$ rpki-client -vvf rpki-rsync.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa File: 323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa (raw, json) Hash identifier: DEKb4ykdIazHfvN+oGnSyAdKUSNIiAHPtDoT+tw15P8= Subject key identifier: E1:11:8D:21:87:4E:CD:AF:44:9C:C0:7E:C6:8F:CD:11:0B:10:06:D4 Certificate issuer: /CN=585117D9F8A558479018DDF94830A5C4C66BA76D Certificate serial: 0B6C22BF8B6C69B51BB2A53262DEBE4327574560 Authority key identifier: 58:51:17:D9:F8:A5:58:47:90:18:DD:F9:48:30:A5:C4:C6:6B:A7:6D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/585117D9F8A558479018DDF94830A5C4C66BA76D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa Signing time: Sun 03 May 2026 03:18:30 +0000 ROA not before: Sun 03 May 2026 03:13:30 +0000 ROA not after: Sun 02 May 2027 03:18:30 +0000 asID: 133835 IP address blocks: 2001:df4:5400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/585117D9F8A558479018DDF94830A5C4C66BA76D.crl rsync://rpki-rsync.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/585117D9F8A558479018DDF94830A5C4C66BA76D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/585117D9F8A558479018DDF94830A5C4C66BA76D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6c:22:bf:8b:6c:69:b5:1b:b2:a5:32:62:de:be:43:27:57:45:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=585117D9F8A558479018DDF94830A5C4C66BA76D Validity Not Before: May 3 03:13:30 2026 GMT Not After : May 2 03:18:30 2027 GMT Subject: CN=E1118D21874ECDAF449CC07EC68FCD110B1006D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:3a:4b:fc:97:57:9d:13:4b:7a:ac:3d:ed: 10:77:3c:4e:7d:73:fa:c3:9d:f1:89:ac:a9:e0:f9: 76:ef:51:05:58:91:e0:2e:c7:3e:dc:e3:a9:f5:c8: b7:f6:84:a3:32:2c:bc:ea:70:6c:56:97:e6:06:fc: 49:8d:f8:f3:b5:0c:f0:33:90:84:30:d3:12:19:a0: 23:09:98:81:bf:39:e7:a8:3b:1a:ae:8d:47:15:da: cf:65:87:4f:ca:fd:6d:7f:ae:a3:3b:d9:cc:c4:4d: 1e:2b:38:b7:c4:22:a4:ec:6d:60:25:0d:9f:e8:3f: 1e:42:1d:c3:16:e1:e8:48:b5:d7:50:05:9a:36:58: ce:87:6c:bf:40:da:23:65:25:92:34:9c:f2:97:41: 50:90:42:91:32:2b:50:f1:3a:d0:47:38:bf:d4:74: 82:8e:50:3a:0e:80:09:94:bd:63:af:78:65:d8:c8: 8a:a6:61:71:11:d2:ff:78:fa:1f:9f:bb:58:65:ec: 62:e3:81:f8:c7:9a:8e:2c:ff:3e:95:0a:84:b0:ec: 4f:48:1b:58:f6:20:aa:61:0f:82:55:37:40:19:61: 9b:e1:58:a2:df:25:4c:1a:e7:24:9b:53:65:7e:70: 97:0c:3e:0d:9e:e4:55:2b:4b:3c:92:af:88:78:c7: 76:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:11:8D:21:87:4E:CD:AF:44:9C:C0:7E:C6:8F:CD:11:0B:10:06:D4 X509v3 Authority Key Identifier: keyid:58:51:17:D9:F8:A5:58:47:90:18:DD:F9:48:30:A5:C4:C6:6B:A7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/585117D9F8A558479018DDF94830A5C4C66BA76D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/585117D9F8A558479018DDF94830A5C4C66BA76D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f8fca42f-836a-40ec-a76f-b604711f3364/0/323030313a6466343a353430303a3a2f34382d3438203d3e20313333383335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5400::/48 