$ rpki-client -vvf rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e203338343936.roa File: 323030313a6466343a626430303a3a2f34382d3438203d3e203338343936.roa (raw, json) Hash identifier: Bnl6nUu+xtavXODjc9t+OxHVrv/heBfP+6/XJ45t3VI= Subject key identifier: 09:A8:9B:8D:6F:CA:B4:CA:22:2F:6B:C5:EB:DA:E4:C7:82:E8:26:AB Certificate issuer: /CN=36987F1D265142449AF11F138E84E3AE2398BB71 Certificate serial: 425207433053A4DE5FF935CB9DE907CE96D1B58F Authority key identifier: 36:98:7F:1D:26:51:42:44:9A:F1:1F:13:8E:84:E3:AE:23:98:BB:71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e203338343936.roa Signing time: Sun 03 May 2026 03:09:14 +0000 ROA not before: Sun 03 May 2026 03:04:14 +0000 ROA not after: Sun 02 May 2027 03:09:14 +0000 asID: 38496 IP address blocks: 2001:df4:bd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.crl rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:52:07:43:30:53:a4:de:5f:f9:35:cb:9d:e9:07:ce:96:d1:b5:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36987F1D265142449AF11F138E84E3AE2398BB71 Validity Not Before: May 3 03:04:14 2026 GMT Not After : May 2 03:09:14 2027 GMT Subject: CN=09A89B8D6FCAB4CA222F6BC5EBDAE4C782E826AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:07:1a:96:92:cf:48:f0:61:09:86:61:b7:fb: 8e:8f:6a:a2:56:5a:55:5a:3c:6d:f9:a3:6f:8b:86: eb:78:98:7c:c1:13:83:f5:07:aa:04:39:1f:ee:b5: e8:66:5e:5f:0a:69:50:8e:32:23:fb:35:12:fb:e5: fd:d1:c7:f3:4f:f2:63:a4:2a:25:95:8c:2f:db:a5: a7:63:e3:cc:20:f3:46:94:7e:bd:1c:7b:d3:07:6f: a9:00:d5:8a:6d:22:32:08:96:41:3e:53:0b:d3:83: f8:01:3f:01:9b:b8:bd:76:db:64:55:71:66:d6:9a: 57:30:e4:29:98:76:5b:43:ce:1f:1b:fa:d6:12:9b: 22:75:71:2c:0c:ef:90:e6:d3:d9:64:3e:e9:d4:b1: bf:ec:4f:c1:70:a3:d8:b5:44:c0:6e:b1:92:4d:2c: 95:9e:83:79:05:de:6f:80:8b:56:64:1f:14:9a:ca: bb:ee:ab:5d:bc:a0:4b:2b:69:79:aa:e0:43:a8:14: 1a:a6:8f:11:da:8c:5b:0a:08:fb:d7:bf:b8:d0:75: 97:7d:15:b8:98:eb:63:4c:8e:59:4e:e5:7e:af:5e: 55:63:fa:b6:1f:eb:f7:f6:0d:c9:a2:f8:54:9f:b5: db:b0:1f:56:b8:d9:e3:92:b0:52:01:39:0a:79:0d: d0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A8:9B:8D:6F:CA:B4:CA:22:2F:6B:C5:EB:DA:E4:C7:82:E8:26:AB X509v3 Authority Key Identifier: keyid:36:98:7F:1D:26:51:42:44:9A:F1:1F:13:8E:84:E3:AE:23:98:BB:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/36987F1D265142449AF11F138E84E3AE2398BB71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/36987F1D265142449AF11F138E84E3AE2398BB71.