$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa File: 323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa (raw, json) Hash identifier: RhVnpDr+TsXGYur3x46+P5YbFynPSyPec/J9jJ0glE4= Subject key identifier: 34:14:72:14:07:B9:86:99:76:E8:F0:48:A1:B5:9D:1E:C4:57:55:3C Certificate issuer: /CN=7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E Certificate serial: 512F37C979CDE6314008DB02FB7F24BC44E0C6CB Authority key identifier: 7F:2F:D9:D7:9F:60:99:D1:AC:3B:40:66:68:2D:5C:9A:2E:CC:E3:1E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa Signing time: Sun 03 May 2026 03:10:39 +0000 ROA not before: Sun 03 May 2026 03:05:39 +0000 ROA not after: Sun 02 May 2027 03:10:39 +0000 asID: 38775 IP address blocks: 2001:df4:9800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E.crl rsync://rpki-rsync.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2f:37:c9:79:cd:e6:31:40:08:db:02:fb:7f:24:bc:44:e0:c6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E Validity Not Before: May 3 03:05:39 2026 GMT Not After : May 2 03:10:39 2027 GMT Subject: CN=3414721407B9869976E8F048A1B59D1EC457553C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9f:33:2d:7b:ad:30:4d:83:d5:84:e1:07:ab: cf:90:18:42:0c:da:b7:b1:06:d2:67:fd:ae:08:df: ab:09:59:d7:e3:98:a9:79:7e:09:05:36:ed:07:d4: 94:ea:fe:05:66:9e:91:97:15:cb:43:0e:3e:9c:8d: 8b:8e:39:74:a6:62:f2:fb:86:c0:a8:07:03:28:98: 81:b3:77:4e:14:77:2c:9f:ad:37:cf:04:05:1a:fc: 9d:b7:ed:64:27:e0:41:bd:bc:c7:d8:a1:89:cc:5e: 92:ea:03:84:96:b2:e9:c0:5c:ea:8e:8b:c1:cf:11: b6:bd:67:fd:da:47:13:5f:52:52:26:70:89:e2:76: 2f:00:e6:77:8f:ba:83:e2:42:ce:bd:93:fc:98:25: e0:f4:b4:e9:0d:dd:36:bc:e7:67:80:a0:d1:d0:21: ad:b1:b2:4a:85:75:6a:91:93:af:64:f7:ef:39:b0: e5:ca:e1:bf:90:ac:9a:cf:57:e2:03:b5:20:46:cd: c5:6a:18:62:22:2b:75:09:99:a7:a3:0a:3b:f0:8e: 42:fa:3d:2b:58:68:cd:48:0a:56:fd:f7:35:95:21: 7f:83:c5:ec:2a:05:39:a8:0c:1d:77:87:0f:35:23: 6f:f3:72:88:34:fc:5d:6b:45:b0:e2:d3:c1:8c:d2: bc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:14:72:14:07:B9:86:99:76:E8:F0:48:A1:B5:9D:1E:C4:57:55:3C X509v3 Authority Key Identifier: keyid:7F:2F:D9:D7:9F:60:99:D1:AC:3B:40:66:68:2D:5C:9A:2E:CC:E3:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7F2FD9D79F6099D1AC3B4066682D5C9A2ECCE31E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/323030313a6466343a393830303a3a2f34382d3438203d3e203338373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:9800::/48 Signature Algorithm: sha256WithRSAEncryption 1b:43:46:f4:35:ff:22:08:ef:c2:d3:1f:42:a6:5e:d2:e7:85: 