$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa File: 323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa (raw, json) Hash identifier: EBT29i1PsqgcTeXQev4zG3xPyCKZ73fS930Tr0addJQ= Subject key identifier: 47:B5:7B:3A:7D:1D:DF:31:8E:30:93:74:57:56:2F:42:AD:2A:24:F1 Certificate issuer: /CN=5A1C0A4962486392EE3F998AF6D4FF7039A83FF3 Certificate serial: 7B9EEB1A562780FB4FC34D92DF30028B7C1D5C94 Authority key identifier: 5A:1C:0A:49:62:48:63:92:EE:3F:99:8A:F6:D4:FF:70:39:A8:3F:F3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5A1C0A4962486392EE3F998AF6D4FF7039A83FF3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa Signing time: Sun 03 May 2026 03:04:01 +0000 ROA not before: Sun 03 May 2026 02:59:01 +0000 ROA not after: Sun 02 May 2027 03:04:01 +0000 asID: 136111 IP address blocks: 2001:df1:8500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/5A1C0A4962486392EE3F998AF6D4FF7039A83FF3.crl rsync://rpki-rsync.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/5A1C0A4962486392EE3F998AF6D4FF7039A83FF3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5A1C0A4962486392EE3F998AF6D4FF7039A83FF3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9e:eb:1a:56:27:80:fb:4f:c3:4d:92:df:30:02:8b:7c:1d:5c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A1C0A4962486392EE3F998AF6D4FF7039A83FF3 Validity Not Before: May 3 02:59:01 2026 GMT Not After : May 2 03:04:01 2027 GMT Subject: CN=47B57B3A7D1DDF318E30937457562F42AD2A24F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:50:c5:0e:c7:e7:3d:2f:43:12:d1:b7:ce:5a: 51:a9:95:04:12:b4:4b:a7:36:3b:0c:2b:8e:7d:a2: e5:14:ea:3d:ba:ef:d2:46:9d:26:d6:91:59:8a:ed: c0:16:48:0c:ce:82:be:b6:ed:c4:62:ed:56:33:8a: 99:d6:c1:45:c4:93:f6:75:6a:43:0a:0b:25:81:8b: b8:cf:fc:34:e4:99:5f:ad:49:de:2d:3b:2e:bd:0f: ee:17:db:82:eb:14:0b:7e:a4:4e:d1:8d:48:6f:98: 22:da:67:12:e8:55:79:16:c1:4b:89:36:1b:7c:a1: 18:13:30:0b:43:87:1f:44:9a:1f:b7:d4:58:64:05: 38:78:6b:ff:7a:d9:a2:97:7c:ef:23:7d:17:9e:60: 85:02:44:ad:8d:de:ee:fc:98:9f:e0:c0:b6:ef:f9: c7:e9:20:f3:63:8f:27:18:0b:4f:bd:31:7b:c6:bc: 7b:35:3d:2e:dd:3b:ab:95:9c:bf:79:ed:69:5f:8a: 6b:4e:3e:15:7d:84:c0:da:72:3e:97:30:59:e1:6d: b0:85:bb:e4:0b:76:4a:4f:82:62:c8:67:86:6e:19: 53:e5:20:bf:28:9e:8c:fe:ee:8c:80:b4:f9:1b:3c: 24:69:70:50:9a:6f:45:10:58:f7:2a:8a:01:38:38: da:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B5:7B:3A:7D:1D:DF:31:8E:30:93:74:57:56:2F:42:AD:2A:24:F1 X509v3 Authority Key Identifier: keyid:5A:1C:0A:49:62:48:63:92:EE:3F:99:8A:F6:D4:FF:70:39:A8:3F:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/5A1C0A4962486392EE3F998AF6D4FF7039A83FF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5A1C0A4962486392EE3F998AF6D4FF7039A83FF3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/323030313a6466313a383530303a3a2f34382d3438203d3e20313336313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:8500::/48 