$ rpki-client -vvf rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa File: 323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa (raw, json) Hash identifier: 4kBrY3m/YUmUepWlqfPB38SwXp7zMRirxL+70ddYk80= Subject key identifier: C7:CF:22:04:7D:E8:2B:01:18:11:C3:68:37:79:B0:80:6D:15:74:3B Certificate issuer: /CN=EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB Certificate serial: 2AD6143DC86022886A22B98328CC88CA600BA42F Authority key identifier: EE:F2:3D:C7:BC:70:C4:8E:C5:F4:67:FE:44:DE:5B:B2:B3:E6:E1:EB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa Signing time: Sun 03 May 2026 03:02:14 +0000 ROA not before: Sun 03 May 2026 02:57:14 +0000 ROA not after: Sun 02 May 2027 03:02:14 +0000 asID: 153121 IP address blocks: 2001:df4:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB.crl rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d6:14:3d:c8:60:22:88:6a:22:b9:83:28:cc:88:ca:60:0b:a4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB Validity Not Before: May 3 02:57:14 2026 GMT Not After : May 2 03:02:14 2027 GMT Subject: CN=C7CF22047DE82B011811C3683779B0806D15743B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2b:97:47:92:35:88:2d:94:69:fd:e7:41:fb: c6:a6:07:45:91:fa:8f:e6:be:d2:a4:66:7c:23:60: 99:cd:45:2d:fd:04:64:89:23:70:24:b6:75:f1:eb: 66:a9:1a:f2:92:0e:04:2a:02:fa:45:d0:94:21:74: f1:6f:7d:f9:f3:f2:89:9a:8c:8d:aa:1e:ec:84:90: 2d:0a:48:73:ea:66:43:3f:43:2b:7a:ee:3c:12:07: 1e:c3:73:1a:f8:be:03:8d:93:6f:51:7e:13:b0:6c: e7:6f:0d:5d:85:ed:4f:ad:32:10:ca:3f:42:8e:22: 75:15:e7:62:43:fd:65:6d:51:bd:a2:d1:bf:d9:2a: 49:a4:ad:72:49:eb:4f:dc:f6:e9:e1:fa:06:b2:2a: 6f:09:f8:23:4f:73:35:b2:e1:1b:1d:9c:01:5b:b9: b7:e6:63:7f:72:f9:d3:25:43:3c:c6:22:cc:83:82: 7c:b6:de:1b:4e:d4:a6:ac:8b:12:e8:65:46:16:23: e4:09:89:0c:97:cd:09:0f:c4:e8:93:f2:96:fa:7f: 1a:8b:64:09:96:40:f5:d5:17:e6:05:37:8f:21:e3: 5e:91:5b:51:25:8e:34:87:cb:68:8d:8e:02:fb:1f: d8:f8:af:4d:32:ed:c7:27:ef:59:44:a9:e1:02:fb: 86:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:CF:22:04:7D:E8:2B:01:18:11:C3:68:37:79:B0:80:6D:15:74:3B X509v3 Authority Key Identifier: keyid:EE:F2:3D:C7:BC:70:C4:8E:C5:F4:67:FE:44:DE:5B:B2:B3:E6:E1:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EEF23DC7BC70C48EC5F467FE44DE5BB2B3E6E1EB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/1/323030313a6466343a353663303a3a2f34382d3438203d3e20313533313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 61:a7:8d:14:0a:dc:e3:33:2e:ed:a6:7a:d1:10:aa:26:f9:66: 