$ rpki-client -vvf rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa File: 323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa (raw, json) Hash identifier: lb4d9lrnmMWGai0ItqfgLnvKFt7iEuEC2HCE9pUg2nE= Subject key identifier: 41:79:91:F3:A2:C7:10:61:CE:2B:CC:D6:CC:DF:4E:EE:07:2C:E4:60 Certificate issuer: /CN=CD845730E45E4D531071D97C1EDC23DA378D662F Certificate serial: 523D0F2909713DE933D96FC27274BEA931F4F4E8 Authority key identifier: CD:84:57:30:E4:5E:4D:53:10:71:D9:7C:1E:DC:23:DA:37:8D:66:2F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CD845730E45E4D531071D97C1EDC23DA378D662F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa Signing time: Sun 03 May 2026 03:08:14 +0000 ROA not before: Sun 03 May 2026 03:03:14 +0000 ROA not after: Sun 02 May 2027 03:08:14 +0000 asID: 137349 IP address blocks: 2001:df4:f300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.crl rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CD845730E45E4D531071D97C1EDC23DA378D662F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:3d:0f:29:09:71:3d:e9:33:d9:6f:c2:72:74:be:a9:31:f4:f4:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD845730E45E4D531071D97C1EDC23DA378D662F Validity Not Before: May 3 03:03:14 2026 GMT Not After : May 2 03:08:14 2027 GMT Subject: CN=417991F3A2C71061CE2BCCD6CCDF4EEE072CE460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6e:ec:12:ce:6c:a9:bc:0c:ba:c8:3d:8e:f1: cd:37:fb:d4:61:44:ce:7b:69:35:52:98:0b:0b:bd: da:73:94:28:39:ef:23:b4:f5:e4:92:a2:a6:b2:bc: 4d:79:14:11:fc:aa:5e:93:79:12:08:54:d0:db:d8: 7f:1e:d4:42:17:48:8f:d0:bb:65:bd:d5:1b:8f:6d: 69:18:19:6e:4f:96:33:88:1d:7e:2b:75:6c:6c:4d: 77:00:e8:74:cf:e0:64:e4:3b:78:d8:a2:e8:ae:e7: db:16:5e:c4:03:74:52:eb:6f:96:3a:99:5d:19:23: 21:68:6f:89:85:73:24:bb:e0:f9:1a:05:04:49:ad: ce:3f:3d:0f:a9:39:34:44:b5:a5:93:bb:b7:1e:db: 90:c7:53:67:c4:fd:83:f5:8c:75:02:64:cd:47:59: 39:29:68:40:8a:8b:38:81:84:d7:35:77:03:c1:80: 55:2f:07:19:69:e2:44:f6:66:bc:c5:d0:cd:bf:ef: 6c:f2:aa:4d:45:15:02:fc:35:ab:3b:56:73:13:96: 30:54:f0:ed:4c:1f:cb:41:99:a3:d5:82:85:39:90: a1:63:c1:3a:96:b8:e3:4e:c7:9a:15:1a:e2:f8:e4: 57:dd:7b:6b:ce:14:f8:ce:a6:55:27:c6:9d:f5:5b: d2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:79:91:F3:A2:C7:10:61:CE:2B:CC:D6:CC:DF:4E:EE:07:2C:E4:60 X509v3 Authority Key Identifier: keyid:CD:84:57:30:E4:5E:4D:53:10:71:D9:7C:1E:DC:23:DA:37:8D:66:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CD845730E45E4D531071D97C1EDC23DA378D662F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:f300::/48 Signature Algorithm: sha256WithRSAEncryption 1e:f9:69:da:cf:e6:05:a2:9f:80:e4:d6:b5:ab:ad:aa:8e:c0: 07:1d:35:c9:0d:54:27:77:1e:30:08:37:6b:28:7d:fd:ee:fa: b7:8c:ff:e6:ea:bf:48:6c:ff:06:ed:99:f3:19:9d:58:76:43: c2:96:69:c3:b5:5d:f8:7b:0f:4f:c6:30:fe:55:b3:dc:4f:02: cf:d9:94:61:d0:ba:e1:e4:55:96:e2:2a:76:5a:86:40:d9:ed: 0b:91:c1:18:0a:6a:c5:63:f0:18:27:91:bf:54:72:7c:b7:65: 27:69:0d:9a:a6:9b:d7:ea:b7:a3:41:53:1d:4a:fa:8c:51:77: d0:04:31:39:97:37:62:1b:31:cc:38:f4:8e:51:d6:65:0c:86: 5d:94:76:4b:be:dd:93:ba:ce:b8:e8:01:a5:55:7f:67:9d:42: 79:eb:61:03:bb:bf:9b:5a:bb:fd:2f:ec:b0:aa:48:78:ca:bd: bb:44:f1:22:7b:d6:c4:ff:58:cf:d5:77:c6:49:43:ec:d6:b5: a6:6f:8b:76:06:be:3a:df:5f:3a:80:ad:7c:14:f4:c7:51:57: 1a:89:2c:db:d2:57:e9:eb:62:1b:79:37:a6:00:0d:2f:2e:5d: bc:9c:a0:da:8e:ee:1a:da:a0:8f:60:44:51:e8:1e:bc:2e:4f: ab:d8:2c:e4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUj0PKQlxPekz2W/CcnS+qTH09OgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q4NDU3MzBFNDVFNEQ1MzEwNzFEOTdDMUVEQzIzREEz NzhENjYyRjAeFw0yNjA1MDMwMzAzMTRaFw0yNzA1MDIwMzA4MTRaMDMxMTAvBgNV BAMTKDQxNzk5MUYzQTJDNzEwNjFDRTJCQ0NENkNDREY0RUVFMDcyQ0U0NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcbuwSzmypvAy6yD2O8c03+9Rh RM57aTVSmAsLvdpzlCg57yO09eSSoqayvE15FBH8ql6TeRIIVNDb2H8e1EIXSI/Q u2W91RuPbWkYGW5PljOIHX4rdWxsTXcA6HTP4GTkO3jYouiu59sWXsQDdFLrb5Y6 mV0ZIyFob4mFcyS74PkaBQRJrc4/PQ+pOTREtaWTu7ce25DHU2fE/YP1jHUCZM1H WTkpaECKiziBhNc1dwPBgFUvBxlp4kT2ZrzF0M2/72zyqk1FFQL8Nas7VnMTljBU 8O1MH8tBmaPVgoU5kKFjwTqWuONOx5oVGuL45Ffde2vOFPjOplUnxp31W9LZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQXmR86LHEGHOK8zWzN9O7gcs5GAwHwYDVR0j BBgwFoAUzYRXMOReTVMQcdl8Htwj2jeNZi8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA5NjJjNmUtNTk1YS00N2M0LWFhN2MtZWY4ZTc3Y2FlNjQyLzAvQ0Q4NDU3MzBF NDVFNEQ1MzEwNzFEOTdDMUVEQzIzREEzNzhENjYyRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRDg0NTczMEU0NUU0RDUzMTA3MUQ5N0MxRURDMjNEQTM3OEQ2 NjJGLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwOTYyYzZlLTU5NWEtNDdjNC1h YTdjLWVmOGU3N2NhZTY0Mi8wLzMyMzAzMDMxM2E2NDY2MzQzYTY2MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9PMAMA0GCSqGSIb3DQEBCwUAA4IBAQAe+Wnaz+YFop+A5Na1q62qjsAHHTXJDVQn dx4wCDdrKH397vq3jP/m6r9IbP8G7ZnzGZ1YdkPClmnDtV34ew9PxjD+VbPcTwLP 2ZRh0Lrh5FWW4ip2WoZA2e0LkcEYCmrFY/AYJ5G/VHJ8t2UnaQ2appvX6rejQVMd SvqMUXfQBDE5lzdiGzHMOPSOUdZlDIZdlHZLvt2Tus646AGlVX9nnUJ562EDu7+b Wrv9L+ywqkh4yr27RPEie9bE/1jP1XfGSUPs1rWmb4t2Br463186gK18FPTHUVca iSzb0lfp62IbeTemAA0vLl28nKDaju4a2qCPYERR6B68Lk+r2Czk -----END CERTIFICATE-----Generated at Wed May 13 10:20:18 2026 by rpki-client