$ rpki-client -vvf rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: tIIyaOJKHjPPuva/q/Aqc1Qh+BSiqDBH0wmDFkgmMzY= Subject key identifier: F2:F0:B4:27:D4:AC:FE:8B:DD:C2:E6:3D:49:A9:B6:F9:C6:13:8D:A6 Certificate issuer: /CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Certificate serial: 5931F2F7BC03776641640C9389349905E4C9F8DD Authority key identifier: 42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa Signing time: Sun 03 May 2026 03:15:27 +0000 ROA not before: Sun 03 May 2026 03:10:27 +0000 ROA not after: Sun 02 May 2027 03:15:27 +0000 asID: 9875 IP address blocks: 2001:f20:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:31:f2:f7:bc:03:77:66:41:64:0c:93:89:34:99:05:e4:c9:f8:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Validity Not Before: May 3 03:10:27 2026 GMT Not After : May 2 03:15:27 2027 GMT Subject: CN=F2F0B427D4ACFE8BDDC2E63D49A9B6F9C6138DA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:f2:6e:8f:75:a4:4e:33:12:a3:a0:35:63: ac:0d:98:7f:44:50:ad:5d:b9:af:84:8d:ca:24:c7: 28:f2:c3:3b:ec:7c:61:b6:7b:27:f5:ec:4c:93:a2: 36:2d:86:76:59:8e:58:b1:26:d2:10:9e:3a:3f:2d: 71:8b:8d:80:33:8a:8d:4f:68:ee:ed:5d:76:d0:0f: df:8f:cf:ff:f0:af:60:19:8d:f9:41:e2:5a:50:03: fa:1c:39:b3:e6:f1:d1:21:e4:77:32:60:28:9e:ff: 8a:1b:c7:be:d1:44:02:fc:38:3b:2b:cf:54:56:e1: 53:64:d4:8c:24:dc:09:1e:ab:22:09:53:39:5e:ef: 25:13:6b:76:2a:25:23:ac:f7:5e:23:7d:57:3b:7c: e0:ef:57:3a:c7:83:91:03:cd:60:93:de:ee:41:df: 94:e1:28:cd:f5:0e:07:e4:ce:09:10:7d:4a:2e:f4: 5a:31:4a:3a:ca:da:92:b9:00:7d:8a:68:20:33:25: a5:ac:a3:9b:f3:48:79:19:cb:75:b4:9d:81:fc:8b: 81:89:ba:35:62:e7:4a:2c:69:da:48:66:05:2b:d2: eb:5f:60:cb:38:6f:77:f3:30:bf:2d:81:de:4b:e1: 00:5c:db:f0:77:9e:b2:ca:73:9f:80:50:e5:dc:ba: fc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F0:B4:27:D4:AC:FE:8B:DD:C2:E6:3D:49:A9:B6:F9:C6:13:8D:A6 X509v3 Authority Key Identifier: keyid:42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a313030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:1000::/36 Signature Algorithm: sha256WithRSAEncryption aa:d5:a5:0c:14:e5:d9:8a:31:23:89:a7:f3:88:c6:7e:ee:55: 8c:27:48:fd:e6:be:21:f5:f9:bd:b7:dc:90:0b:de:43:22:d2: b8:d3:f7:eb:ff:35:4c:6a:75:e4:23:13:12:65:e4:ce:53:a7: ef:09:ad:58:12:12:9f:e9:cd:23:a9:0f:5f:f0:be:22:db:42: d9:7c:0e:c9:b1:17:95:29:83:e8:c7:4e:fb:e4:ed:e2:ee:3d: 83:e7:65:46:6d:e3:e7:90:87:b8:83:73:fa:57:18:fd:7d:bf: a2:65:ed:79:f4:6e:7b:c3:b0:89:9c:17:fc:0b:28:bb:11:b8: 6b:8d:99:0f:90:eb:e3:62:da:b3:9c:c2:ef:b7:f3:9a:0d:16: 7a:f1:10:8f:1f:df:f2:1c:ee:97:b6:bb:a0:2a:f3:1c:bb:6c: 6d:56:6e:39:51:86:6e:e2:3d:90:1c:48:15:c7:5b:04:4a:c3: 05:08:a4:9b:a4:b8:b8:d5:cb:e3:f9:55:4b:70:4f:06:08:9b: f1:0f:c6:d1:bb:3c:a5:e3:0b:f1:cb:d4:a3:d0:c4:3f:1a:b0: 49:e5:19:d2:7c:1d:c6:1a:c8:4a:04:1e:1a:9a:71:a0:6a:e7: 04:06:91:e3:2e:a2:ef:56:97:8b:51:89:d4:73:ce:2b:2b:30: 23:4b:a4:1e -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUWTHy97wDd2ZBZAyTiTSZBeTJ+N0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0MkJFRkFCN0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4 NEVFMTAyNDAeFw0yNjA1MDMwMzEwMjdaFw0yNzA1MDIwMzE1MjdaMDMxMTAvBgNV BAMTKEYyRjBCNDI3RDRBQ0ZFOEJEREMyRTYzRDQ5QTlCNkY5QzYxMzhEQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBq/Juj3WkTjMSo6A1Y6wNmH9E UK1dua+EjcokxyjywzvsfGG2eyf17EyTojYthnZZjlixJtIQnjo/LXGLjYAzio1P aO7tXXbQD9+Pz//wr2AZjflB4lpQA/ocObPm8dEh5HcyYCie/4obx77RRAL8ODsr z1RW4VNk1Iwk3AkeqyIJUzle7yUTa3YqJSOs914jfVc7fODvVzrHg5EDzWCT3u5B 35ThKM31DgfkzgkQfUou9FoxSjrK2pK5AH2KaCAzJaWso5vzSHkZy3W0nYH8i4GJ ujVi50osadpIZgUr0utfYMs4b3fzML8tgd5L4QBc2/B3nrLKc5+AUOXcuvx3AgMB AAGjggI4MIICNDAdBgNVHQ4EFgQU8vC0J9Ss/ovdwuY9Sam2+cYTjaYwHwYDVR0j BBgwFoAUQkK++rf9nncvsWhHxUAzE4TuECQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWJiZmU3NzYtMDBhMy00Nzc2LWJmM2YtNTIxMTk0NjEwMWMzLzAvNDI0MkJFRkFC N0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4NEVFMTAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MjQyQkVGQUI3RkQ5RTc3MkZCMTY4NDdDNTQwMzMxMzg0RUUx MDI0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTMxMzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gEDAN BgkqhkiG9w0BAQsFAAOCAQEAqtWlDBTl2YoxI4mn84jGfu5VjCdI/ea+IfX5vbfc kAveQyLSuNP36/81TGp15CMTEmXkzlOn7wmtWBISn+nNI6kPX/C+IttC2XwOybEX lSmD6MdO++Tt4u49g+dlRm3j55CHuINz+lcY/X2/omXtefRue8OwiZwX/AsouxG4 a42ZD5Dr42Las5zC77fzmg0WevEQjx/f8hzul7a7oCrzHLtsbVZuOVGGbuI9kBxI FcdbBErDBQikm6S4uNXL4/lVS3BPBgib8Q/G0bs8peML8cvUo9DEPxqwSeUZ0nwd xhrISgQeGppxoGrnBAaR4y6i71aXi1GJ1HPOKyswI0ukHg== -----END CERTIFICATE-----Generated at Wed May 13 03:59:41 2026 by rpki-client