$ rpki-client -vvf rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa File: 323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa (raw, json) Hash identifier: cNWk4pPW9adRWcVUgZk3Gh+ATLpCOTauELAsC0bddZs= Subject key identifier: 14:BF:6C:5D:D8:53:99:F5:9E:D6:2E:38:65:6C:7E:A2:36:89:3F:4A Certificate issuer: /CN=BD6AA16169DB4B937F06A838BBBAA3775CADA41D Certificate serial: 2D7C388905317492F947FC657E141B48297A731F Authority key identifier: BD:6A:A1:61:69:DB:4B:93:7F:06:A8:38:BB:BA:A3:77:5C:AD:A4:1D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa Signing time: Sun 03 May 2026 03:16:54 +0000 ROA not before: Sun 03 May 2026 03:11:54 +0000 ROA not after: Sun 02 May 2027 03:16:54 +0000 asID: 139377 IP address blocks: 2001:df1:5480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.crl rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7c:38:89:05:31:74:92:f9:47:fc:65:7e:14:1b:48:29:7a:73:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6AA16169DB4B937F06A838BBBAA3775CADA41D Validity Not Before: May 3 03:11:54 2026 GMT Not After : May 2 03:16:54 2027 GMT Subject: CN=14BF6C5DD85399F59ED62E38656C7EA236893F4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fc:05:49:cc:58:d3:09:53:b8:fb:99:82:94: 76:b2:69:20:1d:97:68:cd:98:e6:0d:17:cf:8d:39: a5:27:86:80:ee:34:7e:7e:9f:b7:ec:cb:af:67:b8: 31:9f:fb:b1:6c:1e:d9:62:e3:32:72:0a:21:33:5a: b1:02:20:f7:6b:08:fd:cc:7f:c0:bd:e2:d2:e7:7e: 16:de:fb:3e:2a:b7:c6:36:fe:47:50:eb:a7:2f:e6: 6e:de:53:62:33:4c:b7:e7:b0:c2:7c:21:1e:1b:0c: 8a:d6:b6:16:a8:be:6e:93:b5:a4:a1:05:f5:ae:61: c7:db:3e:0b:7f:d4:58:07:ab:62:dd:28:43:22:c3: 93:1f:2d:e5:3e:9e:b4:6f:38:a1:7a:62:d1:4f:69: 17:38:7b:13:bc:7b:32:fa:26:66:91:59:16:64:6b: f0:3d:41:0f:1a:b8:56:8b:2f:44:25:0c:92:8e:a8: d5:e2:78:74:6f:cd:00:bd:33:13:72:c9:d5:c9:b7: 70:00:9c:2f:77:6b:46:f4:d9:5e:12:f4:2f:ab:a8: c7:42:a2:51:e7:e9:0f:4b:0b:7b:6f:1a:30:f4:a1: 32:1f:54:55:52:12:47:f8:19:73:89:be:5c:77:c2: 3f:f0:67:10:af:df:9d:e3:b3:ce:1f:e3:05:ba:a2: ca:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BF:6C:5D:D8:53:99:F5:9E:D6:2E:38:65:6C:7E:A2:36:89:3F:4A X509v3 Authority Key Identifier: keyid:BD:6A:A1:61:69:DB:4B:93:7F:06:A8:38:BB:BA:A3:77:5C:AD:A4:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BD6AA16169DB4B937F06A838BBBAA3775CADA41D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:5480::/48 Signature Algorithm: sha256WithRSAEncryption ab:80:b3:b0:02:80:18:9c:2b:e5:55:ea:22:c9:4e:ee:6d:2e: 