$ rpki-client -vvf rpki-rsync.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa File: 323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa (raw, json) Hash identifier: oLBZrJQYooXv1AaJqvvqFmmqga9DhEWLnd2Rras7ouk= Subject key identifier: 16:61:F2:E2:68:DF:8F:91:1B:79:D1:42:61:7E:D8:21:C9:A4:EB:25 Certificate issuer: /CN=AF0C42FF385AC16D8868625322DDC9687E064976 Certificate serial: 5EBF8D86FA34C468A4CAC66D4347C4A4C19F55E1 Authority key identifier: AF:0C:42:FF:38:5A:C1:6D:88:68:62:53:22:DD:C9:68:7E:06:49:76 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF0C42FF385AC16D8868625322DDC9687E064976.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa Signing time: Sun 03 May 2026 03:18:28 +0000 ROA not before: Sun 03 May 2026 03:13:28 +0000 ROA not after: Sun 02 May 2027 03:18:28 +0000 asID: 152442 IP address blocks: 2001:df3:b040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/AF0C42FF385AC16D8868625322DDC9687E064976.crl rsync://rpki-rsync.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/AF0C42FF385AC16D8868625322DDC9687E064976.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF0C42FF385AC16D8868625322DDC9687E064976.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:bf:8d:86:fa:34:c4:68:a4:ca:c6:6d:43:47:c4:a4:c1:9f:55:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF0C42FF385AC16D8868625322DDC9687E064976 Validity Not Before: May 3 03:13:28 2026 GMT Not After : May 2 03:18:28 2027 GMT Subject: CN=1661F2E268DF8F911B79D142617ED821C9A4EB25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:15:f9:94:c1:c9:b7:dd:28:a7:5c:72:4a:14: ed:f2:9d:31:82:67:05:e4:96:d5:12:cd:2a:c3:aa: 63:d0:e4:b1:87:b0:66:4b:44:10:c8:3c:07:ce:3d: f6:e3:4b:e2:62:1d:2d:f6:df:34:58:5c:08:41:8d: 02:82:97:36:c7:1e:d8:fe:31:d7:3e:eb:58:d5:86: c1:c6:7b:8c:ce:09:19:a3:dc:10:f1:19:20:b6:c3: 4e:46:6f:b4:28:8d:57:59:f9:5f:27:7d:b7:4a:a2: 8e:38:5c:e8:2b:5c:4b:a5:ad:7f:83:1c:af:7d:06: 6b:cb:d3:2e:62:fd:a6:18:3f:31:0b:34:44:72:db: f4:d5:34:47:4b:24:5f:40:80:11:2f:b7:7e:6e:ec: 97:90:81:26:1f:94:d2:bd:5f:f2:e9:55:44:6a:20: 96:05:93:5f:57:b9:68:13:c8:96:fc:9d:4a:8c:09: 45:1f:4d:9a:f5:95:1e:73:1c:c6:f3:11:20:5f:37: be:76:0a:3a:51:fa:9a:6b:1a:1c:07:0f:dc:ad:85: 57:5b:a0:c5:11:b5:8a:cf:5e:f2:74:4e:f5:4e:9f: 70:4f:22:cc:30:f8:51:76:6c:50:f5:af:90:90:82: 18:f0:2a:a9:bf:1a:df:69:11:91:e6:58:98:b0:e5: f3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:61:F2:E2:68:DF:8F:91:1B:79:D1:42:61:7E:D8:21:C9:A4:EB:25 X509v3 Authority Key Identifier: keyid:AF:0C:42:FF:38:5A:C1:6D:88:68:62:53:22:DD:C9:68:7E:06:49:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/AF0C42FF385AC16D8868625322DDC9687E064976.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF0C42FF385AC16D8868625322DDC9687E064976.