$ rpki-client -vvf rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa File: 323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa (raw, json) Hash identifier: 6suli2oOGR88rqZA8HRkXIo1ZZ9as8r45IT5Ea+nUsw= Subject key identifier: 68:72:17:8A:F0:D9:58:F8:E5:CD:93:15:40:68:FB:08:5C:5D:E8:B4 Certificate issuer: /CN=AFCD2663DA10358FE9A71A940DC8F47E167CE296 Certificate serial: 65EC552B55A5B0E9E8B165FECBCFF45D7F8F3AC8 Authority key identifier: AF:CD:26:63:DA:10:35:8F:E9:A7:1A:94:0D:C8:F4:7E:16:7C:E2:96 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AFCD2663DA10358FE9A71A940DC8F47E167CE296.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa Signing time: Sun 03 May 2026 03:03:09 +0000 ROA not before: Sun 03 May 2026 02:58:09 +0000 ROA not after: Sun 02 May 2027 03:03:09 +0000 asID: 55691 IP address blocks: 2001:df4:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/AFCD2663DA10358FE9A71A940DC8F47E167CE296.crl rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/AFCD2663DA10358FE9A71A940DC8F47E167CE296.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AFCD2663DA10358FE9A71A940DC8F47E167CE296.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ec:55:2b:55:a5:b0:e9:e8:b1:65:fe:cb:cf:f4:5d:7f:8f:3a:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFCD2663DA10358FE9A71A940DC8F47E167CE296 Validity Not Before: May 3 02:58:09 2026 GMT Not After : May 2 03:03:09 2027 GMT Subject: CN=6872178AF0D958F8E5CD93154068FB085C5DE8B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4e:d1:58:c3:13:80:9e:94:da:75:4a:1f:95: f9:44:1c:27:36:18:b5:82:af:c7:25:b6:cf:44:15: 55:7f:7c:7b:bd:9f:f7:22:ed:d6:65:32:f0:8b:7c: c2:71:49:8d:54:0a:2b:0c:c9:a3:d7:e8:f7:85:20: 4f:4d:45:34:ca:5e:e4:9e:2a:55:dc:73:49:8a:ab: aa:e6:8a:f8:a9:81:d6:b0:a8:88:e7:41:15:ad:10: 3c:e1:83:0f:94:0e:26:d2:50:75:f2:d6:e2:e6:d7: 55:55:ca:98:11:9a:9a:4c:e7:a8:ae:ae:30:67:d6: ed:08:8d:3c:fc:e7:e7:1e:5f:4c:f9:51:3d:4b:fc: aa:d6:0f:79:c2:f7:19:c3:a7:35:da:2a:f2:cd:76: e7:ff:a3:1a:9c:9c:35:97:b5:d6:ad:c0:ec:78:14: 93:29:de:d8:16:5f:2a:05:72:e6:46:0c:ee:f6:97: 53:19:17:9c:13:fe:96:a2:ce:85:27:1e:d2:a5:13: 47:ba:c2:11:4e:cd:1e:7a:cb:60:67:c4:0d:8f:e2: e1:cb:67:5d:2c:33:d7:0d:40:2f:bb:cb:bf:a2:fd: b4:ca:74:cd:fa:4b:ec:a3:b1:11:19:ad:88:5e:6d: 8a:dc:6f:f7:81:e1:77:23:41:24:cf:cb:3e:4d:ca: c4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:72:17:8A:F0:D9:58:F8:E5:CD:93:15:40:68:FB:08:5C:5D:E8:B4 X509v3 Authority Key Identifier: keyid:AF:CD:26:63:DA:10:35:8F:E9:A7:1A:94:0D:C8:F4:7E:16:7C:E2:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/AFCD2663DA10358FE9A71A940DC8F47E167CE296.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AFCD2663DA10358FE9A71A940DC8F47E167CE296.