$ rpki-client -vvf rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa File: 323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa (raw, json) Hash identifier: shXgjYK0NRlHgehnbq1wzNndxumpi8gg30laew1y7t0= Subject key identifier: 32:49:4A:1E:76:CC:B3:48:81:13:95:80:B3:E3:D5:70:A9:1F:FB:67 Certificate issuer: /CN=F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3 Certificate serial: 0C9333FF9E76DA61244A5F1255113DD049E9360E Authority key identifier: F8:E2:4A:B4:BE:AB:3E:FE:DD:DD:4E:1F:D2:E9:05:FE:1C:53:5B:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa Signing time: Sun 03 May 2026 02:54:21 +0000 ROA not before: Sun 03 May 2026 02:49:21 +0000 ROA not after: Sun 02 May 2027 02:54:21 +0000 asID: 152749 IP address blocks: 2001:df3:d340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3.crl rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:93:33:ff:9e:76:da:61:24:4a:5f:12:55:11:3d:d0:49:e9:36:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3 Validity Not Before: May 3 02:49:21 2026 GMT Not After : May 2 02:54:21 2027 GMT Subject: CN=32494A1E76CCB34881139580B3E3D570A91FFB67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:00:17:0c:6a:dc:eb:c7:36:fb:b4:49:c4:54: f1:c5:77:17:a5:18:bb:fc:7d:74:8c:56:42:a0:fb: a6:52:a2:91:74:27:f0:cc:85:09:ea:06:35:ba:24: 01:39:7f:e5:f7:e2:58:54:83:38:66:da:78:aa:cd: 7c:a6:59:f8:f8:aa:90:c0:d8:66:0d:22:8d:ff:a0: b6:74:4c:c5:ff:b2:d4:c2:9e:47:74:1e:2f:14:d2: b2:60:a5:a9:a5:97:53:14:22:4b:db:3d:60:9d:d7: a8:5b:a7:19:c4:fe:7f:5d:7a:67:dc:73:76:d7:51: eb:f4:ac:5f:ce:e6:bb:90:67:67:81:86:66:b7:b7: 1b:d3:0b:4f:4b:85:b1:b0:dd:63:e4:8a:9e:0f:8c: d7:8e:dd:44:03:12:06:cb:3c:3f:4e:44:4b:60:02: e9:94:7f:2c:86:4f:ed:ef:46:87:4f:b9:74:fb:02: dc:1e:bc:1a:37:7b:b7:7b:94:96:46:47:a6:c4:67: 09:cc:6e:1e:9e:cb:19:05:45:2f:47:aa:cf:a6:71: 90:60:7b:db:72:23:70:88:53:71:f3:f9:49:22:96: 91:3c:3d:bd:c0:4b:7b:56:dc:23:3d:0f:5d:5f:34: be:de:d3:04:8e:75:e4:e8:90:8e:49:93:a9:51:2c: bb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:49:4A:1E:76:CC:B3:48:81:13:95:80:B3:E3:D5:70:A9:1F:FB:67 X509v3 Authority Key Identifier: keyid:F8:E2:4A:B4:BE:AB:3E:FE:DD:DD:4E:1F:D2:E9:05:FE:1C:53:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F8E24AB4BEAB3EFEDDDD4E1FD2E905FE1C535BE3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d340::/48 Signature Algorithm: sha256WithRSAEncryption 1b:16:d2:37:09:4b:86:ff:f7:57:65:88:d0:8d:f7:1c:8f:9c: 