$ rpki-client -vvf rpki-rsync.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/323030313a6466323a653463303a3a2f34382d3438203d3e20313531303131.roa File: 323030313a6466323a653463303a3a2f34382d3438203d3e20313531303131.roa (raw, json) Hash identifier: W7n2JDD5ivxhi/6nEhgqfo99pkm7Hn+CBH17uMHEOxU= Subject key identifier: 40:75:9D:F4:52:D9:7F:43:0F:7F:66:8D:F9:D3:3B:87:53:23:74:C3 Certificate issuer: /CN=BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8 Certificate serial: 0321822D4FEDCE86C5ADA4089A6DA4CA1E8D86C4 Authority key identifier: BB:D4:E1:B6:77:6C:86:2F:7B:32:FC:50:35:87:EC:6E:E4:FF:BA:B8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/323030313a6466323a653463303a3a2f34382d3438203d3e20313531303131.roa Signing time: Sun 03 May 2026 03:05:58 +0000 ROA not before: Sun 03 May 2026 03:00:58 +0000 ROA not after: Sun 02 May 2027 03:05:58 +0000 asID: 151011 IP address blocks: 2001:df2:e4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8.crl rsync://rpki-rsync.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:21:82:2d:4f:ed:ce:86:c5:ad:a4:08:9a:6d:a4:ca:1e:8d:86:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8 Validity Not Before: May 3 03:00:58 2026 GMT Not After : May 2 03:05:58 2027 GMT Subject: CN=40759DF452D97F430F7F668DF9D33B87532374C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:59:83:d1:f1:85:6d:7f:81:46:f5:19:a8:27: d5:ae:ae:4d:9b:f3:9d:9d:60:dc:30:c5:cf:30:15: b5:f7:93:23:16:fd:9c:75:34:10:6b:ef:15:35:a6: 3a:3a:1b:58:0f:7c:e2:a3:41:e4:e4:b6:11:61:c7: e3:5c:fe:e1:29:c8:a5:b8:b7:e5:3b:10:f9:36:17: a8:a5:fb:90:cd:aa:0f:7d:06:61:e1:25:56:f7:9e: c1:5e:5b:c9:dd:f7:d0:a4:fa:ce:46:c5:be:05:5f: 0e:16:97:ff:41:49:b8:c8:f8:24:e0:ea:23:cd:48: 71:87:56:b9:1c:73:b3:95:4e:9d:f3:35:8e:d8:00: 38:2f:5f:28:04:b6:43:d4:cf:8b:38:37:b7:21:11: 47:92:54:01:15:d7:1d:96:18:2a:07:75:c5:34:31: 4c:67:dc:6b:52:94:b5:be:38:cf:5b:a1:5b:31:c6: 48:38:e6:35:46:72:60:b2:e2:31:75:d1:30:02:8e: f9:95:26:f1:7e:28:0f:2e:c2:14:46:50:2e:ae:d8: 2b:88:e5:4f:e5:d0:51:ee:f4:6f:dd:35:93:35:61: 40:f8:e3:c0:91:f5:f5:22:36:fb:f5:08:fb:a3:b0: d4:5d:99:a0:ec:4e:be:74:c4:49:9f:1e:16:28:e3: 0d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:75:9D:F4:52:D9:7F:43:0F:7F:66:8D:F9:D3:3B:87:53:23:74:C3 X509v3 Authority Key Identifier: keyid:BB:D4:E1:B6:77:6C:86:2F:7B:32:FC:50:35:87:EC:6E:E4:FF:BA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BBD4E1B6776C862F7B32FC503587EC6EE4FFBAB8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/323030313a6466323a653463303a3a2f34382d3438203d3e20313531303131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e4c0::/48 