$ rpki-client -vvf rpki-rsync.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/323030313a6466363a613434303a3a2f34382d3438203d3e20313432363339.roa File: 323030313a6466363a613434303a3a2f34382d3438203d3e20313432363339.roa (raw, json) Hash identifier: iHApH4ig54MvTMEQeKGAbjPzbWKAy8vcZBqwYCxZPjg= Subject key identifier: 70:6C:82:33:00:3F:C4:D1:37:5F:16:8F:2A:C8:70:C0:DE:42:53:72 Certificate issuer: /CN=4263490508EE6D5873ACA7B620F66196D4A2AE63 Certificate serial: 0D1CFEA8D8C6391140B12B36B47008E3758DFFC0 Authority key identifier: 42:63:49:05:08:EE:6D:58:73:AC:A7:B6:20:F6:61:96:D4:A2:AE:63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4263490508EE6D5873ACA7B620F66196D4A2AE63.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/323030313a6466363a613434303a3a2f34382d3438203d3e20313432363339.roa Signing time: Sun 03 May 2026 03:10:57 +0000 ROA not before: Sun 03 May 2026 03:05:57 +0000 ROA not after: Sun 02 May 2027 03:10:57 +0000 asID: 142639 IP address blocks: 2001:df6:a440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/4263490508EE6D5873ACA7B620F66196D4A2AE63.crl rsync://rpki-rsync.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/4263490508EE6D5873ACA7B620F66196D4A2AE63.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4263490508EE6D5873ACA7B620F66196D4A2AE63.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:1c:fe:a8:d8:c6:39:11:40:b1:2b:36:b4:70:08:e3:75:8d:ff:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4263490508EE6D5873ACA7B620F66196D4A2AE63 Validity Not Before: May 3 03:05:57 2026 GMT Not After : May 2 03:10:57 2027 GMT Subject: CN=706C8233003FC4D1375F168F2AC870C0DE425372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:aa:e5:ae:7b:56:fd:78:75:91:e6:d2:9d:2e: 86:3f:33:a6:28:2f:4b:7e:d3:55:4c:da:0b:af:45: 49:5c:ae:ff:56:65:26:98:89:c8:cd:55:b6:c0:93: 6e:2b:57:47:56:e7:56:d1:64:57:88:73:01:19:f5: 5f:5d:c6:b6:88:c6:3f:89:20:31:6c:9d:b5:d4:77: 60:f5:78:2f:c9:c4:62:9a:e9:ca:49:4f:c6:b1:b7: 5a:7f:df:02:87:d9:02:8e:40:79:c2:8a:12:ab:1a: fe:98:a4:f9:69:7f:f3:2e:ce:72:5a:de:fc:a2:29: 82:74:27:b5:a8:7e:77:d0:9a:a1:4f:86:e5:9f:32: 05:85:e1:fc:84:b1:90:aa:88:5f:28:f1:44:5a:80: 70:b3:03:69:03:03:e4:71:0e:96:ff:38:b2:09:08: 43:a1:5c:6e:b4:a5:1e:9f:d1:97:f0:c6:ea:a7:8f: 0d:d3:56:43:00:92:bc:92:f8:c7:39:48:c7:f0:d1: 77:82:d8:25:0d:62:da:e2:16:4a:65:25:e2:cd:34: b4:10:e3:19:25:ff:cb:bb:d8:10:6a:30:44:1b:36: ea:5e:73:1b:46:d8:c8:e4:5c:5b:46:93:db:ce:cd: d4:cf:dc:6a:b7:0e:d0:20:db:71:bc:02:dd:c1:5a: 1c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6C:82:33:00:3F:C4:D1:37:5F:16:8F:2A:C8:70:C0:DE:42:53:72 X509v3 Authority Key Identifier: keyid:42:63:49:05:08:EE:6D:58:73:AC:A7:B6:20:F6:61:96:D4:A2:AE:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/4263490508EE6D5873ACA7B620F66196D4A2AE63.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4263490508EE6D5873ACA7B620F66196D4A2AE63.