$ rpki-client -vvf rpki-rsync.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa File: 323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa (raw, json) Hash identifier: 5VtG2vjJ8J2at6i5HmvxthdfCCKtz2QyHtIuqxm6OBo= Subject key identifier: 0D:59:55:1B:BC:32:10:48:6C:F2:1E:6F:E2:2E:37:5D:23:EC:F6:9A Certificate issuer: /CN=633520AD134E7E67CBB832AE9339B6F7EB07D358 Certificate serial: 74D0C1E68EDC96D5198A9074068B3A71ABC25507 Authority key identifier: 63:35:20:AD:13:4E:7E:67:CB:B8:32:AE:93:39:B6:F7:EB:07:D3:58 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/633520AD134E7E67CBB832AE9339B6F7EB07D358.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa Signing time: Sun 03 May 2026 03:16:38 +0000 ROA not before: Sun 03 May 2026 03:11:38 +0000 ROA not after: Sun 02 May 2027 03:16:38 +0000 asID: 137312 IP address blocks: 2001:df4:1f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/633520AD134E7E67CBB832AE9339B6F7EB07D358.crl rsync://rpki-rsync.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/633520AD134E7E67CBB832AE9339B6F7EB07D358.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/633520AD134E7E67CBB832AE9339B6F7EB07D358.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:d0:c1:e6:8e:dc:96:d5:19:8a:90:74:06:8b:3a:71:ab:c2:55:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=633520AD134E7E67CBB832AE9339B6F7EB07D358 Validity Not Before: May 3 03:11:38 2026 GMT Not After : May 2 03:16:38 2027 GMT Subject: CN=0D59551BBC3210486CF21E6FE22E375D23ECF69A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8e:56:80:5a:c3:d7:68:fb:00:ab:bc:31:bf: 9e:77:6e:89:93:af:68:bb:e4:57:ef:9f:58:4d:0d: 60:48:2f:55:7e:84:f6:19:3c:2e:21:f7:e6:ed:7e: 1f:ea:ec:33:7e:2f:db:89:c9:c8:0e:88:63:4b:7c: 29:76:b5:30:88:74:cb:2f:6b:a3:f1:cb:39:63:6b: 59:74:81:00:ea:ef:3d:25:20:5a:30:e7:2b:fa:17: 63:ec:81:8a:57:ab:25:6b:3b:98:29:93:d4:3e:11: 6e:41:28:bf:46:05:f7:36:26:5a:ff:e1:7e:5d:c6: eb:5b:80:04:cc:f4:f7:e6:89:6f:8c:f4:ac:24:9b: c1:5a:73:11:bf:0a:b9:4c:62:14:10:8a:45:8b:68: 7f:e1:00:8c:5d:00:5b:92:57:e4:1e:54:77:2e:d9: 21:45:3a:ca:de:85:04:d3:d8:df:5a:28:22:9f:dd: 85:50:d2:a6:4a:42:65:4f:d3:a9:bc:3e:18:9c:4f: 3a:d1:45:fe:3e:44:99:35:96:b4:2d:76:d3:88:19: 2b:c9:94:3f:6a:07:28:7d:ca:6e:49:18:00:1d:13: a2:47:35:23:f3:f3:46:0a:f5:63:67:38:cb:e7:5b: 35:96:3b:61:6a:35:a2:82:de:f8:18:b1:bf:fa:dc: 81:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:59:55:1B:BC:32:10:48:6C:F2:1E:6F:E2:2E:37:5D:23:EC:F6:9A X509v3 Authority Key Identifier: keyid:63:35:20:AD:13:4E:7E:67:CB:B8:32:AE:93:39:B6:F7:EB:07:D3:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/633520AD134E7E67CBB832AE9339B6F7EB07D358.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/633520AD134E7E67CBB832AE9339B6F7EB07D358.