$ rpki-client -vvf rpki-rsync.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa File: 323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa (raw, json) Hash identifier: 9hurPke9TvFgQ13BY5gZD2uH3uoeH6rZWMcJHoLiSRc= Subject key identifier: AA:D2:F0:BD:59:EA:DA:C3:90:BE:A2:A0:8F:BC:50:D5:9A:18:33:5B Certificate issuer: /CN=D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915 Certificate serial: 622487C8DB3E82B207ED8D570F153A657DB49CBB Authority key identifier: D4:FA:ED:0A:B5:E9:0A:36:B5:DB:DC:BC:E8:6B:88:EA:D2:66:A9:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa Signing time: Sun 03 May 2026 02:53:00 +0000 ROA not before: Sun 03 May 2026 02:48:00 +0000 ROA not after: Sun 02 May 2027 02:53:00 +0000 asID: 153150 IP address blocks: 2001:df4:8e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915.crl rsync://rpki-rsync.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:24:87:c8:db:3e:82:b2:07:ed:8d:57:0f:15:3a:65:7d:b4:9c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915 Validity Not Before: May 3 02:48:00 2026 GMT Not After : May 2 02:53:00 2027 GMT Subject: CN=AAD2F0BD59EADAC390BEA2A08FBC50D59A18335B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2a:29:c6:b9:06:71:4d:6e:4d:ac:73:0c:07: 24:b5:50:05:dd:cd:43:b4:a8:f2:dc:06:d2:f2:1a: ac:2b:61:74:0f:64:89:06:94:42:62:7e:a3:54:d2: 6f:6e:7f:eb:a8:dd:67:7e:df:73:8e:fd:da:73:d3: a6:7c:dc:74:12:5b:91:cf:46:fd:52:a0:3a:d7:65: 79:17:77:ed:96:34:0d:73:d7:fb:bb:c3:e7:7d:82: 04:5b:19:da:2b:b2:c3:50:3c:07:44:a7:a2:a5:7b: 44:f9:56:e0:1b:b7:b9:e3:58:54:5d:f3:b3:ab:50: ed:16:c6:4e:6c:12:ee:93:6f:ee:67:95:99:64:8d: ad:b9:5a:ce:ea:c6:96:e0:a1:e8:ae:1d:43:38:d6: de:2c:e0:5b:bd:ab:35:0d:ee:60:50:a0:ba:3a:45: b5:7f:de:b3:69:ec:f6:1a:c3:ad:44:e3:e4:83:b5: a4:1c:27:c6:4b:09:0f:0c:77:94:44:b6:07:e8:d1: 70:49:a1:28:60:e7:14:04:11:81:33:8e:48:0f:30: 9b:b8:05:d0:58:b9:58:dd:8a:e2:f4:b4:66:73:80: 10:81:94:ef:26:a1:fc:24:60:c3:31:35:50:72:30: c1:c3:f9:35:95:ca:48:a0:92:93:d0:c0:93:16:ad: 6b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D2:F0:BD:59:EA:DA:C3:90:BE:A2:A0:8F:BC:50:D5:9A:18:33:5B X509v3 Authority Key Identifier: keyid:D4:FA:ED:0A:B5:E9:0A:36:B5:DB:DC:BC:E8:6B:88:EA:D2:66:A9:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D4FAED0AB5E90A36B5DBDCBCE86B88EAD266A915.