$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa File: 323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa (raw, json) Hash identifier: IbtvV4jtC6vMhj+esxB6AgoSBLjpNUY18dIXWSiEQx4= Subject key identifier: B7:CD:B6:4A:85:9D:D0:0E:01:27:B9:F7:E6:5A:65:82:FB:47:EC:95 Certificate issuer: /CN=F71AC7E6F0D6271DD977776557E16AE02A4AD77C Certificate serial: 1075F5AC459D32409580AD88AFC1C234D6795109 Authority key identifier: F7:1A:C7:E6:F0:D6:27:1D:D9:77:77:65:57:E1:6A:E0:2A:4A:D7:7C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F71AC7E6F0D6271DD977776557E16AE02A4AD77C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa Signing time: Sun 03 May 2026 03:15:02 +0000 ROA not before: Sun 03 May 2026 03:10:02 +0000 ROA not after: Sun 02 May 2027 03:15:02 +0000 asID: 152421 IP address blocks: 2001:df3:92c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/F71AC7E6F0D6271DD977776557E16AE02A4AD77C.crl rsync://rpki-rsync.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/F71AC7E6F0D6271DD977776557E16AE02A4AD77C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F71AC7E6F0D6271DD977776557E16AE02A4AD77C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:75:f5:ac:45:9d:32:40:95:80:ad:88:af:c1:c2:34:d6:79:51:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F71AC7E6F0D6271DD977776557E16AE02A4AD77C Validity Not Before: May 3 03:10:02 2026 GMT Not After : May 2 03:15:02 2027 GMT Subject: CN=B7CDB64A859DD00E0127B9F7E65A6582FB47EC95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:64:54:55:23:71:ec:2e:a6:ac:f6:c8:1e:40: 68:d0:4d:73:a0:97:8b:4c:9b:59:2a:c4:69:07:85: 89:a7:b2:27:9a:51:9c:57:32:aa:58:fb:f6:50:fa: 8f:81:b8:11:5b:97:56:f7:d0:0f:da:cf:cb:2f:1c: bd:d0:25:6b:95:e4:2c:1d:d0:9e:46:11:4c:b5:08: 68:84:48:1d:2d:df:eb:3d:12:97:fb:d7:39:87:c6: 57:7e:9e:63:8a:a1:7b:a2:7e:5e:74:a8:64:00:da: 6c:2f:b5:6f:3d:f3:14:65:fc:5d:b5:a4:32:92:e7: f1:01:24:c5:f4:32:45:92:40:1c:13:14:ff:f5:8d: ca:c2:85:be:7a:50:b2:80:c0:78:7d:86:44:08:b0: b6:fb:ee:43:71:4a:e4:2a:1c:bc:f7:f7:7e:d5:9a: b6:d9:e8:6e:ea:f8:f9:65:80:07:8d:98:62:60:20: 1a:bf:6b:73:ce:08:2f:56:e3:6a:12:4f:6b:87:dc: 42:92:4f:3a:c2:e8:a9:ff:4f:03:d9:00:b0:2c:ee: 21:65:ee:31:6f:4d:b3:dd:da:02:51:59:1e:3a:b2: 82:72:e8:b6:f0:bf:3c:08:c0:aa:4f:2b:5a:de:54: 33:46:b2:06:e7:cf:27:39:7a:2b:db:44:81:1a:3a: 2f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CD:B6:4A:85:9D:D0:0E:01:27:B9:F7:E6:5A:65:82:FB:47:EC:95 X509v3 Authority Key Identifier: keyid:F7:1A:C7:E6:F0:D6:27:1D:D9:77:77:65:57:E1:6A:E0:2A:4A:D7:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/F71AC7E6F0D6271DD977776557E16AE02A4AD77C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/F71AC7E6F0D6271DD977776557E16AE02A4AD77C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:92c0::/48 