$ rpki-client -vvf rpki-rsync.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa File: 323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa (raw, json) Hash identifier: hxbNx1sHpQ2uA7gDNNgf9BYGTMjlNV/I+vSevN2AYMQ= Subject key identifier: 5D:FC:2A:BB:2C:29:AA:8B:48:66:46:EB:48:0C:B7:A8:0C:7C:AB:93 Certificate issuer: /CN=9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD Certificate serial: 3E4AA54413C75E80AA59AEA1F209E38EC9F397E6 Authority key identifier: 9F:73:03:1D:F0:49:FC:EA:B5:E8:BD:52:42:74:7E:7D:7D:C4:B4:DD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa Signing time: Sun 03 May 2026 02:58:47 +0000 ROA not before: Sun 03 May 2026 02:53:47 +0000 ROA not after: Sun 02 May 2027 02:58:47 +0000 asID: 141640 IP address blocks: 2001:df5:e280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD.crl rsync://rpki-rsync.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:4a:a5:44:13:c7:5e:80:aa:59:ae:a1:f2:09:e3:8e:c9:f3:97:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD Validity Not Before: May 3 02:53:47 2026 GMT Not After : May 2 02:58:47 2027 GMT Subject: CN=5DFC2ABB2C29AA8B486646EB480CB7A80C7CAB93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:5a:9a:c3:64:18:14:76:91:21:51:cf:cc: 51:ea:e6:c4:8d:ba:bf:a9:7e:23:27:5a:11:e6:96: a9:d2:3b:16:59:29:3a:49:66:14:59:e0:37:9b:de: 2e:c0:5d:f0:13:20:94:8b:de:d6:b1:1b:a6:19:5c: af:31:b2:8d:eb:5d:82:a6:83:e3:6a:33:d5:34:39: 2b:a1:bc:a5:69:06:d0:c7:65:c4:ea:46:7a:88:be: 8c:36:64:b5:33:85:4b:46:3e:5c:d6:70:e6:1a:9d: c9:76:e5:d1:cd:0b:65:23:8c:15:62:6f:37:dd:35: 22:2f:16:7c:24:de:b1:65:a0:c8:a3:bd:b8:0a:8b: 4e:5d:9a:f0:b3:cf:8f:24:6b:27:85:ee:c4:54:f9: 9f:46:d1:59:4c:ee:38:ec:06:56:7f:11:83:8f:35: 08:f3:cf:04:b0:5a:af:af:f4:23:c3:cf:15:45:bd: c7:da:c6:1f:14:e2:60:06:d8:43:f8:87:f5:65:08: 7e:39:42:18:a1:31:45:b4:fa:8a:51:12:ce:39:9f: 21:fb:e7:f6:03:23:fb:e5:0a:f1:91:58:76:9f:5b: ae:2a:45:99:ab:55:83:d6:51:d2:07:c1:16:78:eb: 84:b6:76:f9:0e:e0:9e:d1:d7:51:24:03:37:7b:ea: 74:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FC:2A:BB:2C:29:AA:8B:48:66:46:EB:48:0C:B7:A8:0C:7C:AB:93 X509v3 Authority Key Identifier: keyid:9F:73:03:1D:F0:49:FC:EA:B5:E8:BD:52:42:74:7E:7D:7D:C4:B4:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9F73031DF049FCEAB5E8BD5242747E7D7DC4B4DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/acc637bd-5971-4264-997a-749d804a6858/0/323030313a6466353a653238303a3a2f34382d3438203d3e20313431363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:e280::/48 Signature Algorithm: sha256WithRSAEncryption