Signature Algorithm: sha256WithRSAEncryption c6:b8:a0:2f:7d:f7:67:ac:2e:fe:23:3b:45:a7:f0:a3:cb:49: b7:88:82:42:c3:17:82:de:f7:eb:1b:1c:1e:6b:72:84:b5:26: b4:bd:cf:fe:86:91:a5:8e:fb:f6:aa:9a:cb:c3:21:69:4d:d8: 66:64:22:13:1a:b0:af:ce:06:5f:fa:01:03:dd:2c:09:fe:0e: f9:1f:79:b2:5a:95:b1:a4:b3:98:08:30:5d:a4:94:e5:09:79: 5d:11:19:12:cc:c4:d1:2c:3e:ae:b2:cf:77:84:9a:25:e3:5e: 9d:d4:75:60:9f:9d:92:51:77:9c:f9:c6:21:1b:5b:e4:8c:d9: 2b:dc:96:e2:b1:e5:db:54:ba:19:08:6e:15:04:b9:bf:0d:35: 9b:a3:53:54:d0:c5:dc:38:63:8e:7f:ca:3a:f2:98:99:b0:56: 40:82:8e:c5:31:7b:8c:5e:4c:45:bc:2f:59:72:c2:7a:56:c7: 96:69:e2:d3:f9:7d:0e:04:c6:00:72:21:6c:9e:23:bb:8b:c7: 49:78:48:c6:a4:5e:ff:a5:ec:da:a6:c8:2e:2e:fb:7c:9b:c5: 2b:44:3f:c6:a4:11:d3:4b:3b:4b:fd:54:46:45:89:f6:bb:97: af:a4:7d:5d:51:31:83:d4:ba:a5:0e:25:95:18:60:ce:23:a0: d1:0e:cb:6d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUe57rGlYngPtPw02S3zACi3wdXJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUExQzBBNDk2MjQ4NjM5MkVFM0Y5OThBRjZENEZGNzAz OUE4M0ZGMzAeFw0yNjA1MDMwMjU5MDFaFw0yNzA1MDIwMzA0MDFaMDMxMTAvBgNV BAMTKDQ3QjU3QjNBN0QxRERGMzE4RTMwOTM3NDU3NTYyRjQyQUQyQTI0RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoUMUOx+c9L0MS0bfOWlGplQQS tEunNjsMK459ouUU6j2679JGnSbWkVmK7cAWSAzOgr627cRi7VYzipnWwUXEk/Z1 akMKCyWBi7jP/DTkmV+tSd4tOy69D+4X24LrFAt+pE7RjUhvmCLaZxLoVXkWwUuJ Nht8oRgTMAtDhx9Emh+31FhkBTh4a/962aKXfO8jfReeYIUCRK2N3u78mJ/gwLbv +cfpIPNjjycYC0+9MXvGvHs1PS7dO6uVnL957WlfimtOPhV9hMDacj6XMFnhbbCF u+QLdkpPgmLIZ4ZuGVPlIL8onoz+7oyAtPkbPCRpcFCab0UQWPcqigE4ONqnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUR7V7On0d3zGOMJN0V1YvQq0qJPEwHwYDVR0j BBgwFoAUWhwKSWJIY5LuP5mK9tT/cDmoP/MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzJmMjg4NzktNDg0NC00MmRlLWIyZDktYTk2NjZkZTI4MmVhLzAvNUExQzBBNDk2 MjQ4NjM5MkVFM0Y5OThBRjZENEZGNzAzOUE4M0ZGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81QTFDMEE0OTYyNDg2MzkyRUUzRjk5OEFGNkQ0RkY3MDM5QTgz RkYzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyZjI4ODc5LTQ4NDQtNDJkZS1i MmQ5LWE5NjY2ZGUyODJlYS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM4MzUzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8YUAMA0GCSqGSIb3DQEBCwUAA4IBAQDGuKAvffdnrC7+IztFp/Cjy0m3iIJCwxeC 3vfrGxwea3KEtSa0vc/+hpGljvv2qprLwyFpTdhmZCITGrCvzgZf+gED3SwJ/g75 H3myWpWxpLOYCDBdpJTlCXldERkSzMTRLD6uss93hJol416d1HVgn52SUXec+cYh G1vkjNkr3JbiseXbVLoZCG4VBLm/DTWbo1NU0MXcOGOOf8o68piZsFZAgo7FMXuM XkxFvC9ZcsJ6VseWaeLT+X0OBMYAciFsniO7i8dJeEjGpF7/pezapsguLvt8m8Ur RD/GpBHTSztL/VRGRYn2u5evpH1dUTGD1LqlDiWVGGDOI6DRDstt -----END CERTIFICATE-----Generated at Wed May 13 07:59:35 2026 by rpki-client