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/323030313a6466343a316630303a3a2f34382d3438203d3e20313337333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:1f00::/48 Signature Algorithm: sha256WithRSAEncryption 86:3f:ac:73:42:20:84:bd:b8:2a:20:b2:c0:2b:cd:85:2e:b8: 80:4e:8a:6b:12:2d:78:d4:c4:c2:f4:1a:b8:80:9d:bf:5f:ad: 7f:31:2e:be:2f:ad:25:9b:1e:21:a6:37:00:7f:6a:ae:a8:a8: e0:56:a8:e6:66:ea:f8:f3:94:bd:85:39:a8:67:06:10:32:f5: 74:b5:97:49:d4:2b:4f:4b:25:ec:92:cd:09:9c:ec:79:68:be: 28:54:45:7a:a6:f1:95:09:4d:b8:e7:ac:53:42:4a:2f:b8:32: e0:ed:be:cd:a0:34:c8:74:49:b6:af:41:43:a2:4b:60:bb:fb: 0c:31:a2:df:17:6a:a6:2f:d6:fc:e7:4e:ce:05:98:82:68:17: 58:0d:76:f9:d5:d2:46:a1:31:78:26:f4:4f:cd:59:62:ff:e0: ea:38:80:e7:42:45:40:d6:08:7a:66:f7:a0:ce:0c:84:92:fc: 0f:b0:7d:79:bd:5b:b3:15:24:72:6b:ed:5a:4e:a0:90:13:f5: a0:bd:c8:ba:46:d2:47:15:18:b1:b9:33:08:cd:25:55:c7:57: b9:1b:b0:7e:f3:f6:57:03:c6:74:e6:ff:d3:8f:87:06:56:b3: a8:10:0c:fd:82:9b:4b:47:b7:7e:8d:38:2a:63:aa:0f:dd:d2: c8:d8:8a:18 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdNDB5o7cltUZipB0Bos6cavCVQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMzNTIwQUQxMzRFN0U2N0NCQjgzMkFFOTMzOUI2RjdF QjA3RDM1ODAeFw0yNjA1MDMwMzExMzhaFw0yNzA1MDIwMzE2MzhaMDMxMTAvBgNV BAMTKDBENTk1NTFCQkMzMjEwNDg2Q0YyMUU2RkUyMkUzNzVEMjNFQ0Y2OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgjlaAWsPXaPsAq7wxv553bomT r2i75Ffvn1hNDWBIL1V+hPYZPC4h9+btfh/q7DN+L9uJycgOiGNLfCl2tTCIdMsv a6Pxyzlja1l0gQDq7z0lIFow5yv6F2PsgYpXqyVrO5gpk9Q+EW5BKL9GBfc2Jlr/ 4X5dxutbgATM9PfmiW+M9Kwkm8FacxG/CrlMYhQQikWLaH/hAIxdAFuSV+QeVHcu 2SFFOsrehQTT2N9aKCKf3YVQ0qZKQmVP06m8PhicTzrRRf4+RJk1lrQtdtOIGSvJ lD9qByh9ym5JGAAdE6JHNSPz80YK9WNnOMvnWzWWO2FqNaKC3vgYsb/63IFpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUDVlVG7wyEEhs8h5v4i43XSPs9powHwYDVR0j BBgwFoAUYzUgrRNOfmfLuDKukzm29+sH01gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjE5MGMzN2UtMjY1NS00MmIxLWJhZjctNDJlYzFjZjE5MmFhLzAvNjMzNTIwQUQx MzRFN0U2N0NCQjgzMkFFOTMzOUI2RjdFQjA3RDM1OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MzM1MjBBRDEzNEU3RTY3Q0JCODMyQUU5MzM5QjZGN0VCMDdE MzU4LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdlLTI2NTUtNDJiMS1i YWY3LTQyZWMxY2YxOTJhYS8wLzMyMzAzMDMxM2E2NDY2MzQzYTMxNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9B8AMA0GCSqGSIb3DQEBCwUAA4IBAQCGP6xzQiCEvbgqILLAK82FLriAToprEi14 1MTC9Bq4gJ2/X61/MS6+L60lmx4hpjcAf2quqKjgVqjmZur485S9hTmoZwYQMvV0 tZdJ1CtPSyXsks0JnOx5aL4oVEV6pvGVCU2456xTQkovuDLg7b7NoDTIdEm2r0FD oktgu/sMMaLfF2qmL9b8507OBZiCaBdYDXb51dJGoTF4JvRPzVli/+DqOIDnQkVA 1gh6ZvegzgyEkvwPsH15vVuzFSRya+1aTqCQE/Wgvci6RtJHFRixuTMIzSVVx1e5 G7B+8/ZXA8Z05v/Tj4cGVrOoEAz9gptLR7d+jTgqY6oP3dLI2IoY -----END CERTIFICATE-----Generated at Wed May 13 11:59:27 2026 by rpki-client