$ rpki-client -vvf rpki-rsync.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa File: 323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa (raw, json) Hash identifier: RKwP+mZy2zIyOi9W+fTg2udU4bmegNaF/ZtZIeSMp7c= Subject key identifier: 88:CA:87:71:D3:08:7C:07:7E:42:5B:7B:40:1D:B2:53:7C:F1:5F:D7 Certificate issuer: /CN=D931809BED9AF438E358376B71B803D5CE61B2F5 Certificate serial: 6405B9F61BD8BCE11E6A6B017ED90F954A8BCE39 Authority key identifier: D9:31:80:9B:ED:9A:F4:38:E3:58:37:6B:71:B8:03:D5:CE:61:B2:F5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D931809BED9AF438E358376B71B803D5CE61B2F5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa Signing time: Sun 03 May 2026 03:16:33 +0000 ROA not before: Sun 03 May 2026 03:11:33 +0000 ROA not after: Sun 02 May 2027 03:16:33 +0000 asID: 136112 IP address blocks: 2001:df1:2d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/D931809BED9AF438E358376B71B803D5CE61B2F5.crl rsync://rpki-rsync.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/D931809BED9AF438E358376B71B803D5CE61B2F5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D931809BED9AF438E358376B71B803D5CE61B2F5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:05:b9:f6:1b:d8:bc:e1:1e:6a:6b:01:7e:d9:0f:95:4a:8b:ce:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D931809BED9AF438E358376B71B803D5CE61B2F5 Validity Not Before: May 3 03:11:33 2026 GMT Not After : May 2 03:16:33 2027 GMT Subject: CN=88CA8771D3087C077E425B7B401DB2537CF15FD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:ee:d3:ee:34:09:ec:41:5b:6b:20:6e:4f: 46:d7:58:70:df:63:d8:fb:7a:01:10:bd:06:86:e1: bf:bc:0b:c1:14:b3:44:d1:f1:96:c8:c2:3a:e5:74: 87:dd:63:cd:5f:1e:cb:2b:a4:cc:6f:05:1d:0f:68: 62:ec:c2:92:0a:64:c5:6a:17:e7:e9:55:af:e2:1e: 19:10:60:c7:d8:cb:dd:32:a9:32:7f:28:4f:bc:13: 20:48:13:25:58:d5:82:67:75:1a:f2:22:56:22:d6: f7:f3:48:32:7b:b6:48:af:66:5f:25:af:9d:9f:6a: dc:34:28:bd:37:06:5d:62:c5:8d:f8:ba:82:f8:bc: 96:9b:3c:b8:de:9d:a0:d0:9f:2a:17:c7:d2:d7:66: 08:90:75:12:fd:6c:7b:51:f0:58:dc:fa:a0:56:8e: 60:d0:23:87:8e:ab:ef:fa:22:53:60:d3:a4:57:51: d6:02:1e:76:1e:37:3e:e2:d0:f1:3e:b9:58:47:a5: cf:32:5e:d2:ec:b6:e8:e5:4e:ab:3f:61:ff:f2:0e: 1a:d9:4e:4f:98:73:91:86:d0:d9:87:0b:91:4f:47: 12:65:c7:f3:a9:a7:87:0d:02:ca:c3:1f:64:ed:9a: 63:52:a9:dc:91:c0:61:a2:d3:db:89:58:84:1b:56: 6d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CA:87:71:D3:08:7C:07:7E:42:5B:7B:40:1D:B2:53:7C:F1:5F:D7 X509v3 Authority Key Identifier: keyid:D9:31:80:9B:ED:9A:F4:38:E3:58:37:6B:71:B8:03:D5:CE:61:B2:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/D931809BED9AF438E358376B71B803D5CE61B2F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D931809BED9AF438E358376B71B803D5CE61B2F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f0e11ffc-e75a-4bf4-8448-c68e20335ee8/0/323030313a6466313a326430303a3a2f34382d3438203d3e20313336313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:2d00::/48 