae:19:59:f3:b8:c9: 60:95:ff:10:40:2f:31:b7:21:39:ff:64:62:35:b1:48:c5:3c: 0b:ff:df:1c:b3:3b:72:c7:c7:8d:fb:c6:f4:46:f3:71:17:38: f7:3c:b3:1b:78:9e:97:44:ff:23:1b:a3:c1:d6:b5:f7:bc:21: cf:31:a4:b8:be:49:83:d7:ba:b0:75:69:a2:93:d7:05:f8:7e: 30:61:f1:da:36:e2:11:93:a0:5f:a9:28:ad:d0:22:ee:a7:1d: 3f:29:fe:0e:69:28:00:2a:e0:de:42:6b:fc:a8:67:f1:dc:7a: e8:e9:78:11:79:b3:de:09:bf:12:0d:14:44:0d:d2:87:62:83: 8e:e3:ab:4d:a7:fd:b4:73:bb:89:07:2a:91:f7:63:1f:98:8c: 30:81:49:4e:68:1e:b0:f3:aa:d0:93:22:93:ae:17:4d:bc:6b: 08:bc:15:43:ee:88:db:ff:f1:fd:f1:69:8b:a9:e1:d8:b1:72: 07:be:61:c9:aa:56:a2:c1:93:d7:f5:f6:b4:0c:ee:db:c9:f9: c5:03:a2:15 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKTVafpoqrNS2n96o011NUWiZEdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA0NTI2MkQ1RUNCRDA4MEZEN0U5MEJENTdDNUNBQzE0 NzY3RDdEOTAeFw0yNjA1MDMwMjQxMzdaFw0yNzA1MDIwMjQ2MzdaMDMxMTAvBgNV BAMTKDIwNjdEMTJGMDFEQUFEQUNBRTVDQkFCN0EzMTIyMUZGN0MxQjM4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQzoQ2F4dweYFGUBQg57+8oMKW B1cIcf4nEPxyv7okSmZMTHliqgjejoYmdBoMp2M+CEPXVIqTcgRzXNONgyim58JN adIEJ2AUgXe2X+TFjgG8op7VJcNN63dx2HLQxJPLPpHChQPQ9ULEQGmTwrZDIxMo je6o6L5g//YFNynHBbhSikOHp4CST5U4+LElpdXEVbPAskpnFvCxDJdlkkrz/mOV eMKXAMUXJLKRNP/j/YA6KMnrJQwdT3MygrDtTRgJZYVBDF1PEQ0VgkUfI8jP00Vj JaQ/Kx10QMJ1UmJh61c9YS32h5gut7WtoL7uF3M0HyxyAwiX/40byzNaTNTFAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUIGfRLwHarayuXLq3oxIh/3wbOH4wHwYDVR0j BBgwFoAUcEUmLV7L0ID9fpC9V8XKwUdn19kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODAxYjc5YWMtMzM1MS00NzA1LThjM2QtNjAyYWRjZDc5YmI3LzAvNzA0NTI2MkQ1 RUNCRDA4MEZEN0U5MEJENTdDNUNBQzE0NzY3RDdEOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MDQ1MjYyRDVFQ0JEMDgwRkQ3RTkwQkQ1N0M1Q0FDMTQ3NjdE N0Q5LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzgwMWI3OWFjLTMzNTEtNDcwNS04 YzNkLTYwMmFkY2Q3OWJiNy8wLzMyMzAzMDMxM2E2NDY2MzUzYTYzMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTMxMzAzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfUM gDANBgkqhkiG9w0BAQsFAAOCAQEAAYp9wACFrS/VHn2tZUaCHDfyaPnG4R7/gdGB VAYdWet3ZM1r9tSmebE4dDc36xtErhlZ87jJYJX/EEAvMbchOf9kYjWxSMU8C//f HLM7csfHjfvG9EbzcRc49zyzG3iel0T/Ixujwda197whzzGkuL5Jg9e6sHVpopPX Bfh+MGHx2jbiEZOgX6kordAi7qcdPyn+DmkoACrg3kJr/Khn8dx66Ol4EXmz3gm/ Eg0URA3Sh2KDjuOrTaf9tHO7iQcqkfdjH5iMMIFJTmgesPOq0JMik64XTbxrCLwV Q+6I2//x/fFpi6nh2LFyB75hyapWosGT1/X2tAzu28n5xQOiFQ== -----END CERTIFICATE-----Generated at Wed May 13 13:25:23 2026 by rpki-client