$ rpki-client -vvf rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa File: 323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa (raw, json) Hash identifier: la/MT35l4XmEKRTivxkgUTpV+veAFTIlPEFkPiSAUT8= Subject key identifier: 96:50:A6:E8:21:32:C1:3A:91:53:74:0F:A5:F7:16:4D:29:C7:8E:D7 Certificate issuer: /CN=BCD5E05E570F2280ECEF33171EB7ADC87DF556D8 Certificate serial: 59985965E40F23E4A5A8533CE14274329E5A8430 Authority key identifier: BC:D5:E0:5E:57:0F:22:80:EC:EF:33:17:1E:B7:AD:C8:7D:F5:56:D8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa Signing time: Sun 03 May 2026 03:13:25 +0000 ROA not before: Sun 03 May 2026 03:08:25 +0000 ROA not after: Sun 02 May 2027 03:13:25 +0000 asID: 45786 IP address blocks: 2001:df0:cb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.crl rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:98:59:65:e4:0f:23:e4:a5:a8:53:3c:e1:42:74:32:9e:5a:84:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCD5E05E570F2280ECEF33171EB7ADC87DF556D8 Validity Not Before: May 3 03:08:25 2026 GMT Not After : May 2 03:13:25 2027 GMT Subject: CN=9650A6E82132C13A9153740FA5F7164D29C78ED7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:60:6c:9a:02:46:41:87:ca:df:76:d7:8e:64: b4:bd:7f:17:51:cb:75:61:bd:68:a2:8b:0d:94:b3: 03:9d:b8:35:d3:73:1b:4b:9d:f5:f3:c8:a2:97:4f: 2c:8d:50:59:b9:34:e2:b5:59:0f:2e:a1:f8:d7:77: a2:e8:dc:3c:0a:64:9b:f5:8b:9a:9f:cd:49:96:f9: 36:c9:50:53:97:10:81:8f:1f:90:ac:d4:3d:0b:c3: a0:76:78:b3:05:09:d1:b5:7c:c2:6c:4b:22:60:9e: 98:dd:ba:3d:39:d8:8c:6c:8d:be:82:bc:0d:2a:13: c9:a5:72:a5:3c:b5:15:ed:05:fe:38:ae:a5:d0:67: b2:fc:f6:f6:05:72:6c:9d:cf:c3:b3:60:4c:be:fd: 53:28:0a:dd:df:9d:c1:5f:b1:68:96:f2:d8:cd:67: 4e:c1:fe:af:57:b2:09:2e:20:82:a1:33:da:f3:f1: 44:ef:8b:61:5a:60:e1:d6:03:db:49:ec:7b:e4:9f: 6c:b6:10:dc:43:2a:c1:8e:91:e7:31:4b:88:2b:1e: 44:8a:a2:2b:df:30:75:c9:1e:2d:b1:8e:c1:b7:0e: af:a5:37:e9:2d:93:ed:ea:4b:3f:2d:e5:dd:f2:a3: 10:6d:b3:1b:26:27:70:f5:76:84:6c:2c:6c:51:e5: 75:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:50:A6:E8:21:32:C1:3A:91:53:74:0F:A5:F7:16:4D:29:C7:8E:D7 X509v3 Authority Key Identifier: keyid:BC:D5:E0:5E:57:0F:22:80:EC:EF:33:17:1E:B7:AD:C8:7D:F5:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BCD5E05E570F2280ECEF33171EB7ADC87DF556D8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:cb::/48 Signature Algorithm: sha256WithRSAEncryption 2d:60:6d:17:a4:93:7c:63:74:3b:4e:22:45:4c:40:65:91:32: 