$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa File: 323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa (raw, json) Hash identifier: OwnxfPLeUrtNm40iRIXJAgj10Ula0MR83EXj/2YtNZ4= Subject key identifier: 14:47:B9:FB:75:AD:4F:FB:03:57:AC:D9:CB:5F:13:0B:56:DE:21:BE Certificate issuer: /CN=19045F868E09E8CC6E09639ABA7B1C1471E608E9 Certificate serial: 1F4A8AD8B10CC8BBF453D5E1D5D8A3D497A5D144 Authority key identifier: 19:04:5F:86:8E:09:E8:CC:6E:09:63:9A:BA:7B:1C:14:71:E6:08:E9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19045F868E09E8CC6E09639ABA7B1C1471E608E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa Signing time: Sun 03 May 2026 02:57:11 +0000 ROA not before: Sun 03 May 2026 02:52:11 +0000 ROA not after: Sun 02 May 2027 02:57:11 +0000 asID: 138876 IP address blocks: 2001:df0:b580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/19045F868E09E8CC6E09639ABA7B1C1471E608E9.crl rsync://rpki-rsync.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/19045F868E09E8CC6E09639ABA7B1C1471E608E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19045F868E09E8CC6E09639ABA7B1C1471E608E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:4a:8a:d8:b1:0c:c8:bb:f4:53:d5:e1:d5:d8:a3:d4:97:a5:d1:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19045F868E09E8CC6E09639ABA7B1C1471E608E9 Validity Not Before: May 3 02:52:11 2026 GMT Not After : May 2 02:57:11 2027 GMT Subject: CN=1447B9FB75AD4FFB0357ACD9CB5F130B56DE21BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:39:48:53:f7:2d:26:08:e9:63:83:fc:08: a7:86:73:b9:90:48:eb:89:79:2e:bf:fc:00:20:dc: 98:05:61:3f:ca:32:87:5f:dc:82:2e:25:48:c8:9b: 02:2d:2e:d4:29:f1:e7:ea:be:44:34:28:3b:22:e7: 8e:95:a2:2c:31:99:43:f9:41:45:74:35:17:62:34: 36:ca:29:8a:1f:c5:6a:a2:9a:6e:9b:d1:64:0f:3e: ef:0f:cf:f3:2d:97:45:90:33:0d:ae:84:fc:50:1d: ce:a8:42:76:f8:6f:8e:aa:cb:42:f8:8d:f6:3f:be: c5:c1:25:11:9b:a7:39:73:93:f9:fd:26:26:15:66: ec:3d:32:48:23:02:81:36:c1:19:bf:1c:da:07:31: 3a:77:9b:71:75:da:d2:15:00:8d:46:75:f7:81:5b: 95:92:46:8b:e2:38:b4:dd:b2:66:3c:46:e1:21:6b: 8e:95:bc:33:e5:b7:2e:c7:a1:64:b7:34:73:ca:84: 75:31:d5:a2:80:1f:ef:3f:e0:47:6c:12:d9:4f:0f: d9:ed:d3:14:47:18:df:d0:8c:c4:d0:73:f6:6e:38: a4:c3:7b:7a:41:de:f2:1d:cb:46:37:88:c7:16:7f: eb:91:11:53:71:6e:8a:6d:c6:18:c8:44:1a:eb:a0: 03:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:47:B9:FB:75:AD:4F:FB:03:57:AC:D9:CB:5F:13:0B:56:DE:21:BE X509v3 Authority Key Identifier: keyid:19:04:5F:86:8E:09:E8:CC:6E:09:63:9A:BA:7B:1C:14:71:E6:08:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/19045F868E09E8CC6E09639ABA7B1C1471E608E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19045F868E09E8CC6E09639ABA7B1C1471E608E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b580::/48 