$ rpki-client -vvf rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa File: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (raw, json) Hash identifier: nFLDPD776WE/L2X/jlMFqVRg6eI7I+qoNOVFN/HkArY= Subject key identifier: 03:06:D3:3E:7A:14:EB:F7:1F:37:3B:3E:A8:36:69:11:CA:1B:47:06 Certificate issuer: /CN=7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53 Certificate serial: 174B7E69C23FE3D2387C4F841DE39C48B358DDAE Authority key identifier: 7D:2A:02:CF:AA:CD:51:FA:2E:B1:D7:AE:C7:0E:CD:81:04:47:5F:53 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa Signing time: Sun 03 May 2026 03:19:03 +0000 ROA not before: Sun 03 May 2026 03:14:03 +0000 ROA not after: Sun 02 May 2027 03:19:03 +0000 asID: 141939 IP address blocks: 2001:df1:1bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:4b:7e:69:c2:3f:e3:d2:38:7c:4f:84:1d:e3:9c:48:b3:58:dd:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53 Validity Not Before: May 3 03:14:03 2026 GMT Not After : May 2 03:19:03 2027 GMT Subject: CN=0306D33E7A14EBF71F373B3EA8366911CA1B4706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5c:d8:22:0c:32:b4:17:f4:74:3b:a8:6b:48: 51:ef:15:f2:5a:af:ca:12:b5:41:56:56:9c:8a:55: f8:a8:1d:f0:a2:b6:00:34:cd:47:53:53:39:04:fe: 8a:a6:70:a0:51:a3:b4:13:af:3e:4e:3d:97:ad:2d: e6:cf:b6:6b:0d:63:9e:9d:43:2d:ef:08:9f:ba:42: 65:4a:44:3c:3d:e6:34:c1:15:24:eb:c4:63:d9:ea: 6d:2c:ed:cb:8f:08:41:54:c3:be:2c:01:88:ac:ff: 56:53:ea:b2:7d:c4:b5:2c:91:d8:11:9a:6f:c7:10: 29:69:14:97:56:d6:86:b6:b4:d9:4c:f3:8a:d4:c2: 05:2c:c2:9b:43:a4:64:fb:76:e3:09:bf:7e:e2:0c: 54:3b:4c:99:a8:1b:5d:e5:3a:8a:31:f1:2d:20:08: fe:95:e9:bd:b8:4a:27:17:fc:ad:77:f0:2c:8c:25: 91:40:26:54:03:89:54:86:1a:6d:82:c6:50:c1:16: b8:73:19:28:7d:94:46:ed:d2:15:1c:19:2a:55:87: 65:ca:fc:a4:ec:22:96:b8:95:18:60:61:69:df:ca: 05:0d:04:98:6d:02:a1:61:79:78:bd:db:ae:16:d3: c5:cc:c7:f2:61:7c:63:0c:6c:d7:18:40:52:c2:57: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:06:D3:3E:7A:14:EB:F7:1F:37:3B:3E:A8:36:69:11:CA:1B:47:06 X509v3 Authority Key Identifier: keyid:7D:2A:02:CF:AA:CD:51:FA:2E:B1:D7:AE:C7:0E:CD:81:04:47:5F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1bc0::/48 Signature Algorithm: sha256WithRSAEncryption 65:23:38:89:3a:43:e2:f4:2f:bf:75:97:97:e7:26:8e:83:02: b5:9d:5a:6f:0c:39:c9:58:8e:e5:8b:92:4c:6a:94:e4:ba:4a: 1c:2e:40:f8:21:db:d8:76:4b:81:da:75:b1:fe:84:f6:2c:8e: f0:ea:51:c6:c5:9d:ac:09:41:5f:ee:33:25:8b:71:71:9b:06: 08:47:9c:cc:ac:2a:27:d9:80:bf:a9:cc:87:26:c2:24:d0:94: 7a:a0:5d:7d:37:30:33:41:74:bf:83:d4:ca:9d:c5:54:ac:52: 2b:4e:37:d6:66:ef:6a:5c:ca:b8:c6:42:21:d0:0d:2f:5b:af: af:67:c0:09:fc:db:6d:3c:f9:67:ee:87:b3:1a:3a:ab:d4:77: e2:20:5d:0b:1b:2f:63:37:fc:25:12:ac:f4:16:d0:d0:88:30: cb:fa:7a:ae:3e:39:29:a4:be:84:c3:7f:54:f0:56:36:b7:1e: 78:a5:08:fb:98:6e:f9:cf:2a:34:ae:fc:04:f0:ef:44:42:f6: bd:42:a2:cd:e0:15:07:88:f4:6d:46:9c:dd:92:3a:7b:e1:03: f0:7e:20:c6:73:42:5b:60:f3:ec:78:c2:cb:3e:7f:fd:10:da: ca:7e:26:24:5d:9b:16:69:e7:11:aa:70:a7:b6:44:64:1b:d1: 34:42:5b:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF0t+acI/49I4fE+EHeOcSLNY3a4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QyQTAyQ0ZBQUNENTFGQTJFQjFEN0FFQzcwRUNEODEw NDQ3NUY1MzAeFw0yNjA1MDMwMzE0MDNaFw0yNzA1MDIwMzE5MDNaMDMxMTAvBgNV BAMTKDAzMDZEMzNFN0ExNEVCRjcxRjM3M0IzRUE4MzY2OTExQ0ExQjQ3MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPXNgiDDK0F/R0O6hrSFHvFfJa r8oStUFWVpyKVfioHfCitgA0zUdTUzkE/oqmcKBRo7QTrz5OPZetLebPtmsNY56d Qy3vCJ+6QmVKRDw95jTBFSTrxGPZ6m0s7cuPCEFUw74sAYis/1ZT6rJ9xLUskdgR mm/HEClpFJdW1oa2tNlM84rUwgUswptDpGT7duMJv37iDFQ7TJmoG13lOoox8S0g CP6V6b24SicX/K138CyMJZFAJlQDiVSGGm2CxlDBFrhzGSh9lEbt0hUcGSpVh2XK /KTsIpa4lRhgYWnfygUNBJhtAqFheXi9264W08XMx/JhfGMMbNcYQFLCVyrpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAwbTPnoU6/cfNzs+qDZpEcobRwYwHwYDVR0j BBgwFoAUfSoCz6rNUfousdeuxw7NgQRHX1MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmJhNDhlNGUtZmM5NS00YWNmLWJlYWMtZDkzYTBmNjk0NDIxLzAvN0QyQTAyQ0ZB QUNENTFGQTJFQjFEN0FFQzcwRUNEODEwNDQ3NUY1My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RDJBMDJDRkFBQ0Q1MUZBMkVCMUQ3QUVDNzBFQ0Q4MTA0NDc1 RjUzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZiYTQ4ZTRlLWZjOTUtNGFjZi1i ZWFjLWQ5M2EwZjY5NDQyMS8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzkzMzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RvAMA0GCSqGSIb3DQEBCwUAA4IBAQBlIziJOkPi9C+/dZeX5yaOgwK1nVpvDDnJ WI7li5JMapTkukocLkD4IdvYdkuB2nWx/oT2LI7w6lHGxZ2sCUFf7jMli3FxmwYI R5zMrCon2YC/qcyHJsIk0JR6oF19NzAzQXS/g9TKncVUrFIrTjfWZu9qXMq4xkIh 0A0vW6+vZ8AJ/NttPPln7oezGjqr1HfiIF0LGy9jN/wlEqz0FtDQiDDL+nquPjkp pL6Ew39U8FY2tx54pQj7mG75zyo0rvwE8O9EQva9QqLN4BUHiPRtRpzdkjp74QPw fiDGc0JbYPPseMLLPn/9ENrKfiYkXZsWaecRqnCntkRkG9E0Qls6 -----END CERTIFICATE-----Generated at Wed May 13 20:23:02 2026 by rpki-client