$ rpki-client -vvf rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: df7n82FEObULXOysxP6bG6yjwPocx8D3thReHoveLMI= Subject key identifier: 58:8C:D7:1A:1B:6F:35:7C:55:6F:8C:BC:31:49:BF:09:EC:F2:5F:D2 Certificate issuer: /CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Certificate serial: 03AF6999696C11CAD3B23AA0560C9720110FACF8 Authority key identifier: 42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa Signing time: Sun 03 May 2026 03:15:31 +0000 ROA not before: Sun 03 May 2026 03:10:31 +0000 ROA not after: Sun 02 May 2027 03:15:31 +0000 asID: 9875 IP address blocks: 2001:f20:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:af:69:99:69:6c:11:ca:d3:b2:3a:a0:56:0c:97:20:11:0f:ac:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Validity Not Before: May 3 03:10:31 2026 GMT Not After : May 2 03:15:31 2027 GMT Subject: CN=588CD71A1B6F357C556F8CBC3149BF09ECF25FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ae:1a:23:50:b1:58:40:8d:a2:7f:42:dd:5f: e7:6b:45:b4:83:de:f1:2f:7c:e0:6d:52:0c:2d:29: f0:a7:bf:dc:1b:9d:df:5b:a7:9a:0b:4b:67:08:ac: 05:7d:44:87:8b:be:aa:82:9f:2f:f7:2f:f1:db:83: 39:f1:cf:cb:08:48:7e:51:ba:6a:ec:2f:59:d5:f4: 6a:0f:81:d5:6a:b0:32:66:48:dc:02:6d:49:67:c1: c4:e1:d7:a0:c8:bd:dc:b5:3e:4b:51:48:66:56:d9: f8:8d:41:7d:76:58:09:09:61:66:24:ec:f7:c8:77: f7:0f:b5:ee:75:17:66:78:75:ba:88:1d:96:a9:8a: 7a:ff:54:88:f9:ef:e2:df:cb:40:8f:0b:52:7e:70: d1:12:f6:e0:14:17:b1:61:9f:43:b8:c0:38:c2:fc: 51:a5:83:2e:51:04:88:71:86:88:0c:f4:db:20:1f: 11:1d:be:4e:56:68:63:ab:6f:dc:c9:68:cb:be:a7: 6b:11:ed:5b:46:fb:b3:9a:e8:16:fb:3b:d8:c1:37: ee:3b:33:22:6f:a6:b3:d8:78:fe:5a:19:b5:fb:66: 3b:86:0a:76:80:e6:58:05:5c:5b:ea:89:a1:b8:e9: 9f:35:9d:3e:21:cf:6a:b6:15:d5:d0:43:ae:d3:37: 58:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8C:D7:1A:1B:6F:35:7C:55:6F:8C:BC:31:49:BF:09:EC:F2:5F:D2 X509v3 Authority Key Identifier: keyid:42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a323030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:2000::/36 Signature Algorithm: sha256WithRSAEncryption 09:bf:36:f6:8c:91:f6:db:af:ff:7e:24:2d:0b:4b:d6:e9:17: 4c:aa:e3:32:1c:05:7b:fc:f4:52:b6:6f:6a:84:d8:8e:ff:79: f6:aa:78:d8:72:d7:4c:2d:6c:2c:e4:ed:38:73:ce:09:35:f8: f0:bf:a8:80:74:1d:35:54:38:72:a4:62:39:bf:24:b6:86:66: 5a:30:da:f1:1d:96:3a:45:ce:76:39:8b:ab:40:40:26:58:b5: a3:96:58:cb:9b:ac:e8:2f:eb:7b:0a:33:19:82:f4:72:af:54: 45:e7:e2:26:33:f8:d8:0c:1e:d1:5e:bd:38:b1:c9:00:4e:b2: 53:a0:e0:a8:55:54:f5:d8:d5:51:76:51:fa:24:5b:2d:54:a0: b7:8c:e9:a5:b0:35:8a:61:5c:3d:41:5e:46:c7:40:b1:61:3d: 8e:ae:e6:c9:42:72:e0:1b:4c:0c:07:f0:21:7d:45:d7:95:e5: 05:8f:f0:40:31:77:96:dd:40:99:75:09:17:96:8f:7a:a4:e3: 01:24:5f:bb:c1:f9:b2:c9:5e:c7:ca:01:a1:87:cc:0a:7d:0f: 7c:81:87:26:61:78:65:74:d6:83:8d:b2:5b:01:79:6b:68:29: 1a:16:71:f7:be:36:0c:1f:ab:74:73:04:92:0b:76:7a:c0:0e: 63:dc:24:9b -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUA69pmWlsEcrTsjqgVgyXIBEPrPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0MkJFRkFCN0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4 NEVFMTAyNDAeFw0yNjA1MDMwMzEwMzFaFw0yNzA1MDIwMzE1MzFaMDMxMTAvBgNV BAMTKDU4OENENzFBMUI2RjM1N0M1NTZGOENCQzMxNDlCRjA5RUNGMjVGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClrhojULFYQI2if0LdX+drRbSD 3vEvfOBtUgwtKfCnv9wbnd9bp5oLS2cIrAV9RIeLvqqCny/3L/Hbgznxz8sISH5R umrsL1nV9GoPgdVqsDJmSNwCbUlnwcTh16DIvdy1PktRSGZW2fiNQX12WAkJYWYk 7PfId/cPte51F2Z4dbqIHZapinr/VIj57+Lfy0CPC1J+cNES9uAUF7Fhn0O4wDjC /FGlgy5RBIhxhogM9NsgHxEdvk5WaGOrb9zJaMu+p2sR7VtG+7Oa6Bb7O9jBN+47 MyJvprPYeP5aGbX7ZjuGCnaA5lgFXFvqiaG46Z81nT4hz2q2FdXQQ67TN1iHAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQUWIzXGhtvNXxVb4y8MUm/CezyX9IwHwYDVR0j BBgwFoAUQkK++rf9nncvsWhHxUAzE4TuECQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWJiZmU3NzYtMDBhMy00Nzc2LWJmM2YtNTIxMTk0NjEwMWMzLzAvNDI0MkJFRkFC N0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4NEVFMTAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MjQyQkVGQUI3RkQ5RTc3MkZCMTY4NDdDNTQwMzMxMzg0RUUx MDI0LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTMyMzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gIDAN BgkqhkiG9w0BAQsFAAOCAQEACb829oyR9tuv/34kLQtL1ukXTKrjMhwFe/z0UrZv aoTYjv959qp42HLXTC1sLOTtOHPOCTX48L+ogHQdNVQ4cqRiOb8ktoZmWjDa8R2W OkXOdjmLq0BAJli1o5ZYy5us6C/rewozGYL0cq9URefiJjP42Awe0V69OLHJAE6y U6DgqFVU9djVUXZR+iRbLVSgt4zppbA1imFcPUFeRsdAsWE9jq7myUJy4BtMDAfw IX1F15XlBY/wQDF3lt1AmXUJF5aPeqTjASRfu8H5sslex8oBoYfMCn0PfIGHJmF4 ZXTWg42yWwF5a2gpGhZx9742DB+rdHMEkgt2esAOY9wkmw== -----END CERTIFICATE-----Generated at Wed May 13 02:49:24 2026 by rpki-client