c0:45:9b:4e:a8:10:26:d9:24:a8:24:50:19:b6:18:24:2b:96: 38:13:a1:8a:99:14:e5:c4:68:17:0d:a9:e7:1c:45:c6:24:e1: 23:23:c4:cb:3a:8a:df:7c:e7:72:82:a9:5d:33:2f:f1:37:ff: f5:ac:42:84:46:a7:d0:57:d1:97:ce:e4:02:bc:56:60:69:3b: 81:cb:b8:18:a6:1a:d7:a8:40:95:98:82:c5:09:64:4d:4a:68: 1f:26:8d:c3:c7:9b:50:b2:13:d0:b6:ae:64:2a:be:7e:8d:5b: 12:ad:56:05:2f:17:5d:07:fb:5b:63:ce:03:85:f1:f1:d4:ab: 2e:6f:62:e0:64:9d:6f:ac:0c:ac:b4:c6:25:3d:73:c2:66:87: 27:83:3d:c8:55:b6:a2:70:c9:39:c9:03:26:2f:78:98:53:05: 9b:78:59:35:d6:7e:dd:69:ff:5b:4d:1b:e7:31:98:7f:0f:3b: 4a:7f:eb:63:dc:3f:d6:4d:b1:33:7d:18:b0:59:17:59:e6:0c: 59:c4:2d:0c:e7:e5:c6:cd:d3:28:3f:8e:4d:00:2b:d3:11:2e: 86:61:ca:4e:4e:7d:48:84:22:cf:0c:c4:d8:67:89:13:65:db: 7e:47:d7:ce:7d:53:e5:ec:4f:5e:7d:f0:75:57:65:e2:02:85: b8:76:69:3b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPkqlRBPHXoCqWa6h8gnjjsnzl+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY3MzAzMURGMDQ5RkNFQUI1RThCRDUyNDI3NDdFN0Q3 REM0QjRERDAeFw0yNjA1MDMwMjUzNDdaFw0yNzA1MDIwMjU4NDdaMDMxMTAvBgNV BAMTKDVERkMyQUJCMkMyOUFBOEI0ODY2NDZFQjQ4MENCN0E4MEM3Q0FCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxglqaw2QYFHaRIVHPzFHq5sSN ur+pfiMnWhHmlqnSOxZZKTpJZhRZ4Deb3i7AXfATIJSL3taxG6YZXK8xso3rXYKm g+NqM9U0OSuhvKVpBtDHZcTqRnqIvow2ZLUzhUtGPlzWcOYancl25dHNC2UjjBVi bzfdNSIvFnwk3rFloMijvbgKi05dmvCzz48kayeF7sRU+Z9G0VlM7jjsBlZ/EYOP NQjzzwSwWq+v9CPDzxVFvcfaxh8U4mAG2EP4h/VlCH45QhihMUW0+opREs45nyH7 5/YDI/vlCvGRWHafW64qRZmrVYPWUdIHwRZ464S2dvkO4J7R11EkAzd76nQlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXfwquywpqotIZkbrSAy3qAx8q5MwHwYDVR0j BBgwFoAUn3MDHfBJ/Oq16L1SQnR+fX3EtN0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWNjNjM3YmQtNTk3MS00MjY0LTk5N2EtNzQ5ZDgwNGE2ODU4LzAvOUY3MzAzMURG MDQ5RkNFQUI1RThCRDUyNDI3NDdFN0Q3REM0QjRERC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RjczMDMxREYwNDlGQ0VBQjVFOEJENTI0Mjc0N0U3RDdEQzRC NERELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FjYzYzN2JkLTU5NzEtNDI2NC05 OTdhLTc0OWQ4MDRhNjg1OC8wLzMyMzAzMDMxM2E2NDY2MzUzYTY1MzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzYzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9eKAMA0GCSqGSIb3DQEBCwUAA4IBAQDARZtOqBAm2SSoJFAZthgkK5Y4E6GKmRTl xGgXDannHEXGJOEjI8TLOorffOdygqldMy/xN//1rEKERqfQV9GXzuQCvFZgaTuB y7gYphrXqECVmILFCWRNSmgfJo3Dx5tQshPQtq5kKr5+jVsSrVYFLxddB/tbY84D hfHx1Ksub2LgZJ1vrAystMYlPXPCZocngz3IVbaicMk5yQMmL3iYUwWbeFk11n7d af9bTRvnMZh/DztKf+tj3D/WTbEzfRiwWRdZ5gxZxC0M5+XGzdMoP45NACvTES6G YcpOTn1IhCLPDMTYZ4kTZdt+R9fOfVPl7E9effB1V2XiAoW4dmk7 -----END CERTIFICATE-----Generated at Wed May 13 16:26:17 2026 by rpki-client