$ rpki-client -vvf rpki-rsync.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/323030313a6466313a373334303a3a2f34382d3438203d3e20313530323439.roa File: 323030313a6466313a373334303a3a2f34382d3438203d3e20313530323439.roa (raw, json) Hash identifier: rPmnLfRHW0MsBvRLZTu2XZb2TPdVWPSkbs3wCW3iaxE= Subject key identifier: 62:54:4A:27:40:8F:C4:73:2D:DD:40:E4:B2:3E:5C:72:25:BD:EB:F5 Certificate issuer: /CN=68ECB00B63436E13214F12C7732F716D44E5E72D Certificate serial: 5BD6BFCC1BF19E0E00EA927108A368AD78B55B7F Authority key identifier: 68:EC:B0:0B:63:43:6E:13:21:4F:12:C7:73:2F:71:6D:44:E5:E7:2D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68ECB00B63436E13214F12C7732F716D44E5E72D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/323030313a6466313a373334303a3a2f34382d3438203d3e20313530323439.roa Signing time: Sun 03 May 2026 02:56:22 +0000 ROA not before: Sun 03 May 2026 02:51:22 +0000 ROA not after: Sun 02 May 2027 02:56:22 +0000 asID: 150249 IP address blocks: 2001:df1:7340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/68ECB00B63436E13214F12C7732F716D44E5E72D.crl rsync://rpki-rsync.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/68ECB00B63436E13214F12C7732F716D44E5E72D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68ECB00B63436E13214F12C7732F716D44E5E72D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d6:bf:cc:1b:f1:9e:0e:00:ea:92:71:08:a3:68:ad:78:b5:5b:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68ECB00B63436E13214F12C7732F716D44E5E72D Validity Not Before: May 3 02:51:22 2026 GMT Not After : May 2 02:56:22 2027 GMT Subject: CN=62544A27408FC4732DDD40E4B23E5C7225BDEBF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:94:00:31:9d:ce:bf:1d:be:2d:67:5f:70:f7: dd:c9:48:82:5a:55:a3:b6:f4:37:7f:1d:e3:d4:c9: c1:d0:c4:a1:16:1f:c8:d2:38:51:5f:e8:33:96:76: 88:b5:be:3f:16:ef:bc:dc:23:66:30:7a:e0:3a:dd: d8:a3:c5:e6:1c:50:96:dc:45:db:39:d2:ab:8a:31: 07:de:3c:a4:2b:de:ed:b8:52:5f:80:5b:70:00:d9: 7b:dc:18:ca:24:15:ae:ea:1f:07:e5:a9:61:14:e1: 14:9f:b6:f4:32:3f:ee:a3:36:1e:ea:ef:da:53:01: b8:ec:d7:4c:38:69:b4:ad:2e:b5:f0:af:bd:5f:cc: 32:fc:8f:44:10:2e:2d:3f:16:b8:77:84:f3:a9:d2: a7:dd:7a:31:ac:b9:0d:0a:67:3a:cd:b2:75:22:0e: 7b:a9:79:8e:72:83:eb:6e:71:28:b5:61:da:9a:55: 4e:c6:9b:83:78:41:fc:ca:f4:ff:8a:5c:65:b2:d3: 7b:49:1b:46:96:bd:51:39:cb:ee:31:4d:27:94:f9: 33:2a:f2:d7:11:9e:19:9a:8c:55:38:00:63:2a:08: 86:a7:b5:53:58:6d:aa:44:5b:42:20:76:a9:41:7e: 36:75:d5:fd:c5:9d:72:78:a1:58:22:ac:8a:db:5d: 76:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:54:4A:27:40:8F:C4:73:2D:DD:40:E4:B2:3E:5C:72:25:BD:EB:F5 X509v3 Authority Key Identifier: