$ rpki-client -vvf rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa File: 323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa (raw, json) Hash identifier: 1Tk9QAHZ0ijLeVFuLiIRsfqrrSPDFu+yHnjWDMhhwpg= Subject key identifier: C1:E3:36:C5:71:D3:F1:CE:F2:55:69:1B:8F:30:58:C3:19:D7:11:F6 Certificate issuer: /CN=FD353187FB0D364FA7086A1728B9894B9F43AFA7 Certificate serial: 7A27AA8BE0BF3DEC6DA8824075099BD8A14338D4 Authority key identifier: FD:35:31:87:FB:0D:36:4F:A7:08:6A:17:28:B9:89:4B:9F:43:AF:A7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD353187FB0D364FA7086A1728B9894B9F43AFA7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa Signing time: Sun 03 May 2026 02:51:31 +0000 ROA not before: Sun 03 May 2026 02:46:31 +0000 ROA not after: Sun 02 May 2027 02:51:31 +0000 asID: 134640 IP address blocks: 2001:df0:a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/FD353187FB0D364FA7086A1728B9894B9F43AFA7.crl rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/FD353187FB0D364FA7086A1728B9894B9F43AFA7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD353187FB0D364FA7086A1728B9894B9F43AFA7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:27:aa:8b:e0:bf:3d:ec:6d:a8:82:40:75:09:9b:d8:a1:43:38:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD353187FB0D364FA7086A1728B9894B9F43AFA7 Validity Not Before: May 3 02:46:31 2026 GMT Not After : May 2 02:51:31 2027 GMT Subject: CN=C1E336C571D3F1CEF255691B8F3058C319D711F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:03:8b:09:42:8c:83:35:ed:19:92:74:20:b3: 41:a1:87:a8:1e:4c:99:df:58:63:39:46:ee:a4:a3: 28:03:bd:95:bf:e9:b7:be:3d:2b:5f:b7:a3:51:08: 8f:6c:9e:d0:ce:b2:05:d8:96:d5:1b:a1:8f:49:15: 9a:95:59:7d:7f:61:da:39:44:68:69:c8:8d:c3:4e: 40:f2:e3:92:b7:16:27:9d:ee:7d:3b:05:f4:a1:a0: 9a:8c:98:d1:8b:9f:60:9f:1b:9d:db:74:45:af:71: 62:ef:cf:8c:ee:bf:7c:5f:da:f9:1f:9c:75:09:c0: 7a:8d:f3:5c:8f:86:98:38:af:c5:a2:b5:92:85:03: 55:15:2e:ca:7b:72:3e:6e:4c:9a:a1:ab:0d:f6:56: 7a:9b:ec:24:ec:eb:b2:73:81:23:9e:6e:24:36:26: 8e:f4:48:5e:69:f0:de:59:9c:a4:2d:ad:b3:4b:33: 66:1f:b7:a1:21:f8:01:60:b6:9b:3b:b6:a4:0f:d2: a3:bf:80:e1:36:ff:58:7d:19:8f:0d:5f:0a:44:7e: 35:3d:94:93:ea:f5:f8:24:86:12:6b:d0:94:1c:e6: d6:e5:83:3d:32:17:ba:ff:6d:97:4a:c8:70:8b:e2: e4:14:ca:f5:9c:40:28:a3:35:8c:91:c5:75:d2:88: 94:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E3:36:C5:71:D3:F1:CE:F2:55:69:1B:8F:30:58:C3:19:D7:11:F6 X509v3 Authority Key Identifier: keyid:FD:35:31:87:FB:0D:36:4F:A7:08:6A:17:28:B9:89:4B:9F:43:AF:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/FD353187FB0D364FA7086A1728B9894B9F43AFA7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FD353187FB0D364FA7086A1728B9894B9F43AFA7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a00::/48 