$ rpki-client -vvf rpki-rsync.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa File: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (raw, json) Hash identifier: Gadh6mfTzxhcQcO3hchTOHrPBLDM8NpuBwUUrXS+WEE= Subject key identifier: B1:67:90:A7:EF:72:E2:15:F7:A7:89:EF:99:4C:E9:0B:9B:C1:EC:C4 Certificate issuer: /CN=68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5 Certificate serial: 7F32EE5E21DACC015C4E5030CC4CB416AD1C86FC Authority key identifier: 68:E0:DF:4F:AC:7E:62:02:41:D6:C4:5E:95:99:CB:21:00:C2:A7:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa Signing time: Sun 03 May 2026 03:02:22 +0000 ROA not before: Sun 03 May 2026 02:57:22 +0000 ROA not after: Sun 02 May 2027 03:02:22 +0000 asID: 138851 IP address blocks: 2001:df0:3e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5.crl rsync://rpki-rsync.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:32:ee:5e:21:da:cc:01:5c:4e:50:30:cc:4c:b4:16:ad:1c:86:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5 Validity Not Before: May 3 02:57:22 2026 GMT Not After : May 2 03:02:22 2027 GMT Subject: CN=B16790A7EF72E215F7A789EF994CE90B9BC1ECC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:da:85:fa:23:61:19:9f:fe:96:43:f6:44:8c: be:22:2e:75:bd:65:63:e2:ba:31:ac:78:33:02:a7: 33:61:b1:d4:08:30:8e:70:11:79:18:cc:5e:55:84: 96:ca:80:aa:43:9e:1a:3e:43:ca:41:4e:7d:d5:84: a0:26:3b:1c:36:8a:7c:3c:3a:be:ec:69:17:19:13: c0:54:92:5a:b8:07:ef:2c:4b:2a:92:b7:ae:15:07: 08:5a:f7:32:bb:76:33:bb:13:8b:99:69:78:96:e9: a8:51:dc:02:57:a6:53:ec:ef:3b:0d:7a:6b:5f:38: 2c:23:41:e1:54:65:c1:88:5b:80:3d:54:ce:21:e5: cf:fa:32:18:90:59:20:4b:8b:24:d0:8f:59:06:e9: 57:2c:5b:6e:3b:f8:35:3c:f3:16:e2:a7:6c:b5:59: 3c:7f:9c:e1:85:96:5f:a2:9c:9c:7a:90:79:0f:9e: a0:d6:62:ae:d4:c3:a4:43:85:7e:0d:15:09:96:11: d2:fb:8a:3b:96:a3:ac:dd:e1:46:99:34:ee:ef:d8: 59:59:07:7d:7f:7c:ad:c2:3a:7b:a3:15:ed:03:d8: d5:cd:28:e3:40:87:78:2d:ea:21:65:b2:4d:91:27: da:83:ea:0c:c8:1b:c2:77:8a:33:07:d1:8d:4e:3f: 46:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:67:90:A7:EF:72:E2:15:F7:A7:89:EF:99:4C:E9:0B:9B:C1:EC:C4 X509v3 Authority Key Identifier: keyid:68:E0:DF:4F:AC:7E:62:02:41:D6:C4:5E:95:99:CB:21:00:C2:A7:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68E0DF4FAC7E620241D6C45E9599CB2100C2A7B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:3e80::/48 Signature Algorithm: sha256WithRSAEncryption 15:b6:cc:a3:8b:fb:ca:a7:36:6b:2b:68:18:a2:44:5b:b0:e9: 