$ rpki-client -vvf rpki-rsync.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa File: 323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa (raw, json) Hash identifier: cXKkyqfbSB+TtcjHk1mHx/AJ1vKr+O8y/yaLaZ1+wx8= Subject key identifier: AF:18:FC:AB:1E:4B:57:B6:CF:0D:BD:EC:57:C2:3F:0C:E8:24:15:8B Certificate issuer: /CN=C7281E70CDFFA77145134C1424E6A649EA797D8A Certificate serial: 437F7892E191A09F02CC8A2BDA736AF11B9144A3 Authority key identifier: C7:28:1E:70:CD:FF:A7:71:45:13:4C:14:24:E6:A6:49:EA:79:7D:8A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C7281E70CDFFA77145134C1424E6A649EA797D8A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa Signing time: Sun 03 May 2026 03:14:48 +0000 ROA not before: Sun 03 May 2026 03:09:48 +0000 ROA not after: Sun 02 May 2027 03:14:48 +0000 asID: 64315 IP address blocks: 2001:df7:1a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/C7281E70CDFFA77145134C1424E6A649EA797D8A.crl rsync://rpki-rsync.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/C7281E70CDFFA77145134C1424E6A649EA797D8A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C7281E70CDFFA77145134C1424E6A649EA797D8A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7f:78:92:e1:91:a0:9f:02:cc:8a:2b:da:73:6a:f1:1b:91:44:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7281E70CDFFA77145134C1424E6A649EA797D8A Validity Not Before: May 3 03:09:48 2026 GMT Not After : May 2 03:14:48 2027 GMT Subject: CN=AF18FCAB1E4B57B6CF0DBDEC57C23F0CE824158B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:84:dd:62:e0:34:40:9d:83:99:a6:a0:c5:be: bd:15:a4:71:73:05:d9:61:6e:fc:85:f9:f7:6c:37: b2:69:e9:10:e9:41:89:b0:6f:2a:50:e6:0e:26:2a: 21:f5:29:d8:37:45:23:0c:5d:cf:7d:ce:08:28:3f: 3e:c7:9f:82:39:a2:f0:2c:42:f4:20:0a:c5:94:fb: 99:4f:0d:ba:63:a3:0c:be:c6:27:f0:e7:88:25:0e: b8:30:7d:c1:f9:1d:e3:0d:51:5e:b8:db:fb:f7:f0: 14:e5:96:33:48:f1:34:71:f4:48:2a:a4:13:dd:7b: 1b:ee:43:84:11:4d:6d:d2:2b:81:93:70:c6:8d:3c: dc:66:dc:a7:ec:05:e0:35:42:a7:42:04:19:4b:16: f4:2b:73:59:df:12:6d:34:07:ca:43:0d:3d:62:5d: 29:70:64:d3:56:d5:fd:ef:c0:84:69:98:15:21:82: b7:88:e6:e0:bf:f7:9a:8c:97:88:66:d2:9a:18:b9: e6:f1:08:10:70:83:80:96:c7:6f:ae:98:c5:42:c9: 11:8e:46:74:e0:2f:77:fd:0f:d5:64:6f:a0:e5:88: 72:29:f6:83:62:4a:61:8d:a0:70:99:ae:86:69:d3: 9f:39:d7:52:a2:b7:25:9b:3c:59:53:f3:16:75:a6: 85:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:18:FC:AB:1E:4B:57:B6:CF:0D:BD:EC:57:C2:3F:0C:E8:24:15:8B X509v3 Authority Key Identifier: keyid:C7:28:1E:70:CD:FF:A7:71:45:13:4C:14:24:E6:A6:49:EA:79:7D:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/C7281E70CDFFA77145134C1424E6A649EA797D8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C7281E70CDFFA77145134C1424E6A649EA797D8A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e95f5f11-57ae-4ac3-a039-e0456bccf44c/0/323030313a6466373a316130303a3a2f34382d3438203d3e203634333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:1a00::/48 