Signature Algorithm: sha256WithRSAEncryption 0c:4e:ac:b6:eb:dd:c0:ea:5d:cc:87:3e:a6:81:9a:b8:d2:2e: f1:d4:ce:f4:37:d1:db:9c:93:6a:69:c9:df:c4:28:d5:f8:dd: 68:11:58:db:e0:b2:a8:70:67:50:89:07:8d:76:b3:07:b9:c6: 6d:56:64:73:ce:ad:f4:49:d9:6c:04:05:ee:dc:ac:3a:8d:17: da:12:64:c6:0f:f3:ea:bf:d3:99:1f:5e:59:7e:74:10:91:6d: 0d:9d:5f:92:1d:7c:0e:41:63:b4:39:41:18:c4:cb:45:79:25: e1:d2:d1:ef:7c:96:71:5a:06:1c:34:df:5d:1f:fa:76:bf:a5: d9:6f:ef:36:c1:24:6f:60:d9:a8:64:8f:be:51:18:f0:3b:84: 8d:4c:2a:43:33:15:8e:2c:a8:0d:d6:51:11:8b:6f:98:6f:39: b8:64:e5:ec:9d:33:3f:69:85:2e:f1:5c:e8:65:ea:5e:03:8d: 29:8d:4a:66:ca:aa:ac:9c:ec:00:d8:0c:83:38:80:95:17:c4: 6e:bc:91:4f:6b:02:3b:30:4a:fa:81:8c:9c:0b:00:3d:52:c4: af:7a:69:56:d5:37:dc:65:a3:92:af:f4:f5:ea:46:ab:f1:3f: c8:ba:14:24:7f:c2:03:b5:0a:3c:f9:13:0b:cb:a2:62:ee:2c: 78:6e:a0:10 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAyGCLU/tzobFraQImm2kyh6NhsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkJENEUxQjY3NzZDODYyRjdCMzJGQzUwMzU4N0VDNkVF NEZGQkFCODAeFw0yNjA1MDMwMzAwNThaFw0yNzA1MDIwMzA1NThaMDMxMTAvBgNV BAMTKDQwNzU5REY0NTJEOTdGNDMwRjdGNjY4REY5RDMzQjg3NTMyMzc0QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoWYPR8YVtf4FG9RmoJ9Wurk2b 852dYNwwxc8wFbX3kyMW/Zx1NBBr7xU1pjo6G1gPfOKjQeTkthFhx+Nc/uEpyKW4 t+U7EPk2F6il+5DNqg99BmHhJVb3nsFeW8nd99Ck+s5Gxb4FXw4Wl/9BSbjI+CTg 6iPNSHGHVrkcc7OVTp3zNY7YADgvXygEtkPUz4s4N7chEUeSVAEV1x2WGCoHdcU0 MUxn3GtSlLW+OM9boVsxxkg45jVGcmCy4jF10TACjvmVJvF+KA8uwhRGUC6u2CuI 5U/l0FHu9G/dNZM1YUD448CR9fUiNvv1CPujsNRdmaDsTr50xEmfHhYo4w3xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQHWd9FLZf0MPf2aN+dM7h1MjdMMwHwYDVR0j BBgwFoAUu9Thtndshi97MvxQNYfsbuT/urgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzgwZGRlOTQtZTViZS00ZDI5LWJiMTItNDVmYjVjMWQyYzc5LzAvQkJENEUxQjY3 NzZDODYyRjdCMzJGQzUwMzU4N0VDNkVFNEZGQkFCOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQkQ0RTFCNjc3NkM4NjJGN0IzMkZDNTAzNTg3RUM2RUU0RkZC QUI4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M4MGRkZTk0LWU1YmUtNGQyOS1i YjEyLTQ1ZmI1YzFkMmM3OS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzAzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8uTAMA0GCSqGSIb3DQEBCwUAA4IBAQAMTqy2693A6l3Mhz6mgZq40i7x1M70N9Hb nJNqacnfxCjV+N1oEVjb4LKocGdQiQeNdrMHucZtVmRzzq30SdlsBAXu3Kw6jRfa EmTGD/Pqv9OZH15ZfnQQkW0NnV+SHXwOQWO0OUEYxMtFeSXh0tHvfJZxWgYcNN9d H/p2v6XZb+82wSRvYNmoZI++URjwO4SNTCpDMxWOLKgN1lERi2+Ybzm4ZOXsnTM/ aYUu8VzoZepeA40pjUpmyqqsnOwA2AyDOICVF8RuvJFPawI7MEr6gYycCwA9UsSv emlW1TfcZaOSr/T16kar8T/IuhQkf8IDtQo8+RMLy6Ji7ix4bqAQ -----END CERTIFICATE-----Generated at Wed May 13 03:59:17 2026 by rpki-client