$ rpki-client -vvf rpki-rsync.idnic.net/repo/a8f285ef-3453-4179-a553-f19597de9ded/0/323030313a6466333a666434303a3a2f34382d3438203d3e20313532303535.roa File: 323030313a6466333a666434303a3a2f34382d3438203d3e20313532303535.roa (raw, json) Hash identifier: Xmk4AKXAk65syZMNokwtsrkCl9OG2CFthVNLs1MeEBs= Subject key identifier: 7C:B3:32:11:86:77:CC:C0:36:9B:C2:46:37:58:A8:1E:71:3D:2D:FD Certificate issuer: /CN=96FDA607CDE580764664CCDAA75B9ECDACB44700 Certificate serial: 60974BC5EB215573B68F2651CD8E9EC092B037B0 Authority key identifier: 96:FD:A6:07:CD:E5:80:76:46:64:CC:DA:A7:5B:9E:CD:AC:B4:47:00 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/96FDA607CDE580764664CCDAA75B9ECDACB44700.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a8f285ef-3453-4179-a553-f19597de9ded/0/323030313a6466333a666434303a3a2f34382d3438203d3e20313532303535.roa Signing time: Sun 03 May 2026 02:57:57 +0000 ROA not before: Sun 03 May 2026 02:52:57 +0000 ROA not after: Sun 02 May 2027 02:57:57 +0000 asID: 152055 IP address blocks: 2001:df3:fd40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a8f285ef-3453-4179-a553-f19597de9ded/0/96FDA607CDE580764664CCDAA75B9ECDACB44700.crl rsync://rpki-rsync.idnic.net/repo/a8f285ef-3453-4179-a553-f19597de9ded/0/96FDA607CDE580764664CCDAA75B9ECDACB44700.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/96FDA607CDE580764664CCDAA75B9ECDACB44700.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:97:4b:c5:eb:21:55:73:b6:8f:26:51:cd:8e:9e:c0:92:b0:37:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96FDA607CDE580764664CCDAA75B9ECDACB44700 Validity Not Before: May 3 02:52:57 2026 GMT Not After : May 2 02:57:57 2027 GMT Subject: CN=7CB332118677CCC0369BC2463758A81E713D2DFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:cc:62:52:4f:17:28:d2:49:c2:e8:20:f2:be: 67:3f:81:cd:1e:35:92:7f:15:41:e9:e7:e6:4b:5e: 06:1b:11:39:26:0a:0a:e1:a0:6c:93:79:b3:ac:c9: 14:ef:d2:11:a9:3d:48:64:b3:25:6f:dd:2f:18:31: 8c:ee:89:4e:da:67:70:ba:86:ba:ba:e1:b4:6e:91: aa:b1:e4:1c:6a:1f:07:34:d2:7a:c1:68:da:6c:24: 7e:13:b7:82:a3:54:1a:7f:0f:39:a8:99:dc:06:81: 9b:3c:f5:96:45:d8:d3:14:ec:fc:56:ea:7c:a2:25: 7e:66:c2:7f:68:03:5b:ca:3b:45:52:eb:d4:14:65: 8a:8d:23:d0:32:26:07:3e:9b:16:4f:33:29:25:f2: 4e:44:68:3c:63:d7:e6:75:79:a3:f2:9d:82:b2:ca: e3:c6:cc:25:93:bb:8d:a6:11:0e:9f:84:41:7c:f8: 0e:70:04:be:12:4c:ee:ab:4b:7d:ea:f7:68:47:3a: d1:1c:be:b8:e8:f3:44:4a:c8:3a:83:d6:e7:3e:78: 67:b7:74:cc:40:89:46:12:8c:e1:ba:71:31:eb:f1: 60:2d:8e:21:b5:99:f9:78:c5:17:b8:a3:6f:f0:a5: db:9b:1f:a5:24:48:04:2c:3e:ab:10:27:82:08:b4: bd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B3:32:11:86:77:CC:C0:36:9B:C2:46:37:58:A8:1E:71:3D:2D:FD X509v3 Authority Key Identifier: keyid:96:FD:A6:07:CD:E5:80:76:46:64:CC:DA:A7:5B:9E:CD:AC:B4:47:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a8f285ef-3453-4179-a553-f19597de9ded/0/96FDA607CDE580764664CCDAA75B9ECDACB44700.