$ rpki-client -vvf rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa File: 323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa (raw, json) Hash identifier: S/6ZT3o/2Fmv+v2FgpWjvGc73PZ3p7yRi6Jc6uqyB8o= Subject key identifier: 40:78:A9:CA:01:D4:AA:9D:EE:68:96:A2:33:3A:C8:8B:3A:3F:21:92 Certificate issuer: /CN=989831789EE975B0651609E616352062EEC4FC7B Certificate serial: 36245FE45E9FD8E76D51EC1B565036504F12C478 Authority key identifier: 98:98:31:78:9E:E9:75:B0:65:16:09:E6:16:35:20:62:EE:C4:FC:7B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/989831789EE975B0651609E616352062EEC4FC7B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa Signing time: Sun 03 May 2026 02:57:25 +0000 ROA not before: Sun 03 May 2026 02:52:25 +0000 ROA not after: Sun 02 May 2027 02:57:25 +0000 asID: 55688 IP address blocks: 2001:df4:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/989831789EE975B0651609E616352062EEC4FC7B.crl rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/989831789EE975B0651609E616352062EEC4FC7B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/989831789EE975B0651609E616352062EEC4FC7B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:24:5f:e4:5e:9f:d8:e7:6d:51:ec:1b:56:50:36:50:4f:12:c4:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989831789EE975B0651609E616352062EEC4FC7B Validity Not Before: May 3 02:52:25 2026 GMT Not After : May 2 02:57:25 2027 GMT Subject: CN=4078A9CA01D4AA9DEE6896A2333AC88B3A3F2192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:d0:4f:a4:26:2f:19:e0:5c:16:14:ae:26: a2:5f:9b:ed:a3:da:ce:40:9d:ee:c7:00:46:c3:79: d7:20:05:f6:c6:2d:e5:17:5e:87:a5:b1:b9:65:4f: f2:57:e6:bc:7f:fc:25:07:66:03:3d:ee:3c:88:b1: 1d:87:11:51:63:1a:89:f3:b4:4f:08:de:25:fc:89: b5:1d:ee:17:d0:53:3f:9e:b1:74:cf:a7:c5:ba:c4: 91:dd:00:3a:46:eb:89:1f:d8:51:6f:10:53:2e:2e: cb:cf:e5:cb:3a:a9:8e:00:b9:25:c9:96:dc:fe:c9: e4:52:f5:c7:1c:0f:a9:80:a5:c4:96:a0:c7:3d:b8: 0a:b5:64:35:7d:71:41:ca:46:b6:dc:4d:38:74:95: 61:b9:c0:1c:2b:27:ae:f8:de:b8:bd:f6:68:27:62: 45:4c:89:dc:64:19:dd:28:d6:19:f1:5b:11:2b:e5: 88:85:b6:cb:f1:75:2f:d3:e6:36:d7:a9:e6:1a:68: a9:09:90:b4:d7:68:e2:e7:41:7f:40:94:b0:78:34: 5e:51:dc:07:ea:11:52:96:ab:17:74:ef:9d:60:9e: 1f:70:37:16:cd:5b:e4:55:75:98:0f:c4:0a:0e:d2: 51:31:79:03:5d:b5:54:b1:ee:83:08:ab:06:3e:0d: 32:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:78:A9:CA:01:D4:AA:9D:EE:68:96:A2:33:3A:C8:8B:3A:3F:21:92 X509v3 Authority Key Identifier: keyid:98:98:31:78:9E:E9:75:B0:65:16:09:E6:16:35:20:62:EE:C4:FC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/989831789EE975B0651609E616352062EEC4FC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/989831789EE975B0651609E616352062EEC4FC7B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3b00::/48 