$ rpki-client -vvf rpki-rsync.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa File: 323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa (raw, json) Hash identifier: /KOgzrDFq/tIyDOkqLi1nhsbulS+0UUYSYry8OoTmJg= Subject key identifier: 9A:C2:03:35:FE:C8:26:5F:EA:6D:9A:A1:88:ED:09:A5:94:24:A4:BA Certificate issuer: /CN=B9E54455BBADEE4051F79D907B7453E95F13B467 Certificate serial: 072037541AF0A491218EB9E40D6A5CCFE72F58FF Authority key identifier: B9:E5:44:55:BB:AD:EE:40:51:F7:9D:90:7B:74:53:E9:5F:13:B4:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9E54455BBADEE4051F79D907B7453E95F13B467.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa Signing time: Sun 03 May 2026 02:49:35 +0000 ROA not before: Sun 03 May 2026 02:44:35 +0000 ROA not after: Sun 02 May 2027 02:49:35 +0000 asID: 23694 IP address blocks: 2001:df2:b200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/B9E54455BBADEE4051F79D907B7453E95F13B467.crl rsync://rpki-rsync.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/B9E54455BBADEE4051F79D907B7453E95F13B467.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9E54455BBADEE4051F79D907B7453E95F13B467.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:20:37:54:1a:f0:a4:91:21:8e:b9:e4:0d:6a:5c:cf:e7:2f:58:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9E54455BBADEE4051F79D907B7453E95F13B467 Validity Not Before: May 3 02:44:35 2026 GMT Not After : May 2 02:49:35 2027 GMT Subject: CN=9AC20335FEC8265FEA6D9AA188ED09A59424A4BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:31:f8:66:c9:10:47:a1:f6:0d:63:0f:53:03: a5:83:f1:07:f9:69:da:91:be:e7:61:89:3b:ed:01: 5c:6e:bd:0b:a2:ad:e9:e1:cd:7b:ba:b6:f3:14:46: 91:66:c7:86:c3:85:cc:ed:9c:d6:33:40:d9:23:ee: 80:cf:fc:34:01:3d:58:9f:34:b6:10:11:e4:55:5b: d4:73:3c:3b:5d:93:dd:0e:d8:bc:9f:a5:bb:9a:e9: d1:98:9a:a0:9c:77:93:c2:09:a7:d3:73:9f:9e:02: 83:91:d8:05:46:8f:28:68:d5:12:44:03:6f:41:82: 77:cf:df:ae:3b:db:6c:1b:55:7b:83:71:70:49:fe: 50:20:37:0a:62:f8:06:50:d5:68:16:bf:35:93:94: 40:93:ec:77:9f:15:30:03:08:2a:a1:5c:da:0a:aa: e1:6d:2c:ab:19:c7:27:b5:a4:8a:c0:a8:5c:71:59: 71:bc:44:b8:23:b8:93:0d:0b:41:4c:ca:56:c0:06: 9e:98:7e:47:c0:e2:11:cd:30:24:fa:22:9e:e8:cf: 2c:3f:a6:3c:63:78:2a:82:8c:52:4a:84:76:c4:28: 5c:b4:45:db:d8:60:b4:bb:ba:85:8a:70:5d:06:b7: 3f:b2:58:06:69:5a:d5:20:fe:a3:01:d0:30:a2:20: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C2:03:35:FE:C8:26:5F:EA:6D:9A:A1:88:ED:09:A5:94:24:A4:BA X509v3 Authority Key Identifier: keyid:B9:E5:44:55:BB:AD:EE:40:51:F7:9D:90:7B:74:53:E9:5F:13:B4:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/B9E54455BBADEE4051F79D907B7453E95F13B467.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B9E54455BBADEE4051F79D907B7453E95F13B467.