$ rpki-client -vvf rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/1/323030313a6466333a643363303a3a2f34382d3438203d3e20313532373930.roa File: 323030313a6466333a643363303a3a2f34382d3438203d3e20313532373930.roa (raw, json) Hash identifier: afoPHznoH0e131M1W28pnPXY7hbzwID+nPCNXifuAL4= Subject key identifier: 83:9F:98:96:58:09:72:D3:F8:95:A2:6D:4A:67:93:50:D1:D4:92:48 Certificate issuer: /CN=E54912D936D5BF778FBB732E7E449916627DA941 Certificate serial: 446AA95CE46A7134375482B62F3DA723C954E493 Authority key identifier: E5:49:12:D9:36:D5:BF:77:8F:BB:73:2E:7E:44:99:16:62:7D:A9:41 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E54912D936D5BF778FBB732E7E449916627DA941.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/1/323030313a6466333a643363303a3a2f34382d3438203d3e20313532373930.roa Signing time: Sun 03 May 2026 03:19:07 +0000 ROA not before: Sun 03 May 2026 03:14:07 +0000 ROA not after: Sun 02 May 2027 03:19:07 +0000 asID: 152790 IP address blocks: 2001:df3:d3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/1/E54912D936D5BF778FBB732E7E449916627DA941.crl rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/1/E54912D936D5BF778FBB732E7E449916627DA941.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E54912D936D5BF778FBB732E7E449916627DA941.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:6a:a9:5c:e4:6a:71:34:37:54:82:b6:2f:3d:a7:23:c9:54:e4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E54912D936D5BF778FBB732E7E449916627DA941 Validity Not Before: May 3 03:14:07 2026 GMT Not After : May 2 03:19:07 2027 GMT Subject: CN=839F9896580972D3F895A26D4A679350D1D49248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:27:b8:5c:2a:51:83:11:8f:09:b6:17:a9:3e: 16:27:6d:e7:f9:db:5b:c4:a5:10:9e:45:af:1d:be: 66:5b:5b:fe:73:dc:24:8d:d5:e0:0d:02:f7:d6:84: 34:6d:c3:de:8e:c3:29:77:b5:5d:3b:c5:ba:18:0b: 20:68:20:b4:69:ee:09:2c:0a:68:6b:3d:a7:c3:2c: 63:3f:22:13:07:fd:12:9a:98:4c:ef:d4:d1:93:3e: 1e:5a:ff:6a:80:6a:f8:4a:80:1d:3d:f7:51:37:7d: 82:ca:24:41:50:cd:4e:a8:d4:14:44:11:bf:e8:30: 09:a4:63:ec:f1:79:3d:95:83:31:b3:3d:18:49:c2: 59:14:f5:80:c7:7e:3f:ca:1d:bf:db:1f:54:b6:ab: 3c:37:2d:b8:a9:1e:b4:87:cf:d9:ad:63:a9:6e:d6: 87:76:3d:b9:81:91:ab:b5:2d:38:82:f4:a2:2b:71: 31:0e:21:d4:b8:9b:e2:20:38:c5:f7:9f:75:35:17: e9:49:69:bd:57:7a:ac:b4:90:8e:63:44:a8:6e:ac: a7:81:14:c7:dd:4a:72:5b:c9:5f:b2:73:d1:0e:30: 91:33:f1:39:47:e1:64:24:9d:4e:35:16:16:9e:90: f7:97:01:2c:ae:eb:1c:9e:83:dc:a0:8c:f6:cb:03: 9b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:9F:98:96:58:09:72:D3:F8:95:A2:6D:4A:67:93:50:D1:D4:92:48 X509v3 Authority Key Identifier: keyid:E5:49:12:D9:36:D5:BF:77:8F:BB:73:2E:7E:44:99:16:62:7D:A9:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/1/E54912D936D5BF778FBB732E7E449916627DA941.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E54912D936D5BF778FBB732E7E449916627DA941.