$ rpki-client -vvf rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a313a3a2f34382d3438203d3e2037353837.roa File: 323030313a6436383a313a3a2f34382d3438203d3e2037353837.roa (raw, json) Hash identifier: EVQi6mazM653PJFBgl7YFEMCCOBeSklEGrJuFS043Xc= Subject key identifier: E8:16:37:2B:D1:9A:60:E0:84:99:D8:F5:0C:05:ED:7F:95:F9:DF:CE Certificate issuer: /CN=02062A0A8A708F654606A252EFBD31F81D738315 Certificate serial: 354A428F8392233C54F621EDC6481E92E2A44422 Authority key identifier: 02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a313a3a2f34382d3438203d3e2037353837.roa Signing time: Sun 03 May 2026 02:55:49 +0000 ROA not before: Sun 03 May 2026 02:50:49 +0000 ROA not after: Sun 02 May 2027 02:55:49 +0000 asID: 7587 IP address blocks: 2001:d68:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4a:42:8f:83:92:23:3c:54:f6:21:ed:c6:48:1e:92:e2:a4:44:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02062A0A8A708F654606A252EFBD31F81D738315 Validity Not Before: May 3 02:50:49 2026 GMT Not After : May 2 02:55:49 2027 GMT Subject: CN=E816372BD19A60E08499D8F50C05ED7F95F9DFCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d4:80:4a:12:cc:3b:6d:6a:9e:2c:4f:b2:0c: b4:56:09:02:66:92:a1:6b:67:d9:72:a6:ca:7e:4a: b6:5f:a9:b6:e2:b1:c9:9b:29:e7:81:08:d5:59:99: 3d:cd:2b:e8:bb:aa:2c:65:2c:e0:99:a4:6b:f0:3e: d3:ed:10:fd:18:64:89:27:0f:1f:67:0e:0b:57:ce: ea:2a:a6:6e:79:d3:99:0a:29:d5:2f:e2:1e:e1:96: 0a:c7:64:5e:91:ca:8b:3c:8d:38:2c:d7:c2:3e:3d: c8:9d:f7:95:54:92:77:51:fc:fb:04:18:90:ef:6a: 31:f5:94:53:80:b0:b6:52:95:be:1d:8d:11:23:e5: c1:1a:be:fc:73:af:aa:6e:ee:3a:6d:8f:6d:ad:ce: d7:76:54:f1:69:33:3c:48:37:5d:a5:ed:3e:ed:8f: f3:dc:12:96:20:c8:2b:28:af:23:a1:17:41:b8:73: 48:f3:e0:27:5e:56:99:a2:7a:4e:9c:cc:4d:de:85: 96:7e:a4:89:ce:b4:0a:63:82:f7:5d:7b:f1:53:56: 47:ca:07:67:dc:ec:8f:1b:f4:71:b1:00:82:b2:7e: ab:2e:bd:c4:a0:86:25:f5:75:ab:c0:b4:33:27:56: bc:24:d6:d3:c2:b7:58:6b:5b:34:7f:a6:88:28:05: cd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:16:37:2B:D1:9A:60:E0:84:99:D8:F5:0C:05:ED:7F:95:F9:DF:CE X509v3 Authority Key Identifier: keyid:02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a313a3a2f34382d3438203d3e2037353837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:1::/48 Signature Algorithm: sha256WithRSAEncryption 5a:b7:c4:b2:0f:7c:75:3c:8d:1f:16:e1:ca:80:08:44:b6:61: 2f:e5:9c:ab:13:49:2e:29:48:af:07:04:bd:66:9e:4e:43:1b: 