Signature Algorithm: sha256WithRSAEncryption 45:43:5a:dc:de:e7:1e:2b:c4:b3:51:64:a7:c3:8f:21:eb:2b: f1:3a:21:0d:ff:4f:f1:8d:f5:f5:4b:8e:91:4c:3a:90:68:f2: 80:dc:f5:fb:eb:b4:8c:b9:33:23:79:a7:da:5f:33:83:67:f7: 4d:1b:2c:0a:9b:3a:d2:62:ef:1a:bb:a6:65:eb:8e:9c:ba:48: 7d:71:16:51:b1:a4:46:8d:35:63:8b:f6:f3:b8:da:04:48:4a: 31:24:7c:7c:60:64:7c:42:cd:d0:5f:e8:58:e2:b9:d4:e6:ac: 15:2d:02:d7:20:ee:23:0d:fd:62:30:2d:1f:04:81:4c:59:16: 29:3f:db:a4:4e:ee:64:80:a6:ba:e7:3c:65:18:73:6a:42:7e: 6b:a1:2e:e5:e9:3f:b7:72:94:c3:45:9a:66:88:11:5d:12:41: 0d:f4:bb:27:d0:0f:91:19:56:a0:50:59:b6:e6:45:42:33:43: 23:13:63:e4:f4:62:e6:a7:6e:c7:96:0b:02:34:61:ca:87:2c: c3:29:10:b8:de:32:81:90:05:36:c1:50:7b:98:6a:f3:7f:21: 4b:7d:75:7e:c4:be:ed:3a:61:ea:00:6e:6f:1b:8e:02:eb:5f: 3d:8b:ce:ec:a1:fa:97:39:b0:b8:a0:79:42:8b:7b:d2:b1:e2: b9:cb:b1:94 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUNiRf5F6f2OdtUewbVlA2UE8SxHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5ODMxNzg5RUU5NzVCMDY1MTYwOUU2MTYzNTIwNjJF RUM0RkM3QjAeFw0yNjA1MDMwMjUyMjVaFw0yNzA1MDIwMjU3MjVaMDMxMTAvBgNV BAMTKDQwNzhBOUNBMDFENEFBOURFRTY4OTZBMjMzM0FDODhCM0EzRjIxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSANBPpCYvGeBcFhSuJqJfm+2j 2s5Ane7HAEbDedcgBfbGLeUXXoelsbllT/JX5rx//CUHZgM97jyIsR2HEVFjGonz tE8I3iX8ibUd7hfQUz+esXTPp8W6xJHdADpG64kf2FFvEFMuLsvP5cs6qY4AuSXJ ltz+yeRS9cccD6mApcSWoMc9uAq1ZDV9cUHKRrbcTTh0lWG5wBwrJ6743ri99mgn YkVMidxkGd0o1hnxWxEr5YiFtsvxdS/T5jbXqeYaaKkJkLTXaOLnQX9AlLB4NF5R 3AfqEVKWqxd0751gnh9wNxbNW+RVdZgPxAoO0lExeQNdtVSx7oMIqwY+DTJLAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQHipygHUqp3uaJaiMzrIizo/IZIwHwYDVR0j BBgwFoAUmJgxeJ7pdbBlFgnmFjUgYu7E/HswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTc1OGM4MGUtYTMyOC00ZjhjLWEwM2YtOTFjM2MyNjIxNGEyLzAvOTg5ODMxNzg5 RUU5NzVCMDY1MTYwOUU2MTYzNTIwNjJFRUM0RkM3Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85ODk4MzE3ODlFRTk3NUIwNjUxNjA5RTYxNjM1MjA2MkVFQzRG QzdCLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E3NThjODBlLWEzMjgtNGY4Yy1h MDNmLTkxYzNjMjYyMTRhMi8wLzMyMzAzMDMxM2E2NDY2MzQzYTMzNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQ7 ADANBgkqhkiG9w0BAQsFAAOCAQEARUNa3N7nHivEs1Fkp8OPIesr8TohDf9P8Y31 9UuOkUw6kGjygNz1++u0jLkzI3mn2l8zg2f3TRssCps60mLvGrumZeuOnLpIfXEW UbGkRo01Y4v287jaBEhKMSR8fGBkfELN0F/oWOK51OasFS0C1yDuIw39YjAtHwSB TFkWKT/bpE7uZICmuuc8ZRhzakJ+a6Eu5ek/t3KUw0WaZogRXRJBDfS7J9APkRlW oFBZtuZFQjNDIxNj5PRi5qdux5YLAjRhyocswykQuN4ygZAFNsFQe5hq838hS311 fsS+7Tph6gBubxuOAutfPYvO7KH6lzmwuKB5Qot70rHiucuxlA== -----END CERTIFICATE-----Generated at Wed May 13 08:35:04 2026 by rpki-client