$ rpki-client -vvf rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: 28iebkfRgFCQlkV8WxdrlGcy0HhJBZpDacDrgwhDclI= Subject key identifier: E1:A0:F4:41:1D:D9:ED:AE:3A:E0:41:9D:78:9A:56:86:21:A7:E9:DA Certificate issuer: /CN=02062A0A8A708F654606A252EFBD31F81D738315 Certificate serial: 365A1FE07F1BF986253F98BFA464133032DD671D Authority key identifier: 02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa Signing time: Sun 03 May 2026 02:55:49 +0000 ROA not before: Sun 03 May 2026 02:50:49 +0000 ROA not after: Sun 02 May 2027 02:55:49 +0000 asID: 38759 IP address blocks: 2001:d68:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:5a:1f:e0:7f:1b:f9:86:25:3f:98:bf:a4:64:13:30:32:dd:67:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02062A0A8A708F654606A252EFBD31F81D738315 Validity Not Before: May 3 02:50:49 2026 GMT Not After : May 2 02:55:49 2027 GMT Subject: CN=E1A0F4411DD9EDAE3AE0419D789A568621A7E9DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ca:76:c8:42:f3:c6:bc:b8:16:26:b3:c5:2d: b5:8a:f9:40:24:e2:a1:d3:d5:ec:6e:9d:a4:97:fc: a9:a0:84:e5:24:fb:f7:d2:eb:e4:a3:5d:20:de:12: 83:da:c4:9f:33:32:1c:db:3e:67:db:ea:e6:e6:53: 4c:17:a7:41:1c:82:a7:6e:ea:3e:7f:63:ae:a1:59: 82:6f:a5:aa:bd:f9:e6:43:e0:f7:b4:10:d7:37:c7: 62:cb:47:02:4a:51:8a:f4:57:c7:84:d0:01:87:81: 95:5a:12:8a:9f:5e:c2:af:90:7e:04:ac:b3:8f:5a: d5:b4:ba:46:fd:20:d8:09:62:b3:b9:6c:2e:83:c0: 7d:9b:d5:eb:a1:d2:a6:bf:59:47:54:cf:30:48:e0: 1c:96:9f:4b:33:2f:46:40:94:b0:0b:6f:6d:47:39: 82:1d:0e:2a:f1:9c:b6:a2:2b:bc:95:45:1c:0e:23: a7:c5:84:73:22:88:f9:68:e6:ef:c3:8a:5f:67:ec: 4f:57:46:7f:f5:8d:70:11:75:5a:88:d3:f0:ca:d8: a5:96:95:69:4a:78:92:69:29:a6:00:44:f9:25:da: d3:7e:69:9b:51:ed:f3:13:9d:63:a8:46:46:55:90: 0a:8f:d9:a0:43:53:d1:69:74:4c:48:2f:4a:00:8b: 89:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A0:F4:41:1D:D9:ED:AE:3A:E0:41:9D:78:9A:56:86:21:A7:E9:DA X509v3 Authority Key Identifier: keyid:02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a373a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:7::/48 Signature Algorithm: sha256WithRSAEncryption af:9d:2a:32:7a:ce:76:91:98:8c:45:1e:52:c4:58:46:5b:f3: 65:08:13:a5:25:31:0a:97:c2:c6:e7:49:00:5d:57:5b:00:3c: 68:4a:9d:5a:0a:64:05:34:8a:c3:ab:59:36:90:ea:3a:a0:3e: 4e:51:3b:5f:9a:ed:4e:37:3d:df:27:63:f4:dc:ca:a2:a9:ee: 16:eb:86:31:28:92:32:71:28:9f:15:43:93:1e:84:30:6e:82: b0:8a:53:15:dd:24:3c:9e:7d:f4:fa:74:0a:a6:2e:0c:49:25: e5:1b:83:86:b4:0f:54:7c:43:81:d8:ab:07:6a:4b:c2:c8:e9: 7f:b3:78:42:92:5e:18:85:7d:d6:76:b7:f8:f1:ae:3b:f1:8a: 00:6f:f4:a4:43:91:5f:cf:b3:5f:4c:30:d7:96:92:ca:3b:5c: 41:81:24:81:0b:8a:9a:35:4e:5a:80:57:31:20:84:e4:db:ec: 85:86:53:89:c8:c6:10:91:61:e0:28:d6:28:01:c5:d5:15:bd: 46:94:1a:ad:54:bb:17:72:b4:40:f3:58:75:c6:63:cd:ba:36: 8b:1f:81:b5:30:09:42:e1:ef:8e:40:d3:00:0e:c3:f8:a7:57: 7e:58:73:45:5d:68:86:e3:08:2f:c1:9f:42:2a:4d:96:6f:fd: ad:08:da:55 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUNlof4H8b+YYlP5i/pGQTMDLdZx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwNjJBMEE4QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgx RDczODMxNTAeFw0yNjA1MDMwMjUwNDlaFw0yNzA1MDIwMjU1NDlaMDMxMTAvBgNV BAMTKEUxQTBGNDQxMUREOUVEQUUzQUUwNDE5RDc4OUE1Njg2MjFBN0U5REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLynbIQvPGvLgWJrPFLbWK+UAk 4qHT1exunaSX/KmghOUk+/fS6+SjXSDeEoPaxJ8zMhzbPmfb6ubmU0wXp0Ecgqdu 6j5/Y66hWYJvpaq9+eZD4Pe0ENc3x2LLRwJKUYr0V8eE0AGHgZVaEoqfXsKvkH4E rLOPWtW0ukb9INgJYrO5bC6DwH2b1euh0qa/WUdUzzBI4ByWn0szL0ZAlLALb21H OYIdDirxnLaiK7yVRRwOI6fFhHMiiPlo5u/Dil9n7E9XRn/1jXARdVqI0/DK2KWW lWlKeJJpKaYARPkl2tN+aZtR7fMTnWOoRkZVkAqP2aBDU9FpdExIL0oAi4kTAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU4aD0QR3Z7a464EGdeJpWhiGn6dowHwYDVR0j BBgwFoAUAgYqCopwj2VGBqJS770x+B1zgxUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTEyZjIyOGMtZGYyMC00NzI4LTlmOTYtOGZhYTEzNDAwMTdhLzAvMDIwNjJBMEE4 QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgxRDczODMxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjA2MkEwQThBNzA4RjY1NDYwNkEyNTJFRkJEMzFGODFENzM4 MzE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM3M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgABzANBgkq hkiG9w0BAQsFAAOCAQEAr50qMnrOdpGYjEUeUsRYRlvzZQgTpSUxCpfCxudJAF1X WwA8aEqdWgpkBTSKw6tZNpDqOqA+TlE7X5rtTjc93ydj9NzKoqnuFuuGMSiSMnEo nxVDkx6EMG6CsIpTFd0kPJ599Pp0CqYuDEkl5RuDhrQPVHxDgdirB2pLwsjpf7N4 QpJeGIV91na3+PGuO/GKAG/0pEORX8+zX0ww15aSyjtcQYEkgQuKmjVOWoBXMSCE 5NvshYZTicjGEJFh4CjWKAHF1RW9RpQarVS7F3K0QPNYdcZjzbo2ix+BtTAJQuHv jkDTAA7D+KdXflhzRV1ohuMIL8GfQipNlm/9rQjaVQ== -----END CERTIFICATE-----Generated at Wed May 13 12:40:09 2026 by rpki-client