$ rpki-client -vvf rpki-rsync.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa File: 323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa (raw, json) Hash identifier: oPoNFbylWE3wDnquzh9cCts/g1mAJ32eRWzuqQ1Bx0w= Subject key identifier: 53:A6:DC:58:9F:48:98:29:A7:6C:81:31:6F:DC:D4:03:9D:39:87:6A Certificate issuer: /CN=D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A Certificate serial: 14A5E9B360CDDA3BE0EF4D07849C610301EE1200 Authority key identifier: D8:5D:DC:BE:5B:D7:5A:50:DB:0F:9F:99:16:12:3B:E9:7C:C8:E0:1A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa Signing time: Sun 03 May 2026 02:55:02 +0000 ROA not before: Sun 03 May 2026 02:50:02 +0000 ROA not after: Sun 02 May 2027 02:55:02 +0000 asID: 149352 IP address blocks: 2001:df0:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A.crl rsync://rpki-rsync.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a5:e9:b3:60:cd:da:3b:e0:ef:4d:07:84:9c:61:03:01:ee:12:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A Validity Not Before: May 3 02:50:02 2026 GMT Not After : May 2 02:55:02 2027 GMT Subject: CN=53A6DC589F489829A76C81316FDCD4039D39876A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3c:de:47:70:11:ac:1a:b6:3a:a3:21:ee:b2: 37:25:21:41:c7:66:2c:96:22:a7:7a:38:56:60:93: 40:0e:3d:2b:0f:8a:ad:85:b7:11:3a:4d:c7:21:17: b0:6b:89:80:d6:4a:18:f8:c1:de:e9:4f:85:ec:51: c2:99:b8:5d:6e:32:a0:5f:a8:eb:c3:29:64:0d:b0: 08:85:94:fe:3f:99:5c:a2:c2:8d:a1:58:3e:e2:71: c7:ed:21:20:db:35:9e:69:c6:f6:2e:ab:e0:91:0d: 27:a0:07:3a:c8:39:47:55:e7:27:1c:08:49:85:6f: 70:9f:ac:63:32:a0:c6:10:04:74:c8:57:30:4e:58: 1d:e0:c1:21:20:a2:76:e0:3d:97:71:11:9a:68:a9: 4d:40:95:77:b0:6c:d1:1e:2e:9d:c6:0e:43:49:be: 15:53:3c:e9:cf:54:42:47:aa:6e:ab:ec:62:c6:35: bc:44:07:dc:86:04:fe:16:b7:d0:b7:18:ea:65:ef: 78:c9:f8:b8:0e:d9:d0:48:de:a8:3f:ad:47:c8:4f: cd:8a:74:e9:45:3c:46:0a:15:0f:f5:9b:28:1b:6a: 40:4a:08:36:a6:85:6c:c8:5e:d0:4a:b0:b3:14:64: 23:75:36:ce:b8:c0:74:34:6e:0c:6d:a9:57:89:c4: eb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A6:DC:58:9F:48:98:29:A7:6C:81:31:6F:DC:D4:03:9D:39:87:6A X509v3 Authority Key Identifier: keyid:D8:5D:DC:BE:5B:D7:5A:50:DB:0F:9F:99:16:12:3B:E9:7C:C8:E0:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85DDCBE5BD75A50DB0F9F9916123BE97CC8E01A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a40::/48 Signature Algorithm: sha256WithRSAEncryption b7:e4:e5:32:e3:c1:3c:21:cf:dc:0d:dd:f7:2f:25:0e:7e:7c: 8c:75:18:6d:a1:9e:0e:a8:2d:24:0b:9f:54:2d:64:89:67:9d: d3:d9:cd:9c:bf:55:5f:83:72:f4:da:c7:e7:53:ae:ca:c8:4e: 8a:4e:d6:f8:5a:fd:a5:2f:88:d2:8a:6c:93:7a:34:4b:81:5c: bf:39:e4:56:5b:55:cc:e9:1f:6a:a4:25:df:68:c3:17:01:06: ad:24:92:3b:10:b0:e0:c4:4b:6f:6b:1b:a8:16:ba:2b:c0:38: 46:59:76:02:2c:4c:01:8f:44:71:33:a0:ab:ee:e3:7c:ff:4e: 34:1b:84:ed:24:5c:95:bf:8c:a3:ce:f7:79:37:f0:26:01:d7: b0:b0:73:60:bb:82:39:c8:2f:45:bb:0c:99:4e:4f:1e:86:d6: be:4a:86:1f:d1:db:b6:46:51:08:10:89:c6:30:35:79:c6:00: 10:70:15:d5:af:48:27:cf:d6:bb:0e:ed:c4:95:3b:dc:46:e3: ea:1f:07:88:12:ea:c8:ac:9f:67:3b:5f:bc:c7:36:ac:f2:a8: b6:d9:85:6a:ff:c8:b4:c4:86:f1:bb:a3:ad:7f:1e:4a:58:ef: 36:00:bd:6f:98:ed:3a:cf:6c:9f:35:73:ab:12:c7:67:25:fc: 4c:a3:82:22 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFKXps2DN2jvg700HhJxhAwHuEgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RERDQkU1QkQ3NUE1MERCMEY5Rjk5MTYxMjNCRTk3 Q0M4RTAxQTAeFw0yNjA1MDMwMjUwMDJaFw0yNzA1MDIwMjU1MDJaMDMxMTAvBgNV BAMTKDUzQTZEQzU4OUY0ODk4MjlBNzZDODEzMTZGRENENDAzOUQzOTg3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaPN5HcBGsGrY6oyHusjclIUHH ZiyWIqd6OFZgk0AOPSsPiq2FtxE6TcchF7BriYDWShj4wd7pT4XsUcKZuF1uMqBf qOvDKWQNsAiFlP4/mVyiwo2hWD7iccftISDbNZ5pxvYuq+CRDSegBzrIOUdV5ycc CEmFb3CfrGMyoMYQBHTIVzBOWB3gwSEgonbgPZdxEZpoqU1AlXewbNEeLp3GDkNJ vhVTPOnPVEJHqm6r7GLGNbxEB9yGBP4Wt9C3GOpl73jJ+LgO2dBI3qg/rUfIT82K dOlFPEYKFQ/1mygbakBKCDamhWzIXtBKsLMUZCN1Ns64wHQ0bgxtqVeJxOtTAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUU6bcWJ9ImCmnbIExb9zUA505h2owHwYDVR0j BBgwFoAU2F3cvlvXWlDbD5+ZFhI76XzI4BowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWVhYjBhMDEtOGVlNC00ODI1LTg0MGQtMTEyZGFlZjBhY2E4LzAvRDg1RERDQkU1 QkQ3NUE1MERCMEY5Rjk5MTYxMjNCRTk3Q0M4RTAxQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EODVERENCRTVCRDc1QTUwREIwRjlGOTkxNjEyM0JFOTdDQzhF MDFBLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzllYWIwYTAxLThlZTQtNDgyNS04 NDBkLTExMmRhZWYwYWNhOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzOTMzMzUzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAK QDANBgkqhkiG9w0BAQsFAAOCAQEAt+TlMuPBPCHP3A3d9y8lDn58jHUYbaGeDqgt JAufVC1kiWed09nNnL9VX4Ny9NrH51OuyshOik7W+Fr9pS+I0opsk3o0S4Fcvznk VltVzOkfaqQl32jDFwEGrSSSOxCw4MRLb2sbqBa6K8A4Rll2AixMAY9EcTOgq+7j fP9ONBuE7SRclb+Mo873eTfwJgHXsLBzYLuCOcgvRbsMmU5PHobWvkqGH9HbtkZR CBCJxjA1ecYAEHAV1a9IJ8/Wuw7txJU73Ebj6h8HiBLqyKyfZztfvMc2rPKottmF av/ItMSG8bujrX8eSljvNgC9b5jtOs9snzVzqxLHZyX8TKOCIg== -----END CERTIFICATE-----Generated at Wed May 13 12:51:56 2026 by rpki-client