$ rpki-client -vvf rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa File: 323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa (raw, json) Hash identifier: z3UTfjn7LsK1eLHAQE8Fe9WFM0g5YMcTUPNSeasibaA= Subject key identifier: 9C:01:4B:88:F7:3B:EE:C2:19:4D:81:A1:C7:2C:18:3E:1D:AC:EE:80 Certificate issuer: /CN=E86D81600C2E0C408A83A10FE1734F7CB80049B5 Certificate serial: 561DA789C10EE4F898FC0DAC5F6272235097B157 Authority key identifier: E8:6D:81:60:0C:2E:0C:40:8A:83:A1:0F:E1:73:4F:7C:B8:00:49:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E86D81600C2E0C408A83A10FE1734F7CB80049B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa Signing time: Sun 03 May 2026 02:53:15 +0000 ROA not before: Sun 03 May 2026 02:48:15 +0000 ROA not after: Sun 02 May 2027 02:53:15 +0000 asID: 63872 IP address blocks: 2001:df3:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/E86D81600C2E0C408A83A10FE1734F7CB80049B5.crl rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/E86D81600C2E0C408A83A10FE1734F7CB80049B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E86D81600C2E0C408A83A10FE1734F7CB80049B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:1d:a7:89:c1:0e:e4:f8:98:fc:0d:ac:5f:62:72:23:50:97:b1:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E86D81600C2E0C408A83A10FE1734F7CB80049B5 Validity Not Before: May 3 02:48:15 2026 GMT Not After : May 2 02:53:15 2027 GMT Subject: CN=9C014B88F73BEEC2194D81A1C72C183E1DACEE80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:69:10:4d:f7:66:df:e9:74:9a:90:46:de:83: 7e:0e:0f:c1:3a:4d:08:99:be:2b:0b:16:09:f9:2e: 4c:8d:61:87:2d:90:92:37:9b:1c:bb:66:eb:9a:19: 8f:bd:16:15:51:c9:9a:b1:cd:3a:cb:73:86:fb:de: bb:cb:65:ef:2f:56:fd:04:a2:dd:56:69:ce:44:07: 9e:03:15:e0:5e:cf:1a:18:7e:65:a1:62:59:7d:3a: 51:10:89:11:c7:de:b0:af:07:27:16:14:ba:26:62: 22:f5:d2:31:1a:a9:ba:ea:6f:3a:86:6f:a0:2a:31: 48:c6:cd:bd:48:e9:71:e7:bf:62:d0:9f:65:66:13: b4:b6:4a:76:98:99:4e:e7:e3:a1:e8:db:61:fb:0b: 98:6a:d5:90:ce:6b:b8:3f:a1:fb:db:5e:56:bd:b3: c4:2c:48:6e:70:5c:0c:fa:e5:21:fa:23:d4:76:02: 25:86:06:41:97:7c:89:09:9d:72:5a:ef:b6:9b:3b: a2:26:13:3f:1a:05:a9:14:07:26:81:87:ab:c3:a1: e4:11:64:2c:a0:d4:83:20:40:63:93:94:2e:e6:ee: f8:0b:5d:b4:f4:f7:c0:db:c0:fb:5d:e3:66:61:b1: 68:eb:63:67:1f:dd:3d:03:c9:78:30:c9:3b:85:44: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:01:4B:88:F7:3B:EE:C2:19:4D:81:A1:C7:2C:18:3E:1D:AC:EE:80 X509v3 Authority Key Identifier: keyid:E8:6D:81:60:0C:2E:0C:40:8A:83:A1:0F:E1:73:4F:7C:B8:00:49:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/E86D81600C2E0C408A83A10FE1734F7CB80049B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E86D81600C2E0C408A83A10FE1734F7CB80049B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c00::/48 