$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa File: 323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa (raw, json) Hash identifier: rk63OWefzg4vng4Tc3mM68t8dHw3/EWO+Sh3DRDdtqA= Subject key identifier: 15:A2:39:F4:8A:52:66:C8:DF:8A:2C:FB:8F:CA:35:5F:77:71:CB:55 Certificate issuer: /CN=4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4 Certificate serial: 2D8EBCDCF54E0CA387D3C38EF688871EDE5797D0 Authority key identifier: 4B:3B:54:F4:A1:20:3D:9D:F5:E8:09:42:28:C9:1F:C2:1F:F2:C5:C4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa Signing time: Sun 03 May 2026 03:15:00 +0000 ROA not before: Sun 03 May 2026 03:10:00 +0000 ROA not after: Sun 02 May 2027 03:15:00 +0000 asID: 140463 IP address blocks: 2001:df4:4980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:8e:bc:dc:f5:4e:0c:a3:87:d3:c3:8e:f6:88:87:1e:de:57:97:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4 Validity Not Before: May 3 03:10:00 2026 GMT Not After : May 2 03:15:00 2027 GMT Subject: CN=15A239F48A5266C8DF8A2CFB8FCA355F7771CB55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:04:cc:89:6f:01:ce:de:d9:af:d1:06:7a:3f: 1b:1f:cd:e2:7a:37:36:16:3c:67:1e:ed:52:50:5a: 63:ab:c3:01:72:f2:9e:90:0e:45:e6:c6:93:23:e4: 36:73:95:54:80:7c:ba:ed:46:26:02:46:0b:4b:4e: 7a:89:2e:21:74:5f:3a:f6:aa:ef:58:ec:1c:a1:9a: 03:07:bb:1d:bf:e9:de:1c:f9:8e:46:f9:63:15:29: 76:f6:5f:84:89:fb:e6:00:c9:28:40:77:90:32:2e: 61:54:8b:a9:76:82:19:b2:7c:bf:ee:d5:51:f5:df: 11:16:1d:0d:b4:c6:0c:24:ad:02:79:39:cf:75:6c: 5c:20:0c:dc:a0:e3:2e:58:d3:86:c3:f2:47:c9:40: 9b:0d:9e:60:c5:34:2c:fd:ce:53:d4:ff:af:dd:42: 80:57:81:d3:22:fa:47:08:fb:7e:db:bd:d9:77:14: b7:ce:ce:3d:f0:1d:f3:e2:98:9b:b7:3c:9f:3b:28: fd:20:c2:d4:d5:91:4e:c9:17:cc:b9:6d:ea:1d:49: 47:14:20:fc:20:cf:ba:23:f4:1b:20:39:29:87:a1: c0:6a:cc:63:5b:89:22:cb:7a:42:33:d2:0f:11:32: b5:eb:f3:4a:b6:36:55:ad:60:60:f5:03:e3:a8:6d: 3a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A2:39:F4:8A:52:66:C8:DF:8A:2C:FB:8F:CA:35:5F:77:71:CB:55 X509v3 Authority Key Identifier: keyid:4B:3B:54:F4:A1:20:3D:9D:F5:E8:09:42:28:C9:1F:C2:1F:F2:C5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:4980::/48 Signature Algorithm: sha256WithRSAEncryption 1d:da:01:95:e2:77:23:65:ee:f8:a1:e0:ea:a0:cc:9c:c7:f5: 54:03:6e:ec:b5:24:ab:57:ef:6a:f7:fe:57:c5:a9:af:97:63: f7:52:6a:0e:9f:c3:ff:68:45:d0:5d:fb:c8:90:29:b9:58:6c: