$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d22f649-9968-495d-bdf1-7d76256daad5/1/323030313a6466343a353534303a3a2f34382d3438203d3e20313533313232.roa File: 323030313a6466343a353534303a3a2f34382d3438203d3e20313533313232.roa (raw, json) Hash identifier: xY/6i6LUbCTPc3rdGOALXXYogQcfaBFzo3dHge01GCI= Subject key identifier: 1D:24:E2:8B:E2:11:77:28:31:5B:42:F9:D5:75:2D:00:7B:61:B4:16 Certificate issuer: /CN=23778D1963851C4054ABA68BB8F80E5E45A7A7F1 Certificate serial: 1CF2A8FF7853B1F93CFE0D782CC6DD66358FABA3 Authority key identifier: 23:77:8D:19:63:85:1C:40:54:AB:A6:8B:B8:F8:0E:5E:45:A7:A7:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23778D1963851C4054ABA68BB8F80E5E45A7A7F1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d22f649-9968-495d-bdf1-7d76256daad5/1/323030313a6466343a353534303a3a2f34382d3438203d3e20313533313232.roa Signing time: Sun 03 May 2026 02:50:44 +0000 ROA not before: Sun 03 May 2026 02:45:44 +0000 ROA not after: Sun 02 May 2027 02:50:44 +0000 asID: 153122 IP address blocks: 2001:df4:5540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d22f649-9968-495d-bdf1-7d76256daad5/1/23778D1963851C4054ABA68BB8F80E5E45A7A7F1.crl rsync://rpki-rsync.idnic.net/repo/8d22f649-9968-495d-bdf1-7d76256daad5/1/23778D1963851C4054ABA68BB8F80E5E45A7A7F1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23778D1963851C4054ABA68BB8F80E5E45A7A7F1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f2:a8:ff:78:53:b1:f9:3c:fe:0d:78:2c:c6:dd:66:35:8f:ab:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23778D1963851C4054ABA68BB8F80E5E45A7A7F1 Validity Not Before: May 3 02:45:44 2026 GMT Not After : May 2 02:50:44 2027 GMT Subject: CN=1D24E28BE2117728315B42F9D5752D007B61B416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:97:ba:99:e6:42:cb:d2:61:fd:2a:a6:a3:b6: 46:35:2a:58:e3:23:05:82:26:1f:84:1c:8d:9e:c1: 0f:e2:8e:98:8a:00:42:56:05:02:c2:99:01:18:17: 39:23:ba:1c:68:18:e5:8a:c2:60:bf:d7:0c:06:ee: 27:46:ed:d6:9c:1f:c6:77:ff:2c:4b:d9:fc:3d:4f: 07:48:14:92:f1:ae:80:e8:29:75:76:0b:52:b5:89: 3f:5c:1a:50:63:46:52:c3:a6:70:6e:d1:31:3e:66: be:21:f1:6f:bd:e2:1b:f3:e5:99:b1:b0:f8:72:15: 0b:84:b1:d5:35:46:5e:86:1b:4f:0c:0d:fb:25:02: bc:f2:79:19:f0:4c:5a:9b:9e:58:10:e0:10:9d:af: 3f:99:c4:26:76:32:49:cc:2b:45:17:46:25:48:9c: 52:0d:b6:1f:70:33:77:58:96:b3:b8:bd:95:44:db: 2f:78:22:d3:c1:ee:1b:ff:e0:ea:01:59:c2:f2:38: 2d:a8:f2:0a:46:16:7a:4e:af:d8:ab:a2:f9:1c:d8: c6:fe:a6:cf:09:76:9f:23:24:4a:80:5d:3e:dc:ee: 14:cd:93:fc:fb:01:2b:49:ce:c5:d2:39:14:f7:a5: d2:bb:c0:8f:a1:5b:19:b0:1e:9a:73:a5:c6:74:65: 3a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:24:E2:8B:E2:11:77:28:31:5B:42:F9:D5:75:2D:00:7B:61:B4:16 X509v3 Authority Key Identifier: keyid:23:77:8D:19:63:85:1C:40:54:AB:A6:8B:B8:F8:0E:5E:45:A7:A7:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d22f649-9968-495d-bdf1-7d76256daad5/1/23778D1963851C4054ABA68BB8F80E5E45A7A7F1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23778D1963851C4054ABA68BB8F80E5E45A7A7F1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d22f649-9968-495d-bdf1-7d76256daad5/1/323030313a6466343a353534303a3a2f34382d3438203d3e20313533313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5540::/48 Signature Algorithm: sha256WithRSAEncryption 83:08:e9:e6:dc:72:3e:96:fd:66:28:b4:07:52:93:cb:30:fa: a0:db:08:e8:39:a7:1f:37:fe:ca:d4:b9:38:d0:3b:85:1e:05: c3:8e:f0:d0:48:cd:cf:61:39:f8:32:86:d1:67:5c:5c:34:22: 3a:3d:ea:91:eb:26:e8:81:c0:46:13:a8:b4:e1:fc:8d:4a:00: ae:4b:9e:c9:b9:4c:06:23:77:4c:2e:c2:b0:4d:c8:77:64:f2: c1:c3:56:2e:86:59:a8:43:1b:d1:7b:70:e7:22:e1:ba:29:26: 1e:b2:8a:cb:ec:1a:06:6b:ad:b3:ba:33:4e:1b:96:ef:78:d3: 89:5c:e2:a7:90:2a:7f:2f:41:eb:a0:8e:76:23:10:87:73:bd: 9f:07:a6:0e:17:e1:e1:40:d8:9e:4e:94:c3:97:d6:ca:13:87: 3c:d9:c8:4c:3a:ae:52:47:c7:af:af:3d:c4:dd:fc:2c:39:24: a4:71:00:b3:e2:e2:15:9e:53:09:85:81:1c:01:0a:3c:47:e9: 5d:ee:0d:a7:cc:0f:7c:0d:55:0d:84:4b:2f:d6:b8:ce:17:df: d1:31:49:61:74:85:7e:51:6a:69:af:8a:ed:f2:17:58:b2:d5: 41:0d:74:0f:90:26:11:a1:84:fe:e5:63:8c:d0:30:79:d3:e3: 49:88:33:d8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHPKo/3hTsfk8/g14LMbdZjWPq6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjM3NzhEMTk2Mzg1MUM0MDU0QUJBNjhCQjhGODBFNUU0 NUE3QTdGMTAeFw0yNjA1MDMwMjQ1NDRaFw0yNzA1MDIwMjUwNDRaMDMxMTAvBgNV BAMTKDFEMjRFMjhCRTIxMTc3MjgzMTVCNDJGOUQ1NzUyRDAwN0I2MUI0MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3l7qZ5kLL0mH9KqajtkY1Kljj IwWCJh+EHI2ewQ/ijpiKAEJWBQLCmQEYFzkjuhxoGOWKwmC/1wwG7idG7dacH8Z3 /yxL2fw9TwdIFJLxroDoKXV2C1K1iT9cGlBjRlLDpnBu0TE+Zr4h8W+94hvz5Zmx sPhyFQuEsdU1Rl6GG08MDfslArzyeRnwTFqbnlgQ4BCdrz+ZxCZ2MknMK0UXRiVI nFINth9wM3dYlrO4vZVE2y94ItPB7hv/4OoBWcLyOC2o8gpGFnpOr9irovkc2Mb+ ps8Jdp8jJEqAXT7c7hTNk/z7AStJzsXSORT3pdK7wI+hWxmwHppzpcZ0ZTq3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHSTii+IRdygxW0L51XUtAHthtBYwHwYDVR0j BBgwFoAUI3eNGWOFHEBUq6aLuPgOXkWnp/EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQyMmY2NDktOTk2OC00OTVkLWJkZjEtN2Q3NjI1NmRhYWQ1LzEvMjM3NzhEMTk2 Mzg1MUM0MDU0QUJBNjhCQjhGODBFNUU0NUE3QTdGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMzc3OEQxOTYzODUxQzQwNTRBQkE2OEJCOEY4MEU1RTQ1QTdB N0YxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhkMjJmNjQ5LTk5NjgtNDk1ZC1i ZGYxLTdkNzYyNTZkYWFkNS8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FVAMA0GCSqGSIb3DQEBCwUAA4IBAQCDCOnm3HI+lv1mKLQHUpPLMPqg2wjoOacf N/7K1Lk40DuFHgXDjvDQSM3PYTn4MobRZ1xcNCI6PeqR6ybogcBGE6i04fyNSgCu S57JuUwGI3dMLsKwTch3ZPLBw1YuhlmoQxvRe3DnIuG6KSYesorL7BoGa62zujNO G5bveNOJXOKnkCp/L0HroI52IxCHc72fB6YOF+HhQNieTpTDl9bKE4c82chMOq5S R8evrz3E3fwsOSSkcQCz4uIVnlMJhYEcAQo8R+ld7g2nzA98DVUNhEsv1rjOF9/R MUlhdIV+UWppr4rt8hdYstVBDXQPkCYRoYT+5WOM0DB50+NJiDPY -----END CERTIFICATE-----Generated at Wed May 13 06:26:26 2026 by rpki-client