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/96FDA607CDE580764664CCDAA75B9ECDACB44700.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a8f285ef-3453-4179-a553-f19597de9ded/0/323030313a6466333a666434303a3a2f34382d3438203d3e20313532303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fd40::/48 Signature Algorithm: sha256WithRSAEncryption 2d:6c:82:81:1d:87:71:7c:4c:f4:73:fb:87:0d:6d:e4:31:7d: 81:08:51:26:18:2a:80:ef:fc:8d:7d:32:32:7f:cf:66:35:e1: 06:fa:59:94:ab:ce:dd:5c:1a:ea:b1:24:d0:60:b8:fb:68:79: 33:e8:39:af:75:95:60:b9:ed:56:4e:52:f1:19:99:11:8e:59: f4:be:95:58:8f:00:90:66:8c:11:4c:3f:1e:b5:cc:9b:bc:f2: 30:a2:b7:ab:21:5e:e8:a3:01:cc:99:86:41:1e:2c:93:5d:ed: 3d:e3:9e:9e:40:28:2c:56:05:19:44:4f:e1:b3:b5:9c:53:37: 46:4f:58:c2:71:ec:47:08:f4:b7:51:25:22:f8:a0:48:70:b7: dd:0b:b6:56:ab:f2:b2:24:45:c5:92:67:7d:43:f7:51:6c:0e: 04:c1:76:94:ee:33:62:df:19:9a:af:c6:89:c0:09:04:e6:0f: 50:48:e9:53:d1:86:72:e8:ee:68:f0:08:02:4b:6b:2b:fe:7d: 00:cf:9b:c2:63:ac:75:1f:ee:b5:3b:ce:b8:2b:5f:80:64:eb: c9:81:e3:d8:ee:22:d3:4d:21:5b:0e:14:03:bc:f2:e5:aa:5f: f2:e1:a9:65:40:09:1c:bc:49:cc:8d:39:55:2c:49:c0:c1:3d: 8b:2f:63:35 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYJdLxeshVXO2jyZRzY6ewJKwN7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZGREE2MDdDREU1ODA3NjQ2NjRDQ0RBQTc1QjlFQ0RB Q0I0NDcwMDAeFw0yNjA1MDMwMjUyNTdaFw0yNzA1MDIwMjU3NTdaMDMxMTAvBgNV BAMTKDdDQjMzMjExODY3N0NDQzAzNjlCQzI0NjM3NThBODFFNzEzRDJERkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWzGJSTxco0knC6CDyvmc/gc0e NZJ/FUHp5+ZLXgYbETkmCgrhoGyTebOsyRTv0hGpPUhksyVv3S8YMYzuiU7aZ3C6 hrq64bRukaqx5BxqHwc00nrBaNpsJH4Tt4KjVBp/DzmomdwGgZs89ZZF2NMU7PxW 6nyiJX5mwn9oA1vKO0VS69QUZYqNI9AyJgc+mxZPMykl8k5EaDxj1+Z1eaPynYKy yuPGzCWTu42mEQ6fhEF8+A5wBL4STO6rS33q92hHOtEcvrjo80RKyDqD1uc+eGe3 dMxAiUYSjOG6cTHr8WAtjiG1mfl4xRe4o2/wpdubH6UkSAQsPqsQJ4IItL2DAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfLMyEYZ3zMA2m8JGN1ioHnE9Lf0wHwYDVR0j BBgwFoAUlv2mB83lgHZGZMzap1uezay0RwAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YThmMjg1ZWYtMzQ1My00MTc5LWE1NTMtZjE5NTk3ZGU5ZGVkLzAvOTZGREE2MDdD REU1ODA3NjQ2NjRDQ0RBQTc1QjlFQ0RBQ0I0NDcwMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NkZEQTYwN0NERTU4MDc2NDY2NENDREFBNzVCOUVDREFDQjQ0 NzAwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E4ZjI4NWVmLTM0NTMtNDE3OS1h NTUzLWYxOTU5N2RlOWRlZC8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzNTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/1AMA0GCSqGSIb3DQEBCwUAA4IBAQAtbIKBHYdxfEz0c/uHDW3kMX2BCFEmGCqA 7/yNfTIyf89mNeEG+lmUq87dXBrqsSTQYLj7aHkz6DmvdZVgue1WTlLxGZkRjln0 vpVYjwCQZowRTD8etcybvPIworerIV7oowHMmYZBHiyTXe09456eQCgsVgUZRE/h s7WcUzdGT1jCcexHCPS3USUi+KBIcLfdC7ZWq/KyJEXFkmd9Q/dRbA4EwXaU7jNi 3xmar8aJwAkE5g9QSOlT0YZy6O5o8AgCS2sr/n0Az5vCY6x1H+61O864K1+AZOvJ gePY7iLTTSFbDhQDvPLlql/y4allQAkcvEnMjTlVLEnAwT2LL2M1 -----END CERTIFICATE-----Generated at Wed May 13 16:15:49 2026 by rpki-client