84:19:37:31:cb:ba:63:b6:18:59:53:60:67:6c:50:d9:2a:9f: 59:ad:0f:e0:61:07:59:f7:8f:d8:4c:bf:48:15:44:b9:80:09: a2:0c:c7:49:d0:39:78:e3:68:bb:a7:be:a0:22:05:31:69:24: b6:bf:a6:b5:a0:83:10:43:50:72:31:62:b9:3f:1c:ae:89:ea: 1c:9a:c5:db:d9:9a:99:7a:fe:a5:d3:0d:54:e9:19:a3:f5:a8: 5c:ba:bd:be:64:5e:c0:53:92:91:d6:67:48:e3:ae:50:5d:06: ff:5b:c3:4a:a3:bb:29:da:2b:4e:78:99:30:a5:3f:e8:9f:37: 34:f4:0b:09:cc:07:cd:7c:11:72:7e:c6:f0:ca:a8:f4:57:9c: 05:37:32:da:66:5c:f8:03:a8:3b:c8:ae:8b:e3:de:95:84:0d: fb:47:b7:97:f0:a4:e8:49:8c:2f:bf:a2:5b:78:1c:36:83:e0: a1:23:9e:f3:c2:78:8d:16:e5:97:36:5d:bd:48:a4:b2:68:94: 71:4f:6b:ec:2c:8c:dc:f6:ce:f5:2a:1d:5f:0b:bc:2d:5d:8e: f0:25:8c:d8:3c:95:da:ba:25:bb:8c:45:01:7a:af:c6:21:75: cc:d2:1b:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfzLuXiHazAFcTlAwzEy0Fq0chvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhFMERGNEZBQzdFNjIwMjQxRDZDNDVFOTU5OUNCMjEw MEMyQTdCNTAeFw0yNjA1MDMwMjU3MjJaFw0yNzA1MDIwMzAyMjJaMDMxMTAvBgNV BAMTKEIxNjc5MEE3RUY3MkUyMTVGN0E3ODlFRjk5NENFOTBCOUJDMUVDQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm2oX6I2EZn/6WQ/ZEjL4iLnW9 ZWPiujGseDMCpzNhsdQIMI5wEXkYzF5VhJbKgKpDnho+Q8pBTn3VhKAmOxw2inw8 Or7saRcZE8BUklq4B+8sSyqSt64VBwha9zK7djO7E4uZaXiW6ahR3AJXplPs7zsN emtfOCwjQeFUZcGIW4A9VM4h5c/6MhiQWSBLiyTQj1kG6VcsW247+DU88xbip2y1 WTx/nOGFll+inJx6kHkPnqDWYq7Uw6RDhX4NFQmWEdL7ijuWo6zd4UaZNO7v2FlZ B31/fK3COnujFe0D2NXNKONAh3gt6iFlsk2RJ9qD6gzIG8J3ijMH0Y1OP0ZxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsWeQp+9y4hX3p4nvmUzpC5vB7MQwHwYDVR0j BBgwFoAUaODfT6x+YgJB1sRelZnLIQDCp7UwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmMwNzJkYjctMDEyNy00NTY0LThkMjAtYmNlZDUyNWExNGI4LzAvNjhFMERGNEZB QzdFNjIwMjQxRDZDNDVFOTU5OUNCMjEwMEMyQTdCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEUwREY0RkFDN0U2MjAyNDFENkM0NUU5NTk5Q0IyMTAwQzJB N0I1LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JjMDcyZGI3LTAxMjctNDU2NC04 ZDIwLWJjZWQ1MjVhMTRiOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMzNjUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8D6AMA0GCSqGSIb3DQEBCwUAA4IBAQAVtsyji/vKpzZrK2gYokRbsOmEGTcxy7pj thhZU2BnbFDZKp9ZrQ/gYQdZ94/YTL9IFUS5gAmiDMdJ0Dl442i7p76gIgUxaSS2 v6a1oIMQQ1ByMWK5PxyuieocmsXb2ZqZev6l0w1U6Rmj9ahcur2+ZF7AU5KR1mdI 465QXQb/W8NKo7sp2itOeJkwpT/onzc09AsJzAfNfBFyfsbwyqj0V5wFNzLaZlz4 A6g7yK6L496VhA37R7eX8KToSYwvv6JbeBw2g+ChI57zwniNFuWXNl29SKSyaJRx T2vsLIzc9s71Kh1fC7wtXY7wJYzYPJXauiW7jEUBeq/GIXXM0hs6 -----END CERTIFICATE-----Generated at Wed May 13 08:34:55 2026 by rpki-client