$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa File: 323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa (raw, json) Hash identifier: noWOl6fVub87P1/SVgYHH5T2hrSTXsrQ+oEMt1rrpNg= Subject key identifier: 3A:D8:BE:D3:85:40:ED:32:33:44:18:D5:D0:60:DA:7E:76:D1:29:B3 Certificate issuer: /CN=488A458129866D0E7DBFF7668D82664F584F8541 Certificate serial: 048CB6C42348622357FDAAE4578883033C44FD91 Authority key identifier: 48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa Signing time: Sun 03 May 2026 03:15:10 +0000 ROA not before: Sun 03 May 2026 03:10:10 +0000 ROA not after: Sun 02 May 2027 03:15:10 +0000 asID: 135478 IP address blocks: 2001:d10:9400::/38 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:8c:b6:c4:23:48:62:23:57:fd:aa:e4:57:88:83:03:3c:44:fd:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488A458129866D0E7DBFF7668D82664F584F8541 Validity Not Before: May 3 03:10:10 2026 GMT Not After : May 2 03:15:10 2027 GMT Subject: CN=3AD8BED38540ED32334418D5D060DA7E76D129B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ed:ac:35:2b:36:96:8c:1d:11:f5:5e:22:67: 46:72:a5:18:f4:ec:5c:11:f8:dc:67:44:7a:50:81: 37:22:64:51:b4:4f:fd:92:21:39:fe:4f:c5:61:ab: 1a:42:92:2f:b2:5d:ff:12:28:cd:6d:a8:d5:cd:ec: 50:53:82:ca:d4:c5:2e:16:c5:d2:70:7b:24:52:32: 09:ef:1d:1d:03:87:73:43:dc:3f:1c:fa:ce:b6:8c: 42:c3:15:67:5a:22:c4:66:52:ad:a1:cd:8a:a8:a4: 76:cd:2a:ac:a9:27:98:4b:ee:b5:69:2d:25:b2:b9: 5f:fc:b9:6e:63:f4:89:cd:8f:c0:ce:0e:ed:40:d0: 05:93:25:a2:89:64:cd:13:ab:de:4e:fa:12:0d:18: 6b:26:cc:81:84:bb:5f:b2:59:9b:5f:2c:66:79:86: bf:25:7e:b3:f2:dc:c5:e7:7e:c6:80:96:06:99:e9: 44:9b:eb:92:bf:fb:31:d9:28:72:bc:f9:6d:2d:b4: 09:25:c4:6d:4e:21:9b:e0:f3:28:8e:a8:7d:a5:8e: 8d:be:20:7a:7f:69:e3:99:78:8d:21:43:3d:0e:4e: f4:e7:e7:b0:3f:70:62:fa:75:f8:e4:b6:94:59:8e: c8:dc:92:70:b2:c8:e7:1c:a9:d1:9a:50:8a:aa:f8: c0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D8:BE:D3:85:40:ED:32:33:44:18:D5:D0:60:DA:7E:76:D1:29:B3 X509v3 Authority Key Identifier: keyid:48:8A:45:81:29:86:6D:0E:7D:BF:F7:66:8D:82:66:4F:58:4F:85:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/488A458129866D0E7DBFF7668D82664F584F8541.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/488A458129866D0E7DBFF7668D82664F584F8541.