$ rpki-client -vvf rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa File: 323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa (raw, json) Hash identifier: svBe8CrZWGOGef404cwoRo2+yXAKzM2eujaije66wpU= Subject key identifier: AE:7F:47:A8:60:E1:07:70:F2:6A:8C:9E:F7:5F:CA:45:FD:03:DC:94 Certificate issuer: /CN=36987F1D265142449AF11F138E84E3AE2398BB71 Certificate serial: 381C83BD12E5D8A2C5F8C2DFFEC9851C4DC73A9F Authority key identifier: 36:98:7F:1D:26:51:42:44:9A:F1:1F:13:8E:84:E3:AE:23:98:BB:71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa Signing time: Sun 03 May 2026 03:09:14 +0000 ROA not before: Sun 03 May 2026 03:04:14 +0000 ROA not after: Sun 02 May 2027 03:09:14 +0000 asID: 137338 IP address blocks: 2001:df4:bd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.crl rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1c:83:bd:12:e5:d8:a2:c5:f8:c2:df:fe:c9:85:1c:4d:c7:3a:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36987F1D265142449AF11F138E84E3AE2398BB71 Validity Not Before: May 3 03:04:14 2026 GMT Not After : May 2 03:09:14 2027 GMT Subject: CN=AE7F47A860E10770F26A8C9EF75FCA45FD03DC94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:ea:4e:57:39:cb:9b:ef:78:03:d8:9e:ad: 88:6d:8b:3c:db:81:63:07:8f:ec:7c:c6:95:74:56: da:58:35:6b:ba:04:61:87:97:4d:29:d4:99:02:64: c1:88:e8:3b:c0:4d:36:18:3d:81:73:b5:55:65:2d: 65:03:6e:8e:18:af:bc:95:a7:b9:ba:fe:04:17:0c: cf:fb:b2:9b:78:d1:2a:df:88:98:c8:00:0b:79:7c: f6:10:31:d8:11:31:25:95:7f:56:5d:a5:39:f2:78: c3:fb:b0:41:d4:12:bf:50:73:47:d7:6b:4d:d3:af: f5:b5:39:98:eb:c4:14:f8:ae:e2:ce:84:09:b5:c6: 39:63:51:28:6f:e3:9d:c7:9e:63:54:d3:9a:0d:53: 61:c3:c9:88:47:19:a6:e7:e0:0b:69:26:10:45:43: 66:58:aa:1c:bc:63:d1:8b:c9:48:a8:d2:2f:4f:d0: 72:53:b1:b4:48:f5:81:39:f5:5c:c2:72:c4:63:1f: a6:2f:3e:45:72:e9:5a:7d:da:38:a9:5b:2b:45:ef: bb:95:01:3e:56:65:fe:f3:96:3c:b9:b1:87:0f:16: 26:e4:b7:1c:5e:27:e7:f2:cd:6c:e1:a4:04:fc:3d: 4a:7c:e7:1a:c7:73:15:74:07:12:93:2d:37:89:8d: ef:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7F:47:A8:60:E1:07:70:F2:6A:8C:9E:F7:5F:CA:45:FD:03:DC:94 X509v3 Authority Key Identifier: keyid:36:98:7F:1D:26:51:42:44:9A:F1:1F:13:8E:84:E3:AE:23:98:BB:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e20313337333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:bd00::/48 Signature Algorithm: sha256WithRSAEncryption 79:6a:08:3a:71:f9:90:ec:ba:b4:ff:03:53:46:8b:4a:19:fc: 