$ rpki-client -vvf rpki-rsync.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa File: 323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa (raw, json) Hash identifier: KKf4Jl2OsQd3MJnMUlr/HfdddutYB5E1WPKkn8EgV+Y= Subject key identifier: C6:9A:A3:27:94:B1:5B:98:C6:4F:30:E3:85:15:5B:9A:BD:46:BA:29 Certificate issuer: /CN=5F13D6485B058C0C1D31D70E67C5C2C5B2767473 Certificate serial: 3FBF28CB5A4E883E5F609C5AC4976B1D2BF2BDB6 Authority key identifier: 5F:13:D6:48:5B:05:8C:0C:1D:31:D7:0E:67:C5:C2:C5:B2:76:74:73 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5F13D6485B058C0C1D31D70E67C5C2C5B2767473.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa Signing time: Sun 03 May 2026 03:06:45 +0000 ROA not before: Sun 03 May 2026 03:01:45 +0000 ROA not after: Sun 02 May 2027 03:06:45 +0000 asID: 133803 IP address blocks: 2001:df2:7f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/5F13D6485B058C0C1D31D70E67C5C2C5B2767473.crl rsync://rpki-rsync.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/5F13D6485B058C0C1D31D70E67C5C2C5B2767473.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5F13D6485B058C0C1D31D70E67C5C2C5B2767473.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:bf:28:cb:5a:4e:88:3e:5f:60:9c:5a:c4:97:6b:1d:2b:f2:bd:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F13D6485B058C0C1D31D70E67C5C2C5B2767473 Validity Not Before: May 3 03:01:45 2026 GMT Not After : May 2 03:06:45 2027 GMT Subject: CN=C69AA32794B15B98C64F30E385155B9ABD46BA29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:91:8c:4f:43:53:03:b4:9b:f9:7c:67:05:35: c9:a6:d2:0e:b3:88:da:9e:71:ed:53:7b:d1:c6:17: 02:26:38:b9:ea:bf:59:0d:84:05:d8:e2:ed:b2:c4: 3c:26:f1:64:2d:e9:d8:da:0b:2c:2a:09:d4:1d:1a: 95:fb:73:b3:ff:28:c2:06:d9:f4:c7:4a:ff:ee:5c: b7:af:27:8a:e4:0b:51:a1:9b:c8:4a:78:2f:6d:bd: ce:82:81:27:fc:a2:ee:66:f6:6f:fa:b9:39:38:15: e3:56:60:fb:21:09:01:d2:c4:92:ac:c9:a2:4e:d1: aa:ce:89:58:6a:9f:0b:7c:2c:25:65:6b:bb:28:47: 6c:b1:e7:b9:4e:44:b9:57:f4:05:e5:1d:b7:62:3c: 11:d3:f4:50:f1:9e:4c:ea:44:0e:22:37:b2:04:46: 88:07:ba:0e:fd:62:85:7c:d0:56:5a:48:79:fe:0f: e9:04:4c:73:4f:e5:92:7c:65:2d:b7:fd:85:e1:38: 7d:ba:84:cd:a6:31:83:36:3c:16:bc:89:5c:db:45: d8:d2:4b:70:4d:58:11:e2:1d:c3:06:38:ac:a8:9e: 9b:e1:9a:db:9f:c3:fe:e0:0d:e9:4c:01:61:d1:4c: e4:13:23:a0:f4:f1:1b:84:dc:72:75:09:a2:fa:25: 37:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:9A:A3:27:94:B1:5B:98:C6:4F:30:E3:85:15:5B:9A:BD:46:BA:29 X509v3 Authority Key Identifier: keyid:5F:13:D6:48:5B:05:8C:0C:1D:31:D7:0E:67:C5:C2:C5:B2:76:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/5F13D6485B058C0C1D31D70E67C5C2C5B2767473.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5F13D6485B058C0C1D31D70E67C5C2C5B2767473.