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:b200::/48 Signature Algorithm: sha256WithRSAEncryption 5b:1c:21:02:17:9c:fa:b6:f1:9f:06:f3:d7:55:42:96:47:70: 75:3a:b3:e5:58:63:70:34:63:8e:06:de:1b:80:dc:d1:80:39: fe:d2:d1:68:31:83:4d:7b:1a:69:7e:6d:f7:28:be:da:20:8f: 19:81:30:6e:74:9c:e9:3e:db:de:6d:f6:c1:89:a4:25:5f:0a: 9f:6f:4a:f9:e8:b2:91:63:35:71:e6:22:e5:17:ba:88:8d:30: 6e:19:95:ab:53:a5:82:d1:50:3c:1c:5f:c9:3c:f5:62:b8:61: 5e:e6:1a:c7:64:d3:3c:01:f7:ff:5f:43:f2:b6:c9:5c:f9:11: 66:ad:87:99:2f:97:cc:4d:97:41:5b:f4:32:32:86:cd:8a:fc: 88:dd:0b:20:c7:fc:cc:f5:ec:13:24:d5:53:46:fa:aa:a1:40: 17:ee:f9:36:c8:1e:7a:17:ee:6c:ba:03:4d:96:cd:e9:6b:e9: 5c:0c:d1:84:39:52:86:f7:e2:a9:c7:a7:84:05:4e:fd:d3:8c: c2:d4:da:ff:1b:15:35:71:e3:c7:21:70:a0:a6:24:f0:1e:39: f8:1b:fa:da:6e:9b:c6:f2:8a:1d:60:bc:94:4f:6b:c1:d8:c1: 8e:ac:88:39:60:cc:16:d7:81:8d:48:66:1b:32:2e:ed:ee:5a: c6:0b:85:0a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUByA3VBrwpJEhjrnkDWpcz+cvWP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlFNTQ0NTVCQkFERUU0MDUxRjc5RDkwN0I3NDUzRTk1 RjEzQjQ2NzAeFw0yNjA1MDMwMjQ0MzVaFw0yNzA1MDIwMjQ5MzVaMDMxMTAvBgNV BAMTKDlBQzIwMzM1RkVDODI2NUZFQTZEOUFBMTg4RUQwOUE1OTQyNEE0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWMfhmyRBHofYNYw9TA6WD8Qf5 adqRvudhiTvtAVxuvQuirenhzXu6tvMURpFmx4bDhcztnNYzQNkj7oDP/DQBPVif NLYQEeRVW9RzPDtdk90O2Lyfpbua6dGYmqCcd5PCCafTc5+eAoOR2AVGjyho1RJE A29BgnfP364722wbVXuDcXBJ/lAgNwpi+AZQ1WgWvzWTlECT7HefFTADCCqhXNoK quFtLKsZxye1pIrAqFxxWXG8RLgjuJMNC0FMylbABp6YfkfA4hHNMCT6Ip7ozyw/ pjxjeCqCjFJKhHbEKFy0RdvYYLS7uoWKcF0Gtz+yWAZpWtUg/qMB0DCiIHd7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmsIDNf7IJl/qbZqhiO0JpZQkpLowHwYDVR0j BBgwFoAUueVEVbut7kBR952Qe3RT6V8TtGcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGI0Zjg1MTEtMDdiMy00YTYxLWJkMDQtMmU2NjVjOTI3OGZjLzAvQjlFNTQ0NTVC QkFERUU0MDUxRjc5RDkwN0I3NDUzRTk1RjEzQjQ2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COUU1NDQ1NUJCQURFRTQwNTFGNzlEOTA3Qjc0NTNFOTVGMTNC NDY3LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhiNGY4NTExLTA3YjMtNGE2MS1i ZDA0LTJlNjY1YzkyNzhmYy8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzkzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfKy ADANBgkqhkiG9w0BAQsFAAOCAQEAWxwhAhec+rbxnwbz11VClkdwdTqz5VhjcDRj jgbeG4Dc0YA5/tLRaDGDTXsaaX5t9yi+2iCPGYEwbnSc6T7b3m32wYmkJV8Kn29K +eiykWM1ceYi5Re6iI0wbhmVq1OlgtFQPBxfyTz1YrhhXuYax2TTPAH3/19D8rbJ XPkRZq2HmS+XzE2XQVv0MjKGzYr8iN0LIMf8zPXsEyTVU0b6qqFAF+75Nsgeehfu bLoDTZbN6WvpXAzRhDlShvfiqcenhAVO/dOMwtTa/xsVNXHjxyFwoKYk8B45+Bv6 2m6bxvKKHWC8lE9rwdjBjqyIOWDMFteBjUhmGzIu7e5axguFCg== -----END CERTIFICATE-----Generated at Wed May 13 09:54:57 2026 by rpki-client