$ rpki-client -vvf rpki-rsync.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa File: 323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa (raw, json) Hash identifier: WAD2+w/CJq7TKnjfHAKkYTukDrVBX6bUYx0hl9v//LE= Subject key identifier: 5C:4D:AC:C1:C3:9C:FE:8D:1E:CC:54:3D:46:44:56:23:65:4C:29:E4 Certificate issuer: /CN=06D6B8077F3D028DBD2DFCD3D54577CB351E4B36 Certificate serial: 2BDDC74158BD1DDC6F8F6B67B418F7AC314E7F3F Authority key identifier: 06:D6:B8:07:7F:3D:02:8D:BD:2D:FC:D3:D5:45:77:CB:35:1E:4B:36 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/06D6B8077F3D028DBD2DFCD3D54577CB351E4B36.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa Signing time: Sun 03 May 2026 03:12:53 +0000 ROA not before: Sun 03 May 2026 03:07:53 +0000 ROA not after: Sun 02 May 2027 03:12:53 +0000 asID: 137342 IP address blocks: 2001:df2:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/06D6B8077F3D028DBD2DFCD3D54577CB351E4B36.crl rsync://rpki-rsync.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/06D6B8077F3D028DBD2DFCD3D54577CB351E4B36.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/06D6B8077F3D028DBD2DFCD3D54577CB351E4B36.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:dd:c7:41:58:bd:1d:dc:6f:8f:6b:67:b4:18:f7:ac:31:4e:7f:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06D6B8077F3D028DBD2DFCD3D54577CB351E4B36 Validity Not Before: May 3 03:07:53 2026 GMT Not After : May 2 03:12:53 2027 GMT Subject: CN=5C4DACC1C39CFE8D1ECC543D46445623654C29E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:27:e4:b2:09:d9:eb:79:8c:0c:bc:5a:34:b5: 6d:86:c8:9a:93:57:4e:2c:c7:c0:a2:a8:9c:ee:b3: d6:60:f7:65:34:98:cc:e8:c0:f2:dc:60:17:4e:0c: d4:f4:8c:2a:ed:02:e1:ea:59:35:76:0b:a8:33:6c: 62:45:6b:dd:f0:72:55:44:d3:69:d7:2e:fd:cb:e3: cd:5c:d7:af:cf:1e:38:44:6f:6d:5e:31:14:bf:95: c7:1e:96:97:5e:a3:d1:04:fb:0a:76:c1:52:94:75: db:44:42:40:cd:67:a8:a9:02:a1:32:50:4d:f1:5a: 69:29:24:16:d1:cb:ac:cb:74:e7:54:85:c4:c7:71: 92:d2:f3:32:2b:fa:3b:24:19:2f:a1:51:d4:f5:fd: d1:d4:ca:ba:9e:33:89:99:77:5e:7b:8b:b3:03:a8: e7:e3:d9:ea:b3:c9:25:98:92:ba:c3:07:c6:0c:10: bf:0a:f3:9b:42:5c:77:7c:14:fa:3d:75:77:86:18: 79:74:98:05:f4:ef:78:42:bc:70:f5:76:89:5b:17: fe:72:f9:10:6d:cb:d4:1e:94:19:45:72:9f:53:df: 06:22:49:03:dc:35:30:66:27:99:86:ea:fd:76:dd: 54:65:7e:5e:c2:be:bc:bb:3c:f2:60:82:00:31:bd: 98:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4D:AC:C1:C3:9C:FE:8D:1E:CC:54:3D:46:44:56:23:65:4C:29:E4 X509v3 Authority Key Identifier: keyid:06:D6:B8:07:7F:3D:02:8D:BD:2D:FC:D3:D5:45:77:CB:35:1E:4B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/06D6B8077F3D028DBD2DFCD3D54577CB351E4B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/06D6B8077F3D028DBD2DFCD3D54577CB351E4B36.