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ca75b741-846a-4330-9659-05ffe82698ee/0/323030313a6466323a376638303a3a2f34382d3438203d3e20313333383033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:7f80::/48 Signature Algorithm: sha256WithRSAEncryption 48:f7:4a:d9:25:db:21:4d:f3:a1:71:f2:19:5f:32:b8:02:f6: 6f:c5:0d:af:58:96:17:b1:4b:d3:39:72:9b:9e:d2:a3:a3:cd: 24:e6:c4:0b:b8:2a:81:64:99:d4:04:bf:26:6b:8f:c4:56:c5: 9b:a3:7f:3c:a8:0d:76:28:92:1b:37:e2:6f:3a:ce:1d:68:c0: c5:8a:8b:03:be:32:33:66:01:98:10:27:d4:1a:b9:96:30:89: 4f:a9:4e:e0:08:96:2a:62:3b:32:78:16:8a:1e:cd:7f:26:11: cb:89:18:bb:5a:1d:5a:ca:67:19:ae:40:f7:cf:6b:ed:55:3b: 14:7f:13:66:53:af:33:eb:2a:7d:17:9a:88:d3:c4:64:ac:cc: 2a:47:81:b7:38:5a:61:7a:6b:ff:a0:64:17:b3:d1:c0:9f:0f: dc:eb:f2:19:af:1e:0a:e0:03:0e:74:0d:76:bb:3a:b8:59:fb: cc:06:5c:aa:22:85:8d:ed:dd:16:67:9e:45:36:4d:0b:45:da: f1:4b:eb:2a:b2:81:f0:6c:da:83:b9:31:a3:ec:67:34:05:d1: 35:bb:2c:07:08:66:ce:3f:c1:72:29:d9:d6:d2:e8:8b:54:a7: 27:6e:fe:4c:5a:0c:23:dd:e9:51:4d:b6:71:fd:01:d2:19:12: 26:ea:e8:9a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP78oy1pOiD5fYJxaxJdrHSvyvbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYxM0Q2NDg1QjA1OEMwQzFEMzFENzBFNjdDNUMyQzVC Mjc2NzQ3MzAeFw0yNjA1MDMwMzAxNDVaFw0yNzA1MDIwMzA2NDVaMDMxMTAvBgNV BAMTKEM2OUFBMzI3OTRCMTVCOThDNjRGMzBFMzg1MTU1QjlBQkQ0NkJBMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkYxPQ1MDtJv5fGcFNcmm0g6z iNqece1Te9HGFwImOLnqv1kNhAXY4u2yxDwm8WQt6djaCywqCdQdGpX7c7P/KMIG 2fTHSv/uXLevJ4rkC1Ghm8hKeC9tvc6CgSf8ou5m9m/6uTk4FeNWYPshCQHSxJKs yaJO0arOiVhqnwt8LCVla7soR2yx57lORLlX9AXlHbdiPBHT9FDxnkzqRA4iN7IE RogHug79YoV80FZaSHn+D+kETHNP5ZJ8ZS23/YXhOH26hM2mMYM2PBa8iVzbRdjS S3BNWBHiHcMGOKyonpvhmtufw/7gDelMAWHRTOQTI6D08RuE3HJ1CaL6JTcZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxpqjJ5SxW5jGTzDjhRVbmr1GuikwHwYDVR0j BBgwFoAUXxPWSFsFjAwdMdcOZ8XCxbJ2dHMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2E3NWI3NDEtODQ2YS00MzMwLTk2NTktMDVmZmU4MjY5OGVlLzAvNUYxM0Q2NDg1 QjA1OEMwQzFEMzFENzBFNjdDNUMyQzVCMjc2NzQ3My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RjEzRDY0ODVCMDU4QzBDMUQzMUQ3MEU2N0M1QzJDNUIyNzY3 NDczLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NhNzViNzQxLTg0NmEtNDMzMC05 NjU5LTA1ZmZlODI2OThlZS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3NjYzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8n+AMA0GCSqGSIb3DQEBCwUAA4IBAQBI90rZJdshTfOhcfIZXzK4AvZvxQ2vWJYX sUvTOXKbntKjo80k5sQLuCqBZJnUBL8ma4/EVsWbo388qA12KJIbN+JvOs4daMDF iosDvjIzZgGYECfUGrmWMIlPqU7gCJYqYjsyeBaKHs1/JhHLiRi7Wh1aymcZrkD3 z2vtVTsUfxNmU68z6yp9F5qI08RkrMwqR4G3OFphemv/oGQXs9HAnw/c6/IZrx4K 4AMOdA12uzq4WfvMBlyqIoWN7d0WZ55FNk0LRdrxS+sqsoHwbNqDuTGj7Gc0BdE1 uywHCGbOP8FyKdnW0uiLVKcnbv5MWgwj3elRTbZx/QHSGRIm6uia -----END CERTIFICATE-----Generated at Wed May 13 13:57:24 2026 by rpki-client