$ rpki-client -vvf rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa File: 323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa (raw, json) Hash identifier: yBBw20MUl3ywel5nMkYQ+sxWLo0uKsXTdelznoPGQgw= Subject key identifier: 2E:81:AB:4E:74:A9:52:68:ED:A4:2B:8A:61:B6:F7:3B:9A:7D:85:97 Certificate issuer: /CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Certificate serial: 5C80470832FD0F59480EA5974A7103C46B0547AA Authority key identifier: 42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa Signing time: Sun 03 May 2026 03:15:27 +0000 ROA not before: Sun 03 May 2026 03:10:27 +0000 ROA not after: Sun 02 May 2027 03:15:27 +0000 asID: 38154 IP address blocks: 2001:f20:f000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:80:47:08:32:fd:0f:59:48:0e:a5:97:4a:71:03:c4:6b:05:47:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4242BEFAB7FD9E772FB16847C540331384EE1024 Validity Not Before: May 3 03:10:27 2026 GMT Not After : May 2 03:15:27 2027 GMT Subject: CN=2E81AB4E74A95268EDA42B8A61B6F73B9A7D8597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:41:d8:ab:94:3b:b5:f8:45:b8:9e:df:6c:eb: 55:98:60:41:83:37:78:02:01:7b:e3:04:5e:0c:31: ca:94:f5:d7:7d:88:9f:bd:fd:b6:84:39:f5:e4:8a: 76:8f:16:be:96:a7:59:c6:93:e9:a9:9d:06:78:78: 66:bd:5a:c7:65:44:37:96:d6:36:6f:df:b2:12:71: 35:67:d6:61:f6:5f:7d:de:19:b2:d6:23:c5:a0:41: 7e:69:48:11:08:34:39:0e:a2:5f:f6:1f:ca:11:24: 68:4b:66:0a:a2:38:40:77:dc:05:27:69:9e:76:48: 0d:0d:5f:9e:e1:c7:1a:3f:3f:ad:c4:56:07:97:6e: 77:c1:18:e7:6b:95:ef:18:ad:4a:f5:b4:58:67:2c: ba:06:9c:cd:0d:d8:d8:b8:9c:74:eb:96:0e:c7:00: 10:98:bc:58:17:ca:9b:68:92:3c:bf:87:1a:76:47: 06:1b:55:74:d2:24:aa:e7:a4:d2:96:0d:de:95:23: d9:eb:9d:d1:22:6a:d7:ed:8a:2b:60:4b:21:e5:0c: cb:aa:cd:44:e4:91:23:e3:b7:81:af:e2:ba:0b:a2: 29:9a:42:65:57:0f:2c:3f:a5:7a:9f:73:9d:c3:85: 04:1f:09:69:e9:fa:8f:bb:32:bb:26:eb:35:73:02: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:81:AB:4E:74:A9:52:68:ED:A4:2B:8A:61:B6:F7:3B:9A:7D:85:97 X509v3 Authority Key Identifier: keyid:42:42:BE:FA:B7:FD:9E:77:2F:B1:68:47:C5:40:33:13:84:EE:10:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/4242BEFAB7FD9E772FB16847C540331384EE1024.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4242BEFAB7FD9E772FB16847C540331384EE1024.