$ rpki-client -vvf rpki-rsync.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa File: 323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa (raw, json) Hash identifier: hHvYrx/Q2c2wL+t/Mvndx8RZ1B96+Yi4bVgwQw+Eax8= Subject key identifier: 3C:80:80:29:1A:A3:84:F3:0E:EE:6E:4A:C9:C7:56:2D:2D:40:0D:B5 Certificate issuer: /CN=657097DED993749F454B2CB2980019AC9335E3AD Certificate serial: 51789FECEA1608980CF923EC1D68E7F66CD87981 Authority key identifier: 65:70:97:DE:D9:93:74:9F:45:4B:2C:B2:98:00:19:AC:93:35:E3:AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/657097DED993749F454B2CB2980019AC9335E3AD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa Signing time: Sun 03 May 2026 03:16:02 +0000 ROA not before: Sun 03 May 2026 03:11:02 +0000 ROA not after: Sun 02 May 2027 03:16:02 +0000 asID: 64302 IP address blocks: 2001:df6:5a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/657097DED993749F454B2CB2980019AC9335E3AD.crl rsync://rpki-rsync.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/657097DED993749F454B2CB2980019AC9335E3AD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/657097DED993749F454B2CB2980019AC9335E3AD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:78:9f:ec:ea:16:08:98:0c:f9:23:ec:1d:68:e7:f6:6c:d8:79:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=657097DED993749F454B2CB2980019AC9335E3AD Validity Not Before: May 3 03:11:02 2026 GMT Not After : May 2 03:16:02 2027 GMT Subject: CN=3C8080291AA384F30EEE6E4AC9C7562D2D400DB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:59:46:6f:65:5f:a9:26:e4:c3:32:11:c9:7c: 8b:00:56:a0:b0:ec:91:d7:25:2d:c7:f5:d6:1c:b3: 4d:1d:9f:c9:be:eb:02:3f:01:84:41:10:85:83:c7: b9:2e:26:92:6e:0e:1b:d2:da:de:54:15:d7:2b:6f: 82:a4:34:e3:1f:fa:2f:df:24:07:fa:e8:c4:df:34: ab:8f:d3:14:ac:c3:58:70:2e:3e:3c:a3:5a:d1:97: fb:61:40:b5:de:31:2e:4e:7f:d5:bb:c3:f5:7c:38: 2a:fe:30:50:ab:fb:af:80:83:47:94:0d:c6:90:13: 49:23:d5:55:80:a0:b7:b1:47:7f:81:90:dc:48:89: 72:f1:a7:82:73:43:51:b7:4b:9e:08:12:d7:5d:2e: d8:9c:98:86:c4:0f:af:fb:d8:bd:9a:46:49:43:8c: 84:65:0b:05:d3:ce:fa:2f:61:1e:7d:a4:e4:ca:e0: ff:c7:ac:11:f3:5c:51:ea:ce:c3:68:8f:bf:8c:d3: 98:ae:76:f6:50:c5:44:6c:1a:5f:98:8a:74:6f:f9: e2:5e:e5:2f:74:a5:f8:1b:fe:66:a8:11:30:a5:cb: f8:2f:1f:a7:b8:5b:fc:70:68:c4:c7:d8:0a:55:fd: 3f:9a:1e:52:8a:a1:57:51:47:ba:f2:e6:64:91:94: 8a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:80:80:29:1A:A3:84:F3:0E:EE:6E:4A:C9:C7:56:2D:2D:40:0D:B5 X509v3 Authority Key Identifier: keyid:65:70:97:DE:D9:93:74:9F:45:4B:2C:B2:98:00:19:AC:93:35:E3:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/657097DED993749F454B2CB2980019AC9335E3AD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/657097DED993749F454B2CB2980019AC9335E3AD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/323030313a6466363a356130303a3a2f34382d3438203d3e203634333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:5a00::/48 