$ rpki-client -vvf rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa File: 323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa (raw, json) Hash identifier: jRiKTU/j+tIlx8UR6dB8nvnEvGokztihjDnumCFG4MY= Subject key identifier: CD:D6:E9:17:D6:8D:57:CA:92:CF:27:4C:F7:FD:D3:F3:6B:F8:CF:9D Certificate issuer: /CN=EB57B4A8B7DB581F45D8854952928F5926755B5D Certificate serial: 2B4394A2FB4213FEBF70505DFE001B7008AA8DB7 Authority key identifier: EB:57:B4:A8:B7:DB:58:1F:45:D8:85:49:52:92:8F:59:26:75:5B:5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB57B4A8B7DB581F45D8854952928F5926755B5D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa Signing time: Sun 03 May 2026 02:58:19 +0000 ROA not before: Sun 03 May 2026 02:53:19 +0000 ROA not after: Sun 02 May 2027 02:58:19 +0000 asID: 152756 IP address blocks: 2001:df3:cf40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/EB57B4A8B7DB581F45D8854952928F5926755B5D.crl rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/EB57B4A8B7DB581F45D8854952928F5926755B5D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB57B4A8B7DB581F45D8854952928F5926755B5D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:43:94:a2:fb:42:13:fe:bf:70:50:5d:fe:00:1b:70:08:aa:8d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB57B4A8B7DB581F45D8854952928F5926755B5D Validity Not Before: May 3 02:53:19 2026 GMT Not After : May 2 02:58:19 2027 GMT Subject: CN=CDD6E917D68D57CA92CF274CF7FDD3F36BF8CF9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b3:06:7e:b3:14:33:38:9f:13:7c:0f:b3:15: f4:f5:fd:c0:cd:9d:3e:40:0c:50:3e:37:85:67:0d: bc:ec:59:c3:53:10:74:48:32:f5:42:28:d9:c7:67: 8f:ce:98:24:8a:49:67:82:25:c1:30:5e:2e:6b:4f: 07:e0:80:2c:df:1c:de:2c:70:28:bd:e4:e0:3b:87: e6:3d:ef:90:1e:6d:c1:81:0d:a4:84:5f:c2:f4:28: ec:a9:26:fb:0a:73:78:2d:b7:de:ba:db:75:41:39: 72:ff:f0:7d:cb:87:bf:83:ef:c2:18:eb:8f:12:e0: 62:b6:b2:9c:4c:2e:c8:e6:a6:52:54:ae:35:3d:27: 33:ea:f6:9d:fa:ed:4e:e9:c2:64:cb:a6:07:96:7a: c8:14:64:c8:59:27:6f:d8:96:47:6d:25:b3:d4:01: d7:87:13:e3:6a:62:89:6b:eb:12:56:d6:cb:5d:e7: 0e:1b:34:60:dd:17:0e:9e:8b:03:50:e5:9e:00:90: 2e:80:4a:17:79:8e:f0:23:1a:0a:47:fd:9f:b9:d2: ed:d8:be:f1:00:73:e3:bc:c8:81:00:ba:92:73:be: c6:10:b7:d0:5e:4a:74:6f:b3:ae:e4:f2:ee:9d:f4: 68:e7:c3:8f:6d:a6:1c:d2:88:67:cc:cd:aa:7b:bc: b5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D6:E9:17:D6:8D:57:CA:92:CF:27:4C:F7:FD:D3:F3:6B:F8:CF:9D X509v3 Authority Key Identifier: keyid:EB:57:B4:A8:B7:DB:58:1F:45:D8:85:49:52:92:8F:59:26:75:5B:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/EB57B4A8B7DB581F45D8854952928F5926755B5D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB57B4A8B7DB581F45D8854952928F5926755B5D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:cf40::/48 