5a:37:f9:60:5b:da:2a:6b:7d:7e:8a:06:67:b7:ca:1e:eb:ed: e5:91:a6:7e:f1:f1:58:2d:2a:88:ac:40:fb:3b:2f:51:e2:09: 99:90:ca:c7:c2:bd:67:fa:f5:fc:9e:43:99:6e:e1:94:f5:c6: 17:14:5d:7e:94:b1:4e:72:92:ab:19:55:38:77:b6:a0:c3:85: 21:2c:65:1e:74:73:c1:3e:c5:a6:c1:82:df:f2:c8:3e:29:2a: 4d:e5:ff:0d:a0:29:95:ff:a8:65:11:30:a6:36:fb:e6:0d:9f: 48:8f:8a:5c:b9:d5:22:f1:31:39:fc:5a:84:15:9b:ac:86:cc: b4:b2:0a:f8:a0:05:ed:79:df:24:f8:40:cc:2f:04:f5:07:b7: 90:f6:25:12:ff:d3:05:2a:e5:0f:1f:61:3c:5b:1c:e8:85:bf: 87:55:1e:6b:77:70:09:3f:eb:0a:64:50:fa:d4:fc:b9:45:77: da:8f:39:85:fd:39:c7:25:8e:a4:d6:37:92:be:e0:3e:16:75: a7:ef:c3:d6:ed:c1:56:8e:a0:ae:c1:6e:62:7b:9a:76:56:e8: 59:da:c2:49:89:d5:08:4a:2b:7c:45:a9:00:98:44:ad:16:e0: a6:b3:35:cc -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWZhZZeQPI+SlqFM84UJ0Mp5ahDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNENUUwNUU1NzBGMjI4MEVDRUYzMzE3MUVCN0FEQzg3 REY1NTZEODAeFw0yNjA1MDMwMzA4MjVaFw0yNzA1MDIwMzEzMjVaMDMxMTAvBgNV BAMTKDk2NTBBNkU4MjEzMkMxM0E5MTUzNzQwRkE1RjcxNjREMjlDNzhFRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcYGyaAkZBh8rfdteOZLS9fxdR y3VhvWiiiw2UswOduDXTcxtLnfXzyKKXTyyNUFm5NOK1WQ8uofjXd6Lo3DwKZJv1 i5qfzUmW+TbJUFOXEIGPH5Cs1D0Lw6B2eLMFCdG1fMJsSyJgnpjduj052Ixsjb6C vA0qE8mlcqU8tRXtBf44rqXQZ7L89vYFcmydz8OzYEy+/VMoCt3fncFfsWiW8tjN Z07B/q9XsgkuIIKhM9rz8UTvi2FaYOHWA9tJ7Hvkn2y2ENxDKsGOkecxS4grHkSK oivfMHXJHi2xjsG3Dq+lN+ktk+3qSz8t5d3yoxBtsxsmJ3D1doRsLGxR5XVPAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUllCm6CEywTqRU3QPpfcWTSnHjtcwHwYDVR0j BBgwFoAUvNXgXlcPIoDs7zMXHretyH31VtgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTUwZGE0NDctYTEzOC00NjI1LWE0MjAtYTcxMWFjMjQzNTE5LzAvQkNENUUwNUU1 NzBGMjI4MEVDRUYzMzE3MUVCN0FEQzg3REY1NTZEOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQ0Q1RTA1RTU3MEYyMjgwRUNFRjMzMTcxRUI3QURDODdERjU1 NkQ4LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYzNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzczODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ADLMA0G CSqGSIb3DQEBCwUAA4IBAQAtYG0XpJN8Y3Q7TiJFTEBlkTJaN/lgW9oqa31+igZn t8oe6+3lkaZ+8fFYLSqIrED7Oy9R4gmZkMrHwr1n+vX8nkOZbuGU9cYXFF1+lLFO cpKrGVU4d7agw4UhLGUedHPBPsWmwYLf8sg+KSpN5f8NoCmV/6hlETCmNvvmDZ9I j4pcudUi8TE5/FqEFZushsy0sgr4oAXted8k+EDMLwT1B7eQ9iUS/9MFKuUPH2E8 Wxzohb+HVR5rd3AJP+sKZFD61Py5RXfajzmF/TnHJY6k1jeSvuA+FnWn78PW7cFW jqCuwW5ie5p2VuhZ2sJJidUISit8RakAmEStFuCmszXM -----END CERTIFICATE-----Generated at Wed May 13 13:25:27 2026 by rpki-client