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/da9cd668-6cc5-49a6-9fcf-ae32a87fe636/1/323030313a6466363a613434303a3a2f34382d3438203d3e20313432363339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:a440::/48 Signature Algorithm: sha256WithRSAEncryption 40:af:60:a3:6b:98:0c:89:89:74:4c:68:22:f9:4d:75:d0:73: 9c:fa:16:b6:d1:92:00:f4:38:be:8b:42:bc:96:39:2e:0b:f6: 71:08:33:04:71:4b:c0:ce:26:38:2b:31:a5:2a:0d:3a:4f:7e: cc:a7:ed:3e:63:da:92:08:d0:b9:90:0e:65:2c:37:b7:ac:47: 06:f1:49:bb:de:2f:ab:d3:9f:e2:9d:66:13:70:6e:d1:29:41: e3:02:0a:ae:b9:26:10:da:56:77:86:d6:cd:6a:cc:5d:a6:cc: 9f:dd:94:f0:b5:f6:04:47:64:a0:bd:c4:43:07:6b:34:68:51: 9e:18:77:64:69:73:e2:f7:b9:bd:c6:f9:4f:fd:ba:39:be:97: 10:60:b1:ab:0d:9e:30:11:2d:c7:79:19:25:29:7a:be:d2:4e: ba:94:8a:b1:42:b9:f7:6d:1e:dc:df:c6:63:dc:96:fa:99:45: e2:d5:9d:d7:b6:9c:7f:22:4f:54:7c:fa:c6:31:94:2d:92:52: d9:b7:07:73:1f:17:30:57:6e:18:d7:15:ff:cd:15:ec:bc:ab: 2d:20:23:30:06:f8:34:23:c9:ff:99:f1:18:74:6b:61:82:f1: 58:4d:98:ae:36:82:ab:86:e6:7c:23:47:fc:a6:fb:ad:d2:bb: 82:a8:f2:e1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDRz+qNjGORFAsSs2tHAI43WN/8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI2MzQ5MDUwOEVFNkQ1ODczQUNBN0I2MjBGNjYxOTZE NEEyQUU2MzAeFw0yNjA1MDMwMzA1NTdaFw0yNzA1MDIwMzEwNTdaMDMxMTAvBgNV BAMTKDcwNkM4MjMzMDAzRkM0RDEzNzVGMTY4RjJBQzg3MEMwREU0MjUzNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKquWue1b9eHWR5tKdLoY/M6Yo L0t+01VM2guvRUlcrv9WZSaYicjNVbbAk24rV0dW51bRZFeIcwEZ9V9dxraIxj+J IDFsnbXUd2D1eC/JxGKa6cpJT8axt1p/3wKH2QKOQHnCihKrGv6YpPlpf/MuznJa 3vyiKYJ0J7WofnfQmqFPhuWfMgWF4fyEsZCqiF8o8URagHCzA2kDA+RxDpb/OLIJ CEOhXG60pR6f0Zfwxuqnjw3TVkMAkryS+Mc5SMfw0XeC2CUNYtriFkplJeLNNLQQ 4xkl/8u72BBqMEQbNupecxtG2MjkXFtGk9vOzdTP3Gq3DtAg23G8At3BWhy7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcGyCMwA/xNE3XxaPKshwwN5CU3IwHwYDVR0j BBgwFoAUQmNJBQjubVhzrKe2IPZhltSirmMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGE5Y2Q2NjgtNmNjNS00OWE2LTlmY2YtYWUzMmE4N2ZlNjM2LzEvNDI2MzQ5MDUw OEVFNkQ1ODczQUNBN0I2MjBGNjYxOTZENEEyQUU2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MjYzNDkwNTA4RUU2RDU4NzNBQ0E3QjYyMEY2NjE5NkQ0QTJB RTYzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RhOWNkNjY4LTZjYzUtNDlhNi05 ZmNmLWFlMzJhODdmZTYzNi8xLzMyMzAzMDMxM2E2NDY2MzYzYTYxMzQzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzYzMzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9qRAMA0GCSqGSIb3DQEBCwUAA4IBAQBAr2Cja5gMiYl0TGgi+U110HOc+ha20ZIA 9Di+i0K8ljkuC/ZxCDMEcUvAziY4KzGlKg06T37Mp+0+Y9qSCNC5kA5lLDe3rEcG 8Um73i+r05/inWYTcG7RKUHjAgquuSYQ2lZ3htbNasxdpsyf3ZTwtfYER2SgvcRD B2s0aFGeGHdkaXPi97m9xvlP/bo5vpcQYLGrDZ4wES3HeRklKXq+0k66lIqxQrn3 bR7c38Zj3Jb6mUXi1Z3Xtpx/Ik9UfPrGMZQtklLZtwdzHxcwV24Y1xX/zRXsvKst ICMwBvg0I8n/mfEYdGthgvFYTZiuNoKrhuZ8I0f8pvut0ruCqPLh -----END CERTIFICATE-----Generated at Wed May 13 08:10:13 2026 by rpki-client