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a663030303a3a2f33362d3438203d3e203338313534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:f000::/36 Signature Algorithm: sha256WithRSAEncryption 08:3f:af:4d:84:cb:f5:18:9c:9f:bf:81:e6:16:f4:74:76:59: 3f:4e:6e:b1:55:70:39:57:6f:22:3c:48:96:dd:28:9c:2b:3a: 59:ca:82:e7:39:be:67:24:ee:fe:12:26:7a:fb:4a:10:63:7d: 9b:6a:36:f0:81:fd:3b:b6:0e:83:16:79:34:ca:aa:9c:1a:f0: 90:3e:9f:50:00:4e:14:c8:25:e5:98:af:60:56:12:5c:d1:17: 4b:86:3a:7f:ae:de:98:c6:ee:b4:17:ab:b6:d7:bc:28:73:e0: 4a:d7:ff:56:bf:d7:19:fc:c0:e5:7f:cb:5e:91:c2:10:1a:62: 03:1d:11:e1:15:e8:bd:48:19:f8:36:e3:d4:11:09:ff:38:67: ae:5b:7c:61:ed:e3:8c:70:79:3a:3b:80:4b:09:fe:75:63:a8: 83:ae:5e:3a:23:cf:62:ee:cc:b7:5a:a2:d4:94:7b:f5:59:b0: 21:83:9c:5b:b1:cd:f4:99:2e:a2:a6:00:20:2c:cd:31:55:da: 87:3f:9d:7f:9e:76:ce:6b:ce:21:83:c8:14:70:0c:4a:06:14: 7d:e6:6a:ce:cc:89:49:8c:d5:b6:50:79:1a:3a:c6:6d:91:69: 4d:2d:c7:66:ed:2b:a6:ac:df:8e:f9:02:6a:a9:01:ea:c7:56: c2:1a:c7:28 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUXIBHCDL9D1lIDqWXSnEDxGsFR6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0MkJFRkFCN0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4 NEVFMTAyNDAeFw0yNjA1MDMwMzEwMjdaFw0yNzA1MDIwMzE1MjdaMDMxMTAvBgNV BAMTKDJFODFBQjRFNzRBOTUyNjhFREE0MkI4QTYxQjZGNzNCOUE3RDg1OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQdirlDu1+EW4nt9s61WYYEGD N3gCAXvjBF4MMcqU9dd9iJ+9/baEOfXkinaPFr6Wp1nGk+mpnQZ4eGa9WsdlRDeW 1jZv37IScTVn1mH2X33eGbLWI8WgQX5pSBEINDkOol/2H8oRJGhLZgqiOEB33AUn aZ52SA0NX57hxxo/P63EVgeXbnfBGOdrle8YrUr1tFhnLLoGnM0N2Ni4nHTrlg7H ABCYvFgXyptokjy/hxp2RwYbVXTSJKrnpNKWDd6VI9nrndEiatftiitgSyHlDMuq zUTkkSPjt4Gv4roLoimaQmVXDyw/pXqfc53DhQQfCWnp+o+7Mrsm6zVzAhlZAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQULoGrTnSpUmjtpCuKYbb3O5p9hZcwHwYDVR0j BBgwFoAUQkK++rf9nncvsWhHxUAzE4TuECQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWJiZmU3NzYtMDBhMy00Nzc2LWJmM2YtNTIxMTk0NjEwMWMzLzAvNDI0MkJFRkFC N0ZEOUU3NzJGQjE2ODQ3QzU0MDMzMTM4NEVFMTAyNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MjQyQkVGQUI3RkQ5RTc3MkZCMTY4NDdDNTQwMzMxMzg0RUUx MDI0LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTY2MzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzMzODMxMzUzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCABDyDw MA0GCSqGSIb3DQEBCwUAA4IBAQAIP69NhMv1GJyfv4HmFvR0dlk/Tm6xVXA5V28i PEiW3SicKzpZyoLnOb5nJO7+EiZ6+0oQY32bajbwgf07tg6DFnk0yqqcGvCQPp9Q AE4UyCXlmK9gVhJc0RdLhjp/rt6Yxu60F6u217woc+BK1/9Wv9cZ/MDlf8tekcIQ GmIDHRHhFei9SBn4NuPUEQn/OGeuW3xh7eOMcHk6O4BLCf51Y6iDrl46I89i7sy3 WqLUlHv1WbAhg5xbsc30mS6ipgAgLM0xVdqHP51/nnbOa84hg8gUcAxKBhR95mrO zIlJjNW2UHkaOsZtkWlNLcdm7SumrN+O+QJqqQHqx1bCGsco -----END CERTIFICATE-----Generated at Wed May 13 04:17:00 2026 by rpki-client