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/323030313a6466343a386534303a3a2f34382d3438203d3e20313533313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:8e40::/48 Signature Algorithm: sha256WithRSAEncryption b5:b9:5b:b4:93:f5:2f:32:00:7d:95:90:61:bc:91:b7:87:fb: 90:60:ef:58:35:e1:15:3f:b4:fa:96:4e:fb:b9:8a:7f:d4:d1: bc:3b:19:a9:40:3a:70:a1:f8:d3:7e:81:8c:27:2e:00:8b:92: a1:c7:2d:e2:5a:83:73:5e:cd:a0:e5:69:0e:7c:5f:62:ad:82: a9:88:0a:e8:e1:88:50:81:45:83:f4:6a:87:f3:04:f6:75:da: c1:e7:64:28:d6:b3:4c:ff:28:4f:2f:7b:59:d4:fd:aa:14:25: cb:57:16:4d:35:55:79:f5:0d:53:7a:92:b2:93:c3:22:96:95: f6:90:ba:ff:bc:3d:4c:91:21:a5:42:26:90:b3:c9:8e:9f:ec: 56:54:67:7b:bd:74:7b:76:9e:17:1c:57:45:d7:4f:61:41:ad: 9a:04:dc:1e:57:7e:d6:a6:85:49:b2:9f:30:66:f9:f1:af:b0: b0:13:65:97:c8:a4:3d:bc:af:e8:0c:a0:bc:63:2d:6a:90:39: bf:eb:93:61:38:0f:4d:56:19:fb:05:55:cd:76:c5:58:29:35: 95:a7:a1:7b:12:db:f1:aa:2f:4d:6b:c2:3e:9f:e1:e8:74:c8: 74:a9:7c:24:ce:ab:38:64:37:01:1d:dc:c1:4a:40:d6:8c:89: 16:f2:64:fd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYiSHyNs+grIH7Y1XDxU6ZX20nLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRGQUVEMEFCNUU5MEEzNkI1REJEQ0JDRTg2Qjg4RUFE MjY2QTkxNTAeFw0yNjA1MDMwMjQ4MDBaFw0yNzA1MDIwMjUzMDBaMDMxMTAvBgNV BAMTKEFBRDJGMEJENTlFQURBQzM5MEJFQTJBMDhGQkM1MEQ1OUExODMzNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVKinGuQZxTW5NrHMMByS1UAXd zUO0qPLcBtLyGqwrYXQPZIkGlEJifqNU0m9uf+uo3Wd+33OO/dpz06Z83HQSW5HP Rv1SoDrXZXkXd+2WNA1z1/u7w+d9ggRbGdorssNQPAdEp6Kle0T5VuAbt7njWFRd 87OrUO0Wxk5sEu6Tb+5nlZlkja25Ws7qxpbgoeiuHUM41t4s4Fu9qzUN7mBQoLo6 RbV/3rNp7PYaw61E4+SDtaQcJ8ZLCQ8Md5REtgfo0XBJoShg5xQEEYEzjkgPMJu4 BdBYuVjdiuL0tGZzgBCBlO8mofwkYMMxNVByMMHD+TWVykigkpPQwJMWrWvVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUqtLwvVnq2sOQvqKgj7xQ1ZoYM1swHwYDVR0j BBgwFoAU1PrtCrXpCja129y86GuI6tJmqRUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTU5NjEyYTItNDQzMy00MmI5LThmNGYtYjg0Nzc3NmFjYWZkLzEvRDRGQUVEMEFC NUU5MEEzNkI1REJEQ0JDRTg2Qjg4RUFEMjY2QTkxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENEZBRUQwQUI1RTkwQTM2QjVEQkRDQkNFODZCODhFQUQyNjZB OTE1LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk1OTYxMmEyLTQ0MzMtNDJiOS04 ZjRmLWI4NDc3NzZhY2FmZC8xLzMyMzAzMDMxM2E2NDY2MzQzYTM4NjUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzNTMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9I5AMA0GCSqGSIb3DQEBCwUAA4IBAQC1uVu0k/UvMgB9lZBhvJG3h/uQYO9YNeEV P7T6lk77uYp/1NG8OxmpQDpwofjTfoGMJy4Ai5Khxy3iWoNzXs2g5WkOfF9irYKp iAro4YhQgUWD9GqH8wT2ddrB52Qo1rNM/yhPL3tZ1P2qFCXLVxZNNVV59Q1TepKy k8MilpX2kLr/vD1MkSGlQiaQs8mOn+xWVGd7vXR7dp4XHFdF109hQa2aBNweV37W poVJsp8wZvnxr7CwE2WXyKQ9vK/oDKC8Yy1qkDm/65NhOA9NVhn7BVXNdsVYKTWV p6F7Etvxqi9Na8I+n+HodMh0qXwkzqs4ZDcBHdzBSkDWjIkW8mT9 -----END CERTIFICATE-----Generated at Wed May 13 13:58:18 2026 by rpki-client