$ rpki-client -vvf rpki-rsync.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa File: 323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa (raw, json) Hash identifier: c5m1jy/LAyjB0nA9ZGi7kHoU7bN15iBSminDikOhk08= Subject key identifier: CA:EA:D9:3E:A5:1F:07:73:00:1F:C0:F7:88:24:9E:48:58:4E:D9:70 Certificate issuer: /CN=3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9 Certificate serial: 0A4ED15E447A616A0D42E8F06F5B047A509D4C22 Authority key identifier: 3E:69:CF:E7:EE:7B:DA:A3:7C:23:FA:5D:26:2D:53:BB:58:C0:82:C9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa Signing time: Sun 03 May 2026 03:01:24 +0000 ROA not before: Sun 03 May 2026 02:56:24 +0000 ROA not after: Sun 02 May 2027 03:01:24 +0000 asID: 138078 IP address blocks: 2001:df6:d700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9.crl rsync://rpki-rsync.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4e:d1:5e:44:7a:61:6a:0d:42:e8:f0:6f:5b:04:7a:50:9d:4c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9 Validity Not Before: May 3 02:56:24 2026 GMT Not After : May 2 03:01:24 2027 GMT Subject: CN=CAEAD93EA51F0773001FC0F788249E48584ED970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:c3:21:33:ff:c6:4a:87:76:09:44:2a:d9: 33:d9:96:25:58:dc:84:22:1f:17:24:89:89:b7:22: 77:11:f9:11:32:ea:64:a9:3e:d7:5b:b7:07:74:08: eb:6b:26:81:0b:de:7a:ac:70:d6:d0:a6:3d:80:86: 55:bf:8b:c2:ad:78:db:01:3d:02:82:41:a2:ad:2d: eb:72:0b:6a:3a:14:66:23:05:00:77:2a:cf:d9:e6: 65:88:84:9c:12:0b:ec:4f:73:45:bb:01:57:a8:8d: c9:05:2f:27:0b:cb:88:16:fb:6d:d0:68:f2:e2:1d: 33:0b:03:67:ad:22:18:0d:48:96:36:49:4c:e8:31: 6d:43:b9:78:87:3f:7c:b7:14:e0:1d:ba:87:be:d5: 0b:e4:58:21:d7:5a:41:d3:21:4a:3c:2b:00:cb:1b: 07:26:5a:7f:f6:79:ce:49:22:2e:96:38:ea:45:4a: 33:86:06:0c:eb:00:63:62:2f:bf:39:20:55:a3:64: d0:23:d1:eb:4d:ad:40:cc:23:e6:1e:b9:82:31:22: 8f:1f:d4:d2:ba:56:63:e2:a8:18:71:34:33:fa:af: 8b:e6:2f:f4:24:c6:c4:af:d7:9e:f7:a7:2a:96:38: c3:bf:af:b6:53:1d:b0:0d:1b:4c:f2:e7:f1:4b:74: 6b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EA:D9:3E:A5:1F:07:73:00:1F:C0:F7:88:24:9E:48:58:4E:D9:70 X509v3 Authority Key Identifier: keyid:3E:69:CF:E7:EE:7B:DA:A3:7C:23:FA:5D:26:2D:53:BB:58:C0:82:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3E69CFE7EE7BDAA37C23FA5D262D53BB58C082C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b5c9c394-fcd0-4b4b-bb1a-824770f40342/0/323030313a6466363a643730303a3a2f34382d3438203d3e20313338303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:d700::/48 Signature Algorithm: sha256WithRSAEncryption 