Signature Algorithm: sha256WithRSAEncryption 6d:1f:d4:17:76:c7:ca:48:1d:a2:84:9d:de:1d:cd:f6:c8:a2: c8:9b:d6:cd:90:57:c3:de:da:d6:47:b3:9d:97:39:ba:93:65: 15:ed:9b:76:83:80:43:b8:9b:5c:c2:44:fc:ab:43:91:4c:f0: d5:05:91:4a:df:0f:e3:70:a8:4a:20:a7:8e:39:1c:a0:a1:b2: 2e:16:05:40:ef:a2:b0:12:3d:2a:29:db:f7:76:f5:7a:2f:5c: 7d:e1:83:bd:32:b7:e9:26:aa:e0:34:bb:cc:aa:ae:9a:09:22: ab:67:32:a6:f0:60:e3:28:c2:ba:b3:77:4b:c9:0b:ff:87:e7: 9c:74:c7:2c:38:ee:6f:92:c6:e3:9a:93:bb:58:32:16:f9:20: 24:06:d1:fe:0e:93:a6:5d:d8:b3:2c:ce:a7:b9:a0:51:90:b6: f1:11:c1:19:38:06:7c:c7:5c:35:0c:14:5f:f3:f7:33:2f:43: c9:b8:0f:10:ca:a0:06:3e:1a:8b:b3:91:39:4a:42:8b:2a:c2: d3:5e:e5:81:45:9a:0c:11:f7:28:c5:2a:f6:87:2d:0c:44:7d: 7b:d2:47:f8:87:8e:e9:9b:6c:c3:b5:f8:e2:96:08:da:ee:69: 04:14:b2:48:c9:9f:b9:5d:ca:d7:66:a7:20:4d:25:96:d5:42: ef:c9:88:41 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEHX1rEWdMkCVgK2Ir8HCNNZ5UQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjcxQUM3RTZGMEQ2MjcxREQ5Nzc3NzY1NTdFMTZBRTAy QTRBRDc3QzAeFw0yNjA1MDMwMzEwMDJaFw0yNzA1MDIwMzE1MDJaMDMxMTAvBgNV BAMTKEI3Q0RCNjRBODU5REQwMEUwMTI3QjlGN0U2NUE2NTgyRkI0N0VDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfZFRVI3HsLqas9sgeQGjQTXOg l4tMm1kqxGkHhYmnsieaUZxXMqpY+/ZQ+o+BuBFbl1b30A/az8svHL3QJWuV5Cwd 0J5GEUy1CGiESB0t3+s9Epf71zmHxld+nmOKoXuifl50qGQA2mwvtW898xRl/F21 pDKS5/EBJMX0MkWSQBwTFP/1jcrChb56ULKAwHh9hkQIsLb77kNxSuQqHLz3937V mrbZ6G7q+PllgAeNmGJgIBq/a3POCC9W42oST2uH3EKSTzrC6Kn/TwPZALAs7iFl 7jFvTbPd2gJRWR46soJy6LbwvzwIwKpPK1reVDNGsgbnzyc5eivbRIEaOi9jAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUt822SoWd0A4BJ7n35lplgvtH7JUwHwYDVR0j BBgwFoAU9xrH5vDWJx3Zd3dlV+Fq4CpK13wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE0Zjc5MzQtY2RjNy00MDgyLTgzZmItZGY3ZDRmODIxOWFmLzEvRjcxQUM3RTZG MEQ2MjcxREQ5Nzc3NzY1NTdFMTZBRTAyQTRBRDc3Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GNzFBQzdFNkYwRDYyNzFERDk3Nzc3NjU1N0UxNkFFMDJBNEFE NzdDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNGY3OTM0LWNkYzctNDA4Mi04 M2ZiLWRmN2Q0ZjgyMTlhZi8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85LAMA0GCSqGSIb3DQEBCwUAA4IBAQBtH9QXdsfKSB2ihJ3eHc32yKLIm9bNkFfD 3trWR7Odlzm6k2UV7Zt2g4BDuJtcwkT8q0ORTPDVBZFK3w/jcKhKIKeOORygobIu FgVA76KwEj0qKdv3dvV6L1x94YO9MrfpJqrgNLvMqq6aCSKrZzKm8GDjKMK6s3dL yQv/h+ecdMcsOO5vksbjmpO7WDIW+SAkBtH+DpOmXdizLM6nuaBRkLbxEcEZOAZ8 x1w1DBRf8/czL0PJuA8QyqAGPhqLs5E5SkKLKsLTXuWBRZoMEfcoxSr2hy0MRH17 0kf4h47pm2zDtfjilgja7mkEFLJIyZ+5XcrXZqcgTSWW1ULvyYhB -----END CERTIFICATE-----Generated at Wed May 13 07:01:51 2026 by rpki-client