40:58:6a:a9:2e:31:19:09:a5:c4:de:99:f8:5a:3f:65:6f:b5: 2b:db:ec:94:39:23:7c:35:2b:b9:03:95:0a:2c:69:5b:dc:96: f1:9f:a1:48:e7:3b:82:ec:e8:9c:39:02:b7:95:be:b6:38:1a: 2e:30:01:8b:40:c4:5d:4d:d6:46:c6:57:da:65:4a:35:90:0b: 39:62:a0:f9:2d:cb:e5:ba:ad:3f:05:43:25:46:1a:68:1c:92: 9a:94:18:a9:1b:e1:3c:8d:a8:32:22:cb:ef:da:dc:2e:36:78: bf:55:e1:bb:af:4c:e7:8b:db:76:9f:eb:40:8d:2c:f5:6e:41: 39:9c:88:5d:b2:b2:b6:14:73:bc:72:76:d9:e3:c3:8e:b7:a3: 2b:3f:8a:8b:93:6f:b0:e9:93:f6:2c:0e:a5:02:4b:4a:dd:89: 81:9f:3b:0a:11:1a:e2:6b:63:a9:65:0e:6c:91:2b:4c:99:58: 75:c2:f5:df:5e:01:ac:7b:79:33:70:13:95:59:1c:e7:5d:7d: 4c:16:d2:fa:70:83:83:0c:61:b8:f7:ac:c2:9e:fa:86:c4:fc: dc:1d:ff:dd:9e:21:71:e7:6f:c0:e2:23:72:0b:ea:63:43:d2: f0:5e:81:8a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUS83yXnN5jFACNsC+38kvETgxsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0YyRkQ5RDc5RjYwOTlEMUFDM0I0MDY2NjgyRDVDOUEy RUNDRTMxRTAeFw0yNjA1MDMwMzA1MzlaFw0yNzA1MDIwMzEwMzlaMDMxMTAvBgNV BAMTKDM0MTQ3MjE0MDdCOTg2OTk3NkU4RjA0OEExQjU5RDFFQzQ1NzU1M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCunzMte60wTYPVhOEHq8+QGEIM 2rexBtJn/a4I36sJWdfjmKl5fgkFNu0H1JTq/gVmnpGXFctDDj6cjYuOOXSmYvL7 hsCoBwMomIGzd04UdyyfrTfPBAUa/J237WQn4EG9vMfYoYnMXpLqA4SWsunAXOqO i8HPEba9Z/3aRxNfUlImcInidi8A5nePuoPiQs69k/yYJeD0tOkN3Ta852eAoNHQ Ia2xskqFdWqRk69k9+85sOXK4b+QrJrPV+IDtSBGzcVqGGIiK3UJmaejCjvwjkL6 PStYaM1IClb99zWVIX+DxewqBTmoDB13hw81I2/zcog0/F1rRbDi08GM0rxxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUNBRyFAe5hpl26PBIobWdHsRXVTwwHwYDVR0j BBgwFoAUfy/Z159gmdGsO0BmaC1cmi7M4x4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDkwNTNkOTYtZGExNy00MDk5LWI3MDctZGEwZWIyYmYwN2JjLzAvN0YyRkQ5RDc5 RjYwOTlEMUFDM0I0MDY2NjgyRDVDOUEyRUNDRTMxRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RjJGRDlENzlGNjA5OUQxQUMzQjQwNjY2ODJENUM5QTJFQ0NF MzFFLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Q5MDUzZDk2LWRhMTctNDA5OS1i NzA3LWRhMGViMmJmMDdiYy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM5MzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzczNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfSY ADANBgkqhkiG9w0BAQsFAAOCAQEAG0NG9DX/IgjvwtMfQqZe0ueFQFhqqS4xGQml xN6Z+Fo/ZW+1K9vslDkjfDUruQOVCixpW9yW8Z+hSOc7guzonDkCt5W+tjgaLjAB i0DEXU3WRsZX2mVKNZALOWKg+S3L5bqtPwVDJUYaaBySmpQYqRvhPI2oMiLL79rc LjZ4v1Xhu69M54vbdp/rQI0s9W5BOZyIXbKythRzvHJ22ePDjrejKz+Ki5NvsOmT 9iwOpQJLSt2JgZ87ChEa4mtjqWUObJErTJlYdcL1314BrHt5M3ATlVkc5119TBbS +nCDgwxhuPeswp76hsT83B3/3Z4hcedvwOIjcgvqY0PS8F6Big== -----END CERTIFICATE-----Generated at Wed May 13 06:11:59 2026 by rpki-client