$ rpki-client -vvf rpki-rsync.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa File: 323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa (raw, json) Hash identifier: KDB1vgz24V6jO9kZYB3ErSpRDu8elj5x7idj8z4mIMU= Subject key identifier: 84:3F:20:DA:26:F1:A7:85:73:FC:B0:5C:8F:19:DE:D1:40:17:39:7A Certificate issuer: /CN=0162FB1D75470A2F01326C3FB94D24AE036CD51B Certificate serial: 4FC68863BE8935DD9A420B5BAA1DFAF5BB20D197 Authority key identifier: 01:62:FB:1D:75:47:0A:2F:01:32:6C:3F:B9:4D:24:AE:03:6C:D5:1B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0162FB1D75470A2F01326C3FB94D24AE036CD51B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa Signing time: Sun 03 May 2026 03:05:41 +0000 ROA not before: Sun 03 May 2026 03:00:41 +0000 ROA not after: Sun 02 May 2027 03:05:41 +0000 asID: 150982 IP address blocks: 2001:df2:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/0162FB1D75470A2F01326C3FB94D24AE036CD51B.crl rsync://rpki-rsync.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/0162FB1D75470A2F01326C3FB94D24AE036CD51B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0162FB1D75470A2F01326C3FB94D24AE036CD51B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c6:88:63:be:89:35:dd:9a:42:0b:5b:aa:1d:fa:f5:bb:20:d1:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0162FB1D75470A2F01326C3FB94D24AE036CD51B Validity Not Before: May 3 03:00:41 2026 GMT Not After : May 2 03:05:41 2027 GMT Subject: CN=843F20DA26F1A78573FCB05C8F19DED14017397A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:35:ac:e7:fd:d3:e8:a4:3c:39:89:4c:d7:e4: fb:7d:be:5b:6f:38:03:2f:30:83:34:05:e8:89:ca: 17:70:7d:b9:67:46:75:3f:6e:37:9a:a2:af:ce:d5: 64:81:6e:60:fa:6d:40:e5:aa:38:ac:f0:b2:f1:18: 88:20:53:0b:9c:9a:9c:08:40:a0:d6:81:11:67:18: 37:cf:30:c3:8e:a8:e0:8c:55:7e:a0:b7:fa:67:f7: 0c:3f:cd:9b:81:39:67:6c:95:3a:26:8c:0b:d2:7a: 16:34:9b:fc:35:55:bf:df:24:84:ac:0a:9e:9c:d7: 53:23:54:ce:39:a2:a0:93:ff:fa:6d:52:1b:fd:78: 4a:b3:f5:df:d8:a4:10:af:8b:db:cd:16:82:25:56: 5f:d3:de:1e:cb:66:74:78:db:b1:9c:6a:46:e5:3a: f1:7f:34:30:30:01:73:99:d0:2c:cb:61:3d:66:e3: 6f:24:89:d6:9e:37:8f:cb:b8:fa:64:e6:d2:e3:67: 29:ee:0e:6b:2c:8e:8b:d3:de:bf:e6:5e:4e:fd:be: fc:d1:d1:bf:8e:70:c6:40:0f:25:a5:a5:f2:03:43: f4:05:19:2c:a9:9e:d7:3b:19:73:72:25:f8:84:11: 75:61:15:f5:09:ba:af:c5:d4:cf:b6:92:ea:54:65: 7c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3F:20:DA:26:F1:A7:85:73:FC:B0:5C:8F:19:DE:D1:40:17:39:7A X509v3 Authority Key Identifier: keyid:01:62:FB:1D:75:47:0A:2F:01:32:6C:3F:B9:4D:24:AE:03:6C:D5:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/0162FB1D75470A2F01326C3FB94D24AE036CD51B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0162FB1D75470A2F01326C3FB94D24AE036CD51B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/323030313a6466323a356434303a3a2f34382d3438203d3e20313530393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 