$ rpki-client -vvf rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a393a3a2f34382d3438203d3e203338373539.roa File: 323030313a6436383a393a3a2f34382d3438203d3e203338373539.roa (raw, json) Hash identifier: x+fFT+Zpd1POcF5MqSOeMNUWAthajVWLkhVurWez9a8= Subject key identifier: 04:B1:6F:EF:AA:7E:CE:E5:E6:EC:E9:DF:0B:4E:07:CD:3C:FD:0E:B8 Certificate issuer: /CN=02062A0A8A708F654606A252EFBD31F81D738315 Certificate serial: 6DAE3065FF4B0D5FACEFD70A9858CDFB7A3A6B59 Authority key identifier: 02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a393a3a2f34382d3438203d3e203338373539.roa Signing time: Sun 03 May 2026 02:55:45 +0000 ROA not before: Sun 03 May 2026 02:50:45 +0000 ROA not after: Sun 02 May 2027 02:55:45 +0000 asID: 38759 IP address blocks: 2001:d68:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ae:30:65:ff:4b:0d:5f:ac:ef:d7:0a:98:58:cd:fb:7a:3a:6b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02062A0A8A708F654606A252EFBD31F81D738315 Validity Not Before: May 3 02:50:45 2026 GMT Not After : May 2 02:55:45 2027 GMT Subject: CN=04B16FEFAA7ECEE5E6ECE9DF0B4E07CD3CFD0EB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ac:40:e6:9e:10:a9:53:9c:4c:e0:b2:bd:35: 76:99:4c:55:fa:f8:14:8b:aa:1a:17:b7:53:56:fe: 9a:68:58:40:de:d6:2e:f5:f5:88:39:b7:95:d2:64: a8:56:69:1a:48:31:a4:c3:6e:b7:10:d0:c0:cc:81: 8a:65:60:15:4d:80:11:5e:39:d1:d8:c2:d5:52:e9: 02:f9:92:1f:ee:f8:1e:dd:96:43:b3:58:c5:e4:e5: 3f:bb:0c:67:14:89:2d:95:28:bb:3b:6b:dc:98:36: 11:f6:dc:74:b1:e3:a3:ea:15:f1:43:08:4e:8d:6e: be:22:94:85:9a:f2:86:bc:98:36:a1:96:34:3d:55: 18:89:77:03:1d:20:12:c4:25:f2:dd:cb:b7:26:81: ab:7b:12:e3:e4:d9:c4:6e:05:87:40:5e:0a:09:33: 43:33:53:32:98:da:58:47:0c:c8:7a:1a:2e:36:a6: f8:2e:05:0f:3e:a7:b0:e4:38:ad:6f:45:77:05:a4: c4:eb:19:f8:1c:cb:7a:55:c4:cf:9b:b6:5d:d4:c3: ac:a8:15:83:4f:8c:fd:80:52:ac:1b:30:5c:a0:15: f0:c0:97:be:cb:17:fa:29:dd:f8:de:d1:07:ed:bd: 38:80:fc:e8:ad:ad:40:bd:03:9a:62:7b:47:b0:d9: ab:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B1:6F:EF:AA:7E:CE:E5:E6:EC:E9:DF:0B:4E:07:CD:3C:FD:0E:B8 X509v3 Authority Key Identifier: keyid:02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a393a3a2f34382d3438203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68:9::/48 Signature Algorithm: sha256WithRSAEncryption 69:09:f7:e6:ca:aa:0a:7f:35:2f:3a:e3:22:4a:78:82:e3:cf: 80:2e:c0:7e:b7:13:14:6e:5e:f4:3c:e4:8e:9b:f0:87:eb:53: