$ rpki-client -vvf rpki-rsync.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa File: 323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa (raw, json) Hash identifier: rj50c78OZE7EyiE8pv//nMMfuevJo1Qwb9zz5bieBoU= Subject key identifier: 67:79:78:94:6E:82:EA:D7:15:46:4C:CA:BF:22:A7:A1:EF:08:8B:53 Certificate issuer: /CN=832F3BA2D4A4666720A04785F7440BA744E9066D Certificate serial: 1C4B916A5820D750399F05F808A433B289633510 Authority key identifier: 83:2F:3B:A2:D4:A4:66:67:20:A0:47:85:F7:44:0B:A7:44:E9:06:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/832F3BA2D4A4666720A04785F7440BA744E9066D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa Signing time: Sun 03 May 2026 03:16:35 +0000 ROA not before: Sun 03 May 2026 03:11:35 +0000 ROA not after: Sun 02 May 2027 03:16:35 +0000 asID: 18351 IP address blocks: 2001:df5:3900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/832F3BA2D4A4666720A04785F7440BA744E9066D.crl rsync://rpki-rsync.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/832F3BA2D4A4666720A04785F7440BA744E9066D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/832F3BA2D4A4666720A04785F7440BA744E9066D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4b:91:6a:58:20:d7:50:39:9f:05:f8:08:a4:33:b2:89:63:35:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832F3BA2D4A4666720A04785F7440BA744E9066D Validity Not Before: May 3 03:11:35 2026 GMT Not After : May 2 03:16:35 2027 GMT Subject: CN=677978946E82EAD715464CCABF22A7A1EF088B53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0c:be:8f:e0:4b:e8:97:77:ba:97:e3:b8:b7: 6f:7a:61:8d:d0:ed:12:66:50:18:88:02:b3:2c:86: 81:9f:72:7a:5e:e5:46:87:9d:ea:3b:7a:ef:e9:5f: 09:60:fc:90:94:1c:e6:8a:1e:a5:f1:cc:56:64:84: 6f:08:51:f0:9b:c7:c6:44:1a:0b:30:2e:1b:5e:e7: 05:45:10:f4:de:6b:00:41:4a:02:95:c9:9d:28:15: 4d:7c:f5:85:f5:1b:65:76:46:73:0d:ef:4b:18:86: ad:2d:02:dd:f1:32:ea:e0:3d:90:0b:1a:e2:4b:c3: ee:b7:de:9a:7e:b6:77:31:e3:4b:52:13:61:31:d1: 9b:76:79:18:3b:11:18:5e:d3:10:c8:8b:03:27:e7: 11:4b:0b:30:89:78:b0:9c:45:3c:bf:fa:6a:6c:3e: ae:b5:95:0a:36:c7:ca:36:99:89:14:a1:dd:84:72: ad:29:ca:46:b3:5d:e7:8b:d7:91:d4:c7:d8:78:90: 7c:bb:fe:94:4c:16:9a:47:81:fc:fa:62:89:a1:24: 68:ef:53:95:e2:68:83:07:b5:0f:8f:ff:f6:dd:a7: 41:70:8e:42:cb:2f:e1:98:e5:36:6a:0e:67:4c:c7: e8:54:0e:dc:fa:e0:01:0a:d1:a0:6a:4b:74:73:42: d0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:79:78:94:6E:82:EA:D7:15:46:4C:CA:BF:22:A7:A1:EF:08:8B:53 X509v3 Authority Key Identifier: keyid:83:2F:3B:A2:D4:A4:66:67:20:A0:47:85:F7:44:0B:A7:44:E9:06:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/832F3BA2D4A4666720A04785F7440BA744E9066D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/832F3BA2D4A4666720A04785F7440BA744E9066D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f0e4ca54-857b-4f68-ab5f-0d8c472e6c92/0/323030313a6466353a333930303a3a2f34382d3438203d3e203138333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:3900::/48 