$ rpki-client -vvf rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a3a2f34382d3438203d3e2037353837.roa File: 323030313a6436383a3a2f34382d3438203d3e2037353837.roa (raw, json) Hash identifier: dWhStAj6HzRZyPO6wK8fbaTC6+s5nIuRkrdrVFiEcTg= Subject key identifier: 3C:C2:10:46:21:32:B5:D7:2E:C8:BD:3E:51:34:AF:BA:1B:82:D1:61 Certificate issuer: /CN=02062A0A8A708F654606A252EFBD31F81D738315 Certificate serial: 264BDDDAEEB347F2C335DDE925DF19D7CD15F231 Authority key identifier: 02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a3a2f34382d3438203d3e2037353837.roa Signing time: Sun 03 May 2026 02:55:44 +0000 ROA not before: Sun 03 May 2026 02:50:44 +0000 ROA not after: Sun 02 May 2027 02:55:44 +0000 asID: 7587 IP address blocks: 2001:d68::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4b:dd:da:ee:b3:47:f2:c3:35:dd:e9:25:df:19:d7:cd:15:f2:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02062A0A8A708F654606A252EFBD31F81D738315 Validity Not Before: May 3 02:50:44 2026 GMT Not After : May 2 02:55:44 2027 GMT Subject: CN=3CC210462132B5D72EC8BD3E5134AFBA1B82D161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:a3:74:09:cd:26:1b:71:2a:b8:e9:09:39: e9:26:36:39:02:73:74:32:c8:0f:2b:05:75:ae:6f: 84:60:50:53:59:25:be:37:53:af:00:bd:cc:99:99: 79:02:79:d9:ce:48:26:90:e7:8d:5e:e9:1d:f7:33: 39:33:4b:29:03:78:c0:e0:a8:7e:77:69:e9:a5:6d: c5:13:7e:de:30:ec:18:35:3b:96:c8:a7:fa:0a:a5: 8d:7f:14:f7:ef:25:b2:3c:cf:93:3f:ca:f6:f1:ce: 48:de:42:5c:16:f9:9c:14:2d:ba:46:0b:1c:1f:60: 17:be:22:e3:2b:34:b1:2e:8f:3e:c0:9f:09:3b:94: f4:09:11:23:ec:2e:4f:20:dc:8f:55:02:7f:0f:56: 9b:84:7b:a3:bb:50:0d:d1:3f:91:d9:53:96:b3:2a: 5c:61:4f:23:c0:d7:21:04:9e:77:94:f6:c6:1a:7c: b6:b1:1d:44:52:8f:b7:b2:dc:0c:51:4a:9e:46:d5: 41:7a:85:18:de:3a:0c:37:4c:62:e0:ab:30:18:79: 7a:c7:ce:81:1f:9d:c2:90:e1:81:06:36:ef:61:5c: a9:00:9a:51:f4:58:8d:a8:bd:36:ca:71:73:de:33: 38:99:3e:8e:01:1c:5b:19:e4:4a:56:b4:fe:3f:95: 13:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:C2:10:46:21:32:B5:D7:2E:C8:BD:3E:51:34:AF:BA:1B:82:D1:61 X509v3 Authority Key Identifier: keyid:02:06:2A:0A:8A:70:8F:65:46:06:A2:52:EF:BD:31:F8:1D:73:83:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/02062A0A8A708F654606A252EFBD31F81D738315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/02062A0A8A708F654606A252EFBD31F81D738315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/323030313a6436383a3a2f34382d3438203d3e2037353837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d68::/48 Signature Algorithm: sha256WithRSAEncryption 1e:c1:c8:a8:72:4a:eb:dc:31:29:5d:c7:e7:b9:a0:8e:80:55: 