7d:70:83:c8:a3:04:6d:92:e2:ac:6e:61:78:4e:bb:3e:dd:08: f9:0d:d1:4f:81:4b:4a:ec:96:92:77:66:4e:b7:cd:87:a7:97: 99:bb:97:2f:fb:92:a3:39:56:9e:db:79:d8:c9:da:cd:89:3a: 62:5c:ee:d9:95:c7:d5:96:05:e1:41:e1:59:3e:7c:39:52:ee: 60:d9:a5:a1:d9:b6:98:04:ff:cf:fb:85:ea:d6:f7:f0:bb:8e: 2e:e0:af:aa:8e:61:ca:e6:11:cd:80:7e:f0:74:31:59:41:01: a4:0b:2c:e3:65:c6:79:05:f8:4d:ef:ab:2c:06:bd:a3:6b:c8: fb:eb:66:6e:3c:67:a4:24:30:21:34:c5:dd:3c:2b:4d:6d:9a: 30:59:9a:e0:ae:01:1b:95:5b:42:e0:48:90:00:f3:48:9c:c0: 66:2c:f7:df:69:43:38:f3:bc:65:ca:e7:7c:0c:0a:0f:ac:4c: 0a:f5:e6:72:9b:ec:2b:fc:9e:36:f5:d8:4f:49:28:16:4e:a5: 42:e0:3c:10:fb:cd:9a:90:11:62:38:d4:78:ec:0b:c0:a4:96: ef:5c:95:96:f2:72:19:eb:87:ae:5a:84:f9:cd:b8:d4:77:31: 9a:fe:a9:40 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOByDvRLl2KLF+MLf/smFHE3HOp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY5ODdGMUQyNjUxNDI0NDlBRjExRjEzOEU4NEUzQUUy Mzk4QkI3MTAeFw0yNjA1MDMwMzA0MTRaFw0yNzA1MDIwMzA5MTRaMDMxMTAvBgNV BAMTKEFFN0Y0N0E4NjBFMTA3NzBGMjZBOEM5RUY3NUZDQTQ1RkQwM0RDOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtxOpOVznLm+94A9ierYhtizzb gWMHj+x8xpV0VtpYNWu6BGGHl00p1JkCZMGI6DvATTYYPYFztVVlLWUDbo4Yr7yV p7m6/gQXDM/7spt40SrfiJjIAAt5fPYQMdgRMSWVf1ZdpTnyeMP7sEHUEr9Qc0fX a03Tr/W1OZjrxBT4ruLOhAm1xjljUShv453HnmNU05oNU2HDyYhHGabn4AtpJhBF Q2ZYqhy8Y9GLyUio0i9P0HJTsbRI9YE59VzCcsRjH6YvPkVy6Vp92jipWytF77uV AT5WZf7zljy5sYcPFibktxxeJ+fyzWzhpAT8PUp85xrHcxV0BxKTLTeJje8VAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrn9HqGDhB3Dyaoye91/KRf0D3JQwHwYDVR0j BBgwFoAUNph/HSZRQkSa8R8TjoTjriOYu3EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDJkNmQwZGYtYzIxZS00OTFjLWIxMTYtNGExZDlhMmM3NGJlLzAvMzY5ODdGMUQy NjUxNDI0NDlBRjExRjEzOEU4NEUzQUUyMzk4QkI3MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNjk4N0YxRDI2NTE0MjQ0OUFGMTFGMTM4RTg0RTNBRTIzOThC QjcxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QyZDZkMGRmLWMyMWUtNDkxYy1i MTE2LTRhMWQ5YTJjNzRiZS8wLzMyMzAzMDMxM2E2NDY2MzQzYTYyNjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9L0AMA0GCSqGSIb3DQEBCwUAA4IBAQB5agg6cfmQ7Lq0/wNTRotKGfx9cIPIowRt kuKsbmF4Trs+3Qj5DdFPgUtK7JaSd2ZOt82Hp5eZu5cv+5KjOVae23nYydrNiTpi XO7ZlcfVlgXhQeFZPnw5Uu5g2aWh2baYBP/P+4Xq1vfwu44u4K+qjmHK5hHNgH7w dDFZQQGkCyzjZcZ5BfhN76ssBr2ja8j762ZuPGekJDAhNMXdPCtNbZowWZrgrgEb lVtC4EiQAPNInMBmLPffaUM487xlyud8DAoPrEwK9eZym+wr/J429dhPSSgWTqVC 4DwQ+82akBFiONR47AvApJbvXJWW8nIZ64euWoT5zbjUdzGa/qlA -----END CERTIFICATE-----Generated at Wed May 13 07:56:14 2026 by rpki-client