$ rpki-client -vvf rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa File: 323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa (raw, json) Hash identifier: MlsPGYjwxcTUokzk7qgJtZJ0zjAyD3pAbTHc5VBWDJ4= Subject key identifier: 0D:74:21:82:B1:9F:A3:D4:9E:FB:71:F1:44:CA:27:50:5C:04:C2:7F Certificate issuer: /CN=CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034 Certificate serial: 435F9F8565B67EA1C7D7971606D0C230AEBE9094 Authority key identifier: CB:A7:7B:5D:F0:01:B3:9B:2B:A0:DE:CA:DD:B7:D3:ED:86:2C:10:34 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa Signing time: Sun 03 May 2026 02:48:14 +0000 ROA not before: Sun 03 May 2026 02:43:14 +0000 ROA not after: Sun 02 May 2027 02:48:14 +0000 asID: 150503 IP address blocks: 2001:df1:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.crl rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5f:9f:85:65:b6:7e:a1:c7:d7:97:16:06:d0:c2:30:ae:be:90:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034 Validity Not Before: May 3 02:43:14 2026 GMT Not After : May 2 02:48:14 2027 GMT Subject: CN=0D742182B19FA3D49EFB71F144CA27505C04C27F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:72:a2:0f:41:61:99:86:4a:1c:76:42:a9:99: dc:b8:9b:e8:09:46:7c:f7:5e:a6:dc:4d:11:3e:07: 95:21:80:6f:38:78:1a:3f:59:5f:50:25:2e:7c:66: e7:1f:74:01:42:d1:75:58:15:26:68:80:c6:5c:28: c2:b1:67:c5:45:6a:e2:da:71:3d:96:db:fc:43:fa: 7d:20:da:a2:be:0c:32:83:17:fd:5c:72:c0:4f:6c: 12:f0:16:fd:ac:37:05:23:07:41:03:f7:df:1a:39: 6e:f6:1d:92:e0:ad:25:5c:88:53:88:b9:8d:21:98: b3:c5:eb:65:4f:94:24:1e:f3:a5:33:39:34:3a:6b: 96:d1:07:8e:76:ac:c1:52:3a:50:6f:fa:92:11:f8: 9f:5c:c7:21:f2:c9:5f:e4:cf:dc:b1:b8:b4:7f:15: 4e:fa:63:8b:55:b5:50:54:53:0f:4f:0a:4b:08:49: 67:15:65:ee:ba:a0:1a:3e:13:56:7d:df:54:67:cc: e1:ac:f2:ad:1f:b1:8b:4b:91:00:c4:68:a7:1a:1e: b4:9d:66:11:5c:79:71:0c:af:2d:8d:6c:9f:ed:81: 66:51:4d:b1:48:2c:bd:e8:14:1d:83:d7:b1:90:a2: 51:6e:6b:ba:c5:5d:8c:6d:6a:26:35:42:bd:c6:84: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:74:21:82:B1:9F:A3:D4:9E:FB:71:F1:44:CA:27:50:5C:04:C2:7F X509v3 Authority Key Identifier: keyid:CB:A7:7B:5D:F0:01:B3:9B:2B:A0:DE:CA:DD:B7:D3:ED:86:2C:10:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CBA77B5DF001B39B2BA0DECADDB7D3ED862C1034.