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 08:ad:3c:9a:1b:ef:b5:45:eb:51:0f:66:89:d5:5e:0f:f9:fb: 7b:55:01:1b:d8:c9:ee:9c:8d:06:e1:03:68:0a:2a:39:ee:75: 25:90:01:61:45:11:f4:e0:d7:e1:f7:fa:a3:ac:a2:1c:ec:41: ba:02:99:16:fa:77:ee:0a:42:ad:04:67:b1:80:ee:84:2d:8f: 04:4d:73:b8:f3:06:df:18:aa:49:47:e6:8c:d4:7d:71:27:e3: 86:03:c5:51:7a:be:6e:af:05:c7:49:10:da:cd:c8:85:c6:22: d7:6e:5b:90:94:48:81:37:65:ca:11:7d:96:d7:00:75:bd:f8: c4:3d:66:f2:db:c7:3f:52:de:e7:e1:ee:89:af:bb:be:06:1b: 53:b3:81:0c:92:b7:d0:71:4f:4f:dc:b5:9e:67:03:37:c1:97: 0c:3b:ba:7b:a0:9f:12:cf:10:75:e8:18:f2:d6:47:d4:ba:8a: c7:fc:ce:43:c8:d6:04:c3:3c:0e:5f:ae:bc:2a:f5:4a:88:d7: 09:bf:de:0e:b5:b5:7d:a0:de:1c:30:d8:29:25:f4:9b:f7:ac: 8e:c1:bf:58:85:ef:98:93:52:b5:90:d5:01:6e:0f:ff:77:2a: 1e:be:39:ba:c1:1b:10:da:02:fe:32:23:05:ac:dd:69:8d:58: 4e:ed:64:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUK93HQVi9Hdxvj2tntBj3rDFOfz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZENkI4MDc3RjNEMDI4REJEMkRGQ0QzRDU0NTc3Q0Iz NTFFNEIzNjAeFw0yNjA1MDMwMzA3NTNaFw0yNzA1MDIwMzEyNTNaMDMxMTAvBgNV BAMTKDVDNERBQ0MxQzM5Q0ZFOEQxRUNDNTQzRDQ2NDQ1NjIzNjU0QzI5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJ+SyCdnreYwMvFo0tW2GyJqT V04sx8CiqJzus9Zg92U0mMzowPLcYBdODNT0jCrtAuHqWTV2C6gzbGJFa93wclVE 02nXLv3L481c16/PHjhEb21eMRS/lccelpdeo9EE+wp2wVKUddtEQkDNZ6ipAqEy UE3xWmkpJBbRy6zLdOdUhcTHcZLS8zIr+jskGS+hUdT1/dHUyrqeM4mZd157i7MD qOfj2eqzySWYkrrDB8YMEL8K85tCXHd8FPo9dXeGGHl0mAX073hCvHD1dolbF/5y +RBty9QelBlFcp9T3wYiSQPcNTBmJ5mG6v123VRlfl7Cvry7PPJgggAxvZjXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXE2swcOc/o0ezFQ9RkRWI2VMKeQwHwYDVR0j BBgwFoAUBta4B389Ao29LfzT1UV3yzUeSzYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTFjNDg3NTYtYjY2Mi00NjhhLTkwNmQtNmNkNDYxY2I2ZTQyLzAvMDZENkI4MDc3 RjNEMDI4REJEMkRGQ0QzRDU0NTc3Q0IzNTFFNEIzNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNkQ2QjgwNzdGM0QwMjhEQkQyREZDRDNENTQ1NzdDQjM1MUU0 QjM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UxYzQ4NzU2LWI2NjItNDY4YS05 MDZkLTZjZDQ2MWNiNmU0Mi8wLzMyMzAzMDMxM2E2NDY2MzIzYTMzNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8joAMA0GCSqGSIb3DQEBCwUAA4IBAQAIrTyaG++1RetRD2aJ1V4P+ft7VQEb2Mnu nI0G4QNoCio57nUlkAFhRRH04Nfh9/qjrKIc7EG6ApkW+nfuCkKtBGexgO6ELY8E TXO48wbfGKpJR+aM1H1xJ+OGA8VRer5urwXHSRDazciFxiLXbluQlEiBN2XKEX2W 1wB1vfjEPWby28c/Ut7n4e6Jr7u+BhtTs4EMkrfQcU9P3LWeZwM3wZcMO7p7oJ8S zxB16Bjy1kfUuorH/M5DyNYEwzwOX668KvVKiNcJv94OtbV9oN4cMNgpJfSb96yO wb9Yhe+Yk1K1kNUBbg//dyoevjm6wRsQ2gL+MiMFrN1pjVhO7WR+ -----END CERTIFICATE-----Generated at Wed May 13 12:25:07 2026 by rpki-client