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/1/323030313a6466333a623034303a3a2f34382d3438203d3e20313532343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:b040::/48 Signature Algorithm: sha256WithRSAEncryption a7:2a:2e:b2:ab:4a:1e:fc:d4:4f:f5:67:7b:83:e4:9b:7c:2e: ac:f6:3a:9f:80:13:a3:47:9f:f1:c5:93:3f:af:6b:5c:03:18: 36:14:d2:74:30:6c:ab:e8:3a:ee:d4:67:ec:f8:e7:9a:c3:b9: 9b:43:d7:e7:aa:57:b1:8c:a0:e9:e3:c6:51:81:e4:92:32:b2: 98:07:1c:e3:ac:65:97:6f:e2:62:d5:f2:dd:df:d9:77:3d:51: c7:c4:76:97:f3:45:a7:33:b2:5a:75:e7:fa:43:25:ce:26:f2: cb:2c:0c:57:08:bd:83:ce:e2:18:c0:63:b8:40:58:45:b5:98: 32:cc:88:09:3e:04:ca:e9:2f:f4:8d:92:9d:af:7d:ee:fb:44: f2:a6:71:e6:ff:a8:b1:2c:29:8f:fd:38:d7:60:a2:7b:28:93: b8:f0:fa:39:9a:19:43:9e:29:e1:bd:d5:63:b0:bd:ef:43:ec: 43:27:88:fa:ce:32:90:9a:35:8b:12:da:3f:a2:1f:9a:4a:45: 79:ad:c5:72:4d:b0:ac:ad:17:f6:f7:6b:9e:cd:7e:33:44:16: 1f:96:13:f9:b8:e4:71:5c:e0:18:4d:83:84:82:61:73:94:e2: 6b:61:b0:85:2b:ff:db:e7:29:0f:e2:d7:8f:64:f7:71:98:b1: b9:28:8c:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXr+Nhvo0xGikysZtQ0fEpMGfVeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYwQzQyRkYzODVBQzE2RDg4Njg2MjUzMjJEREM5Njg3 RTA2NDk3NjAeFw0yNjA1MDMwMzEzMjhaFw0yNzA1MDIwMzE4MjhaMDMxMTAvBgNV BAMTKDE2NjFGMkUyNjhERjhGOTExQjc5RDE0MjYxN0VEODIxQzlBNEVCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHFfmUwcm33SinXHJKFO3ynTGC ZwXkltUSzSrDqmPQ5LGHsGZLRBDIPAfOPfbjS+JiHS323zRYXAhBjQKClzbHHtj+ Mdc+61jVhsHGe4zOCRmj3BDxGSC2w05Gb7QojVdZ+V8nfbdKoo44XOgrXEulrX+D HK99BmvL0y5i/aYYPzELNERy2/TVNEdLJF9AgBEvt35u7JeQgSYflNK9X/LpVURq IJYFk19XuWgTyJb8nUqMCUUfTZr1lR5zHMbzESBfN752CjpR+pprGhwHD9ythVdb oMURtYrPXvJ0TvVOn3BPIsww+FF2bFD1r5CQghjwKqm/Gt9pEZHmWJiw5fPFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFmHy4mjfj5EbedFCYX7YIcmk6yUwHwYDVR0j BBgwFoAUrwxC/zhawW2IaGJTIt3JaH4GSXYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Zjg3ZGQ1OTctNDBjZC00MDliLWIzYzUtMjg1MmNlMDE0ODg5LzEvQUYwQzQyRkYz ODVBQzE2RDg4Njg2MjUzMjJEREM5Njg3RTA2NDk3Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjBDNDJGRjM4NUFDMTZEODg2ODYyNTMyMkREQzk2ODdFMDY0 OTc2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3LTQwY2QtNDA5Yi1i M2M1LTI4NTJjZTAxNDg4OS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYyMzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 87BAMA0GCSqGSIb3DQEBCwUAA4IBAQCnKi6yq0oe/NRP9Wd7g+SbfC6s9jqfgBOj R5/xxZM/r2tcAxg2FNJ0MGyr6Dru1Gfs+Oeaw7mbQ9fnqlexjKDp48ZRgeSSMrKY BxzjrGWXb+Ji1fLd39l3PVHHxHaX80WnM7Jadef6QyXOJvLLLAxXCL2DzuIYwGO4 QFhFtZgyzIgJPgTK6S/0jZKdr33u+0TypnHm/6ixLCmP/TjXYKJ7KJO48Po5mhlD ninhvdVjsL3vQ+xDJ4j6zjKQmjWLEto/oh+aSkV5rcVyTbCsrRf292uezX4zRBYf lhP5uORxXOAYTYOEgmFzlOJrYbCFK//b5ykP4tePZPdxmLG5KIxM -----END CERTIFICATE-----Generated at Wed May 13 14:27:31 2026 by rpki-client