91:20:1a:72:dc:50:0c:08:bb:7b:d7:22:7e:cd:fe:a0:ee:5f: 93:13:b9:ff:7c:ac:b9:5b:f6:b3:8e:b0:0d:5f:b1:8f:a5:35: b9:31:dd:2b:8e:fe:e8:2a:27:6f:31:59:fb:eb:c8:39:1c:b5: 47:e1:18:8a:69:99:1a:45:b2:48:25:74:f4:0e:c6:a2:16:b4: 74:8f:75:f4:69:d9:a4:3e:cb:4a:73:4c:ca:08:75:98:48:61: 6b:05:34:e9:89:6d:33:37:eb:9d:e1:0b:e9:ce:27:f8:e6:bd: 5d:f9:5c:aa:78:98:e7:0d:8d:3d:65:8c:32:a7:0b:40:51:32: a5:f5:6c:88:a7:b5:26:99:e6:27:5e:c2:e7:ca:d7:8b:3c:a1: 69:3a:a0:d1:54:2a:bb:77:06:00:4c:b5:38:fb:24:38:63:fc: 42:49:19:e1:cb:74:25:f6:44:7d:c4:3a:5d:9a:95:e4:91:96: b7:0a:17:1a:9d:7e:2c:fc:59:51:62:98:f2:c1:2c:76:de:67: ee:54:ed:8d:e8:83:28:b8:59:61:f2:83:0f:bd:f3:8c:31:21: b5:2c:12:50 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNUpCj4OSIzxU9iHtxkgekuKkRCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwNjJBMEE4QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgx RDczODMxNTAeFw0yNjA1MDMwMjUwNDlaFw0yNzA1MDIwMjU1NDlaMDMxMTAvBgNV BAMTKEU4MTYzNzJCRDE5QTYwRTA4NDk5RDhGNTBDMDVFRDdGOTVGOURGQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw1IBKEsw7bWqeLE+yDLRWCQJm kqFrZ9lypsp+SrZfqbbiscmbKeeBCNVZmT3NK+i7qixlLOCZpGvwPtPtEP0YZIkn Dx9nDgtXzuoqpm5505kKKdUv4h7hlgrHZF6Ryos8jTgs18I+Pcid95VUkndR/PsE GJDvajH1lFOAsLZSlb4djREj5cEavvxzr6pu7jptj22tztd2VPFpMzxIN12l7T7t j/PcEpYgyCsoryOhF0G4c0jz4CdeVpmiek6czE3ehZZ+pInOtApjgvdde/FTVkfK B2fc7I8b9HGxAIKyfqsuvcSghiX1davAtDMnVrwk1tPCt1hrWzR/pogoBc3pAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU6BY3K9GaYOCEmdj1DAXtf5X5384wHwYDVR0j BBgwFoAUAgYqCopwj2VGBqJS770x+B1zgxUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTEyZjIyOGMtZGYyMC00NzI4LTlmOTYtOGZhYTEzNDAwMTdhLzAvMDIwNjJBMEE4 QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgxRDczODMxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjA2MkEwQThBNzA4RjY1NDYwNkEyNTJFRkJEMzFGODFENzM4 MzE1LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTMxM2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzczNTM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ1oAAEwDQYJKoZI hvcNAQELBQADggEBAFq3xLIPfHU8jR8W4cqACES2YS/lnKsTSS4pSK8HBL1mnk5D G5EgGnLcUAwIu3vXIn7N/qDuX5MTuf98rLlb9rOOsA1fsY+lNbkx3SuO/ugqJ28x WfvryDkctUfhGIppmRpFskgldPQOxqIWtHSPdfRp2aQ+y0pzTMoIdZhIYWsFNOmJ bTM3653hC+nOJ/jmvV35XKp4mOcNjT1ljDKnC0BRMqX1bIintSaZ5idewufK14s8 oWk6oNFUKrt3BgBMtTj7JDhj/EJJGeHLdCX2RH3EOl2aleSRlrcKFxqdfiz8WVFi mPLBLHbeZ+5U7Y3ogyi4WWHygw+984wxIbUsElA= -----END CERTIFICATE-----Generated at Wed May 13 12:40:15 2026 by rpki-client