$ rpki-client -vvf rpki-rsync.idnic.net/repo/cf9c029a-db51-4a0e-9203-6ee2332df83f/0/323030313a6466323a336430303a3a2f34382d3438203d3e20313336383339.roa File: 323030313a6466323a336430303a3a2f34382d3438203d3e20313336383339.roa (raw, json) Hash identifier: cVjK2grNp2IBOxZWQkiaEQoenvaBYh+fRiJEwJpcBbA= Subject key identifier: 18:29:76:9B:3E:66:E5:40:37:1E:AA:0F:52:27:F7:ED:CD:BE:17:8A Certificate issuer: /CN=CDE67EBA55DF1E21D0909B89817E6AC57006883A Certificate serial: 521590F08545C02A692DE9166C328895C3594604 Authority key identifier: CD:E6:7E:BA:55:DF:1E:21:D0:90:9B:89:81:7E:6A:C5:70:06:88:3A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CDE67EBA55DF1E21D0909B89817E6AC57006883A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cf9c029a-db51-4a0e-9203-6ee2332df83f/0/323030313a6466323a336430303a3a2f34382d3438203d3e20313336383339.roa Signing time: Sun 03 May 2026 03:07:47 +0000 ROA not before: Sun 03 May 2026 03:02:47 +0000 ROA not after: Sun 02 May 2027 03:07:47 +0000 asID: 136839 IP address blocks: 2001:df2:3d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cf9c029a-db51-4a0e-9203-6ee2332df83f/0/CDE67EBA55DF1E21D0909B89817E6AC57006883A.crl rsync://rpki-rsync.idnic.net/repo/cf9c029a-db51-4a0e-9203-6ee2332df83f/0/CDE67EBA55DF1E21D0909B89817E6AC57006883A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CDE67EBA55DF1E21D0909B89817E6AC57006883A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:15:90:f0:85:45:c0:2a:69:2d:e9:16:6c:32:88:95:c3:59:46:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDE67EBA55DF1E21D0909B89817E6AC57006883A Validity Not Before: May 3 03:02:47 2026 GMT Not After : May 2 03:07:47 2027 GMT Subject: CN=1829769B3E66E540371EAA0F5227F7EDCDBE178A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8e:0f:2d:72:14:3c:26:a2:62:8a:cd:c6:16: 90:ec:c3:38:51:8d:dd:a7:3d:2b:8e:d5:65:f5:fe: 91:48:c9:df:6c:ad:d1:b5:cc:e6:da:08:77:1a:81: 9a:57:31:14:63:fe:ee:15:4e:ad:24:2b:4d:28:37: c0:71:c7:ae:40:55:68:f6:24:f9:c3:fd:4f:78:14: b7:08:3f:ca:59:55:86:2e:bb:98:71:87:64:09:ad: fb:c6:15:3c:d1:06:bc:d2:cf:f0:43:fa:c5:80:aa: f1:bc:47:7c:f5:6f:d7:df:b9:e2:71:c4:c4:b5:d6: e7:50:ac:86:62:b5:8b:e8:27:69:d9:73:3e:6f:aa: 27:01:ff:52:7d:7b:67:2d:5b:86:43:32:2b:ec:39: f4:2a:f7:3d:18:a4:0e:54:2a:92:b8:02:27:bd:e2: 53:19:21:41:05:0c:08:e3:e5:c7:ba:57:a3:51:f2: 62:42:c6:3d:4d:ba:da:6b:08:cc:cf:66:6e:98:1e: cf:13:c7:f4:f6:c5:68:6d:f0:30:67:6d:f7:d4:21: 15:24:c0:14:82:4f:4e:3d:9e:c3:2c:29:d8:40:2c: 29:e5:bf:86:76:94:31:ee:8b:f5:52:d3:94:10:bd: 96:b4:54:52:c6:3b:d9:e5:bf:f5:a3:e2:1a:bc:be: dc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:29:76:9B:3E:66:E5:40:37:1E:AA:0F:52:27:F7:ED:CD:BE:17:8A X509v3 Authority Key Identifier: keyid:CD:E6:7E:BA:55:DF:1E:21:D0:90:9B:89:81:7E:6A:C5:70:06:88:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cf9c029a-db51-4a0e-9203-6ee2332df83f/0/CDE67EBA55DF1E21D0909B89817E6AC57006883A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CDE67EBA55DF1E21D0909B89817E6AC57006883A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cf9c029a-db51-4a0e-9203-6ee2332df83f/0/323030313a6466323a336430303a3a2f34382d3438203d3e20313336383339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:3d00::/48 Signature Algorithm: sha256WithRSAEncryption 50:02:97:f1:e7:15:91:03:f4:6b:dd:32:1f:f8:cf:b3:26:7e: a1:9c:75:6f:f2:e5:f5:50:f6:d6:99:c4:6e:55:7a:9c:94:0c: 45:2a:96:43:70:04:2d:d5:18:61:43:ad:17:dc:da:1a:4a:d5: 7b:19:bd:a9:0c:c9:d2:80:a2:72:d1:46:a9:c2:c6:f1:f4:50: d8:e6:93:1a:3c:84:4f:99:df:c1:ae:0a:e6:85:e7:5d:c8:2b: 09:08:f1:fd:7c:b6:c6:5f:88:3c:09:0f:42:39:2c:c9:5b:5e: 79:1c:2e:62:d9:23:f1:9f:9c:43:be:11:22:e7:c9:22:1f:c8: 57:a7:f5:67:cf:e3:76:8a:0a:4f:d4:94:ed:f3:65:8e:eb:d3: 79:11:19:a3:32:42:92:9e:b0:37:c3:bd:a9:cb:19:3e:23:7e: 63:88:8f:3a:9f:61:b4:ae:12:be:f1:5d:a3:84:dd:5c:7b:28: ee:46:82:5a:50:25:e2:37:03:92:03:a5:8e:82:cb:03:7f:9e: d7:b3:f8:25:6e:c3:4b:94:c0:0f:ca:76:67:36:bf:db:8e:af: 79:fb:71:e0:fc:32:3d:08:4e:62:5e:d8:59:ba:eb:8a:53:35: 86:63:be:3c:2f:40:be:03:3a:00:e7:04:0d:bb:7c:5a:8a:d9: a6:c6:8a:29 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUhWQ8IVFwCppLekWbDKIlcNZRgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RFNjdFQkE1NURGMUUyMUQwOTA5Qjg5ODE3RTZBQzU3 MDA2ODgzQTAeFw0yNjA1MDMwMzAyNDdaFw0yNzA1MDIwMzA3NDdaMDMxMTAvBgNV BAMTKDE4Mjk3NjlCM0U2NkU1NDAzNzFFQUEwRjUyMjdGN0VEQ0RCRTE3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHjg8tchQ8JqJiis3GFpDswzhR jd2nPSuO1WX1/pFIyd9srdG1zObaCHcagZpXMRRj/u4VTq0kK00oN8Bxx65AVWj2 JPnD/U94FLcIP8pZVYYuu5hxh2QJrfvGFTzRBrzSz/BD+sWAqvG8R3z1b9ffueJx xMS11udQrIZitYvoJ2nZcz5vqicB/1J9e2ctW4ZDMivsOfQq9z0YpA5UKpK4Aie9 4lMZIUEFDAjj5ce6V6NR8mJCxj1NutprCMzPZm6YHs8Tx/T2xWht8DBnbffUIRUk wBSCT049nsMsKdhALCnlv4Z2lDHui/VS05QQvZa0VFLGO9nlv/Wj4hq8vtydAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGCl2mz5m5UA3HqoPUif37c2+F4owHwYDVR0j BBgwFoAUzeZ+ulXfHiHQkJuJgX5qxXAGiDowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2Y5YzAyOWEtZGI1MS00YTBlLTkyMDMtNmVlMjMzMmRmODNmLzAvQ0RFNjdFQkE1 NURGMUUyMUQwOTA5Qjg5ODE3RTZBQzU3MDA2ODgzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DREU2N0VCQTU1REYxRTIxRDA5MDlCODk4MTdFNkFDNTcwMDY4 ODNBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2NmOWMwMjlhLWRiNTEtNGEwZS05 MjAzLTZlZTIzMzJkZjgzZi8wLzMyMzAzMDMxM2E2NDY2MzIzYTMzNjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzgzMzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8j0AMA0GCSqGSIb3DQEBCwUAA4IBAQBQApfx5xWRA/Rr3TIf+M+zJn6hnHVv8uX1 UPbWmcRuVXqclAxFKpZDcAQt1RhhQ60X3NoaStV7Gb2pDMnSgKJy0Uapwsbx9FDY 5pMaPIRPmd/BrgrmheddyCsJCPH9fLbGX4g8CQ9COSzJW155HC5i2SPxn5xDvhEi 58kiH8hXp/Vnz+N2igpP1JTt82WO69N5ERmjMkKSnrA3w72pyxk+I35jiI86n2G0 rhK+8V2jhN1ceyjuRoJaUCXiNwOSA6WOgssDf57Xs/glbsNLlMAPynZnNr/bjq95 +3Hg/DI9CE5iXthZuuuKUzWGY748L0C+AzoA5wQNu3xaitmmxoop -----END CERTIFICATE-----Generated at Wed May 13 12:36:20 2026 by rpki-client