$ rpki-client -vvf rpki-rsync.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa File: 323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa (raw, json) Hash identifier: Gd2IM01O7z8fqk7GpG61d/HhlCVHlpL3rkOIOFXsAII= Subject key identifier: 3F:C2:54:91:8E:EE:0C:4D:D5:04:7D:38:A3:0A:33:35:3A:50:C2:F6 Certificate issuer: /CN=411E8C45894267DCEFA20514C89165EE7C17C4C4 Certificate serial: 41C17B12B62895BB6471962D41F2FA4133B4D816 Authority key identifier: 41:1E:8C:45:89:42:67:DC:EF:A2:05:14:C8:91:65:EE:7C:17:C4:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/411E8C45894267DCEFA20514C89165EE7C17C4C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa Signing time: Sun 03 May 2026 03:11:20 +0000 ROA not before: Sun 03 May 2026 03:06:20 +0000 ROA not after: Sun 02 May 2027 03:11:20 +0000 asID: 147125 IP address blocks: 2001:df0:23c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/411E8C45894267DCEFA20514C89165EE7C17C4C4.crl rsync://rpki-rsync.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/411E8C45894267DCEFA20514C89165EE7C17C4C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/411E8C45894267DCEFA20514C89165EE7C17C4C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:c1:7b:12:b6:28:95:bb:64:71:96:2d:41:f2:fa:41:33:b4:d8:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=411E8C45894267DCEFA20514C89165EE7C17C4C4 Validity Not Before: May 3 03:06:20 2026 GMT Not After : May 2 03:11:20 2027 GMT Subject: CN=3FC254918EEE0C4DD5047D38A30A33353A50C2F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9c:c7:06:71:26:cc:e9:e2:d1:33:8c:96:de: 45:f1:3f:d8:8f:f1:9d:54:56:1d:05:2f:94:78:e7: f8:0d:39:5d:6e:64:29:b4:5d:b1:af:36:68:a4:5c: f7:5f:3c:6b:45:ec:c7:eb:b6:38:85:03:cf:e4:1a: 33:aa:b0:0f:40:25:f1:d8:f5:c5:26:23:5a:66:d5: df:ad:7b:f2:2c:71:69:61:42:4c:50:7b:51:2b:b8: ec:cd:75:46:0a:c9:59:e6:9f:27:c4:c3:d1:85:89: a9:03:87:b3:b1:da:95:d9:c0:23:77:bd:6b:cf:c4: f9:3c:3c:4b:14:fb:56:97:42:e3:88:06:5f:0a:cb: 6d:88:df:62:9f:3a:33:4d:f0:f4:73:64:82:50:60: b1:ec:e6:25:69:45:28:f0:ee:a4:94:6f:e3:f1:87: 39:35:82:c5:d6:33:7c:3a:82:78:09:44:32:b5:4d: 38:a7:a1:a8:db:47:84:5c:a2:52:96:77:c0:07:d3: 3f:3a:87:96:41:5f:49:f4:05:a2:56:cb:56:56:5d: 00:36:32:1a:e4:0f:7e:50:45:bd:89:9d:7d:e1:c8: f1:09:f2:1b:ea:ee:b2:c7:32:f7:fc:de:6c:ca:14: 3b:0c:a7:c5:ef:8f:4d:19:7a:57:de:78:e7:37:65: e6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C2:54:91:8E:EE:0C:4D:D5:04:7D:38:A3:0A:33:35:3A:50:C2:F6 X509v3 Authority Key Identifier: keyid:41:1E:8C:45:89:42:67:DC:EF:A2:05:14:C8:91:65:EE:7C:17:C4:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/411E8C45894267DCEFA20514C89165EE7C17C4C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/411E8C45894267DCEFA20514C89165EE7C17C4C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/dc0201e3-875d-49c4-8e14-99994936d491/0/323030313a6466303a323363303a3a2f34382d3438203d3e20313437313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:23c0::/48 