$ rpki-client -vvf rpki-rsync.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/323030313a6466323a653330303a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466323a653330303a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: U8zXjkR0YFC0f3k9g/lm57CdDdRff8CebwGPVl34Erk= Subject key identifier: 1B:0F:48:B3:93:50:40:2D:87:27:73:91:BF:EE:4C:D9:FA:AF:B6:6F Certificate issuer: /CN=E98212FB2801E9D8F979B478187B22C73E005B8C Certificate serial: 427398CE906C56BF1851AD7AD3905E0BBB8C168F Authority key identifier: E9:82:12:FB:28:01:E9:D8:F9:79:B4:78:18:7B:22:C7:3E:00:5B:8C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E98212FB2801E9D8F979B478187B22C73E005B8C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/323030313a6466323a653330303a3a2f34382d3438203d3e203538343034.roa Signing time: Sun 03 May 2026 02:13:44 +0000 ROA not before: Sun 03 May 2026 02:08:44 +0000 ROA not after: Sun 02 May 2027 02:13:44 +0000 asID: 58404 IP address blocks: 2001:df2:e300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/E98212FB2801E9D8F979B478187B22C73E005B8C.crl rsync://rpki-rsync.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/E98212FB2801E9D8F979B478187B22C73E005B8C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E98212FB2801E9D8F979B478187B22C73E005B8C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:73:98:ce:90:6c:56:bf:18:51:ad:7a:d3:90:5e:0b:bb:8c:16:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E98212FB2801E9D8F979B478187B22C73E005B8C Validity Not Before: May 3 02:08:44 2026 GMT Not After : May 2 02:13:44 2027 GMT Subject: CN=1B0F48B39350402D87277391BFEE4CD9FAAFB66F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:6a:47:6b:c8:8c:48:ff:f4:f6:bd:42:af: f1:bc:4f:5e:0d:4f:6e:46:c4:06:d9:88:5f:41:f2: 10:f7:bc:d5:8e:33:04:38:76:c2:0d:d2:0f:47:7e: c6:7d:d9:1c:9a:8f:b8:2f:0a:72:3f:6e:1b:1a:c8: 75:2b:39:06:e5:0e:3d:a0:97:90:ef:d3:7b:39:94: 24:0f:8b:3d:85:7d:9b:9c:ce:45:2b:d2:04:33:ee: fc:e1:2d:6d:a3:cd:3a:5a:1d:1b:4d:16:19:2b:33: 1f:03:57:f6:af:89:b8:32:a5:bb:f4:61:4d:43:ec: ec:60:03:c6:ae:31:58:d8:5e:9a:81:5c:fe:5a:b2: 04:ca:d1:99:d4:d9:56:a9:0c:e1:58:8c:e0:4d:9a: 04:05:9b:d7:b6:c7:f7:05:89:bf:a1:bb:51:fd:d9: 19:98:18:9a:dc:63:54:c0:5d:e5:d4:e7:77:2a:e7: 50:a3:6a:c8:4e:e3:06:ab:b3:0a:ce:ba:8e:b5:ba: 9b:06:e2:32:31:8f:9b:79:5d:fd:0c:b5:72:6c:e8: 73:04:7e:b5:29:ba:95:e3:bd:89:5a:03:30:d8:5f: 73:aa:7b:ed:07:85:4a:c4:30:16:0a:db:67:4d:45: d4:de:ce:2c:0f:c4:be:e1:01:bc:cd:ed:a4:f6:a1: 6e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0F:48:B3:93:50:40:2D:87:27:73:91:BF:EE:4C:D9:FA:AF:B6:6F X509v3 Authority Key Identifier: keyid:E9:82:12:FB:28:01:E9:D8:F9:79:B4:78:18:7B:22:C7:3E:00:5B:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/E98212FB2801E9D8F979B478187B22C73E005B8C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E98212FB2801E9D8F979B478187B22C73E005B8C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/323030313a6466323a653330303a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e300::/48 Signature Algorithm: sha256WithRSAEncryption bf:05:38:81:5d:4d:a9:bb:d3:3f:32:e9:29:46:6e:04:24:ff: 1d:83:94:ef:b2:aa:ca:6b:21:04:db:cd:f7:7e:8e:14:d1:af: ed:3e:66:06:00:be:6c:fa:d2:62:46:9f:b5:7e:4a:03:d7:d5: ae:de:58:16:f0:3f:13:df:b6:42:f0:f5:69:e6:71:9a:95:a0: fa:94:bb:2b:59:7e:ab:0d:2d:b1:b5:cc:fe:2c:b7:0c:1b:9f: db:be:b6:28:c0:1e:41:19:b8:b6:b7:fb:00:82:7a:bf:c1:24: ce:28:15:31:0a:37:80:b6:70:66:da:eb:28:6a:68:fd:b5:1b: ef:67:3c:73:b8:0f:d7:32:95:28:86:40:76:25:4a:2d:f7:3f: ba:5a:94:c7:5a:c5:29:49:f1:b8:3a:af:40:24:c6:2d:79:9d: 03:b9:a8:e3:69:2e:cc:ab:4b:fc:00:a2:f5:fa:55:f2:61:48: a1:c7:af:eb:53:5c:83:90:46:33:21:70:e4:c1:ec:26:f5:c4: 79:28:e2:cc:bb:e2:ad:6f:2e:f5:a2:16:a8:bf:32:94:40:9f: 17:00:c3:cb:ca:c0:30:e1:07:2b:6c:b4:f1:54:6d:33:50:6c: 6e:ac:6b:61:26:df:ec:48:32:b1:d8:a6:65:ee:22:5b:8e:57: 4d:be:74:88 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQnOYzpBsVr8YUa1605BeC7uMFo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk4MjEyRkIyODAxRTlEOEY5NzlCNDc4MTg3QjIyQzcz RTAwNUI4QzAeFw0yNjA1MDMwMjA4NDRaFw0yNzA1MDIwMjEzNDRaMDMxMTAvBgNV BAMTKDFCMEY0OEIzOTM1MDQwMkQ4NzI3NzM5MUJGRUU0Q0Q5RkFBRkI2NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkgGpHa8iMSP/09r1Cr/G8T14N T25GxAbZiF9B8hD3vNWOMwQ4dsIN0g9HfsZ92Ryaj7gvCnI/bhsayHUrOQblDj2g l5Dv03s5lCQPiz2FfZuczkUr0gQz7vzhLW2jzTpaHRtNFhkrMx8DV/avibgypbv0 YU1D7OxgA8auMVjYXpqBXP5asgTK0ZnU2VapDOFYjOBNmgQFm9e2x/cFib+hu1H9 2RmYGJrcY1TAXeXU53cq51CjashO4warswrOuo61upsG4jIxj5t5Xf0MtXJs6HME frUpupXjvYlaAzDYX3Oqe+0HhUrEMBYK22dNRdTeziwPxL7hAbzN7aT2oW5XAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUGw9Is5NQQC2HJ3ORv+5M2fqvtm8wHwYDVR0j BBgwFoAU6YIS+ygB6dj5ebR4GHsixz4AW4wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGYyYjZlZDItY2M1OC00NWM1LWJkODgtY2I5NTUwNzE2YTA0LzAvRTk4MjEyRkIy ODAxRTlEOEY5NzlCNDc4MTg3QjIyQzczRTAwNUI4Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FOTgyMTJGQjI4MDFFOUQ4Rjk3OUI0NzgxODdCMjJDNzNFMDA1 QjhDLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBmMmI2ZWQyLWNjNTgtNDVjNS1i ZDg4LWNiOTU1MDcxNmEwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfLj ADANBgkqhkiG9w0BAQsFAAOCAQEAvwU4gV1NqbvTPzLpKUZuBCT/HYOU77Kqymsh BNvN936OFNGv7T5mBgC+bPrSYkaftX5KA9fVrt5YFvA/E9+2QvD1aeZxmpWg+pS7 K1l+qw0tsbXM/iy3DBuf2762KMAeQRm4trf7AIJ6v8EkzigVMQo3gLZwZtrrKGpo /bUb72c8c7gP1zKVKIZAdiVKLfc/ulqUx1rFKUnxuDqvQCTGLXmdA7mo42kuzKtL /ACi9fpV8mFIocev61Ncg5BGMyFw5MHsJvXEeSjizLvirW8u9aIWqL8ylECfFwDD y8rAMOEHK2y08VRtM1BsbqxrYSbf7EgysdimZe4iW45XTb50iA== -----END CERTIFICATE-----Generated at Wed May 13 23:01:41 2026 by rpki-client