$ rpki-client -vvf rpki-rsync.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa File: 323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa (raw, json) Hash identifier: +4kyqyr3JOavzrsg8xHYA+KSmEmJpxdTHr9HlN8gt/w= Subject key identifier: 94:38:FA:68:AF:5A:68:77:94:2E:49:0E:50:FA:03:BE:27:BB:64:85 Certificate issuer: /CN=BA730019A764CE08DFEDCCED34F19CB1993086B7 Certificate serial: 6180DF0371FB7704BC6467FE38A2EBA023F02E9E Authority key identifier: BA:73:00:19:A7:64:CE:08:DF:ED:CC:ED:34:F1:9C:B1:99:30:86:B7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA730019A764CE08DFEDCCED34F19CB1993086B7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa Signing time: Sun 03 May 2026 02:49:21 +0000 ROA not before: Sun 03 May 2026 02:44:21 +0000 ROA not after: Sun 02 May 2027 02:49:21 +0000 asID: 137374 IP address blocks: 2001:df4:6d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/BA730019A764CE08DFEDCCED34F19CB1993086B7.crl rsync://rpki-rsync.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/BA730019A764CE08DFEDCCED34F19CB1993086B7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA730019A764CE08DFEDCCED34F19CB1993086B7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:80:df:03:71:fb:77:04:bc:64:67:fe:38:a2:eb:a0:23:f0:2e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA730019A764CE08DFEDCCED34F19CB1993086B7 Validity Not Before: May 3 02:44:21 2026 GMT Not After : May 2 02:49:21 2027 GMT Subject: CN=9438FA68AF5A6877942E490E50FA03BE27BB6485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a8:f5:b3:26:14:bb:94:52:b4:21:af:1f:e3: 38:9a:0d:a9:8c:c4:26:a7:a6:a2:d8:3f:73:65:78: b7:bf:bf:60:aa:59:62:d0:7f:31:aa:51:77:32:19: 8d:6e:a4:a8:19:1e:cb:37:57:43:8e:a2:93:9f:4d: 19:07:7d:64:db:78:7d:8a:16:97:45:de:1e:a8:ee: c7:a6:f9:93:87:1f:c5:39:eb:89:1c:83:9b:d0:5e: 48:68:63:0d:57:56:4a:0c:14:54:21:4c:68:8c:0e: 8f:e7:60:7f:43:83:f4:37:d4:a0:4e:48:13:7e:7f: 00:ec:5d:a9:e2:9a:e4:3b:55:4e:42:b6:e4:86:ef: a2:2b:0c:9b:0d:66:a0:93:7f:f8:9e:06:62:4f:a1: ba:11:31:9b:f4:47:8f:dc:cc:5c:d2:c5:a5:54:26: c9:6a:18:91:b1:e0:83:af:99:16:e0:d9:cc:48:d9: 7f:2b:99:89:67:d7:bf:80:11:34:d8:98:f0:3f:a6: 9d:03:82:0a:d4:49:70:6a:d6:46:d2:fe:12:45:cb: cd:96:40:83:8d:29:40:73:2a:1e:a0:46:31:2d:79: 8f:b5:8a:d3:f4:70:5d:3a:16:e1:40:49:89:e7:4d: 47:db:d2:e7:a9:38:d0:ee:4b:3a:8a:3c:01:5d:ec: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:38:FA:68:AF:5A:68:77:94:2E:49:0E:50:FA:03:BE:27:BB:64:85 X509v3 Authority Key Identifier: keyid:BA:73:00:19:A7:64:CE:08:DF:ED:CC:ED:34:F1:9C:B1:99:30:86:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/BA730019A764CE08DFEDCCED34F19CB1993086B7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA730019A764CE08DFEDCCED34F19CB1993086B7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8a66f350-e642-402f-8ac3-6aef7e11aac3/0/323030313a6466343a366430303a3a2f34382d3438203d3e20313337333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6d00::/48 