$ rpki-client -vvf rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa File: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (raw, json) Hash identifier: pVbAEY3jNiaOa2/I5+aOrojXUWJy/5MAJ3dSN22Pu3k= Subject key identifier: 9B:CC:05:ED:59:B7:72:C6:79:D4:27:85:1C:B3:A3:D5:99:CA:E9:14 Certificate issuer: /CN=40064999DEC3F3BD85C4F883982B58D76246EE84 Certificate serial: 7A7C88B64DF8E7EBDA03E0D0685445EE96F1CF53 Authority key identifier: 40:06:49:99:DE:C3:F3:BD:85:C4:F8:83:98:2B:58:D7:62:46:EE:84 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40064999DEC3F3BD85C4F883982B58D76246EE84.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa Signing time: Sun 03 May 2026 03:08:16 +0000 ROA not before: Sun 03 May 2026 03:03:16 +0000 ROA not after: Sun 02 May 2027 03:08:16 +0000 asID: 46050 IP address blocks: 2001:df5:d200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.crl rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40064999DEC3F3BD85C4F883982B58D76246EE84.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:7c:88:b6:4d:f8:e7:eb:da:03:e0:d0:68:54:45:ee:96:f1:cf:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40064999DEC3F3BD85C4F883982B58D76246EE84 Validity Not Before: May 3 03:03:16 2026 GMT Not After : May 2 03:08:16 2027 GMT Subject: CN=9BCC05ED59B772C679D427851CB3A3D599CAE914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:3a:ed:3b:50:e7:ff:e3:98:f2:72:92:06:bf: 85:11:1b:09:e2:e8:de:db:0d:12:1b:d4:34:f9:51: f6:c2:a3:6e:8a:d6:77:82:62:c9:f1:01:da:56:4c: 4e:47:ff:42:2a:3e:89:69:61:08:88:b4:40:ec:88: a6:ed:27:da:e9:f1:1b:a4:3f:75:74:6c:28:5b:63: f3:40:d0:3d:d6:26:24:11:d4:12:ec:fd:36:39:ff: 0c:67:02:85:8a:94:28:ec:f5:3a:04:e3:e9:e0:60: 5b:ef:cf:6d:b7:44:09:3f:a3:eb:8b:af:67:f3:60: 0d:d1:63:a8:64:7d:cb:b7:ce:3e:30:1a:82:21:92: 43:6e:ae:4d:32:81:9b:2d:38:b9:4b:b5:d0:68:49: 23:71:ea:73:34:0d:d8:fa:11:29:bb:5b:7d:9f:82: e5:33:8b:58:2c:85:52:c3:53:9f:35:96:bd:1e:62: 72:55:dc:9d:ca:1c:d9:1c:c8:7e:50:99:73:b9:f8: b1:bc:3f:ca:5a:10:15:a4:6b:f7:e9:ea:ea:9e:35: fc:8d:9e:6f:69:9e:03:75:ad:15:10:2e:2a:27:76: a1:41:8b:3f:de:5e:63:bd:63:91:4f:08:86:30:a6: 4c:98:21:49:7d:fe:53:9e:52:aa:b7:e4:18:25:22: 5f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CC:05:ED:59:B7:72:C6:79:D4:27:85:1C:B3:A3:D5:99:CA:E9:14 X509v3 Authority Key Identifier: keyid:40:06:49:99:DE:C3:F3:BD:85:C4:F8:83:98:2B:58:D7:62:46:EE:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/40064999DEC3F3BD85C4F883982B58D76246EE84.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/40064999DEC3F3BD85C4F883982B58D76246EE84.