Signature Algorithm: sha256WithRSAEncryption 92:eb:e8:3b:19:24:61:e6:0c:81:da:17:73:1a:0c:6d:5d:87: 88:14:22:3b:ee:aa:52:6e:74:46:e3:eb:a1:61:44:1d:fd:65: b5:5b:94:97:99:c8:29:d0:22:64:37:08:f6:4b:c7:39:45:f7: 2e:55:af:bb:6b:05:3c:aa:1f:e7:42:02:49:b3:c8:59:b0:64: fd:c6:b2:bd:22:83:a1:ee:26:34:ce:83:d1:06:f5:e6:b3:7b: 38:16:f8:30:ef:fd:9c:3e:73:c5:4e:48:fe:cf:83:85:30:17: 0e:54:91:78:99:50:59:87:d7:b0:93:ab:75:df:b4:29:a7:1c: e4:26:da:dd:96:48:4b:aa:f6:9c:cf:15:98:37:95:cf:3c:7e: 87:1a:f8:b0:77:47:27:9c:c2:f3:ed:79:e0:c5:28:08:71:7d: 65:a3:57:b1:ae:5c:79:66:54:c9:65:81:ac:37:ed:40:05:17: 81:1f:38:42:7f:e9:38:0b:a9:e3:e7:4a:7a:09:4c:01:34:6f: 58:22:70:68:09:d8:5f:f8:98:ed:7b:46:f8:43:35:a8:28:49: 5c:cc:f1:58:a8:7a:6f:15:79:4b:3b:3c:de:89:0a:d1:27:ea: 76:02:9d:3d:29:9c:65:1a:fe:d4:b5:d3:47:c4:51:d1:5f:53: fa:75:20:4c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHEuRalgg11A5nwX4CKQzsoljNRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODMyRjNCQTJENEE0NjY2NzIwQTA0Nzg1Rjc0NDBCQTc0 NEU5MDY2RDAeFw0yNjA1MDMwMzExMzVaFw0yNzA1MDIwMzE2MzVaMDMxMTAvBgNV BAMTKDY3Nzk3ODk0NkU4MkVBRDcxNTQ2NENDQUJGMjJBN0ExRUYwODhCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNDL6P4Evol3e6l+O4t296YY3Q 7RJmUBiIArMshoGfcnpe5UaHneo7eu/pXwlg/JCUHOaKHqXxzFZkhG8IUfCbx8ZE GgswLhte5wVFEPTeawBBSgKVyZ0oFU189YX1G2V2RnMN70sYhq0tAt3xMurgPZAL GuJLw+633pp+tncx40tSE2Ex0Zt2eRg7ERhe0xDIiwMn5xFLCzCJeLCcRTy/+mps Pq61lQo2x8o2mYkUod2Ecq0pykazXeeL15HUx9h4kHy7/pRMFppHgfz6YomhJGjv U5XiaIMHtQ+P//bdp0FwjkLLL+GY5TZqDmdMx+hUDtz64AEK0aBqS3RzQtCPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUZ3l4lG6C6tcVRkzKvyKnoe8Ii1MwHwYDVR0j BBgwFoAUgy87otSkZmcgoEeF90QLp0TpBm0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjBlNGNhNTQtODU3Yi00ZjY4LWFiNWYtMGQ4YzQ3MmU2YzkyLzAvODMyRjNCQTJE NEE0NjY2NzIwQTA0Nzg1Rjc0NDBCQTc0NEU5MDY2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MzJGM0JBMkQ0QTQ2NjY3MjBBMDQ3ODVGNzQ0MEJBNzQ0RTkw NjZELmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YwZTRjYTU0LTg1N2ItNGY2OC1h YjVmLTBkOGM0NzJlNmM5Mi8wLzMyMzAzMDMxM2E2NDY2MzUzYTMzMzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzODMzMzUzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfU5 ADANBgkqhkiG9w0BAQsFAAOCAQEAkuvoOxkkYeYMgdoXcxoMbV2HiBQiO+6qUm50 RuProWFEHf1ltVuUl5nIKdAiZDcI9kvHOUX3LlWvu2sFPKof50ICSbPIWbBk/cay vSKDoe4mNM6D0Qb15rN7OBb4MO/9nD5zxU5I/s+DhTAXDlSReJlQWYfXsJOrdd+0 Kacc5Cba3ZZIS6r2nM8VmDeVzzx+hxr4sHdHJ5zC8+154MUoCHF9ZaNXsa5ceWZU yWWBrDftQAUXgR84Qn/pOAup4+dKeglMATRvWCJwaAnYX/iY7XtG+EM1qChJXMzx WKh6bxV5Szs83okK0SfqdgKdPSmcZRr+1LXTR8RR0V9T+nUgTA== -----END CERTIFICATE-----Generated at Wed May 13 09:51:36 2026 by rpki-client