71:b5:fd:36:e6:00:6e:57:1d:38:a0:b2:47:7a:f6:74:fc:1b: bf:f8:4e:6a:be:98:c9:95:ef:be:4f:70:1e:b8:08:97:77:80: 2d:b0:ed:b1:df:dd:ec:cd:4b:f4:0f:06:10:ec:6a:62:55:f1: 15:ef:8e:4c:71:73:0d:b1:cb:84:c2:95:e8:d2:97:17:e1:5a: c4:87:c3:fa:06:07:ac:08:61:74:4e:4e:8e:ad:cf:f3:4c:4c: 94:34:92:c7:d5:c3:f5:e7:90:64:5a:ed:da:fe:dd:2f:69:b5: a7:b8:3a:00:8e:55:0a:43:6f:01:62:c5:6b:db:d4:37:a6:2b: 94:5d:5c:cd:aa:ea:c5:55:dc:27:40:6d:d5:f2:90:a2:dc:2e: 08:e6:cd:43:ab:e3:15:6f:a7:9a:b3:0e:66:4a:e8:4e:fa:38: 0c:c5:c3:52:a2:3f:9c:35:45:15:c7:76:ca:09:9a:9b:21:3d: 0f:4c:06:7b:78:14:c7:17:50:ee:97:f9:48:db:f2:eb:90:2a: 61:78:f6:1d:80:9b:88:34:56:ea:bc:b9:f4:6e:5c:f7:49:24: 19:27:3d:00:48:a2:91:b2:93:46:90:d7:96:85:a0:2c:7d:9d: cb:85:be:ec:aa:f2:5a:43:1b:08:c6:c2:90:5f:c9:bc:b9:0d: 4d:c8:3e:c8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCk7RXkR6YWoNQujwb1sEelCdTCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2OUNGRTdFRTdCREFBMzdDMjNGQTVEMjYyRDUzQkI1 OEMwODJDOTAeFw0yNjA1MDMwMjU2MjRaFw0yNzA1MDIwMzAxMjRaMDMxMTAvBgNV BAMTKENBRUFEOTNFQTUxRjA3NzMwMDFGQzBGNzg4MjQ5RTQ4NTg0RUQ5NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQfcMhM//GSod2CUQq2TPZliVY 3IQiHxckiYm3IncR+REy6mSpPtdbtwd0COtrJoEL3nqscNbQpj2AhlW/i8KteNsB PQKCQaKtLetyC2o6FGYjBQB3Ks/Z5mWIhJwSC+xPc0W7AVeojckFLycLy4gW+23Q aPLiHTMLA2etIhgNSJY2SUzoMW1DuXiHP3y3FOAduoe+1QvkWCHXWkHTIUo8KwDL GwcmWn/2ec5JIi6WOOpFSjOGBgzrAGNiL785IFWjZNAj0etNrUDMI+YeuYIxIo8f 1NK6VmPiqBhxNDP6r4vmL/QkxsSv1573pyqWOMO/r7ZTHbANG0zy5/FLdGs1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyurZPqUfB3MAH8D3iCSeSFhO2XAwHwYDVR0j BBgwFoAUPmnP5+572qN8I/pdJi1Tu1jAgskwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjVjOWMzOTQtZmNkMC00YjRiLWJiMWEtODI0NzcwZjQwMzQyLzAvM0U2OUNGRTdF RTdCREFBMzdDMjNGQTVEMjYyRDUzQkI1OEMwODJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zRTY5Q0ZFN0VFN0JEQUEzN0MyM0ZBNUQyNjJENTNCQjU4QzA4 MkM5LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2I1YzljMzk0LWZjZDAtNGI0Yi1i YjFhLTgyNDc3MGY0MDM0Mi8wLzMyMzAzMDMxM2E2NDY2MzYzYTY0MzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9tcAMA0GCSqGSIb3DQEBCwUAA4IBAQBxtf025gBuVx04oLJHevZ0/Bu/+E5qvpjJ le++T3AeuAiXd4AtsO2x393szUv0DwYQ7GpiVfEV745McXMNscuEwpXo0pcX4VrE h8P6BgesCGF0Tk6Orc/zTEyUNJLH1cP155BkWu3a/t0vabWnuDoAjlUKQ28BYsVr 29Q3piuUXVzNqurFVdwnQG3V8pCi3C4I5s1Dq+MVb6easw5mSuhO+jgMxcNSoj+c NUUVx3bKCZqbIT0PTAZ7eBTHF1Dul/lI2/LrkCphePYdgJuINFbqvLn0blz3SSQZ Jz0ASKKRspNGkNeWhaAsfZ3Lhb7sqvJaQxsIxsKQX8m8uQ1NyD7I -----END CERTIFICATE-----Generated at Wed May 13 15:43:39 2026 by rpki-client