$ rpki-client -vvf rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa File: 323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa (raw, json) Hash identifier: eW2jjvdvI19U+UGpZwOooilR+jDpj7dTH79DXIcMLCo= Subject key identifier: F9:18:8D:CA:82:3B:13:E7:37:57:57:47:99:1E:D3:DA:6F:AA:40:81 Certificate issuer: /CN=F2404BD69B9873B31DD80EA1E3F54A8C42D71F17 Certificate serial: 7C17362AF21520FB8DD59F63ED35FC84D7E73632 Authority key identifier: F2:40:4B:D6:9B:98:73:B3:1D:D8:0E:A1:E3:F5:4A:8C:42:D7:1F:17 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2404BD69B9873B31DD80EA1E3F54A8C42D71F17.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa Signing time: Sun 03 May 2026 03:13:19 +0000 ROA not before: Sun 03 May 2026 03:08:19 +0000 ROA not after: Sun 02 May 2027 03:13:19 +0000 asID: 152082 IP address blocks: 2001:df3:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/F2404BD69B9873B31DD80EA1E3F54A8C42D71F17.crl rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/F2404BD69B9873B31DD80EA1E3F54A8C42D71F17.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2404BD69B9873B31DD80EA1E3F54A8C42D71F17.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:17:36:2a:f2:15:20:fb:8d:d5:9f:63:ed:35:fc:84:d7:e7:36:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F2404BD69B9873B31DD80EA1E3F54A8C42D71F17 Validity Not Before: May 3 03:08:19 2026 GMT Not After : May 2 03:13:19 2027 GMT Subject: CN=F9188DCA823B13E737575747991ED3DA6FAA4081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7f:2a:71:eb:e9:20:41:ac:11:8b:37:28:7e: b7:2f:43:2b:63:92:f4:da:23:65:fd:53:25:e0:e1: 5e:b7:2a:75:c1:34:28:95:3e:64:0b:e6:ee:f9:7b: 1a:91:fd:7c:f3:c1:5a:69:d9:03:88:18:bf:b1:0b: 58:23:d8:ff:f5:4f:16:16:aa:58:73:fe:d4:01:b6: 00:07:ba:b4:5c:4d:a5:00:54:35:81:88:3e:ed:ea: fc:83:26:52:75:9c:cf:01:08:a5:83:a9:f5:da:b3: f8:0f:18:22:e7:96:8d:2d:97:e1:71:83:4c:9d:6c: df:f0:45:43:20:11:d3:59:57:d1:11:9f:b2:14:87: 44:38:ce:94:ed:be:48:54:dd:16:87:7e:34:79:9e: 8c:3c:40:7a:20:26:34:66:80:2f:43:61:ed:3c:21: 21:cb:75:16:be:ee:5a:85:20:c9:1c:ef:c2:b6:c5: e2:ee:4b:f7:9c:5c:38:b9:c5:c4:6e:6f:03:85:3f: 7a:88:73:70:8e:32:80:5e:8f:1d:5b:74:6c:dd:0c: 59:46:ed:00:2a:8b:df:36:b0:57:59:28:4b:46:84: 24:27:f5:dc:0b:54:5b:40:b5:05:6e:0d:e9:3f:06: 4f:b6:0b:60:67:66:3b:53:69:c7:ac:2a:6b:24:fb: 05:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:18:8D:CA:82:3B:13:E7:37:57:57:47:99:1E:D3:DA:6F:AA:40:81 X509v3 Authority Key Identifier: keyid:F2:40:4B:D6:9B:98:73:B3:1D:D8:0E:A1:E3:F5:4A:8C:42:D7:1F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/F2404BD69B9873B31DD80EA1E3F54A8C42D71F17.