78:01:15:44:cd:43:ee:d7:a0:1c:86:41:ef:12:c3:5d:ba:a8: 80:22:40:53:ca:fc:e4:65:6e:aa:4f:7e:b4:4c:fd:9b:9b:8d: 70:ad:d2:03:d0:a4:a7:a4:a2:21:9e:31:92:6e:2b:ae:a2:ed: e7:af:e7:bf:cb:06:58:85:1f:d7:ed:76:74:cc:9f:7a:f9:92: a4:be:60:b0:9e:a8:de:a3:29:84:d1:38:87:5c:e4:95:d1:e1: 2c:a3:19:03:0c:65:25:7a:0b:1f:74:dc:ce:d7:4d:49:e2:fd: 2d:a7:bc:42:ee:a2:0f:70:e8:e5:9d:6d:d8:c9:f8:bd:43:f8: 93:a6:c7:9c:11:27:64:bb:3d:0e:aa:d3:71:ba:32:7a:2e:03: 0d:04:c7:8b:11:ae:cd:b4:44:2a:22:7d:05:5d:12:98:67:46: 16:0b:8d:fd:2d:43:8f:bf:ff:38:88:d5:85:14:8c:43:a1:3e: 0a:bd:1c:3e:f5:89:20:49:e4:fa:92:9b:d6:eb:8c:21:67:be: 56:b1:7c:7d:3a:af:1f:a8:6a:40:55:c1:41:77:0a:51:04:65: 2f:43:f2:9b:34:75:d2:bb:86:ba:b9:1a:50:38:58:a7:97:27: 98:02:0b:b2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUJkvd2u6zR/LDNd3pJd8Z180V8jEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwNjJBMEE4QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgx RDczODMxNTAeFw0yNjA1MDMwMjUwNDRaFw0yNzA1MDIwMjU1NDRaMDMxMTAvBgNV BAMTKDNDQzIxMDQ2MjEzMkI1RDcyRUM4QkQzRTUxMzRBRkJBMUI4MkQxNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOWqN0Cc0mG3EquOkJOekmNjkC c3QyyA8rBXWub4RgUFNZJb43U68AvcyZmXkCednOSCaQ541e6R33MzkzSykDeMDg qH53aemlbcUTft4w7Bg1O5bIp/oKpY1/FPfvJbI8z5M/yvbxzkjeQlwW+ZwULbpG CxwfYBe+IuMrNLEujz7Anwk7lPQJESPsLk8g3I9VAn8PVpuEe6O7UA3RP5HZU5az KlxhTyPA1yEEnneU9sYafLaxHURSj7ey3AxRSp5G1UF6hRjeOgw3TGLgqzAYeXrH zoEfncKQ4YEGNu9hXKkAmlH0WI2ovTbKcXPeMziZPo4BHFsZ5EpWtP4/lROrAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUPMIQRiEytdcuyL0+UTSvuhuC0WEwHwYDVR0j BBgwFoAUAgYqCopwj2VGBqJS770x+B1zgxUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTEyZjIyOGMtZGYyMC00NzI4LTlmOTYtOGZhYTEzNDAwMTdhLzAvMDIwNjJBMEE4 QTcwOEY2NTQ2MDZBMjUyRUZCRDMxRjgxRDczODMxNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjA2MkEwQThBNzA4RjY1NDYwNkEyNTJFRkJEMzFGODFENzM4 MzE1LmNlcjCBnAYIKwYBBQUHAQsEgY8wgYwwgYkGCCsGAQUFBzALhn1yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTEyZjIyOGMtZGYyMC00NzI4LTlm OTYtOGZhYTEzNDAwMTdhLzAvMzIzMDMwMzEzYTY0MzYzODNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDM3MzUzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAENaAAAMA0GCSqGSIb3DQEB CwUAA4IBAQAewciockrr3DEpXcfnuaCOgFV4ARVEzUPu16AchkHvEsNduqiAIkBT yvzkZW6qT360TP2bm41wrdID0KSnpKIhnjGSbiuuou3nr+e/ywZYhR/X7XZ0zJ96 +ZKkvmCwnqjeoymE0TiHXOSV0eEsoxkDDGUlegsfdNzO101J4v0tp7xC7qIPcOjl nW3Yyfi9Q/iTpsecESdkuz0OqtNxujJ6LgMNBMeLEa7NtEQqIn0FXRKYZ0YWC439 LUOPv/84iNWFFIxDoT4KvRw+9YkgSeT6kpvW64whZ75WsXx9Oq8fqGpAVcFBdwpR BGUvQ/KbNHXSu4a6uRpQOFinlyeYAguy -----END CERTIFICATE-----Generated at Wed May 13 12:40:22 2026 by rpki-client