86:7e:d2:ff:08:f4:6b:66:01:6b:2a:fd:ca:57:f1:3b:19:ad: 34:f8:c7:6f:d7:d5:bd:c8:fb:17:17:bc:a0:c3:d7:6f:16:2f: e4:02:f3:80:f2:3e:58:f8:94:7c:d4:f9:d1:d1:15:5c:08:b6: 73:42:6c:0e:80:a6:36:06:d0:fa:ce:c3:73:f7:1d:a0:3d:89: 9b:08:fa:51:fc:e1:22:be:1c:8c:82:e0:33:46:32:d2:9b:f6: fa:c1:dc:1b:9b:b7:ec:90:20:77:7b:f3:c2:43:74:3d:bc:dc: 41:3a:2a:dd:f5:41:8b:67:26:46:78:75:46:4b:82:c9:e1:8c: a5:c0:66:33:4f:53:b1:a2:2e:ae:f5:d9:65:a4:cf:d1:e7:07: 8a:37:4c:05:c0:ea:6c:ee:bd:22:ae:f3:9e:2a:86:b6:0e:32: de:20:c7:ba:37:7a:d5:86:4e:c8:5b:9b:2b:bf:b5:18:5a:7b: 2b:21:b3:0d:d1:3f:52:5f:50:6b:4d:db:5d:1b:1c:79:fb:1c: b5:4d:bb:af:e0:4e:50:df:a2:08:71:5e:8d:e4:54:1b:a7:01: f4:70:b6:fa:6f:81:34:5c:52:a0:ed:9a:8d:d2:9c:d6:e2:69: 8d:74:45:59 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDJMz/5522mEkSl8SVRE90EnpNg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFMjRBQjRCRUFCM0VGRUREREQ0RTFGRDJFOTA1RkUx QzUzNUJFMzAeFw0yNjA1MDMwMjQ5MjFaFw0yNzA1MDIwMjU0MjFaMDMxMTAvBgNV BAMTKDMyNDk0QTFFNzZDQ0IzNDg4MTEzOTU4MEIzRTNENTcwQTkxRkZCNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMABcMatzrxzb7tEnEVPHFdxel GLv8fXSMVkKg+6ZSopF0J/DMhQnqBjW6JAE5f+X34lhUgzhm2niqzXymWfj4qpDA 2GYNIo3/oLZ0TMX/stTCnkd0Hi8U0rJgpamll1MUIkvbPWCd16hbpxnE/n9demfc c3bXUev0rF/O5ruQZ2eBhma3txvTC09LhbGw3WPkip4PjNeO3UQDEgbLPD9OREtg AumUfyyGT+3vRodPuXT7AtwevBo3e7d7lJZGR6bEZwnMbh6eyxkFRS9Hqs+mcZBg e9tyI3CIU3Hz+UkilpE8Pb3AS3tW3CM9D11fNL7e0wSOdeTokI5Jk6lRLLurAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMklKHnbMs0iBE5WAs+PVcKkf+2cwHwYDVR0j BBgwFoAU+OJKtL6rPv7d3U4f0ukF/hxTW+MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWI3MzNkY2YtOWY1ZS00Nzc1LTljZTctOWRkNTI1YjQ0Yjg2LzEvRjhFMjRBQjRC RUFCM0VGRUREREQ0RTFGRDJFOTA1RkUxQzUzNUJFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GOEUyNEFCNEJFQUIzRUZFRERERDRFMUZEMkU5MDVGRTFDNTM1 QkUzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzliNzMzZGNmLTlmNWUtNDc3NS05 Y2U3LTlkZDUyNWI0NGI4Ni8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89NAMA0GCSqGSIb3DQEBCwUAA4IBAQAbFtI3CUuG//dXZYjQjfccj5yGftL/CPRr ZgFrKv3KV/E7Ga00+Mdv19W9yPsXF7ygw9dvFi/kAvOA8j5Y+JR81PnR0RVcCLZz QmwOgKY2BtD6zsNz9x2gPYmbCPpR/OEivhyMguAzRjLSm/b6wdwbm7fskCB3e/PC Q3Q9vNxBOird9UGLZyZGeHVGS4LJ4YylwGYzT1Oxoi6u9dllpM/R5weKN0wFwOps 7r0irvOeKoa2DjLeIMe6N3rVhk7IW5srv7UYWnsrIbMN0T9SX1BrTdtdGxx5+xy1 Tbuv4E5Q36IIcV6N5FQbpwH0cLb6b4E0XFKg7ZqN0pzW4mmNdEVZ -----END CERTIFICATE-----Generated at Wed May 13 09:11:49 2026 by rpki-client