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:d200::/48 Signature Algorithm: sha256WithRSAEncryption 2d:06:28:9f:48:17:f5:1a:fd:93:09:f3:b9:d4:7f:f2:23:68: 4e:ae:1f:9f:ec:24:82:e6:de:f4:27:da:dd:04:11:80:b3:12: 59:c5:33:71:af:71:d5:18:c5:87:af:21:78:46:7e:e5:7a:a1: c9:1e:5e:0a:01:24:b2:59:3f:e5:d5:f2:0e:8f:af:7a:ca:4d: a2:c0:39:d5:2a:14:30:a7:f8:7b:5c:5f:5f:76:51:6b:7e:70: a2:59:ac:06:d1:c4:4f:49:06:2a:5b:e2:ca:4b:a3:b9:84:5a: 8f:2d:be:2b:80:ec:0b:3d:54:1b:a9:51:5e:bb:6d:45:ed:ae: d6:78:87:e3:5b:46:31:b1:2d:68:8d:7f:5a:d5:fa:a8:26:8d: 97:92:47:cf:51:ad:3f:5f:e4:d5:76:1d:e4:2d:33:72:bb:62: 4e:1e:6f:f3:8f:93:ae:3f:a8:7a:64:dd:75:c4:59:f3:9c:44: 72:c1:04:f0:cc:46:37:3f:21:36:a1:f6:48:16:b1:80:32:30: 52:70:dd:70:43:8b:98:8e:d2:c5:2e:e2:c7:63:76:3c:4b:50: b4:ea:2c:82:1c:8d:ca:8a:92:e7:0c:7b:95:ca:46:fb:92:cf: f7:30:d0:74:75:fc:e4:7c:b2:81:ad:40:88:91:ca:6a:cc:2d: df:4b:5f:41 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUenyItk345+vaA+DQaFRF7pbxz1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAwNjQ5OTlERUMzRjNCRDg1QzRGODgzOTgyQjU4RDc2 MjQ2RUU4NDAeFw0yNjA1MDMwMzAzMTZaFw0yNzA1MDIwMzA4MTZaMDMxMTAvBgNV BAMTKDlCQ0MwNUVENTlCNzcyQzY3OUQ0Mjc4NTFDQjNBM0Q1OTlDQUU5MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXOu07UOf/45jycpIGv4URGwni 6N7bDRIb1DT5UfbCo26K1neCYsnxAdpWTE5H/0IqPolpYQiItEDsiKbtJ9rp8Ruk P3V0bChbY/NA0D3WJiQR1BLs/TY5/wxnAoWKlCjs9ToE4+ngYFvvz223RAk/o+uL r2fzYA3RY6hkfcu3zj4wGoIhkkNurk0ygZstOLlLtdBoSSNx6nM0Ddj6ESm7W32f guUzi1gshVLDU581lr0eYnJV3J3KHNkcyH5QmXO5+LG8P8paEBWka/fp6uqeNfyN nm9pngN1rRUQLiondqFBiz/eXmO9Y5FPCIYwpkyYIUl9/lOeUqq35BglIl+TAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUm8wF7Vm3csZ51CeFHLOj1ZnK6RQwHwYDVR0j BBgwFoAUQAZJmd7D872FxPiDmCtY12JG7oQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDBkMmQzZTMtNGMyMC00YTkwLTgzM2UtZWFkNDNjMzM5OTFlLzAvNDAwNjQ5OTlE RUMzRjNCRDg1QzRGODgzOTgyQjU4RDc2MjQ2RUU4NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDA2NDk5OURFQzNGM0JEODVDNEY4ODM5ODJCNThENzYyNDZF RTg0LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QwZDJkM2UzLTRjMjAtNGE5MC04 MzNlLWVhZDQzYzMzOTkxZS8wLzMyMzAzMDMxM2E2NDY2MzUzYTY0MzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNjMwMzUzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfXS ADANBgkqhkiG9w0BAQsFAAOCAQEALQYon0gX9Rr9kwnzudR/8iNoTq4fn+wkgube 9Cfa3QQRgLMSWcUzca9x1RjFh68heEZ+5XqhyR5eCgEkslk/5dXyDo+vespNosA5 1SoUMKf4e1xfX3ZRa35wolmsBtHET0kGKlviykujuYRajy2+K4DsCz1UG6lRXrtt Re2u1niH41tGMbEtaI1/WtX6qCaNl5JHz1GtP1/k1XYd5C0zcrtiTh5v84+Trj+o emTddcRZ85xEcsEE8MxGNz8hNqH2SBaxgDIwUnDdcEOLmI7SxS7ix2N2PEtQtOos ghyNyoqS5wx7lcpG+5LP9zDQdHX85Hyyga1AiJHKaswt30tfQQ== -----END CERTIFICATE-----Generated at Wed May 13 06:18:51 2026 by rpki-client