Signature Algorithm: sha256WithRSAEncryption 61:6a:11:47:f3:97:e9:57:86:f5:c9:b6:ca:60:16:a4:31:1f: fa:77:e4:a9:82:23:00:b4:35:88:5b:85:24:0d:28:25:ea:3b: ea:9a:66:fd:aa:63:1a:e2:94:aa:6d:b7:cc:1a:4c:96:9d:7b: ef:9e:5d:e3:19:fa:16:c1:94:b4:b6:ae:06:c0:a9:9b:ec:85: eb:ba:bd:f7:17:62:0a:d7:4c:c7:0f:ae:c5:29:89:31:ef:56: e6:62:ab:84:97:86:e0:52:18:eb:ed:8e:ed:f3:9f:6e:0c:31: aa:41:46:33:12:55:e9:b2:af:1e:47:af:36:eb:69:8b:54:77: a6:fe:de:28:bd:1f:e2:a7:41:b4:d9:3e:eb:d8:e5:ec:71:9e: 1b:1e:56:23:55:c5:35:5e:c5:f4:28:a5:34:7c:c9:5e:f4:de: 2a:15:29:a4:37:51:db:70:18:a3:73:f8:bd:65:ff:e5:93:d6: 47:05:03:2f:b3:f5:da:bf:67:9e:21:0d:b7:c4:3b:55:08:4d: 5c:39:65:d6:8d:5b:ce:3a:3e:52:19:d5:69:23:f8:4e:c6:d9: da:af:19:08:ef:d5:47:bc:f4:8f:07:a3:8d:61:7b:10:d3:74: a9:de:7f:8c:f1:d5:b0:b0:4c:63:a6:cf:ee:e5:cc:c9:28:ae: f1:9e:97:3f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQ394kuGRoJ8CzIor2nNq8RuRRKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcyODFFNzBDREZGQTc3MTQ1MTM0QzE0MjRFNkE2NDlF QTc5N0Q4QTAeFw0yNjA1MDMwMzA5NDhaFw0yNzA1MDIwMzE0NDhaMDMxMTAvBgNV BAMTKEFGMThGQ0FCMUU0QjU3QjZDRjBEQkRFQzU3QzIzRjBDRTgyNDE1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZhN1i4DRAnYOZpqDFvr0VpHFz BdlhbvyF+fdsN7Jp6RDpQYmwbypQ5g4mKiH1Kdg3RSMMXc99zggoPz7Hn4I5ovAs QvQgCsWU+5lPDbpjowy+xifw54glDrgwfcH5HeMNUV642/v38BTlljNI8TRx9Egq pBPdexvuQ4QRTW3SK4GTcMaNPNxm3KfsBeA1QqdCBBlLFvQrc1nfEm00B8pDDT1i XSlwZNNW1f3vwIRpmBUhgreI5uC/95qMl4hm0poYuebxCBBwg4CWx2+umMVCyRGO RnTgL3f9D9Vkb6DliHIp9oNiSmGNoHCZroZp058511KityWbPFlT8xZ1poWBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUrxj8qx5LV7bPDb3sV8I/DOgkFYswHwYDVR0j BBgwFoAUxygecM3/p3FFE0wUJOamSep5fYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTk1ZjVmMTEtNTdhZS00YWMzLWEwMzktZTA0NTZiY2NmNDRjLzAvQzcyODFFNzBD REZGQTc3MTQ1MTM0QzE0MjRFNkE2NDlFQTc5N0Q4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DNzI4MUU3MENERkZBNzcxNDUxMzRDMTQyNEU2QTY0OUVBNzk3 RDhBLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2U5NWY1ZjExLTU3YWUtNGFjMy1h MDM5LWUwNDU2YmNjZjQ0Yy8wLzMyMzAzMDMxM2E2NDY2MzczYTMxNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzYzNDMzMzEzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfca ADANBgkqhkiG9w0BAQsFAAOCAQEAYWoRR/OX6VeG9cm2ymAWpDEf+nfkqYIjALQ1 iFuFJA0oJeo76ppm/apjGuKUqm23zBpMlp17755d4xn6FsGUtLauBsCpm+yF67q9 9xdiCtdMxw+uxSmJMe9W5mKrhJeG4FIY6+2O7fOfbgwxqkFGMxJV6bKvHkevNutp i1R3pv7eKL0f4qdBtNk+69jl7HGeGx5WI1XFNV7F9CilNHzJXvTeKhUppDdR23AY o3P4vWX/5ZPWRwUDL7P12r9nniENt8Q7VQhNXDll1o1bzjo+UhnVaSP4TsbZ2q8Z CO/VR7z0jwejjWF7ENN0qd5/jPHVsLBMY6bP7uXMySiu8Z6XPw== -----END CERTIFICATE-----Generated at Wed May 13 10:20:44 2026 by rpki-client