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F2404BD69B9873B31DD80EA1E3F54A8C42D71F17.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 2e:64:7d:cb:13:6a:c0:52:7f:02:c5:75:d8:51:d0:9f:ba:66: 97:f0:71:85:60:3d:68:6c:48:65:52:90:ca:36:b0:75:25:7f: cd:d6:c7:4a:cb:cf:7e:db:17:30:10:71:44:1e:c2:99:3c:e5: 06:60:63:af:4e:1a:0d:e5:9e:9d:52:b4:07:0c:fb:a0:f6:d7: 1f:cb:e5:af:37:d2:54:6b:e0:43:7c:a7:c3:7e:29:8c:f8:82: 0d:64:df:af:78:c1:00:d9:6b:2e:67:f5:c2:b6:a1:d5:c7:8e: 82:62:1d:90:59:17:32:a3:88:11:42:ec:73:6f:d6:fe:40:77: c1:84:32:8d:d4:9c:fe:8f:f6:36:00:a5:70:55:b6:a1:2d:0c: 8c:95:07:ad:20:83:68:8d:f6:e1:bd:44:fb:c6:39:f1:5c:af: 40:a5:52:f6:e4:5d:4a:66:7f:22:8e:d6:37:ea:27:cc:3e:68: c3:52:08:44:50:96:e7:aa:05:e9:f9:b5:89:69:12:a2:4e:83: db:e9:64:f7:8b:e8:03:8a:e6:51:89:ee:45:95:cd:81:4e:51: 91:6e:20:17:77:fb:93:44:3b:c5:72:35:1c:ff:0b:93:94:5c: c9:04:f7:63:47:7a:b9:de:a2:14:40:56:76:6a:44:97:ae:57: ee:82:8f:dc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfBc2KvIVIPuN1Z9j7TX8hNfnNjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI0MDRCRDY5Qjk4NzNCMzFERDgwRUExRTNGNTRBOEM0 MkQ3MUYxNzAeFw0yNjA1MDMwMzA4MTlaFw0yNzA1MDIwMzEzMTlaMDMxMTAvBgNV BAMTKEY5MTg4RENBODIzQjEzRTczNzU3NTc0Nzk5MUVEM0RBNkZBQTQwODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmfypx6+kgQawRizcofrcvQytj kvTaI2X9UyXg4V63KnXBNCiVPmQL5u75exqR/XzzwVpp2QOIGL+xC1gj2P/1TxYW qlhz/tQBtgAHurRcTaUAVDWBiD7t6vyDJlJ1nM8BCKWDqfXas/gPGCLnlo0tl+Fx g0ydbN/wRUMgEdNZV9ERn7IUh0Q4zpTtvkhU3RaHfjR5now8QHogJjRmgC9DYe08 ISHLdRa+7lqFIMkc78K2xeLuS/ecXDi5xcRubwOFP3qIc3COMoBejx1bdGzdDFlG 7QAqi982sFdZKEtGhCQn9dwLVFtAtQVuDek/Bk+2C2BnZjtTacesKmsk+wXjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+RiNyoI7E+c3V1dHmR7T2m+qQIEwHwYDVR0j BBgwFoAU8kBL1puYc7Md2A6h4/VKjELXHxcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTQ3Y2Q1YTItYTc0Mi00NTBjLWIxOTAtNTAwZTc1NDUyMGRlLzEvRjI0MDRCRDY5 Qjk4NzNCMzFERDgwRUExRTNGNTRBOEM0MkQ3MUYxNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GMjQwNEJENjlCOTg3M0IzMUREODBFQTFFM0Y1NEE4QzQyRDcx RjE3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81vAMA0GCSqGSIb3DQEBCwUAA4IBAQAuZH3LE2rAUn8CxXXYUdCfumaX8HGFYD1o bEhlUpDKNrB1JX/N1sdKy89+2xcwEHFEHsKZPOUGYGOvThoN5Z6dUrQHDPug9tcf y+WvN9JUa+BDfKfDfimM+IINZN+veMEA2WsuZ/XCtqHVx46CYh2QWRcyo4gRQuxz b9b+QHfBhDKN1Jz+j/Y2AKVwVbahLQyMlQetIINojfbhvUT7xjnxXK9ApVL25F1K Zn8ijtY36ifMPmjDUghEUJbnqgXp+bWJaRKiToPb6WT3i+gDiuZRie5Flc2BTlGR biAXd/uTRDvFcjUc/wuTlFzJBPdjR3q53qIUQFZ2akSXrlfugo/c -----END CERTIFICATE-----Generated at Wed May 13 10:32:43 2026 by rpki-client