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/323030313a6466313a646534303a3a2f34382d3438203d3e20313530353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:de40::/48 Signature Algorithm: sha256WithRSAEncryption 31:66:b0:42:6e:d3:78:67:a8:16:7d:58:58:20:99:5a:bf:25: fc:0f:a0:81:53:fd:e9:bc:2f:b9:8f:38:da:56:88:f6:b4:f4: 05:fb:d8:43:1f:98:ca:e3:0f:c5:a2:0f:4e:70:06:08:fb:3c: 94:ed:4b:4a:56:3d:68:61:65:a4:9c:98:59:66:a0:89:23:e1: 41:8d:c6:94:01:17:25:97:31:f0:6d:63:11:b6:9e:87:6c:48: dc:76:b2:53:2f:ee:33:85:6c:b9:5f:e7:ba:fd:7f:3f:7c:71: e7:9e:39:a7:30:49:af:e3:1c:33:b7:b1:cc:ad:7a:d3:8c:ad: 94:bc:73:b4:78:89:06:94:cb:a1:af:40:aa:be:87:c4:8c:bf: af:d6:87:9a:a7:59:7d:65:d2:79:cf:cb:66:7d:be:77:b9:54: 32:43:7d:8c:c1:6d:61:a4:2a:39:cd:0c:31:7e:c6:75:58:09: 6e:9e:60:94:9a:9c:38:6a:2e:12:88:96:3c:30:f7:da:ce:36: 34:75:f5:ac:44:d7:d5:59:64:93:76:79:2a:12:45:f8:14:f1: 0a:78:2b:b8:ae:85:c4:7d:3d:9f:c5:e0:c3:11:41:81:b0:df: b1:d3:74:ce:1a:75:80:a4:96:0e:1a:9b:58:27:26:96:bc:d1: e2:ae:e1:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQ1+fhWW2fqHH15cWBtDCMK6+kJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0JBNzdCNURGMDAxQjM5QjJCQTBERUNBRERCN0QzRUQ4 NjJDMTAzNDAeFw0yNjA1MDMwMjQzMTRaFw0yNzA1MDIwMjQ4MTRaMDMxMTAvBgNV BAMTKDBENzQyMTgyQjE5RkEzRDQ5RUZCNzFGMTQ0Q0EyNzUwNUMwNEMyN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfcqIPQWGZhkocdkKpmdy4m+gJ Rnz3XqbcTRE+B5UhgG84eBo/WV9QJS58ZucfdAFC0XVYFSZogMZcKMKxZ8VFauLa cT2W2/xD+n0g2qK+DDKDF/1ccsBPbBLwFv2sNwUjB0ED998aOW72HZLgrSVciFOI uY0hmLPF62VPlCQe86UzOTQ6a5bRB452rMFSOlBv+pIR+J9cxyHyyV/kz9yxuLR/ FU76Y4tVtVBUUw9PCksISWcVZe66oBo+E1Z931RnzOGs8q0fsYtLkQDEaKcaHrSd ZhFceXEMry2NbJ/tgWZRTbFILL3oFB2D17GQolFua7rFXYxtaiY1Qr3GhMqdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUDXQhgrGfo9Se+3HxRMonUFwEwn8wHwYDVR0j BBgwFoAUy6d7XfABs5sroN7K3bfT7YYsEDQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODYyZDRkNzQtNjI5NS00NDk2LTgyM2EtMWU4YTNkNWJiYjZjLzAvQ0JBNzdCNURG MDAxQjM5QjJCQTBERUNBRERCN0QzRUQ4NjJDMTAzNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQkE3N0I1REYwMDFCMzlCMkJBMERFQ0FEREI3RDNFRDg2MkMx MDM0LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg2MmQ0ZDc0LTYyOTUtNDQ5Ni04 MjNhLTFlOGEzZDViYmI2Yy8wLzMyMzAzMDMxM2E2NDY2MzEzYTY0NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzUzMDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8d5AMA0GCSqGSIb3DQEBCwUAA4IBAQAxZrBCbtN4Z6gWfVhYIJlavyX8D6CBU/3p vC+5jzjaVoj2tPQF+9hDH5jK4w/Fog9OcAYI+zyU7UtKVj1oYWWknJhZZqCJI+FB jcaUARcllzHwbWMRtp6HbEjcdrJTL+4zhWy5X+e6/X8/fHHnnjmnMEmv4xwzt7HM rXrTjK2UvHO0eIkGlMuhr0CqvofEjL+v1oeap1l9ZdJ5z8tmfb53uVQyQ32MwW1h pCo5zQwxfsZ1WAlunmCUmpw4ai4SiJY8MPfazjY0dfWsRNfVWWSTdnkqEkX4FPEK eCu4roXEfT2fxeDDEUGBsN+x03TOGnWApJYOGptYJyaWvNHiruGu -----END CERTIFICATE-----Generated at Wed May 13 04:16:19 2026 by rpki-client