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d2d6d0df-c21e-491c-b116-4a1d9a2c74be/0/323030313a6466343a626430303a3a2f34382d3438203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:bd00::/48 Signature Algorithm: sha256WithRSAEncryption 4d:a8:e5:96:10:6a:a5:d1:9f:1e:30:68:35:76:b2:60:24:a5: 8b:98:44:9d:71:20:d8:2d:cc:da:db:67:99:89:03:41:8e:28: 3d:46:88:90:51:98:a4:15:66:41:95:6a:03:c7:4c:66:65:4b: 2f:c1:d9:0e:77:91:0c:4f:2f:45:86:2f:61:4e:d5:2e:5a:a7: 53:09:ff:6f:d3:d5:7e:8d:7c:84:ca:61:2a:01:a8:64:b3:cd: ec:3b:e3:4c:b4:10:1d:b3:a1:f6:20:e9:12:b2:60:90:74:4d: 69:fa:84:c1:ee:a8:f9:ef:ad:2a:a8:4d:a1:ea:39:6e:9a:79: 31:96:8e:8a:15:ff:34:5e:5b:38:b5:2c:92:e1:2c:40:5c:24: f0:35:33:1f:c4:be:0c:e1:fb:ee:fa:bf:bf:a4:da:a2:af:c3: ba:6d:e8:4e:2b:73:17:59:05:cf:f7:77:bd:03:77:76:57:25: 6c:1d:e9:a3:fe:d2:8a:84:b9:13:ea:48:b5:6d:28:89:06:75: 21:09:d3:74:05:a0:8b:d4:ca:bf:d9:0b:4e:42:e3:d9:12:7c: ec:50:ee:b2:ef:7a:f6:89:4b:26:ac:6c:96:e4:d9:ed:e0:93: 43:2e:a7:a6:d2:01:1d:a2:a4:bb:66:43:83:0b:40:d0:48:89: 97:4a:f4:f0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQlIHQzBTpN5f+TXLnekHzpbRtY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY5ODdGMUQyNjUxNDI0NDlBRjExRjEzOEU4NEUzQUUy Mzk4QkI3MTAeFw0yNjA1MDMwMzA0MTRaFw0yNzA1MDIwMzA5MTRaMDMxMTAvBgNV BAMTKDA5QTg5QjhENkZDQUI0Q0EyMjJGNkJDNUVCREFFNEM3ODJFODI2QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZBxqWks9I8GEJhmG3+46PaqJW WlVaPG35o2+Lhut4mHzBE4P1B6oEOR/utehmXl8KaVCOMiP7NRL75f3Rx/NP8mOk KiWVjC/bpadj48wg80aUfr0ce9MHb6kA1YptIjIIlkE+UwvTg/gBPwGbuL1222RV cWbWmlcw5CmYdltDzh8b+tYSmyJ1cSwM75Dm09lkPunUsb/sT8Fwo9i1RMBusZJN LJWeg3kF3m+Ai1ZkHxSayrvuq128oEsraXmq4EOoFBqmjxHajFsKCPvXv7jQdZd9 FbiY62NMjllO5X6vXlVj+rYf6/f2Dcmi+FSftduwH1a42eOSsFIBOQp5DdBLAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUCaibjW/KtMoiL2vF69rkx4LoJqswHwYDVR0j BBgwFoAUNph/HSZRQkSa8R8TjoTjriOYu3EwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDJkNmQwZGYtYzIxZS00OTFjLWIxMTYtNGExZDlhMmM3NGJlLzAvMzY5ODdGMUQy NjUxNDI0NDlBRjExRjEzOEU4NEUzQUUyMzk4QkI3MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zNjk4N0YxRDI2NTE0MjQ0OUFGMTFGMTM4RTg0RTNBRTIzOThC QjcxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QyZDZkMGRmLWMyMWUtNDkxYy1i MTE2LTRhMWQ5YTJjNzRiZS8wLzMyMzAzMDMxM2E2NDY2MzQzYTYyNjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfS9 ADANBgkqhkiG9w0BAQsFAAOCAQEATajllhBqpdGfHjBoNXayYCSli5hEnXEg2C3M 2ttnmYkDQY4oPUaIkFGYpBVmQZVqA8dMZmVLL8HZDneRDE8vRYYvYU7VLlqnUwn/ b9PVfo18hMphKgGoZLPN7DvjTLQQHbOh9iDpErJgkHRNafqEwe6o+e+tKqhNoeo5 bpp5MZaOihX/NF5bOLUskuEsQFwk8DUzH8S+DOH77vq/v6Taoq/Dum3oTitzF1kF z/d3vQN3dlclbB3po/7SioS5E+pItW0oiQZ1IQnTdAWgi9TKv9kLTkLj2RJ87FDu su969olLJqxsluTZ7eCTQy6nptIBHaKku2ZDgwtA0EiJl0r08A== -----END CERTIFICATE-----Generated at Wed May 13 04:25:56 2026 by rpki-client