$ rpki-client -vvf rpki-rsync.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa File: 323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa (raw, json) Hash identifier: bxuJHdBQ29ujm6ZiEr/payUgkQDlp15FaGJqOvION0Y= Subject key identifier: 62:AB:77:F1:AA:01:19:15:01:DD:F7:66:9F:5A:80:37:BD:18:1E:C5 Certificate issuer: /CN=F24F92FEE32EF3FD89B142D403B664674EC45F20 Certificate serial: 67A3BD32172A5E0E3DED9429E3AE196C6E8806D3 Authority key identifier: F2:4F:92:FE:E3:2E:F3:FD:89:B1:42:D4:03:B6:64:67:4E:C4:5F:20 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F24F92FEE32EF3FD89B142D403B664674EC45F20.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa Signing time: Sun 03 May 2026 02:48:51 +0000 ROA not before: Sun 03 May 2026 02:43:51 +0000 ROA not after: Sun 02 May 2027 02:48:51 +0000 asID: 137351 IP address blocks: 2001:df4:f900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/F24F92FEE32EF3FD89B142D403B664674EC45F20.crl rsync://rpki-rsync.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/F24F92FEE32EF3FD89B142D403B664674EC45F20.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F24F92FEE32EF3FD89B142D403B664674EC45F20.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a3:bd:32:17:2a:5e:0e:3d:ed:94:29:e3:ae:19:6c:6e:88:06:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F24F92FEE32EF3FD89B142D403B664674EC45F20 Validity Not Before: May 3 02:43:51 2026 GMT Not After : May 2 02:48:51 2027 GMT Subject: CN=62AB77F1AA01191501DDF7669F5A8037BD181EC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7c:42:b1:56:9d:24:93:3f:f9:be:53:69:11: d1:dc:48:56:7a:68:e0:cd:23:a2:20:8b:17:c9:dd: 44:64:ec:d9:42:ef:33:00:0f:bf:f7:ae:37:84:02: e2:6d:0e:5d:c0:2a:f7:15:e8:fe:6f:a3:f1:95:e3: 34:90:3c:d5:87:0b:62:32:e4:b4:80:99:cb:eb:6c: fe:0c:43:38:f6:75:fe:6a:9e:46:3b:23:8b:5f:a8: 61:c4:ec:e6:79:ee:6e:46:d6:6f:3e:1e:f3:2f:21: 49:22:43:e9:32:58:f5:f7:47:e6:47:e4:80:ba:e2: 2e:ad:33:7b:b5:c0:60:f6:e7:af:e8:7d:f6:4e:73: dc:d6:b0:f6:a4:da:0b:be:0d:a4:a0:e4:90:97:31: 2a:1f:fa:24:bc:64:ff:b6:c7:ab:36:88:66:b5:66: 95:1e:cf:c5:31:e2:38:9d:23:a8:6a:92:a8:74:45: f6:03:b2:0e:92:d2:48:13:4a:39:82:ac:52:59:9e: c1:a5:41:56:a0:82:ca:2b:ad:6b:5b:95:07:06:95: 82:c8:6d:7f:6d:68:d4:58:62:f6:4f:8b:3f:f4:89: 53:44:6c:d9:3a:2a:3d:0c:14:b0:eb:a9:30:2b:3e: df:26:ea:a4:d2:5a:36:e3:2a:00:9c:c7:85:40:5b: 7d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:AB:77:F1:AA:01:19:15:01:DD:F7:66:9F:5A:80:37:BD:18:1E:C5 X509v3 Authority Key Identifier: keyid:F2:4F:92:FE:E3:2E:F3:FD:89:B1:42:D4:03:B6:64:67:4E:C4:5F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/F24F92FEE32EF3FD89B142D403B664674EC45F20.