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c00ae0f1-b8c0-452f-8e89-1dfc3f594d4c/0/323030313a6466343a6630303a3a2f34382d3438203d3e203535363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f00::/48 Signature Algorithm: sha256WithRSAEncryption 33:35:ff:06:77:53:e1:75:84:c2:c2:87:b4:28:bc:a8:51:b7: bb:10:80:40:f7:49:6a:c7:98:67:a2:7b:a6:58:27:12:1d:ee: fb:2c:c3:17:b4:7c:88:35:c5:07:56:35:7e:3a:00:d7:fb:65: 18:ca:92:8e:75:24:03:a7:d4:4f:4a:cc:4b:49:f6:87:ec:41: bc:57:1f:a7:df:83:d5:3f:5e:be:5c:7a:9d:7f:c1:43:e9:ac: bc:4d:92:bd:04:45:f2:7d:5b:b1:07:4a:75:4a:dd:ca:32:41: a4:8f:f3:53:e1:ff:f3:3e:ab:da:79:99:28:02:2e:4a:07:69: e2:1a:1b:b4:a1:1a:51:48:ca:6a:dc:2a:83:cb:8d:41:ef:22: 8f:1a:ab:ac:75:5e:d5:cf:18:20:fe:9e:fd:ba:54:a5:73:a4: 4e:a6:7e:a3:7b:ca:d5:13:4e:81:9e:e0:ef:ea:b8:d3:a6:45: 6e:74:bc:8e:0a:76:06:f3:35:d7:61:95:00:19:9c:e3:f7:37: a8:b6:7b:49:18:11:3c:9e:48:f8:40:45:76:09:e2:06:36:bc: b5:38:3f:f2:4e:ce:c4:4a:72:46:05:ea:1d:c2:b3:ce:d5:25: 82:25:a8:7b:06:f1:ab:b4:28:de:26:0b:37:dd:34:3c:8a:9d: a8:9f:db:45 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZexVK1WlsOnosWX+y8/0XX+POsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZDRDI2NjNEQTEwMzU4RkU5QTcxQTk0MERDOEY0N0Ux NjdDRTI5NjAeFw0yNjA1MDMwMjU4MDlaFw0yNzA1MDIwMzAzMDlaMDMxMTAvBgNV BAMTKDY4NzIxNzhBRjBEOTU4RjhFNUNEOTMxNTQwNjhGQjA4NUM1REU4QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPTtFYwxOAnpTadUoflflEHCc2 GLWCr8clts9EFVV/fHu9n/ci7dZlMvCLfMJxSY1UCisMyaPX6PeFIE9NRTTKXuSe KlXcc0mKq6rmivipgdawqIjnQRWtEDzhgw+UDibSUHXy1uLm11VVypgRmppM56iu rjBn1u0IjTz85+ceX0z5UT1L/KrWD3nC9xnDpzXaKvLNduf/oxqcnDWXtdatwOx4 FJMp3tgWXyoFcuZGDO72l1MZF5wT/paizoUnHtKlE0e6whFOzR56y2BnxA2P4uHL Z10sM9cNQC+7y7+i/bTKdM36S+yjsREZrYhebYrcb/eB4XcjQSTPyz5NysQrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUaHIXivDZWPjlzZMVQGj7CFxd6LQwHwYDVR0j BBgwFoAUr80mY9oQNY/ppxqUDcj0fhZ84pYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzAwYWUwZjEtYjhjMC00NTJmLThlODktMWRmYzNmNTk0ZDRjLzAvQUZDRDI2NjNE QTEwMzU4RkU5QTcxQTk0MERDOEY0N0UxNjdDRTI5Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRkNEMjY2M0RBMTAzNThGRTlBNzFBOTQwREM4RjQ3RTE2N0NF Mjk2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MwMGFlMGYxLWI4YzAtNDUyZi04 ZTg5LTFkZmMzZjU5NGQ0Yy8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ30DwAw DQYJKoZIhvcNAQELBQADggEBADM1/wZ3U+F1hMLCh7QovKhRt7sQgED3SWrHmGei e6ZYJxId7vsswxe0fIg1xQdWNX46ANf7ZRjKko51JAOn1E9KzEtJ9ofsQbxXH6ff g9U/Xr5cep1/wUPprLxNkr0ERfJ9W7EHSnVK3coyQaSP81Ph//M+q9p5mSgCLkoH aeIaG7ShGlFIymrcKoPLjUHvIo8aq6x1XtXPGCD+nv26VKVzpE6mfqN7ytUTToGe 4O/quNOmRW50vI4KdgbzNddhlQAZnOP3N6i2e0kYETyeSPhARXYJ4gY2vLU4P/JO zsRKckYF6h3Cs87VJYIlqHsG8au0KN4mCzfdNDyKnaif20U= -----END CERTIFICATE-----Generated at Wed May 13 06:57:52 2026 by rpki-client