Signature Algorithm: sha256WithRSAEncryption 0b:2b:37:ab:6f:55:41:da:d4:9b:29:e7:fc:4f:d3:4e:c7:da: ab:7c:f8:57:7a:95:68:4a:45:91:5e:fd:07:12:c2:f5:41:30: 9e:64:b9:25:b1:2c:28:90:6b:1d:f3:63:30:78:7e:a7:6e:90: 62:08:8b:c4:0e:67:3e:c0:d4:23:6b:8f:74:cf:ab:d8:85:6f: f3:61:c3:8e:76:55:ea:d1:42:da:c6:6c:be:4e:b7:28:53:7c: 1e:59:1a:3a:d0:b9:b8:48:6a:ca:8e:ce:91:57:97:bb:8a:0f: e8:49:c0:d7:53:85:23:f2:d5:83:82:f0:8c:f1:e7:44:8c:fd: 4d:2d:0b:65:d6:b9:10:25:f8:7b:dc:c2:6a:cd:a3:08:40:55: ce:12:72:89:ec:79:bf:a8:9e:f8:e3:80:ff:1e:38:37:74:7e: 00:6d:63:db:cb:18:95:b8:20:d6:d6:b6:4e:48:7a:e7:53:83: 2b:62:f8:88:3b:e7:fb:15:1c:8a:bb:56:74:ec:9d:27:6e:47: ac:46:09:73:a4:60:ba:d0:08:26:26:22:7a:0f:e8:61:e5:fe: ee:d3:55:4e:96:91:89:3e:b9:69:35:45:e3:7e:f5:69:81:37: 27:b7:6e:45:9d:af:24:4a:a9:fe:80:56:d1:91:7c:eb:ef:4c: a8:1b:c9:c5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVh2nicEO5PiY/A2sX2JyI1CXsVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg2RDgxNjAwQzJFMEM0MDhBODNBMTBGRTE3MzRGN0NC ODAwNDlCNTAeFw0yNjA1MDMwMjQ4MTVaFw0yNzA1MDIwMjUzMTVaMDMxMTAvBgNV BAMTKDlDMDE0Qjg4RjczQkVFQzIxOTREODFBMUM3MkMxODNFMURBQ0VFODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8aRBN92bf6XSakEbeg34OD8E6 TQiZvisLFgn5LkyNYYctkJI3mxy7ZuuaGY+9FhVRyZqxzTrLc4b73rvLZe8vVv0E ot1Wac5EB54DFeBezxoYfmWhYll9OlEQiRHH3rCvBycWFLomYiL10jEaqbrqbzqG b6AqMUjGzb1I6XHnv2LQn2VmE7S2SnaYmU7n46Ho22H7C5hq1ZDOa7g/ofvbXla9 s8QsSG5wXAz65SH6I9R2AiWGBkGXfIkJnXJa77abO6ImEz8aBakUByaBh6vDoeQR ZCyg1IMgQGOTlC7m7vgLXbT098DbwPtd42ZhsWjrY2cf3T0DyXgwyTuFROkzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnAFLiPc77sIZTYGhxywYPh2s7oAwHwYDVR0j BBgwFoAU6G2BYAwuDECKg6EP4XNPfLgASbUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTZiYjMzM2MtOTgyYi00ZmNlLWFjODEtYmMwNjkyMjllMjQzLzAvRTg2RDgxNjAw QzJFMEM0MDhBODNBMTBGRTE3MzRGN0NCODAwNDlCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FODZEODE2MDBDMkUwQzQwOEE4M0ExMEZFMTczNEY3Q0I4MDA0 OUI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM2MzMzODM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3zDAAw DQYJKoZIhvcNAQELBQADggEBAAsrN6tvVUHa1Jsp5/xP007H2qt8+Fd6lWhKRZFe /QcSwvVBMJ5kuSWxLCiQax3zYzB4fqdukGIIi8QOZz7A1CNrj3TPq9iFb/Nhw452 VerRQtrGbL5OtyhTfB5ZGjrQubhIasqOzpFXl7uKD+hJwNdThSPy1YOC8Izx50SM /U0tC2XWuRAl+HvcwmrNowhAVc4Sconseb+onvjjgP8eODd0fgBtY9vLGJW4INbW tk5IeudTgyti+Ig75/sVHIq7VnTsnSduR6xGCXOkYLrQCCYmInoP6GHl/u7TVU6W kYk+uWk1ReN+9WmBNye3bkWdryRKqf6AVtGRfOvvTKgbycU= -----END CERTIFICATE-----Generated at Wed May 13 07:35:05 2026 by rpki-client