Signature Algorithm: sha256WithRSAEncryption 89:6c:84:ad:66:2d:73:81:59:6b:dc:c6:5d:30:c8:7f:19:60: f8:59:7c:c3:48:dc:c9:8c:e3:a5:f3:19:c7:06:29:25:50:37: cf:24:13:5a:52:7d:dc:2b:dc:73:09:da:9a:23:6a:45:0a:0c: a3:15:5c:40:62:32:60:30:20:06:0f:32:ca:d3:d7:67:f6:14: 29:02:97:37:2d:a8:56:1e:d1:78:0a:d4:63:40:40:d6:8c:88: 45:ec:13:82:41:7a:0a:a5:ff:7f:18:3b:7f:33:02:17:55:3d: e2:ff:97:e7:4c:54:9f:79:8b:c7:f3:15:89:da:f9:a3:77:99: 55:3c:d8:22:ff:ed:c5:53:fe:0c:cc:06:3c:3b:a3:a3:57:76: 70:ce:f0:9f:aa:f3:e3:61:e8:be:8f:08:06:ce:21:3b:64:bb: 71:8b:50:fd:9e:e7:54:59:c3:a0:46:75:b9:1d:59:1f:07:40: 96:d3:ab:5a:92:fd:fe:2e:a5:51:02:fc:96:f1:0f:9d:3b:df: 5b:24:9f:91:a4:95:26:20:60:d9:1e:26:13:b9:d5:7b:08:fb: 02:42:46:ce:27:e9:d7:0f:ce:52:e3:1c:d3:c0:dd:8d:65:fd: 96:4d:a7:ca:c1:3e:23:fe:3b:61:32:6b:b2:e6:91:ea:5a:fd: 6f:98:ae:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYYDfA3H7dwS8ZGf+OKLroCPwLp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE3MzAwMTlBNzY0Q0UwOERGRURDQ0VEMzRGMTlDQjE5 OTMwODZCNzAeFw0yNjA1MDMwMjQ0MjFaFw0yNzA1MDIwMjQ5MjFaMDMxMTAvBgNV BAMTKDk0MzhGQTY4QUY1QTY4Nzc5NDJFNDkwRTUwRkEwM0JFMjdCQjY0ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoqPWzJhS7lFK0Ia8f4ziaDamM xCanpqLYP3NleLe/v2CqWWLQfzGqUXcyGY1upKgZHss3V0OOopOfTRkHfWTbeH2K FpdF3h6o7sem+ZOHH8U564kcg5vQXkhoYw1XVkoMFFQhTGiMDo/nYH9Dg/Q31KBO SBN+fwDsXanimuQ7VU5CtuSG76IrDJsNZqCTf/ieBmJPoboRMZv0R4/czFzSxaVU JslqGJGx4IOvmRbg2cxI2X8rmYln17+AETTYmPA/pp0DggrUSXBq1kbS/hJFy82W QIONKUBzKh6gRjEteY+1itP0cF06FuFASYnnTUfb0uepONDuSzqKPAFd7MwZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlDj6aK9aaHeULkkOUPoDvie7ZIUwHwYDVR0j BBgwFoAUunMAGadkzgjf7cztNPGcsZkwhrcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGE2NmYzNTAtZTY0Mi00MDJmLThhYzMtNmFlZjdlMTFhYWMzLzAvQkE3MzAwMTlB NzY0Q0UwOERGRURDQ0VEMzRGMTlDQjE5OTMwODZCNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTczMDAxOUE3NjRDRTA4REZFRENDRUQzNEYxOUNCMTk5MzA4 NkI3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhhNjZmMzUwLWU2NDItNDAyZi04 YWMzLTZhZWY3ZTExYWFjMy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNzM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9G0AMA0GCSqGSIb3DQEBCwUAA4IBAQCJbIStZi1zgVlr3MZdMMh/GWD4WXzDSNzJ jOOl8xnHBiklUDfPJBNaUn3cK9xzCdqaI2pFCgyjFVxAYjJgMCAGDzLK09dn9hQp Apc3LahWHtF4CtRjQEDWjIhF7BOCQXoKpf9/GDt/MwIXVT3i/5fnTFSfeYvH8xWJ 2vmjd5lVPNgi/+3FU/4MzAY8O6OjV3ZwzvCfqvPjYei+jwgGziE7ZLtxi1D9nudU WcOgRnW5HVkfB0CW06takv3+LqVRAvyW8Q+dO99bJJ+RpJUmIGDZHiYTudV7CPsC QkbOJ+nXD85S4xzTwN2NZf2WTafKwT4j/jthMmuy5pHqWv1vmK6H -----END CERTIFICATE-----Generated at Wed May 13 07:46:21 2026 by rpki-client