$ rpki-client -vvf rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: bnXq8XENZAHIWya2k4ydYwWfQH9btnFm6jqiJZ4Rcfk= Subject key identifier: F8:F5:14:22:D5:E1:A0:F1:E4:2C:DC:CC:5B:7F:D4:00:54:AD:46:A7 Certificate issuer: /CN=02062A0A8A708F654606A252EFBD31F81D738315 Certificate serial: 273F335A63A83DD511E67155BF221250279F94EE Authority key identifier: 02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa Signing time: Sun 03 May 2026 02:55:51 +0000 ROA not before: Sun 03 May 2026 02:50:51 +0000 ROA not after: Sun 02 May 2027 02:55:51 +0000 asID: 38759 IP address blocks: 2001:d68:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3f:33:5a:63:a8:3d:d5:11:e6:71:55:bf:22:12:50:27:9f:94:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02062A0A8A708F654606A252EFBD31F81D738315 Validity Not Before: May 3 02:50:51 2026 GMT Not After : May 2 02:55:51 2027 GMT Subject: CN=F8F51422D5E1A0F1E42CDCCC5B7FD40054AD46A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4f:a0:19:b4:94:eb:3c:82:26:4b:53:79:ec: d9:2c:b3:3e:2b:4d:8a:b3:55:36:4c:b0:e1:6d:d2: ce:8b:1b:f2:71:e6:52:02:63:0a:ed:ed:49:4e:17: 19:5e:d1:a5:62:32:f6:46:0c:0d:f8:52:80:11:c1: 00:18:2d:36:b2:5f:7d:21:4d:68:89:3f:6d:7a:f8: 1a:75:a5:66:05:86:d4:f8:c0:07:c5:c1:cf:a0:be: d6:ae:45:eb:ba:4c:4c:38:33:51:42:ff:b6:ea:d5: c2:56:55:6d:b3:6a:8f:29:96:57:ca:4c:b7:ab:b1: 79:be:46:b6:02:35:10:43:ac:49:4e:79:9e:db:29: d0:f3:a4:f0:4e:7a:8a:57:bb:e6:b8:dc:f2:76:76: ab:94:92:fe:39:3b:5d:ea:d8:f8:21:68:63:3b:4f: d5:68:c5:d8:ac:9b:2a:65:ab:25:a4:0e:a4:2c:c0: 50:17:32:60:9e:dd:a6:3c:80:c2:26:1a:81:a4:fb: d9:cf:bf:5e:64:4e:6a:47:79:fc:0c:9c:01:ab:20: 0b:b4:6e:64:10:85:13:37:a9:a9:95:7d:eb:70:2d: a3:3c:e8:85:88:09:6c:ad:03:82:82:1f:84:e8:3a: 85:09:8f:56:f0:bc:1c:0a:c4:ff:0e:00:f9:ae:ef: 39:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F5:14:22:D5:E1:A0:F1:E4:2C:DC:CC:5B:7F:D4:00:54:AD:46:A7 X509v3 Authority Key Identifier: keyid:02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a31323a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:12::/48 Signature Algorithm: sha256WithRSAEncryption 25:fc:f5:d7:92:ac:e4:2e:b4:1e:30:4b:e8:6c:4a:c8:aa:db: 41:0b:71:6e:56:35:eb:a2:ff:23:61:17:d0:93:54:ab:03:1f: b0:1f:81:f4:4d:ac:37:e9:13:3a:b4:a2:65:b5:a5:8f:8c:48: 0f:3a:86:22:51:19:b0:a1:69:b3:fb:55:e3:2a:ad:22:38:07: 44:fc:6d:dd:93:c0:fe:73:d0:15:fe:ff:c8:84:46:ac:36:46: 48:30:b1:90:89:3e:9e:16:0a:2f:05:f9:44:e9:89:41:f3:72: 15:da:1d:5c:56:5e:bb:08:a4:bf:1f:1c:76:e7:9e:11:67:ce: f9:8c:fc:12:21:ec:b2:9d:34:42:df:5b:1f:33:23:37:a0:3a: fb:26:20:ce:c0:66:fe:10:97:f3:1d:b8:ac:17:97:21:59:77: 1b:f0:62:5c:f2:99:bf:6b:e9:f1:3b:19:22:64:6a:e0:b2:10: c4:c3:f8:0d:39:dd:3e:bb:50:61:97:7b:66:04:f0:ae:df:e4: b2:86:46:55:f9:bf:a9:2e:db:dd:bb:3f:20:73:f1:a6:af:f5: 7c:2a:11:22:40:c5:85:21:54:85:95:11:ff:47:5c:b9:ae:81: 0a:de:c0:61:4c:16:07:68:9d:81:57:b2:77:09:3c:89:80:26: 64:cb:2d:74 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUJz8zWmOoPdUR5nFVvyISUCeflO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwNjJBMEE4QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgx RDczODMxNTAeFw0yNjA1MDMwMjUwNTFaFw0yNzA1MDIwMjU1NTFaMDMxMTAvBgNV BAMTKEY4RjUxNDIyRDVFMUEwRjFFNDJDRENDQzVCN0ZENDAwNTRBRDQ2QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4T6AZtJTrPIImS1N57Nkssz4r TYqzVTZMsOFt0s6LG/Jx5lICYwrt7UlOFxle0aViMvZGDA34UoARwQAYLTayX30h TWiJP216+Bp1pWYFhtT4wAfFwc+gvtauReu6TEw4M1FC/7bq1cJWVW2zao8pllfK TLersXm+RrYCNRBDrElOeZ7bKdDzpPBOeopXu+a43PJ2dquUkv45O13q2PghaGM7 T9VoxdismyplqyWkDqQswFAXMmCe3aY8gMImGoGk+9nPv15kTmpHefwMnAGrIAu0 bmQQhRM3qamVfetwLaM86IWICWytA4KCH4ToOoUJj1bwvBwKxP8OAPmu7zklAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU+PUUItXhoPHkLNzMW3/UAFStRqcwHwYDVR0j BBgwFoAUAgYqCopwj2VGBqJS770x+B1zgxUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTEyZjIyOGMtZGYyMC00NzI4LTlmOTYtOGZhYTEzNDAwMTdhLzAvMDIwNjJBMEE4 QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgxRDczODMxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjA2MkEwQThBNzA4RjY1NDYwNkEyNTJFRkJEMzFGODFENzM4 MzE1LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAASMA0G CSqGSIb3DQEBCwUAA4IBAQAl/PXXkqzkLrQeMEvobErIqttBC3FuVjXrov8jYRfQ k1SrAx+wH4H0Taw36RM6tKJltaWPjEgPOoYiURmwoWmz+1XjKq0iOAdE/G3dk8D+ c9AV/v/IhEasNkZIMLGQiT6eFgovBflE6YlB83IV2h1cVl67CKS/Hxx2554RZ875 jPwSIeyynTRC31sfMyM3oDr7JiDOwGb+EJfzHbisF5chWXcb8GJc8pm/a+nxOxki ZGrgshDEw/gNOd0+u1Bhl3tmBPCu3+SyhkZV+b+pLtvduz8gc/Gmr/V8KhEiQMWF IVSFlRH/R1y5roEK3sBhTBYHaJ2BV7J3CTyJgCZkyy10 -----END CERTIFICATE-----Generated at Wed May 13 12:40:04 2026 by rpki-client