Signature Algorithm: sha256WithRSAEncryption 55:5b:62:78:f0:39:9f:ac:ba:35:d0:e5:13:75:5e:10:06:3b: 9d:be:e8:82:67:0a:75:d6:cf:93:dd:b6:69:09:0d:e5:e3:5a: 54:ff:13:4c:2b:af:ea:83:95:93:04:54:95:57:a4:3a:ab:bb: 1f:a7:65:8d:25:3f:90:36:53:8a:f7:4e:f0:94:38:70:04:e4: d1:85:73:b6:7b:45:b3:b5:62:42:88:22:20:54:61:ce:b5:8a: 31:a1:1c:3e:e3:d1:ce:9a:a8:66:73:14:06:7a:00:57:11:33: 0c:7b:34:7b:bf:ee:c5:67:a9:6a:bc:c6:1c:01:a3:45:16:e6: aa:8c:37:7b:1d:1b:12:40:01:b7:34:70:6d:ee:77:09:51:93: ec:3c:cb:0d:07:c5:7c:06:f3:23:89:b1:29:87:22:f8:03:30: c0:bd:34:8a:5d:ba:28:44:d7:8d:b0:4c:e6:5b:48:a1:0e:ed: 38:4d:61:ef:ba:65:26:bb:21:1a:f3:b7:14:f9:57:70:ea:3a: 09:c2:1f:97:a7:c4:21:d9:ad:88:a5:44:3a:2a:b7:08:b1:f1: 0e:97:1d:be:66:a7:05:97:52:c9:ec:d8:36:04:bb:15:5c:96: 8b:67:36:ec:e5:37:5d:06:89:12:fd:e3:62:2a:6f:92:c6:e5: 9f:d3:ed:06 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH0qK2LEMyLv0U9Xh1dij1Jel0UQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwNDVGODY4RTA5RThDQzZFMDk2MzlBQkE3QjFDMTQ3 MUU2MDhFOTAeFw0yNjA1MDMwMjUyMTFaFw0yNzA1MDIwMjU3MTFaMDMxMTAvBgNV BAMTKDE0NDdCOUZCNzVBRDRGRkIwMzU3QUNEOUNCNUYxMzBCNTZERTIxQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJgzlIU/ctJgjpY4P8CKeGc7mQ SOuJeS6//AAg3JgFYT/KModf3IIuJUjImwItLtQp8efqvkQ0KDsi546VoiwxmUP5 QUV0NRdiNDbKKYofxWqimm6b0WQPPu8Pz/Mtl0WQMw2uhPxQHc6oQnb4b46qy0L4 jfY/vsXBJRGbpzlzk/n9JiYVZuw9MkgjAoE2wRm/HNoHMTp3m3F12tIVAI1GdfeB W5WSRoviOLTdsmY8RuEha46VvDPlty7HoWS3NHPKhHUx1aKAH+8/4EdsEtlPD9nt 0xRHGN/QjMTQc/ZuOKTDe3pB3vIdy0Y3iMcWf+uREVNxboptxhjIRBrroAPDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFEe5+3WtT/sDV6zZy18TC1beIb4wHwYDVR0j BBgwFoAUGQRfho4J6MxuCWOaunscFHHmCOkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTZhOWRkZjctNTc2YS00YTU4LTg5YmItN2U4OTI4OTAyMjcwLzAvMTkwNDVGODY4 RTA5RThDQzZFMDk2MzlBQkE3QjFDMTQ3MUU2MDhFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOTA0NUY4NjhFMDlFOENDNkUwOTYzOUFCQTdCMUMxNDcxRTYw OEU5LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2YTlkZGY3LTU3NmEtNGE1OC04 OWJiLTdlODkyODkwMjI3MC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8LWAMA0GCSqGSIb3DQEBCwUAA4IBAQBVW2J48DmfrLo10OUTdV4QBjudvuiCZwp1 1s+T3bZpCQ3l41pU/xNMK6/qg5WTBFSVV6Q6q7sfp2WNJT+QNlOK907wlDhwBOTR hXO2e0WztWJCiCIgVGHOtYoxoRw+49HOmqhmcxQGegBXETMMezR7v+7FZ6lqvMYc AaNFFuaqjDd7HRsSQAG3NHBt7ncJUZPsPMsNB8V8BvMjibEphyL4AzDAvTSKXboo RNeNsEzmW0ihDu04TWHvumUmuyEa87cU+Vdw6joJwh+Xp8Qh2a2IpUQ6KrcIsfEO lx2+ZqcFl1LJ7Ng2BLsVXJaLZzbs5TddBokS/eNiKm+SxuWf0+0G -----END CERTIFICATE-----Generated at Wed May 13 13:27:12 2026 by rpki-client