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d10:9400::/38 Signature Algorithm: sha256WithRSAEncryption d1:39:4b:fb:42:3b:b0:be:9c:bc:0d:f8:3a:89:4d:50:59:d0: 76:99:9a:5a:30:3f:33:f3:2c:6f:be:2c:b2:43:cb:2e:55:5c: 52:80:ac:c0:f1:d5:4f:6f:0c:a6:dd:d3:b3:60:60:e6:f0:ad: b1:5d:86:79:1d:77:a0:ca:64:c2:ed:01:a9:8a:cd:1b:f9:3b: 81:1a:35:44:a1:b1:3f:6a:c1:c9:96:01:35:07:07:fa:4b:e6: cd:28:f5:23:a5:2f:ed:60:52:8a:66:2a:57:df:1d:04:0b:21: 7d:fa:b2:f0:48:9a:ed:85:a9:47:4b:b4:62:ee:d0:13:06:f2: 9b:fe:68:e1:e0:27:1d:73:b5:5f:fb:74:55:f9:c7:0e:a0:f1: 7b:b2:b8:25:56:4e:53:47:a1:a5:ba:e2:16:91:2a:b3:ed:3c: c1:a5:c7:9a:e2:b3:9d:f8:3d:8f:ac:89:b9:35:9f:40:c6:af: 45:50:7f:5e:db:8e:a0:01:8d:2a:f8:9a:23:61:bc:da:c8:7d: d4:86:1c:42:c3:26:db:53:5e:dd:2d:e9:15:26:44:f7:7c:b6: 99:47:8c:d4:74:e8:f7:c0:da:a6:68:42:90:8e:81:36:5d:a6: 81:e4:71:e2:e3:c8:18:6c:af:e6:3d:a8:96:e8:76:a7:f4:79: 2c:20:05:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBIy2xCNIYiNX/arkV4iDAzxE/ZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg4QTQ1ODEyOTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1 ODRGODU0MTAeFw0yNjA1MDMwMzEwMTBaFw0yNzA1MDIwMzE1MTBaMDMxMTAvBgNV BAMTKDNBRDhCRUQzODU0MEVEMzIzMzQ0MThENUQwNjBEQTdFNzZEMTI5QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC07aw1KzaWjB0R9V4iZ0ZypRj0 7FwR+NxnRHpQgTciZFG0T/2SITn+T8VhqxpCki+yXf8SKM1tqNXN7FBTgsrUxS4W xdJweyRSMgnvHR0Dh3ND3D8c+s62jELDFWdaIsRmUq2hzYqopHbNKqypJ5hL7rVp LSWyuV/8uW5j9InNj8DODu1A0AWTJaKJZM0Tq95O+hINGGsmzIGEu1+yWZtfLGZ5 hr8lfrPy3MXnfsaAlgaZ6USb65K/+zHZKHK8+W0ttAklxG1OIZvg8yiOqH2ljo2+ IHp/aeOZeI0hQz0OTvTn57A/cGL6dfjktpRZjsjcknCyyOccqdGaUIqq+MDFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOti+04VA7TIzRBjV0GDafnbRKbMwHwYDVR0j BBgwFoAUSIpFgSmGbQ59v/dmjYJmT1hPhUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWE3MDI3MjYtYjJjNi00NmZjLTgyOTctMmRiZGVjNmQ2ZDVkLzAvNDg4QTQ1ODEy OTg2NkQwRTdEQkZGNzY2OEQ4MjY2NEY1ODRGODU0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80ODhBNDU4MTI5ODY2RDBFN0RCRkY3NjY4RDgyNjY0RjU4NEY4 NTQxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzAzMDMxM2E2NDMxMzAzYTM5MzQzMDMwM2Ez YTJmMzMzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCIAEN EJQwDQYJKoZIhvcNAQELBQADggEBANE5S/tCO7C+nLwN+DqJTVBZ0HaZmlowPzPz LG++LLJDyy5VXFKArMDx1U9vDKbd07NgYObwrbFdhnkdd6DKZMLtAamKzRv5O4Ea NUShsT9qwcmWATUHB/pL5s0o9SOlL+1gUopmKlffHQQLIX36svBImu2FqUdLtGLu 0BMG8pv+aOHgJx1ztV/7dFX5xw6g8XuyuCVWTlNHoaW64haRKrPtPMGlx5ris534 PY+sibk1n0DGr0VQf17bjqABjSr4miNhvNrIfdSGHELDJttTXt0t6RUmRPd8tplH jNR06PfA2qZoQpCOgTZdpoHkceLjyBhsr+Y9qJbodqf0eSwgBeM= -----END CERTIFICATE-----Generated at Wed May 13 09:24:10 2026 by rpki-client