Signature Algorithm: sha256WithRSAEncryption 36:9c:61:fd:85:16:9c:0e:7c:7f:b4:e6:db:a4:05:6d:0e:11: 28:05:00:d8:6b:31:d2:ba:de:57:6b:e8:a6:80:81:a1:11:16: 5a:81:aa:80:7a:39:f2:6c:e1:f8:9b:d9:c1:74:b7:f3:db:26: 31:8f:95:8f:2b:1d:48:67:7d:84:7c:aa:70:9d:43:1d:d1:28: c8:76:bb:b3:e9:3b:a3:86:0d:f3:65:ef:02:60:4a:fb:89:83: 14:df:00:de:44:84:63:c4:3f:84:5c:4f:f8:70:c1:f6:70:43: 5b:1f:42:e5:b2:66:2c:07:a9:90:3d:7a:4e:27:ea:29:87:06: 92:e9:7f:d3:ed:41:5f:7e:cf:bb:76:d2:74:8b:0d:0f:b3:4b: 56:9f:16:19:3e:98:b5:51:92:c3:10:66:fc:0b:57:97:d7:30: 9b:fe:cc:7e:40:e2:b4:5e:77:05:ed:13:b8:3f:70:31:76:ec: 64:a5:81:a4:25:ff:55:cb:78:df:07:29:5d:5c:3a:f6:99:53: b7:fa:7a:ae:07:37:19:48:de:91:82:4d:f2:1d:d8:a4:23:b9: 30:a2:13:40:ee:44:28:92:26:65:ed:42:93:37:d6:75:f8:9d: 7f:f0:ab:e4:1e:2f:21:a2:d2:01:ad:85:82:39:a1:c3:00:aa: 71:07:cc:81 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC2wiv4tsabUbsqUyYt6+QydXRWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg1MTE3RDlGOEE1NTg0NzkwMThEREY5NDgzMEE1QzRD NjZCQTc2RDAeFw0yNjA1MDMwMzEzMzBaFw0yNzA1MDIwMzE4MzBaMDMxMTAvBgNV BAMTKEUxMTE4RDIxODc0RUNEQUY0NDlDQzA3RUM2OEZDRDExMEIxMDA2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyxjpL/JdXnRNLeqw97RB3PE59 c/rDnfGJrKng+XbvUQVYkeAuxz7c46n1yLf2hKMyLLzqcGxWl+YG/EmN+PO1DPAz kIQw0xIZoCMJmIG/OeeoOxqujUcV2s9lh0/K/W1/rqM72czETR4rOLfEIqTsbWAl DZ/oPx5CHcMW4ehItddQBZo2WM6HbL9A2iNlJZI0nPKXQVCQQpEyK1DxOtBHOL/U dIKOUDoOgAmUvWOveGXYyIqmYXER0v94+h+fu1hl7GLjgfjHmo4s/z6VCoSw7E9I G1j2IKphD4JVN0AZYZvhWKLfJUwa5ySbU2V+cJcMPg2e5FUrSzySr4h4x3YJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4RGNIYdOza9EnMB+xo/NEQsQBtQwHwYDVR0j BBgwFoAUWFEX2filWEeQGN35SDClxMZrp20wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjhmY2E0MmYtODM2YS00MGVjLWE3NmYtYjYwNDcxMWYzMzY0LzAvNTg1MTE3RDlG OEE1NTg0NzkwMThEREY5NDgzMEE1QzRDNjZCQTc2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81ODUxMTdEOUY4QTU1ODQ3OTAxOERERjk0ODMwQTVDNEM2NkJB NzZELmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y4ZmNhNDJmLTgzNmEtNDBlYy1h NzZmLWI2MDQ3MTFmMzM2NC8wLzMyMzAzMDMxM2E2NDY2MzQzYTM1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9FQAMA0GCSqGSIb3DQEBCwUAA4IBAQA2nGH9hRacDnx/tObbpAVtDhEoBQDYazHS ut5Xa+imgIGhERZagaqAejnybOH4m9nBdLfz2yYxj5WPKx1IZ32EfKpwnUMd0SjI druz6Tujhg3zZe8CYEr7iYMU3wDeRIRjxD+EXE/4cMH2cENbH0LlsmYsB6mQPXpO J+ophwaS6X/T7UFffs+7dtJ0iw0Ps0tWnxYZPpi1UZLDEGb8C1eX1zCb/sx+QOK0 XncF7RO4P3AxduxkpYGkJf9Vy3jfByldXDr2mVO3+nquBzcZSN6Rgk3yHdikI7kw ohNA7kQokiZl7UKTN9Z1+J1/8KvkHi8hotIBrYWCOaHDAKpxB8yB -----END CERTIFICATE-----Generated at Wed May 13 08:39:15 2026 by rpki-client