59:8a:1b:df:78:aa:12:f7:92:03:e3:39:7a:ce:52:d9:b8:9f: 2c:3b:3f:4c:cd:8d:a9:8c:a0:46:12:4f:fd:03:b9:23:02:6a: 94:d9:9f:e0:07:67:f9:ed:9d:d6:62:c6:ca:3d:69:0c:b2:91: 16:45:b1:52:55:05:21:47:97:04:69:32:51:bf:b1:20:69:2b: ca:4a:2a:00:58:d4:d4:54:7c:d0:0f:b6:cf:95:4c:62:5a:b3: 15:0d:cc:3e:87:4a:28:b7:2b:47:d6:8f:80:35:d2:e4:22:b6: f0:e4:8f:3f:b5:fe:fc:36:bb:95:4c:40:47:5c:86:3c:b6:f4: 73:96:d4:8c:3c:ee:b7:21:cf:1f:a3:4d:de:cd:3c:4e:a1:ba: 87:29:08:26:03:1c:ed:b2:0e:da:be:d9:d3:23:f7:3a:09:8b: 2b:aa:b3:29:26:f9:9a:8d:36:5e:c0:fe:c8:40:9b:7e:4e:8d: f4:a0:bb:8c:a4:77:aa:ee:dd:08:3a:ee:54:46:34:a8:a7:c9: 44:69:50:57:fb:ff:2a:fc:95:b7:b2:6b:dd:74:44:64:8d:41: 16:04:5a:1b:64:52:8a:e1:22:5f:81:8c:1f:ff:ec:f5:be:e4: b9:c1:9e:4a:df:60:bb:b9:3a:a5:55:25:86:57:95:e5:31:a4: 79:58:e0:30 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT8aIY76JNd2aQgtbqh369bsg0ZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE2MkZCMUQ3NTQ3MEEyRjAxMzI2QzNGQjk0RDI0QUUw MzZDRDUxQjAeFw0yNjA1MDMwMzAwNDFaFw0yNzA1MDIwMzA1NDFaMDMxMTAvBgNV BAMTKDg0M0YyMERBMjZGMUE3ODU3M0ZDQjA1QzhGMTlERUQxNDAxNzM5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDONazn/dPopDw5iUzX5Pt9vltv OAMvMIM0BeiJyhdwfblnRnU/bjeaoq/O1WSBbmD6bUDlqjis8LLxGIggUwucmpwI QKDWgRFnGDfPMMOOqOCMVX6gt/pn9ww/zZuBOWdslTomjAvSehY0m/w1Vb/fJISs Cp6c11MjVM45oqCT//ptUhv9eEqz9d/YpBCvi9vNFoIlVl/T3h7LZnR427Gcakbl OvF/NDAwAXOZ0CzLYT1m428kidaeN4/LuPpk5tLjZynuDmssjovT3r/mXk79vvzR 0b+OcMZADyWlpfIDQ/QFGSypntc7GXNyJfiEEXVhFfUJuq/F1M+2kupUZXxZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhD8g2ibxp4Vz/LBcjxne0UAXOXowHwYDVR0j BBgwFoAUAWL7HXVHCi8BMmw/uU0krgNs1RswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzZiZWM4ZTktNjU2OC00NzhkLWJkMjYtZjZlNzc3ODc1NTExLzAvMDE2MkZCMUQ3 NTQ3MEEyRjAxMzI2QzNGQjk0RDI0QUUwMzZDRDUxQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMTYyRkIxRDc1NDcwQTJGMDEzMjZDM0ZCOTREMjRBRTAzNkNE NTFCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M2YmVjOGU5LTY1NjgtNDc4ZC1i ZDI2LWY2ZTc3Nzg3NTUxMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1NjQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzkzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8l1AMA0GCSqGSIb3DQEBCwUAA4IBAQBZihvfeKoS95ID4zl6zlLZuJ8sOz9MzY2p jKBGEk/9A7kjAmqU2Z/gB2f57Z3WYsbKPWkMspEWRbFSVQUhR5cEaTJRv7EgaSvK SioAWNTUVHzQD7bPlUxiWrMVDcw+h0ootytH1o+ANdLkIrbw5I8/tf78NruVTEBH XIY8tvRzltSMPO63Ic8fo03ezTxOobqHKQgmAxztsg7avtnTI/c6CYsrqrMpJvma jTZewP7IQJt+To30oLuMpHeq7t0IOu5URjSop8lEaVBX+/8q/JW3smvddERkjUEW BFobZFKK4SJfgYwf/+z1vuS5wZ5K32C7uTqlVSWGV5XlMaR5WOAw -----END CERTIFICATE-----Generated at Wed May 13 17:05:13 2026 by rpki-client