Signature Algorithm: sha256WithRSAEncryption 7b:74:fd:23:11:d7:a0:f1:4d:27:55:de:a4:60:99:cd:0c:41: bd:1d:71:93:3d:17:6f:03:7a:8b:ca:18:b7:44:5b:b9:dc:95: d6:75:38:f6:ef:59:3f:4f:fd:f2:57:46:b3:5f:79:d3:2e:92: 09:2e:55:4b:15:c1:00:24:95:b9:32:c3:07:39:cd:df:f6:46: 92:09:1f:a4:98:95:db:1a:56:dc:56:49:00:f3:32:90:65:36: f1:3a:4c:2c:c5:24:32:ef:27:ae:67:f6:d6:e9:ee:a4:68:80: a6:32:0d:c5:02:4c:6b:47:38:3b:a9:48:32:2e:ee:9a:3b:0d: 58:aa:3f:22:81:8f:57:54:18:8b:cb:eb:c0:d8:6f:94:80:ad: 0e:da:6b:b8:54:4c:ca:54:30:56:59:52:5b:6d:2b:df:2b:3c: 0b:3a:ca:14:87:4b:5c:57:30:11:05:5a:6c:cb:d3:25:17:d5: 1e:20:ff:eb:5e:23:1a:65:9d:13:a6:ee:56:07:32:8c:ae:2d: 8a:0b:ec:f3:68:fe:4b:4d:f9:43:0d:50:f1:b9:7e:83:48:2f: 1e:29:ff:18:39:69:2c:4f:ba:af:8f:a7:aa:39:69:0d:f1:49: 52:ed:45:6c:c2:85:4b:dc:85:45:80:2b:0d:78:4e:5a:f7:17: 17:c1:ff:f1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZAW59hvYvOEeamsBftkPlUqLzjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkzMTgwOUJFRDlBRjQzOEUzNTgzNzZCNzFCODAzRDVD RTYxQjJGNTAeFw0yNjA1MDMwMzExMzNaFw0yNzA1MDIwMzE2MzNaMDMxMTAvBgNV BAMTKDg4Q0E4NzcxRDMwODdDMDc3RTQyNUI3QjQwMURCMjUzN0NGMTVGRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnsO7T7jQJ7EFbayBuT0bXWHDf Y9j7egEQvQaG4b+8C8EUs0TR8ZbIwjrldIfdY81fHssrpMxvBR0PaGLswpIKZMVq F+fpVa/iHhkQYMfYy90yqTJ/KE+8EyBIEyVY1YJndRryIlYi1vfzSDJ7tkivZl8l r52fatw0KL03Bl1ixY34uoL4vJabPLjenaDQnyoXx9LXZgiQdRL9bHtR8Fjc+qBW jmDQI4eOq+/6IlNg06RXUdYCHnYeNz7i0PE+uVhHpc8yXtLstujlTqs/Yf/yDhrZ Tk+Yc5GG0NmHC5FPRxJlx/Opp4cNAsrDH2TtmmNSqdyRwGGi09uJWIQbVm0zAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiMqHcdMIfAd+Qlt7QB2yU3zxX9cwHwYDVR0j BBgwFoAU2TGAm+2a9DjjWDdrcbgD1c5hsvUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjBlMTFmZmMtZTc1YS00YmY0LTg0NDgtYzY4ZTIwMzM1ZWU4LzAvRDkzMTgwOUJF RDlBRjQzOEUzNTgzNzZCNzFCODAzRDVDRTYxQjJGNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EOTMxODA5QkVEOUFGNDM4RTM1ODM3NkI3MUI4MDNENUNFNjFC MkY1LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YwZTExZmZjLWU3NWEtNGJmNC04 NDQ4LWM2OGUyMDMzNWVlOC8wLzMyMzAzMDMxM2E2NDY2MzEzYTMyNjQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8S0AMA0GCSqGSIb3DQEBCwUAA4IBAQB7dP0jEdeg8U0nVd6kYJnNDEG9HXGTPRdv A3qLyhi3RFu53JXWdTj271k/T/3yV0azX3nTLpIJLlVLFcEAJJW5MsMHOc3f9kaS CR+kmJXbGlbcVkkA8zKQZTbxOkwsxSQy7yeuZ/bW6e6kaICmMg3FAkxrRzg7qUgy Lu6aOw1Yqj8igY9XVBiLy+vA2G+UgK0O2mu4VEzKVDBWWVJbbSvfKzwLOsoUh0tc VzARBVpsy9MlF9UeIP/rXiMaZZ0Tpu5WBzKMri2KC+zzaP5LTflDDVDxuX6DSC8e Kf8YOWksT7qvj6eqOWkN8UlS7UVswoVL3IVFgCsNeE5a9xcXwf/x -----END CERTIFICATE-----Generated at Wed May 13 03:55:43 2026 by rpki-client