Signature Algorithm: sha256WithRSAEncryption 5b:77:ed:45:ef:5c:e4:5d:3b:4a:c8:a6:b8:5b:16:09:75:50: 54:ca:c8:7c:60:a1:f9:dc:d8:76:c4:fd:8b:29:84:f6:2c:c3: c8:38:1a:e0:ad:57:53:3d:1b:8d:5f:f8:9d:4f:c7:a5:5c:a6: 42:47:f8:99:20:d4:38:0b:4d:13:b8:61:60:f0:7b:74:da:7e: 82:64:5e:20:be:ca:fa:11:a2:51:ce:d6:4a:2e:08:70:91:6a: 71:2d:e5:ee:9a:e1:3a:7b:29:8c:9c:f2:33:3e:29:a4:c3:f0: c0:96:c6:11:9e:33:3f:13:da:6f:19:e9:0a:39:a8:09:32:c0: 42:e8:f5:a6:c6:0d:19:92:7b:63:36:37:42:cf:c3:3f:42:1f: 34:2c:c4:35:15:2d:39:08:bb:4b:77:ab:41:bf:58:de:be:53: 41:72:3b:96:13:00:cb:df:35:24:cb:16:ee:6a:a3:af:7d:69: 0a:06:8b:e3:05:aa:8b:b5:7d:03:9c:3d:10:44:72:94:62:28: 8d:68:80:61:f5:03:f0:32:e4:a1:26:8e:23:93:05:02:6d:df: f1:f8:1c:89:c8:2c:95:26:5f:5b:f9:56:16:14:57:a4:73:18: f7:c0:eb:7a:9a:f3:95:fd:b3:42:b0:11:b8:7d:66:bc:2f:a7: 7e:2d:82:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUK0OUovtCE/6/cFBd/gAbcAiqjbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUI1N0I0QThCN0RCNTgxRjQ1RDg4NTQ5NTI5MjhGNTky Njc1NUI1RDAeFw0yNjA1MDMwMjUzMTlaFw0yNzA1MDIwMjU4MTlaMDMxMTAvBgNV BAMTKENERDZFOTE3RDY4RDU3Q0E5MkNGMjc0Q0Y3RkREM0YzNkJGOENGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnswZ+sxQzOJ8TfA+zFfT1/cDN nT5ADFA+N4VnDbzsWcNTEHRIMvVCKNnHZ4/OmCSKSWeCJcEwXi5rTwfggCzfHN4s cCi95OA7h+Y975AebcGBDaSEX8L0KOypJvsKc3gtt96623VBOXL/8H3Lh7+D78IY 648S4GK2spxMLsjmplJUrjU9JzPq9p367U7pwmTLpgeWesgUZMhZJ2/YlkdtJbPU AdeHE+NqYolr6xJW1std5w4bNGDdFw6eiwNQ5Z4AkC6AShd5jvAjGgpH/Z+50u3Y vvEAc+O8yIEAupJzvsYQt9BeSnRvs67k8u6d9Gjnw49tphzSiGfMzap7vLUtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzdbpF9aNV8qSzydM9/3T82v4z50wHwYDVR0j BBgwFoAU61e0qLfbWB9F2IVJUpKPWSZ1W10wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFiNGUxNGQtMDIxZC00MGRjLTkyM2EtYzEyZDFhZjQ0M2I1LzEvRUI1N0I0QThC N0RCNTgxRjQ1RDg4NTQ5NTI5MjhGNTkyNjc1NUI1RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQjU3QjRBOEI3REI1ODFGNDVEODg1NDk1MjkyOEY1OTI2NzU1 QjVELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzNjYzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 889AMA0GCSqGSIb3DQEBCwUAA4IBAQBbd+1F71zkXTtKyKa4WxYJdVBUysh8YKH5 3Nh2xP2LKYT2LMPIOBrgrVdTPRuNX/idT8elXKZCR/iZINQ4C00TuGFg8Ht02n6C ZF4gvsr6EaJRztZKLghwkWpxLeXumuE6eymMnPIzPimkw/DAlsYRnjM/E9pvGekK OagJMsBC6PWmxg0ZkntjNjdCz8M/Qh80LMQ1FS05CLtLd6tBv1jevlNBcjuWEwDL 3zUkyxbuaqOvfWkKBovjBaqLtX0DnD0QRHKUYiiNaIBh9QPwMuShJo4jkwUCbd/x +ByJyCyVJl9b+VYWFFekcxj3wOt6mvOV/bNCsBG4fWa8L6d+LYKH -----END CERTIFICATE-----Generated at Wed May 13 05:57:20 2026 by rpki-client