Signature Algorithm: sha256WithRSAEncryption 3c:d0:aa:a7:12:4d:e0:ac:01:31:27:b0:c0:63:0e:c3:06:60: b8:03:ed:6e:fa:1b:42:ca:94:53:46:93:47:de:d2:0c:09:a4: e4:b9:2f:18:e7:4c:1b:80:37:fb:d5:d8:31:ce:f6:ce:dd:b0: bd:55:ec:8c:f3:03:d7:b9:8b:f9:00:a7:99:18:54:4a:17:aa: 91:02:7a:1f:46:35:d0:ad:2c:7f:31:f7:94:3c:9b:ad:0e:f3: f2:9c:bc:84:cc:a9:bf:a2:ba:0f:c7:f4:36:ce:d2:b5:49:40: 2d:f7:92:21:9f:de:82:15:8c:6c:e5:53:a9:8e:bb:56:d4:b9: bc:34:70:92:db:bc:09:37:0b:43:4b:67:d6:3a:b1:e5:b0:b6: 82:5b:52:33:d0:58:2f:55:be:07:d4:40:82:0b:26:7c:de:bf: 83:b2:05:0e:b7:c8:ec:e6:c4:34:c6:4e:7b:91:b0:8b:53:8f: 5b:ad:78:3b:ce:e4:f7:c8:9d:61:35:c4:8e:49:d0:36:11:03: b0:cf:da:a3:ab:b0:21:90:c9:c1:a0:21:76:d6:d9:56:c5:91: 62:25:15:c9:5e:61:b7:8b:95:8c:52:dc:78:51:b8:fe:7c:23: 8f:81:bf:32:25:72:4c:9a:9a:4c:ac:01:14:d6:99:a5:ec:be: b3:14:a3:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQcF7ErYolbtkcZYtQfL6QTO02BYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDExRThDNDU4OTQyNjdEQ0VGQTIwNTE0Qzg5MTY1RUU3 QzE3QzRDNDAeFw0yNjA1MDMwMzA2MjBaFw0yNzA1MDIwMzExMjBaMDMxMTAvBgNV BAMTKDNGQzI1NDkxOEVFRTBDNERENTA0N0QzOEEzMEEzMzM1M0E1MEMyRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnnMcGcSbM6eLRM4yW3kXxP9iP 8Z1UVh0FL5R45/gNOV1uZCm0XbGvNmikXPdfPGtF7MfrtjiFA8/kGjOqsA9AJfHY 9cUmI1pm1d+te/IscWlhQkxQe1EruOzNdUYKyVnmnyfEw9GFiakDh7Ox2pXZwCN3 vWvPxPk8PEsU+1aXQuOIBl8Ky22I32KfOjNN8PRzZIJQYLHs5iVpRSjw7qSUb+Px hzk1gsXWM3w6gngJRDK1TTinoajbR4RcolKWd8AH0z86h5ZBX0n0BaJWy1ZWXQA2 MhrkD35QRb2JnX3hyPEJ8hvq7rLHMvf83mzKFDsMp8Xvj00ZelfeeOc3ZebDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUP8JUkY7uDE3VBH04owozNTpQwvYwHwYDVR0j BBgwFoAUQR6MRYlCZ9zvogUUyJFl7nwXxMQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGMwMjAxZTMtODc1ZC00OWM0LThlMTQtOTk5OTQ5MzZkNDkxLzAvNDExRThDNDU4 OTQyNjdEQ0VGQTIwNTE0Qzg5MTY1RUU3QzE3QzRDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MTFFOEM0NTg5NDI2N0RDRUZBMjA1MTRDODkxNjVFRTdDMTdD NEM0LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2RjMDIwMWUzLTg3NWQtNDljNC04 ZTE0LTk5OTk0OTM2ZDQ5MS8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM3MzEzMjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8CPAMA0GCSqGSIb3DQEBCwUAA4IBAQA80KqnEk3grAExJ7DAYw7DBmC4A+1u+htC ypRTRpNH3tIMCaTkuS8Y50wbgDf71dgxzvbO3bC9VeyM8wPXuYv5AKeZGFRKF6qR AnofRjXQrSx/MfeUPJutDvPynLyEzKm/oroPx/Q2ztK1SUAt95Ihn96CFYxs5VOp jrtW1Lm8NHCS27wJNwtDS2fWOrHlsLaCW1Iz0FgvVb4H1ECCCyZ83r+DsgUOt8js 5sQ0xk57kbCLU49brXg7zuT3yJ1hNcSOSdA2EQOwz9qjq7AhkMnBoCF21tlWxZFi JRXJXmG3i5WMUtx4Ubj+fCOPgb8yJXJMmppMrAEU1pml7L6zFKPW -----END CERTIFICATE-----Generated at Wed May 13 13:34:44 2026 by rpki-client