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F24F92FEE32EF3FD89B142D403B664674EC45F20.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f900::/48 Signature Algorithm: sha256WithRSAEncryption 9d:7a:43:b3:97:a9:16:16:73:0c:81:72:38:fe:5d:a0:ab:6e: 1d:f0:f0:b9:00:fe:a7:87:ec:56:e4:c8:73:3d:5a:e9:21:ec: b5:04:f8:cd:02:ca:55:4c:9a:32:0f:f9:36:7b:6c:7c:7b:89: 97:57:7e:46:c1:c1:16:ad:99:27:7f:9c:68:02:18:e7:7d:5e: bd:08:8b:18:98:44:5f:69:06:02:04:d8:18:9d:f3:18:5b:99: 70:da:03:14:9e:08:3d:3a:8f:18:ad:6e:50:3b:9d:7a:ba:3f: 2a:dc:51:1f:e1:39:82:a9:cd:c9:be:8a:38:bb:fd:49:76:0b: 97:f1:e3:87:5b:f0:65:ab:4a:40:7d:2e:60:55:0e:40:3a:cf: e6:71:26:76:46:3b:be:74:24:1b:ef:80:1b:b4:01:1d:d8:79: 9b:45:f0:91:b8:8a:49:0f:48:99:1f:98:24:6e:d4:1e:bb:73: ed:db:5b:0d:80:04:51:c3:07:fb:5e:df:91:d9:4f:08:be:ad: 69:0d:cd:3e:96:f6:5a:9e:7c:83:47:08:48:57:63:03:c8:b6: 3c:35:66:4d:66:db:fa:a6:e6:81:05:77:d6:27:03:78:ac:b0: 07:e7:34:b9:79:be:b3:0d:d8:19:17:a1:07:4c:75:15:3a:d5: 3d:0f:31:b0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ6O9MhcqXg497ZQp464ZbG6IBtMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI0RjkyRkVFMzJFRjNGRDg5QjE0MkQ0MDNCNjY0Njc0 RUM0NUYyMDAeFw0yNjA1MDMwMjQzNTFaFw0yNzA1MDIwMjQ4NTFaMDMxMTAvBgNV BAMTKDYyQUI3N0YxQUEwMTE5MTUwMURERjc2NjlGNUE4MDM3QkQxODFFQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDofEKxVp0kkz/5vlNpEdHcSFZ6 aODNI6IgixfJ3URk7NlC7zMAD7/3rjeEAuJtDl3AKvcV6P5vo/GV4zSQPNWHC2Iy 5LSAmcvrbP4MQzj2df5qnkY7I4tfqGHE7OZ57m5G1m8+HvMvIUkiQ+kyWPX3R+ZH 5IC64i6tM3u1wGD256/offZOc9zWsPak2gu+DaSg5JCXMSof+iS8ZP+2x6s2iGa1 ZpUez8Ux4jidI6hqkqh0RfYDsg6S0kgTSjmCrFJZnsGlQVaggsorrWtblQcGlYLI bX9taNRYYvZPiz/0iVNEbNk6Kj0MFLDrqTArPt8m6qTSWjbjKgCcx4VAW31rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYqt38aoBGRUB3fdmn1qAN70YHsUwHwYDVR0j BBgwFoAU8k+S/uMu8/2JsULUA7ZkZ07EXyAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODg3ODhhOGItNTQxYi00Y2JmLWJhYjktOGRjMzc3YmMxMjg0LzAvRjI0RjkyRkVF MzJFRjNGRDg5QjE0MkQ0MDNCNjY0Njc0RUM0NUYyMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMjRGOTJGRUUzMkVGM0ZEODlCMTQyRDQwM0I2NjQ2NzRFQzQ1 RjIwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg4Nzg4YThiLTU0MWItNGNiZi1i YWI5LThkYzM3N2JjMTI4NC8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9PkAMA0GCSqGSIb3DQEBCwUAA4IBAQCdekOzl6kWFnMMgXI4/l2gq24d8PC5AP6n h+xW5MhzPVrpIey1BPjNAspVTJoyD/k2e2x8e4mXV35GwcEWrZknf5xoAhjnfV69 CIsYmERfaQYCBNgYnfMYW5lw2gMUngg9Oo8YrW5QO516uj8q3FEf4TmCqc3Jvoo4 u/1JdguX8eOHW/Blq0pAfS5gVQ5AOs/mcSZ2Rju+dCQb74AbtAEd2HmbRfCRuIpJ D0iZH5gkbtQeu3Pt21sNgARRwwf7Xt+R2U8Ivq1pDc0+lvZannyDRwhIV2MDyLY8 NWZNZtv6puaBBXfWJwN4rLAH5zS5eb6zDdgZF6EHTHUVOtU9DzGw -----END CERTIFICATE-----Generated at Wed May 13 10:39:37 2026 by rpki-client