$ rpki-client -vvf rpki-rsync.idnic.net/repo/e256bbba-1826-4d86-b873-2f6dd6325771/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa File: 323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa (raw, json) Hash identifier: K6VGpUzpPJUCTZHdvgUeS/XrMGF4d7bqHd7S+ohIF1g= Subject key identifier: 95:54:92:D8:2D:C6:39:7B:2E:F5:C5:D8:0C:70:3B:03:32:14:DE:BC Certificate issuer: /CN=56DB541EBFE10F1F3E3B603ABBD1612F0591D31D Certificate serial: 02867F6AB96C3D56F04753A793F9F1590CD7FCBD Authority key identifier: 56:DB:54:1E:BF:E1:0F:1F:3E:3B:60:3A:BB:D1:61:2F:05:91:D3:1D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/56DB541EBFE10F1F3E3B603ABBD1612F0591D31D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e256bbba-1826-4d86-b873-2f6dd6325771/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa Signing time: Sun 03 May 2026 03:12:58 +0000 ROA not before: Sun 03 May 2026 03:07:58 +0000 ROA not after: Sun 02 May 2027 03:12:58 +0000 asID: 152800 IP address blocks: 2001:df3:dfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e256bbba-1826-4d86-b873-2f6dd6325771/1/56DB541EBFE10F1F3E3B603ABBD1612F0591D31D.crl rsync://rpki-rsync.idnic.net/repo/e256bbba-1826-4d86-b873-2f6dd6325771/1/56DB541EBFE10F1F3E3B603ABBD1612F0591D31D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/56DB541EBFE10F1F3E3B603ABBD1612F0591D31D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:86:7f:6a:b9:6c:3d:56:f0:47:53:a7:93:f9:f1:59:0c:d7:fc:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56DB541EBFE10F1F3E3B603ABBD1612F0591D31D Validity Not Before: May 3 03:07:58 2026 GMT Not After : May 2 03:12:58 2027 GMT Subject: CN=955492D82DC6397B2EF5C5D80C703B033214DEBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:7d:3e:98:c7:bf:e0:44:ba:6c:a8:56:79: 4f:ec:b4:08:f3:3f:4c:e7:e1:28:85:6b:98:21:c2: ff:bb:9c:9c:58:6f:44:3a:c7:f7:de:f5:44:5e:cc: 1b:57:3b:89:61:05:c4:00:10:06:34:9d:be:34:ab: 69:67:b6:af:1a:52:38:e1:15:42:fd:13:55:c8:84: 99:d5:a2:a2:64:29:a7:e4:ee:35:1b:86:d4:e1:6f: c5:01:1d:43:ed:a1:41:83:42:f5:6e:14:59:35:e3: d2:2c:a8:b5:8b:f3:04:59:2e:ca:76:26:b2:10:71: 68:1a:ec:72:75:7e:e1:0c:84:81:8b:fa:26:1e:cb: cb:f6:56:df:be:4e:67:bd:40:03:3d:26:2e:76:08: 0b:2c:82:0e:f3:99:d6:59:f4:48:8c:55:a2:1a:ed: 52:70:6c:22:00:93:f0:45:fb:15:f7:c1:6e:6e:4e: a8:5a:a5:7c:cb:0e:27:a6:a7:dc:93:1c:4a:a8:c2: 46:28:93:c6:fc:df:c7:40:7a:07:48:bf:5d:08:85: 1a:01:be:da:5d:e2:e2:b9:fa:ac:04:9b:b6:1c:24: ff:ba:d4:e2:32:d1:7e:25:76:ce:73:f6:63:52:5d: 21:47:67:c2:02:da:58:ab:f8:87:e3:a0:04:92:9d: 2e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:54:92:D8:2D:C6:39:7B:2E:F5:C5:D8:0C:70:3B:03:32:14:DE:BC X509v3 Authority Key Identifier: keyid:56:DB:54:1E:BF:E1:0F:1F:3E:3B:60:3A:BB:D1:61:2F:05:91:D3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e256bbba-1826-4d86-b873-2f6dd6325771/1/56DB541EBFE10F1F3E3B603ABBD1612F0591D31D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/56DB541EBFE10F1F3E3B603ABBD1612F0591D31D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e256bbba-1826-4d86-b873-2f6dd6325771/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:dfc0::/48 Signature Algorithm: sha256WithRSAEncryption 10:7b:b8:7c:5d:bf:b1:48:d1:0f:d6:01:32:d8:69:68:4c:22: ae:9e:1e:8c:94:a7:ac:f6:fe:01:07:eb:c0:28:14:07:3c:92: f6:34:16:37:b2:f9:29:1d:b6:0a:0d:bf:b0:bc:51:98:5f:21: 6b:82:a4:ae:8c:7c:80:7b:b3:0e:5c:13:15:74:08:17:5e:dd: e9:86:27:84:21:82:7a:de:31:04:20:a3:af:92:51:45:16:b4: 7a:74:05:15:a1:df:2e:fa:4f:ed:b5:c2:83:a1:3b:e9:1a:e1: a6:23:a9:fc:54:5f:4b:f9:d1:a3:4d:87:4d:08:04:3a:81:39: c4:69:e4:3d:01:b7:17:52:dd:23:51:37:98:2d:81:a1:54:4f: a6:e9:1f:4c:e7:7c:75:ba:b3:a0:1b:dc:7b:91:27:73:27:3a: 91:1a:2e:00:82:ca:9a:f4:19:b6:63:ef:97:b5:ae:9d:d6:82: 67:d3:43:7b:da:d5:84:89:b0:8b:b5:27:81:4e:5d:30:b3:86: a6:0b:cf:18:ab:cf:cb:13:79:2f:fc:71:8c:d6:13:31:1b:0c: ab:e7:3b:66:79:63:6f:8b:67:03:76:eb:a6:10:11:a8:da:b3: 6e:8e:d7:b1:0e:c0:47:31:de:0f:57:42:c9:41:21:9e:2f:ec: 2a:c6:a6:1c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAoZ/arlsPVbwR1Onk/nxWQzX/L0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTZEQjU0MUVCRkUxMEYxRjNFM0I2MDNBQkJEMTYxMkYw NTkxRDMxRDAeFw0yNjA1MDMwMzA3NThaFw0yNzA1MDIwMzEyNThaMDMxMTAvBgNV BAMTKDk1NTQ5MkQ4MkRDNjM5N0IyRUY1QzVEODBDNzAzQjAzMzIxNERFQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVX0+mMe/4ES6bKhWeU/stAjz P0zn4SiFa5ghwv+7nJxYb0Q6x/fe9URezBtXO4lhBcQAEAY0nb40q2lntq8aUjjh FUL9E1XIhJnVoqJkKafk7jUbhtThb8UBHUPtoUGDQvVuFFk149IsqLWL8wRZLsp2 JrIQcWga7HJ1fuEMhIGL+iYey8v2Vt++Tme9QAM9Ji52CAssgg7zmdZZ9EiMVaIa 7VJwbCIAk/BF+xX3wW5uTqhapXzLDiemp9yTHEqowkYok8b838dAegdIv10IhRoB vtpd4uK5+qwEm7YcJP+61OIy0X4lds5z9mNSXSFHZ8IC2lir+IfjoASSnS59AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlVSS2C3GOXsu9cXYDHA7AzIU3rwwHwYDVR0j BBgwFoAUVttUHr/hDx8+O2A6u9FhLwWR0x0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTI1NmJiYmEtMTgyNi00ZDg2LWI4NzMtMmY2ZGQ2MzI1NzcxLzEvNTZEQjU0MUVC RkUxMEYxRjNFM0I2MDNBQkJEMTYxMkYwNTkxRDMxRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81NkRCNTQxRUJGRTEwRjFGM0UzQjYwM0FCQkQxNjEyRjA1OTFE MzFELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2UyNTZiYmJhLTE4MjYtNGQ4Ni1i ODczLTJmNmRkNjMyNTc3MS8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0NjY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89/AMA0GCSqGSIb3DQEBCwUAA4IBAQAQe7h8Xb+xSNEP1gEy2GloTCKunh6MlKes 9v4BB+vAKBQHPJL2NBY3svkpHbYKDb+wvFGYXyFrgqSujHyAe7MOXBMVdAgXXt3p hieEIYJ63jEEIKOvklFFFrR6dAUVod8u+k/ttcKDoTvpGuGmI6n8VF9L+dGjTYdN CAQ6gTnEaeQ9AbcXUt0jUTeYLYGhVE+m6R9M53x1urOgG9x7kSdzJzqRGi4Agsqa 9Bm2Y++Xta6d1oJn00N72tWEibCLtSeBTl0ws4amC88Yq8/LE3kv/HGM1hMxGwyr 5ztmeWNvi2cDduumEBGo2rNujtexDsBHMd4PV0LJQSGeL+wqxqYc -----END CERTIFICATE-----Generated at Wed May 13 14:17:09 2026 by rpki-client