0d:ee:88:4a:62:87:60:d3:36:82:24:75:11:9a:5e:c1:10:44: 63:f1:e7:3b:73:49:ab:d1:f2:fd:bc:4c:e2:a6:d5:4f:8a:7f: 4f:f8:80:4b:d6:25:3d:ef:37:ec:2c:6a:2d:7c:b0:cb:e5:d1: dc:a0:fc:6a:02:cd:cc:b5:61:ec:2a:9a:6f:da:a2:b1:2e:38: 64:d3:76:df:47:1f:57:ac:38:23:73:1d:bc:d0:05:06:1d:5b: 01:56:95:17:98:a5:c5:68:3c:6e:16:1a:1f:f3:88:48:80:70: 1c:6d:33:51:4a:c9:91:b0:7e:49:67:16:8a:8f:dc:a5:13:48: 89:dd:c9:d6:cf:2d:9a:5e:92:61:3b:f3:46:ab:c9:60:59:79: 2a:91:a6:01:e1:05:8f:33:0e:3c:6c:36:93:d3:fb:a2:76:ea: da:7f:31:3e:ce:b1:4c:ee:0c:0c:f9:63:00:1a:19:01:4d:f1: fe:c0:9d:35:7b:b6:52:70:c9:70:a5:7b:44:88:e4:e4:74:99: 34:b0:10:c2:9b:2a:7a:d3:86:e4:4b:3c:6d:93:48:dd:62:00: 65:d2:f3:6a:75:99:95:16:37:60:b8:15:fe:08:29:09:28:8b: 9a:a2:35:dd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKtYUPchgIohqIrmDKMyIymALpC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVGMjNEQzdCQzcwQzQ4RUM1RjQ2N0ZFNDRERTVCQjJC M0U2RTFFQjAeFw0yNjA1MDMwMjU3MTRaFw0yNzA1MDIwMzAyMTRaMDMxMTAvBgNV BAMTKEM3Q0YyMjA0N0RFODJCMDExODExQzM2ODM3NzlCMDgwNkQxNTc0M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoK5dHkjWILZRp/edB+8amB0WR +o/mvtKkZnwjYJnNRS39BGSJI3AktnXx62apGvKSDgQqAvpF0JQhdPFvffnz8oma jI2qHuyEkC0KSHPqZkM/Qyt67jwSBx7Dcxr4vgONk29RfhOwbOdvDV2F7U+tMhDK P0KOInUV52JD/WVtUb2i0b/ZKkmkrXJJ60/c9unh+gayKm8J+CNPczWy4RsdnAFb ubfmY39y+dMlQzzGIsyDgny23htO1KasixLoZUYWI+QJiQyXzQkPxOiT8pb6fxqL ZAmWQPXVF+YFN48h416RW1EljjSHy2iNjgL7H9j4r00y7ccn71lEqeEC+4bhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUx88iBH3oKwEYEcNoN3mwgG0VdDswHwYDVR0j BBgwFoAU7vI9x7xwxI7F9Gf+RN5bsrPm4eswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmE4OWI3ZGQtOTlhNy00NTBlLWJlODQtYjNiZmM3MzQwZjFmLzEvRUVGMjNEQzdC QzcwQzQ4RUM1RjQ2N0ZFNDRERTVCQjJCM0U2RTFFQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRUYyM0RDN0JDNzBDNDhFQzVGNDY3RkU0NERFNUJCMkIzRTZF MUVCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JhODliN2RkLTk5YTctNDUwZS1i ZTg0LWIzYmZjNzM0MGYxZi8xLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FbAMA0GCSqGSIb3DQEBCwUAA4IBAQBhp40UCtzjMy7tpnrREKom+WYN7ohKYodg 0zaCJHURml7BEERj8ec7c0mr0fL9vEziptVPin9P+IBL1iU97zfsLGotfLDL5dHc oPxqAs3MtWHsKppv2qKxLjhk03bfRx9XrDgjcx280AUGHVsBVpUXmKXFaDxuFhof 84hIgHAcbTNRSsmRsH5JZxaKj9ylE0iJ3cnWzy2aXpJhO/NGq8lgWXkqkaYB4QWP Mw48bDaT0/uidurafzE+zrFM7gwM+WMAGhkBTfH+wJ01e7ZScMlwpXtEiOTkdJk0 sBDCmyp604bkSzxtk0jdYgBl0vNqdZmVFjdguBX+CCkJKIuaojXd -----END CERTIFICATE-----Generated at Wed May 13 07:57:17 2026 by rpki-client