$ rpki-client -vvf rpki-rsync.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/1/323030313a6466343a366234303a3a2f34382d3438203d3e20313533313331.roa File: 323030313a6466343a366234303a3a2f34382d3438203d3e20313533313331.roa (raw, json) Hash identifier: 0ggaPePdCSw/n+Sh533ZsWKg9491ZisyRCt3cB57Hw0= Subject key identifier: F1:0C:22:9D:29:99:76:23:BC:C8:F6:DC:34:97:BD:43:5E:D2:54:BA Certificate issuer: /CN=DCA916604EAE55F638D4691DA6D930A094E4281C Certificate serial: 68D53BAC0D1152072A46FA2C42334A71B1174C98 Authority key identifier: DC:A9:16:60:4E:AE:55:F6:38:D4:69:1D:A6:D9:30:A0:94:E4:28:1C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DCA916604EAE55F638D4691DA6D930A094E4281C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/1/323030313a6466343a366234303a3a2f34382d3438203d3e20313533313331.roa Signing time: Sun 03 May 2026 02:56:02 +0000 ROA not before: Sun 03 May 2026 02:51:02 +0000 ROA not after: Sun 02 May 2027 02:56:02 +0000 asID: 153131 IP address blocks: 2001:df4:6b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/1/DCA916604EAE55F638D4691DA6D930A094E4281C.crl rsync://rpki-rsync.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/1/DCA916604EAE55F638D4691DA6D930A094E4281C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DCA916604EAE55F638D4691DA6D930A094E4281C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d5:3b:ac:0d:11:52:07:2a:46:fa:2c:42:33:4a:71:b1:17:4c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCA916604EAE55F638D4691DA6D930A094E4281C Validity Not Before: May 3 02:51:02 2026 GMT Not After : May 2 02:56:02 2027 GMT Subject: CN=F10C229D29997623BCC8F6DC3497BD435ED254BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:07:5f:a8:e0:43:71:c5:37:3b:5d:7a:fa: 7d:e8:4e:ba:2b:ba:68:12:28:2b:cc:6f:16:2d:21: b1:96:85:d8:a9:91:19:28:5a:69:9b:85:87:c1:d6: 5c:4e:e8:15:97:82:c4:a4:41:a1:2a:09:be:fa:4c: a5:6c:ec:af:3e:d3:26:dd:3c:54:6c:1a:e4:fb:47: 2a:f5:c4:90:ad:57:12:b2:57:05:a5:6a:25:76:b9: f2:a3:90:71:4d:09:e7:f0:c7:a8:72:1f:9d:c5:eb: b7:63:2b:cf:e9:58:a2:46:36:4f:5e:42:20:30:cd: ee:7e:7a:e6:ca:ee:72:4d:c8:a4:36:19:c6:e0:6a: b0:33:9d:cb:f6:c2:ae:de:8f:5d:7b:99:3e:b6:b7: 50:1c:c2:b0:d9:5b:54:48:55:0b:7c:2e:b3:22:60: e3:99:0d:b3:5f:97:47:5e:9d:80:29:8c:23:2d:22: 49:ef:8f:03:e7:45:4b:c8:ea:bf:a9:93:22:e9:7e: cc:80:77:e5:36:7c:1b:55:9e:8a:7b:a2:ff:d2:d5: 5b:2a:8b:7e:c1:f6:d8:fc:73:8c:c7:8d:f8:13:ae: be:91:bf:c3:22:1a:68:66:05:53:7f:9c:79:10:2c: c2:71:dd:90:29:ba:bf:2b:e2:1b:b9:04:5c:c3:cd: cf:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0C:22:9D:29:99:76:23:BC:C8:F6:DC:34:97:BD:43:5E:D2:54:BA X509v3 Authority Key Identifier: keyid:DC:A9:16:60:4E:AE:55:F6:38:D4:69:1D:A6:D9:30:A0:94:E4:28:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/1/DCA916604EAE55F638D4691DA6D930A094E4281C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DCA916604EAE55F638D4691DA6D930A094E4281C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/1/323030313a6466343a366234303a3a2f34382d3438203d3e20313533313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6b40::/48 Signature Algorithm: sha256WithRSAEncryption 47:5a:6d:08:cb:1b:75:aa:7d:f0:94:42:1f:27:da:62:5f:f6: 34:ba:57:0b:4c:c5:b1:74:d1:5e:9f:e7:7f:a7:7a:62:52:56: b2:51:b3:15:4f:5e:20:79:d9:5e:29:34:a9:3b:1c:5e:8a:69: 76:07:ff:fc:20:ba:af:31:c5:16:f1:33:19:c0:a8:32:65:03: 7c:2e:41:04:55:5d:e8:2d:60:52:d6:f6:d1:32:6d:ff:7f:10: c8:a2:9c:24:71:3b:8f:e8:7a:a3:49:59:1d:10:27:84:32:1e: 55:00:84:c9:6d:74:b7:46:f6:6e:f2:1f:db:8e:7d:87:fd:ac: 61:c9:3c:5f:8f:05:93:ec:cb:db:8b:75:5c:ed:6e:53:92:dc: d8:9d:08:92:3f:c2:33:00:42:73:12:e3:ca:60:ea:62:a9:23: 59:53:aa:9a:c6:44:4d:99:02:a1:b9:ee:1f:b8:9d:93:3e:48: c5:e4:70:a6:2f:85:43:04:3e:07:20:e4:4f:99:f1:55:2d:60: 6d:db:e2:98:ad:29:50:65:9f:26:2b:49:5d:72:17:7b:c2:21: a9:3a:0c:65:b2:08:4f:ae:e1:c6:13:03:d4:98:9d:23:c6:58: 2e:f7:ce:67:46:f9:92:d9:2a:90:37:8f:b7:de:68:24:9f:12: 99:0d:3f:b1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaNU7rA0RUgcqRvosQjNKcbEXTJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENBOTE2NjA0RUFFNTVGNjM4RDQ2OTFEQTZEOTMwQTA5 NEU0MjgxQzAeFw0yNjA1MDMwMjUxMDJaFw0yNzA1MDIwMjU2MDJaMDMxMTAvBgNV BAMTKEYxMEMyMjlEMjk5OTc2MjNCQ0M4RjZEQzM0OTdCRDQzNUVEMjU0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0RAdfqOBDccU3O116+n3oTror umgSKCvMbxYtIbGWhdipkRkoWmmbhYfB1lxO6BWXgsSkQaEqCb76TKVs7K8+0ybd PFRsGuT7Ryr1xJCtVxKyVwWlaiV2ufKjkHFNCefwx6hyH53F67djK8/pWKJGNk9e QiAwze5+eubK7nJNyKQ2GcbgarAzncv2wq7ej117mT62t1AcwrDZW1RIVQt8LrMi YOOZDbNfl0denYApjCMtIknvjwPnRUvI6r+pkyLpfsyAd+U2fBtVnop7ov/S1Vsq i37B9tj8c4zHjfgTrr6Rv8MiGmhmBVN/nHkQLMJx3ZApur8r4hu5BFzDzc/pAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU8QwinSmZdiO8yPbcNJe9Q17SVLowHwYDVR0j BBgwFoAU3KkWYE6uVfY41GkdptkwoJTkKBwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTIxMWYzNDctYTFlNy00NzFkLWFkMjAtZGE3NmFhYmYzODRjLzEvRENBOTE2NjA0 RUFFNTVGNjM4RDQ2OTFEQTZEOTMwQTA5NEU0MjgxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EQ0E5MTY2MDRFQUU1NUY2MzhENDY5MURBNkQ5MzBBMDk0RTQy ODFDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EyMTFmMzQ3LWExZTctNDcxZC1h ZDIwLWRhNzZhYWJmMzg0Yy8xLzMyMzAzMDMxM2E2NDY2MzQzYTM2NjIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9GtAMA0GCSqGSIb3DQEBCwUAA4IBAQBHWm0Iyxt1qn3wlEIfJ9piX/Y0ulcLTMWx dNFen+d/p3piUlayUbMVT14gedleKTSpOxxeiml2B//8ILqvMcUW8TMZwKgyZQN8 LkEEVV3oLWBS1vbRMm3/fxDIopwkcTuP6HqjSVkdECeEMh5VAITJbXS3RvZu8h/b jn2H/axhyTxfjwWT7Mvbi3Vc7W5TktzYnQiSP8IzAEJzEuPKYOpiqSNZU6qaxkRN mQKhue4fuJ2TPkjF5HCmL4VDBD4HIORPmfFVLWBt2+KYrSlQZZ8mK0ldchd7wiGp OgxlsghPruHGEwPUmJ0jxlgu985nRvmS2SqQN4+33mgknxKZDT+x -----END CERTIFICATE-----Generated at Wed May 13 07:14:45 2026 by rpki-client