Signature Algorithm: sha256WithRSAEncryption 21:f1:72:03:de:17:69:fd:1d:8c:16:e0:41:e0:3f:1a:c2:f4: 39:6a:fe:3f:0b:fb:ce:ce:36:61:f5:64:c8:4b:45:f0:d4:1e: a3:90:4a:e4:9a:55:ff:51:a8:ad:83:87:9b:c4:ce:6d:40:93: 08:51:d8:d1:7c:86:09:fe:79:e7:16:c7:7e:6d:51:7d:2f:67: 44:7b:c9:a2:fa:28:a0:b3:15:c2:7c:23:38:a7:9f:3d:ee:a3: de:03:62:13:72:af:13:a3:bb:e2:1a:0e:50:50:2c:ab:27:c1: 4f:c4:42:cd:1f:0f:5a:af:41:23:14:ae:14:30:71:b6:59:6b: a3:a7:47:2e:b1:fb:21:35:3a:5c:b8:b7:8f:eb:f9:1f:c6:e2: 21:55:f8:09:4e:dc:c8:96:69:d0:28:65:f8:59:29:f6:00:22: 7a:f0:0b:e6:5d:fa:1a:41:96:f9:08:ec:2f:2a:fd:40:f1:c9: 95:c8:19:46:46:84:1c:e4:69:be:d8:15:da:37:ba:89:f6:a4: ec:48:9b:42:5c:07:81:38:ab:1b:e8:67:78:20:25:d4:6c:dd: c4:88:06:2a:13:94:9a:20:40:7e:35:42:de:39:71:87:bd:65: 9e:5c:27:74:f0:bb:12:be:fc:24:7e:80:d6:95:d4:55:c4:7e: c6:17:af:21 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUeieqi+C/PextqIJAdQmb2KFDONQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQzNTMxODdGQjBEMzY0RkE3MDg2QTE3MjhCOTg5NEI5 RjQzQUZBNzAeFw0yNjA1MDMwMjQ2MzFaFw0yNzA1MDIwMjUxMzFaMDMxMTAvBgNV BAMTKEMxRTMzNkM1NzFEM0YxQ0VGMjU1NjkxQjhGMzA1OEMzMTlENzExRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsA4sJQoyDNe0ZknQgs0Ghh6ge TJnfWGM5Ru6koygDvZW/6be+PStft6NRCI9sntDOsgXYltUboY9JFZqVWX1/Ydo5 RGhpyI3DTkDy45K3Fied7n07BfShoJqMmNGLn2CfG53bdEWvcWLvz4zuv3xf2vkf nHUJwHqN81yPhpg4r8WitZKFA1UVLsp7cj5uTJqhqw32Vnqb7CTs67JzgSOebiQ2 Jo70SF5p8N5ZnKQtrbNLM2Yft6Eh+AFgtps7tqQP0qO/gOE2/1h9GY8NXwpEfjU9 lJPq9fgkhhJr0JQc5tblgz0yF7r/bZdKyHCL4uQUyvWcQCijNYyRxXXSiJShAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUweM2xXHT8c7yVWkbjzBYwxnXEfYwHwYDVR0j BBgwFoAU/TUxh/sNNk+nCGoXKLmJS59Dr6cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTA0ZDAzOTctZmZhMC00OTAzLTgwNWYtMDg0NTI3YmM0MzBjLzAvRkQzNTMxODdG QjBEMzY0RkE3MDg2QTE3MjhCOTg5NEI5RjQzQUZBNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GRDM1MzE4N0ZCMEQzNjRGQTcwODZBMTcyOEI5ODk0QjlGNDNB RkE3LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzkwNGQwMzk3LWZmYTAtNDkwMy04 MDVmLTA4NDUyN2JjNDMwYy8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzQzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAK ADANBgkqhkiG9w0BAQsFAAOCAQEAIfFyA94Xaf0djBbgQeA/GsL0OWr+Pwv7zs42 YfVkyEtF8NQeo5BK5JpV/1GorYOHm8TObUCTCFHY0XyGCf555xbHfm1RfS9nRHvJ ovoooLMVwnwjOKefPe6j3gNiE3KvE6O74hoOUFAsqyfBT8RCzR8PWq9BIxSuFDBx tllro6dHLrH7ITU6XLi3j+v5H8biIVX4CU7cyJZp0Chl+Fkp9gAievAL5l36GkGW +QjsLyr9QPHJlcgZRkaEHORpvtgV2je6ifak7EibQlwHgTirG+hneCAl1GzdxIgG KhOUmiBAfjVC3jlxh71lnlwndPC7Er78JH6A1pXUVcR+xhevIQ== -----END CERTIFICATE-----Generated at Wed May 13 13:28:19 2026 by rpki-client