b7:c3:20:2d:54:c3:84:e8:84:ac:9c:d5:2f:7a:4f:4f:92:1a: 50:6f:1e:0d:a4:cd:60:26:2c:e0:22:19:13:81:64:b1:a6:47: 31:e8:33:d9:53:a7:48:de:43:68:82:69:8e:de:4d:a9:66:9b: ff:50:11:2c:ed:16:b2:b9:63:2f:2b:87:0e:95:3d:e1:10:9c: 59:9e:ca:d5:29:32:49:a3:7a:05:55:2c:bf:dd:9d:95:3c:91: 6f:48:b1:ee:59:36:3f:1b:1c:e2:8d:e0:cf:da:47:1d:75:4a: 9f:a2:28:d0:03:9d:91:e1:e0:09:ff:f3:91:d0:70:69:e2:e1: 51:46:9b:9d:ae:7f:bd:56:39:47:d6:2c:6e:c4:1a:79:7d:93: 12:04:14:a4:35:dd:bc:a2:0b:dc:2c:80:37:2a:53:a4:ac:b0: 20:66:0d:cd:f6:a0:ee:8e:ef:41:5c:e9:7d:e9:b4:d3:98:cd: 26:c8:b4:be:dd:a6:2f:0b:0a:e1:b5:a1:7f:80:65:a4:f0:9c: c9:b7:8a:c0:9b:e2:b3:33:bd:41:09:b0:9a:2e:be:09:18:d2: 02:10:2a:8c -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUba4wZf9LDV+s79cKmFjN+3o6a1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwNjJBMEE4QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgx RDczODMxNTAeFw0yNjA1MDMwMjUwNDVaFw0yNzA1MDIwMjU1NDVaMDMxMTAvBgNV BAMTKDA0QjE2RkVGQUE3RUNFRTVFNkVDRTlERjBCNEUwN0NEM0NGRDBFQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkrEDmnhCpU5xM4LK9NXaZTFX6 +BSLqhoXt1NW/ppoWEDe1i719Yg5t5XSZKhWaRpIMaTDbrcQ0MDMgYplYBVNgBFe OdHYwtVS6QL5kh/u+B7dlkOzWMXk5T+7DGcUiS2VKLs7a9yYNhH23HSx46PqFfFD CE6Nbr4ilIWa8oa8mDahljQ9VRiJdwMdIBLEJfLdy7cmgat7EuPk2cRuBYdAXgoJ M0MzUzKY2lhHDMh6Gi42pvguBQ8+p7DkOK1vRXcFpMTrGfgcy3pVxM+btl3Uw6yo FYNPjP2AUqwbMFygFfDAl77LF/op3fje0QftvTiA/OitrUC9A5pie0ew2avtAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUBLFv76p+zuXm7OnfC04HzTz9DrgwHwYDVR0j BBgwFoAUAgYqCopwj2VGBqJS770x+B1zgxUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTEyZjIyOGMtZGYyMC00NzI4LTlmOTYtOGZhYTEzNDAwMTdhLzAvMDIwNjJBMEE4 QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgxRDczODMxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjA2MkEwQThBNzA4RjY1NDYwNkEyNTJFRkJEMzFGODFENzM4 MzE1LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMDMxM2E2NDM2MzgzYTM5M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDWgACTANBgkq hkiG9w0BAQsFAAOCAQEAaQn35sqqCn81LzrjIkp4guPPgC7AfrcTFG5e9Dzkjpvw h+tTt8MgLVTDhOiErJzVL3pPT5IaUG8eDaTNYCYs4CIZE4FksaZHMegz2VOnSN5D aIJpjt5NqWab/1ARLO0WsrljLyuHDpU94RCcWZ7K1SkySaN6BVUsv92dlTyRb0ix 7lk2Pxsc4o3gz9pHHXVKn6Io0AOdkeHgCf/zkdBwaeLhUUabna5/vVY5R9YsbsQa eX2TEgQUpDXdvKIL3CyANypTpKywIGYNzfag7o7vQVzpfem005jNJsi0vt2mLwsK 4bWhf4BlpPCcybeKwJviszO9QQmwmi6+CRjSAhAqjA== -----END CERTIFICATE-----Generated at Wed May 13 12:40:09 2026 by rpki-client