Signature Algorithm: sha256WithRSAEncryption c7:e9:10:81:0f:40:30:b9:4a:74:63:a6:67:e9:95:a6:3a:17: f5:8b:9a:90:29:bb:07:30:0e:d8:db:6b:e4:99:86:85:70:71: 5e:ac:63:8a:da:33:31:da:3e:9a:5d:b8:1e:63:2f:98:6a:fe: 6f:ab:aa:fc:97:e2:09:61:46:c8:97:e1:48:36:ec:87:94:64: af:f1:ce:c0:b4:e8:96:f7:a5:26:0a:cd:44:19:39:0b:8e:76: 75:8c:b5:10:a2:97:4f:c0:ec:5d:14:e4:78:9b:c5:d9:45:45: 80:84:f6:6e:56:32:e0:cf:6d:df:46:31:95:66:84:5f:ff:eb: 17:95:16:d1:ed:38:8f:f6:51:5b:6a:8d:a6:22:a4:4f:2f:62: a7:41:26:7d:83:cf:05:1e:dc:90:00:90:34:c9:ba:7b:3d:1e: 35:9b:5a:b3:f4:33:d1:73:b2:97:b5:dd:e8:7b:97:f5:8f:44: cc:c0:3d:3d:f3:d6:62:eb:ae:ba:d8:8b:0a:41:d8:3e:b7:2c: 72:5d:aa:62:1f:4a:3c:5b:68:39:f5:de:94:3b:a8:73:27:5f: 87:50:07:69:9a:37:71:76:24:0d:fc:6c:ae:3b:08:5d:72:46: 82:d7:85:49:29:1f:f2:ba:a2:3e:a0:a7:18:1f:cf:83:59:38: eb:7e:11:88 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUXif7OoWCJgM+SPsHWjn9mzYeYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU3MDk3REVEOTkzNzQ5RjQ1NEIyQ0IyOTgwMDE5QUM5 MzM1RTNBRDAeFw0yNjA1MDMwMzExMDJaFw0yNzA1MDIwMzE2MDJaMDMxMTAvBgNV BAMTKDNDODA4MDI5MUFBMzg0RjMwRUVFNkU0QUM5Qzc1NjJEMkQ0MDBEQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/WUZvZV+pJuTDMhHJfIsAVqCw 7JHXJS3H9dYcs00dn8m+6wI/AYRBEIWDx7kuJpJuDhvS2t5UFdcrb4KkNOMf+i/f JAf66MTfNKuP0xSsw1hwLj48o1rRl/thQLXeMS5Of9W7w/V8OCr+MFCr+6+Ag0eU DcaQE0kj1VWAoLexR3+BkNxIiXLxp4JzQ1G3S54IEtddLticmIbED6/72L2aRklD jIRlCwXTzvovYR59pOTK4P/HrBHzXFHqzsNoj7+M05iudvZQxURsGl+YinRv+eJe 5S90pfgb/maoETCly/gvH6e4W/xwaMTH2ApV/T+aHlKKoVdRR7ry5mSRlIpXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPICAKRqjhPMO7m5KycdWLS1ADbUwHwYDVR0j BBgwFoAUZXCX3tmTdJ9FSyyymAAZrJM1460wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWRkZThmYjgtM2E3Ny00ODdlLTlkZmMtZjQ3OWQ2YjMzODA5LzAvNjU3MDk3REVE OTkzNzQ5RjQ1NEIyQ0IyOTgwMDE5QUM5MzM1RTNBRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NTcwOTdERUQ5OTM3NDlGNDU0QjJDQjI5ODAwMTlBQzkzMzVF M0FELmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VkZGU4ZmI4LTNhNzctNDg3ZS05 ZGZjLWY0NzlkNmIzMzgwOS8wLzMyMzAzMDMxM2E2NDY2MzYzYTM1NjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzYzNDMzMzAzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfZa ADANBgkqhkiG9w0BAQsFAAOCAQEAx+kQgQ9AMLlKdGOmZ+mVpjoX9YuakCm7BzAO 2Ntr5JmGhXBxXqxjitozMdo+ml24HmMvmGr+b6uq/JfiCWFGyJfhSDbsh5Rkr/HO wLTolvelJgrNRBk5C452dYy1EKKXT8DsXRTkeJvF2UVFgIT2blYy4M9t30YxlWaE X//rF5UW0e04j/ZRW2qNpiKkTy9ip0EmfYPPBR7ckACQNMm6ez0eNZtas/Qz0XOy l7Xd6HuX9Y9EzMA9PfPWYuuuutiLCkHYPrcscl2qYh9KPFtoOfXelDuocydfh1AH aZo3cXYkDfxsrjsIXXJGgteFSSkf8rqiPqCnGB/Pg1k4634RiA== -----END CERTIFICATE-----Generated at Wed May 13 13:30:53 2026 by rpki-client