f6:49:9a:14:ee:ab:06:fd:38:41:35:a9:67:8f:aa:e1:72:ad: 4e:6a:90:65:fa:4d:c3:ed:a5:a6:fe:5d:67:7c:d5:fe:ac:a0: 34:9a:ba:2f:cf:3e:cd:ce:8b:dd:d9:4f:b0:33:0d:b8:15:b5: e4:90:91:ed:bd:d0:4e:9e:8b:c3:c2:17:6d:c7:68:b4:04:43: 6a:46:bc:4a:56:08:e8:0f:9a:f3:ed:8b:2f:ce:38:d3:06:25: d6:1c:7a:e4:69:55:72:02:16:ce:49:7c:b8:35:f2:68:6a:ff: cf:fe:2a:a1:e7:07:fe:31:3c:c2:fb:a4:d1:73:cf:03:60:68: 92:c3:21:08:e2:d1:6d:2e:0f:03:a0:dc:e8:d4:dd:f2:ba:51: ba:cb:86:6b:49:6d:a8:b2:fa:9b:c9:d8:32:cb:e8:48:2e:99: fd:d4:ab:48:61:a2:f6:de:c1:0b:06:2a:24:90:e3:db:cf:1f: 74:02:2a:81:a5:2a:5e:f7:99:84:d9:3a:d1:46:62:6e:03:b1: ad:44:f9:52 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULY683PVODKOH08OO9oiHHt5Xl9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzQjU0RjRBMTIwM0Q5REY1RTgwOTQyMjhDOTFGQzIx RkYyQzVDNDAeFw0yNjA1MDMwMzEwMDBaFw0yNzA1MDIwMzE1MDBaMDMxMTAvBgNV BAMTKDE1QTIzOUY0OEE1MjY2QzhERjhBMkNGQjhGQ0EzNTVGNzc3MUNCNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcBMyJbwHO3tmv0QZ6PxsfzeJ6 NzYWPGce7VJQWmOrwwFy8p6QDkXmxpMj5DZzlVSAfLrtRiYCRgtLTnqJLiF0Xzr2 qu9Y7ByhmgMHux2/6d4c+Y5G+WMVKXb2X4SJ++YAyShAd5AyLmFUi6l2ghmyfL/u 1VH13xEWHQ20xgwkrQJ5Oc91bFwgDNyg4y5Y04bD8kfJQJsNnmDFNCz9zlPU/6/d QoBXgdMi+kcI+37bvdl3FLfOzj3wHfPimJu3PJ87KP0gwtTVkU7JF8y5beodSUcU IPwgz7oj9BsgOSmHocBqzGNbiSLLekIz0g8RMrXr80q2NlWtYGD1A+OobTpjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFaI59IpSZsjfiiz7j8o1X3dxy1UwHwYDVR0j BBgwFoAUSztU9KEgPZ316AlCKMkfwh/yxcQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWExZTBiZDctMjgxYS00ZWJhLWI5OGMtODI5MzkzMjdkZGQ3LzAvNEIzQjU0RjRB MTIwM0Q5REY1RTgwOTQyMjhDOTFGQzIxRkYyQzVDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QjNCNTRGNEExMjAzRDlERjVFODA5NDIyOEM5MUZDMjFGRjJD NUM0LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhMWUwYmQ3LTI4MWEtNGViYS1i OThjLTgyOTM5MzI3ZGRkNy8wLzMyMzAzMDMxM2E2NDY2MzQzYTM0MzkzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNjMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9EmAMA0GCSqGSIb3DQEBCwUAA4IBAQAd2gGV4ncjZe74oeDqoMycx/VUA27stSSr V+9q9/5Xxamvl2P3UmoOn8P/aEXQXfvIkCm5WGz2SZoU7qsG/ThBNalnj6rhcq1O apBl+k3D7aWm/l1nfNX+rKA0mrovzz7Nzovd2U+wMw24FbXkkJHtvdBOnovDwhdt x2i0BENqRrxKVgjoD5rz7YsvzjjTBiXWHHrkaVVyAhbOSXy4NfJoav/P/iqh5wf+ MTzC+6TRc88DYGiSwyEI4tFtLg8DoNzo1N3yulG6y4ZrSW2osvqbydgyy+hILpn9 1KtIYaL23sELBiokkOPbzx90AiqBpSpe95mE2TrRRmJuA7GtRPlS -----END CERTIFICATE-----Generated at Wed May 13 09:20:54 2026 by rpki-client