9b:b6:4b:7a:5a:fc:5f:49:4f:cc:c1:ef:fc:23:44:5d:65:71: fc:19:21:75:59:8c:80:53:18:71:6b:e7:e8:84:4d:58:73:fc: fb:52:d4:89:35:6d:05:4e:71:46:ea:2c:fe:cd:a5:cc:6e:cf: fe:e3:90:f1:3e:af:24:74:fc:a6:0c:de:aa:d9:6d:ee:f2:5e: e3:32:86:03:fc:17:02:9a:b5:36:44:75:25:08:e5:79:31:21: df:d9:72:09:22:8f:cd:1a:15:bb:9f:a0:f2:7f:c8:29:3d:2f: 18:bd:b0:8a:b2:ca:9d:57:25:6a:b4:5b:bd:27:a6:04:41:f6: 71:91:c7:b4:ba:ff:58:71:8f:e8:40:9b:2b:d4:c6:ec:a2:15: a3:33:07:0f:c7:37:43:21:5f:8a:bb:12:d0:41:28:de:02:eb: d5:08:eb:0c:08:ed:21:20:77:5f:f7:c5:28:74:63:11:68:51: 72:bc:91:03:23:92:08:56:8e:8f:9b:cd:69:76:0e:04:1c:51: aa:d8:77:74:cb:ad:0d:2f:ad:f2:73:e6:d4:9d:63:8a:23:d6: b9:3a:53:6b:53:19:9d:55:ae:92:ef:55:bf:0c:91:75:42:ef: 54:95:d2:52 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULXw4iQUxdJL5R/xlfhQbSCl6cx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2QUExNjE2OURCNEI5MzdGMDZBODM4QkJCQUEzNzc1 Q0FEQTQxRDAeFw0yNjA1MDMwMzExNTRaFw0yNzA1MDIwMzE2NTRaMDMxMTAvBgNV BAMTKDE0QkY2QzVERDg1Mzk5RjU5RUQ2MkUzODY1NkM3RUEyMzY4OTNGNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/AVJzFjTCVO4+5mClHayaSAd l2jNmOYNF8+NOaUnhoDuNH5+n7fsy69nuDGf+7FsHtli4zJyCiEzWrECIPdrCP3M f8C94tLnfhbe+z4qt8Y2/kdQ66cv5m7eU2IzTLfnsMJ8IR4bDIrWthaovm6TtaSh BfWuYcfbPgt/1FgHq2LdKEMiw5MfLeU+nrRvOKF6YtFPaRc4exO8ezL6JmaRWRZk a/A9QQ8auFaLL0QlDJKOqNXieHRvzQC9MxNyydXJt3AAnC93a0b02V4S9C+rqMdC olHn6Q9LC3tvGjD0oTIfVFVSEkf4GXOJvlx3wj/wZxCv353js84f4wW6osqtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFL9sXdhTmfWe1i44ZWx+ojaJP0owHwYDVR0j BBgwFoAUvWqhYWnbS5N/Bqg4u7qjd1ytpB0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjJhYTJkMTAtM2ZhYS00MjcyLWJlMWYtODEwMjk1N2I2NWU2LzAvQkQ2QUExNjE2 OURCNEI5MzdGMDZBODM4QkJCQUEzNzc1Q0FEQTQxRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRDZBQTE2MTY5REI0QjkzN0YwNkE4MzhCQkJBQTM3NzVDQURB NDFELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEwLTNmYWEtNDI3Mi1i ZTFmLTgxMDI5NTdiNjVlNi8wLzMyMzAzMDMxM2E2NDY2MzEzYTM1MzQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8VSAMA0GCSqGSIb3DQEBCwUAA4IBAQCrgLOwAoAYnCvlVeoiyU7ubS6btkt6Wvxf SU/Mwe/8I0RdZXH8GSF1WYyAUxhxa+fohE1Yc/z7UtSJNW0FTnFG6iz+zaXMbs/+ 45DxPq8kdPymDN6q2W3u8l7jMoYD/BcCmrU2RHUlCOV5MSHf2XIJIo/NGhW7n6Dy f8gpPS8YvbCKssqdVyVqtFu9J6YEQfZxkce0uv9YcY/oQJsr1MbsohWjMwcPxzdD IV+KuxLQQSjeAuvVCOsMCO0hIHdf98UodGMRaFFyvJEDI5IIVo6Pm81pdg4EHFGq 2Hd0y60NL63yc+bUnWOKI9a5OlNrUxmdVa6S71W/DJF1Qu9UldJS -----END CERTIFICATE-----Generated at Wed May 13 06:26:03 2026 by rpki-client