keyid:68:EC:B0:0B:63:43:6E:13:21:4F:12:C7:73:2F:71:6D:44:E5:E7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/68ECB00B63436E13214F12C7732F716D44E5E72D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68ECB00B63436E13214F12C7732F716D44E5E72D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/323030313a6466313a373334303a3a2f34382d3438203d3e20313530323439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7340::/48 Signature Algorithm: sha256WithRSAEncryption ab:2c:fd:c9:44:e9:54:8d:31:f8:ae:3d:b7:e2:04:a3:da:eb: c9:74:eb:50:ce:96:76:c2:8c:02:10:12:76:fe:02:67:cc:92: df:1e:82:1e:92:4b:7b:1d:12:df:dc:35:e9:62:b7:a6:fa:2e: 8c:76:0b:d2:72:2d:1d:96:26:af:f3:2a:c6:c3:10:12:75:15: ae:28:c3:bf:20:05:1c:b5:b0:4b:57:61:29:02:da:ee:4f:d8: 2a:2f:6a:4a:7b:e2:2e:a7:1d:9d:9b:3a:68:0c:80:09:af:ab: 60:00:19:d5:22:d1:c6:f4:0b:6a:e5:16:3e:79:c1:30:49:bc: 48:be:95:8d:5d:3c:0f:8d:68:bb:db:31:1c:89:b6:7f:09:49: dc:06:cc:f7:50:86:c1:80:81:d4:64:df:66:80:bb:c2:64:3d: 0c:25:3b:a4:96:58:ee:1c:5a:d1:f8:6b:89:54:30:aa:b9:4a: d8:5b:2e:be:a3:21:e2:e3:3e:35:59:61:03:42:68:47:68:52: b6:3a:d9:8c:d8:62:5b:4a:c4:81:6c:a7:8f:f9:0c:56:86:07: c0:ee:ec:be:a2:c4:4f:80:73:ec:68:5d:bf:47:ec:c1:91:0d: 61:e0:98:65:50:9d:cd:cb:2b:14:4c:51:70:59:e1:84:b9:d5: 8e:80:d0:ee -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUW9a/zBvxng4A6pJxCKNorXi1W38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhFQ0IwMEI2MzQzNkUxMzIxNEYxMkM3NzMyRjcxNkQ0 NEU1RTcyRDAeFw0yNjA1MDMwMjUxMjJaFw0yNzA1MDIwMjU2MjJaMDMxMTAvBgNV BAMTKDYyNTQ0QTI3NDA4RkM0NzMyRERENDBFNEIyM0U1QzcyMjVCREVCRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtlAAxnc6/Hb4tZ19w993JSIJa VaO29Dd/HePUycHQxKEWH8jSOFFf6DOWdoi1vj8W77zcI2YweuA63dijxeYcUJbc Rds50quKMQfePKQr3u24Ul+AW3AA2XvcGMokFa7qHwflqWEU4RSftvQyP+6jNh7q 79pTAbjs10w4abStLrXwr71fzDL8j0QQLi0/Frh3hPOp0qfdejGsuQ0KZzrNsnUi DnupeY5yg+tucSi1YdqaVU7Gm4N4QfzK9P+KXGWy03tJG0aWvVE5y+4xTSeU+TMq 8tcRnhmajFU4AGMqCIantVNYbapEW0IgdqlBfjZ11f3FnXJ4oVgirIrbXXYhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYlRKJ0CPxHMt3UDksj5cciW96/UwHwYDVR0j BBgwFoAUaOywC2NDbhMhTxLHcy9xbUTl5y0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTM5YzU0ODQtMmUzNy00OGY5LThlYmEtMGFmNGVmNjI5NDdkLzAvNjhFQ0IwMEI2 MzQzNkUxMzIxNEYxMkM3NzMyRjcxNkQ0NEU1RTcyRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEVDQjAwQjYzNDM2RTEzMjE0RjEyQzc3MzJGNzE2RDQ0RTVF NzJELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2EzOWM1NDg0LTJlMzctNDhmOS04 ZWJhLTBhZjRlZjYyOTQ3ZC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM3MzMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8XNAMA0GCSqGSIb3DQEBCwUAA4IBAQCrLP3JROlUjTH4rj234gSj2uvJdOtQzpZ2 wowCEBJ2/gJnzJLfHoIekkt7HRLf3DXpYrem+i6MdgvSci0dliav8yrGwxASdRWu KMO/IAUctbBLV2EpAtruT9gqL2pKe+Iupx2dmzpoDIAJr6tgABnVItHG9Atq5RY+ ecEwSbxIvpWNXTwPjWi72zEcibZ/CUncBsz3UIbBgIHUZN9mgLvCZD0MJTukllju HFrR+GuJVDCquUrYWy6+oyHi4z41WWEDQmhHaFK2OtmM2GJbSsSBbKeP+QxWhgfA 7uy+osRPgHPsaF2/R+zBkQ1h4JhlUJ3NyysUTFFwWeGEudWOgNDu -----END CERTIFICATE-----Generated at Wed May 13 14:27:58 2026 by rpki-client