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/1/323030313a6466333a643363303a3a2f34382d3438203d3e20313532373930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d3c0::/48 Signature Algorithm: sha256WithRSAEncryption 83:35:c6:fb:0a:75:71:ea:94:af:f4:b9:43:69:74:c4:fd:dd: 78:4c:0a:93:81:f8:37:b6:33:22:2f:6d:8c:f3:d0:0f:e1:87: 2b:5a:6f:d3:32:01:f1:b2:e4:92:2c:4a:81:6e:c9:01:0e:b5: 4c:66:6a:fe:04:cb:08:13:86:de:02:b4:a0:85:d1:fa:e2:ad: 22:ed:dc:64:21:2f:d4:d4:6f:0a:7a:53:5f:47:c1:4c:81:0f: 6e:43:a0:92:35:72:d3:a7:57:e8:cd:3b:45:ec:51:e6:9a:9e: 42:73:60:e3:66:c2:15:2f:95:b9:76:d7:3e:51:6f:60:ce:98: d8:5e:d0:30:ef:2a:fe:0c:9b:4c:41:d9:e2:58:ed:64:3b:07: 97:b1:cf:0e:0f:66:3d:b3:ad:6e:b6:b2:01:79:e5:89:e4:0d: eb:1a:bb:2c:8e:40:05:e1:41:f2:8e:24:b5:8d:8c:6c:97:ba: 92:b9:e2:78:91:04:32:a9:4e:31:a1:24:77:eb:b4:52:ef:e9: 3e:b5:eb:f4:21:aa:ed:e0:3b:b1:d2:c8:82:55:31:30:9d:64: db:4c:4c:52:53:c0:f9:54:84:ca:68:8d:7d:0c:55:d4:4e:80: 29:07:7e:79:f1:87:45:76:3c:d0:53:60:5d:5d:61:53:9c:6d: 95:b4:88:28 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURGqpXORqcTQ3VIK2Lz2nI8lU5JMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTU0OTEyRDkzNkQ1QkY3NzhGQkI3MzJFN0U0NDk5MTY2 MjdEQTk0MTAeFw0yNjA1MDMwMzE0MDdaFw0yNzA1MDIwMzE5MDdaMDMxMTAvBgNV BAMTKDgzOUY5ODk2NTgwOTcyRDNGODk1QTI2RDRBNjc5MzUwRDFENDkyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMJ7hcKlGDEY8JthepPhYnbef5 21vEpRCeRa8dvmZbW/5z3CSN1eANAvfWhDRtw96Owyl3tV07xboYCyBoILRp7gks CmhrPafDLGM/IhMH/RKamEzv1NGTPh5a/2qAavhKgB0991E3fYLKJEFQzU6o1BRE Eb/oMAmkY+zxeT2VgzGzPRhJwlkU9YDHfj/KHb/bH1S2qzw3LbipHrSHz9mtY6lu 1od2PbmBkau1LTiC9KIrcTEOIdS4m+IgOMX3n3U1F+lJab1Xeqy0kI5jRKhurKeB FMfdSnJbyV+yc9EOMJEz8TlH4WQknU41FhaekPeXASyu6xyeg9ygjPbLA5v9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUg5+YllgJctP4laJtSmeTUNHUkkgwHwYDVR0j BBgwFoAU5UkS2TbVv3ePu3MufkSZFmJ9qUEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmJiNWZhNGEtYmVhNi00NjRmLWI0MDktMTFkOWEzNzYxYTZjLzEvRTU0OTEyRDkz NkQ1QkY3NzhGQkI3MzJFN0U0NDk5MTY2MjdEQTk0MS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FNTQ5MTJEOTM2RDVCRjc3OEZCQjczMkU3RTQ0OTkxNjYyN0RB OTQxLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRhLWJlYTYtNDY0Zi1i NDA5LTExZDlhMzc2MWE2Yy8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzM2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczOTMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89PAMA0GCSqGSIb3DQEBCwUAA4IBAQCDNcb7CnVx6pSv9LlDaXTE/d14TAqTgfg3 tjMiL22M89AP4YcrWm/TMgHxsuSSLEqBbskBDrVMZmr+BMsIE4beArSghdH64q0i 7dxkIS/U1G8KelNfR8FMgQ9uQ6CSNXLTp1fozTtF7FHmmp5Cc2DjZsIVL5W5dtc+ UW9gzpjYXtAw7yr+DJtMQdniWO1kOweXsc8OD2Y9s61utrIBeeWJ5A3rGrssjkAF 4UHyjiS1jYxsl7qSueJ4kQQyqU4xoSR367RS7+k+tev0Iart4Dux0siCVTEwnWTb TExSU8D5VITKaI19DFXUToApB3558YdFdjzQU2BdXWFTnG2VtIgo -----END CERTIFICATE-----Generated at Wed May 13 07:34:49 2026 by rpki-client