$ rpki-client -vvf rpki-rsync.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/323030313a6466313a316334303a3a2f34382d3438203d3e20313532333638.roa File: 323030313a6466313a316334303a3a2f34382d3438203d3e20313532333638.roa (raw, json) Hash identifier: OsRtYTl/a4gBsIVTCYGY7UbsLX5kl3Dd0rUx9sxMLF8= Subject key identifier: D7:8B:40:08:2B:DD:55:68:C4:25:4B:55:5E:D5:A9:BC:C0:DE:C7:04 Certificate issuer: /CN=595ADE95CD3971264537934C7A4061E2FCA6CCC2 Certificate serial: 447850F1AB368FF13109EE98DB744FE633B8AE43 Authority key identifier: 59:5A:DE:95:CD:39:71:26:45:37:93:4C:7A:40:61:E2:FC:A6:CC:C2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/595ADE95CD3971264537934C7A4061E2FCA6CCC2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/323030313a6466313a316334303a3a2f34382d3438203d3e20313532333638.roa Signing time: Sun 03 May 2026 02:21:05 +0000 ROA not before: Sun 03 May 2026 02:16:05 +0000 ROA not after: Sun 02 May 2027 02:21:05 +0000 asID: 152368 IP address blocks: 2001:df1:1c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/595ADE95CD3971264537934C7A4061E2FCA6CCC2.crl rsync://rpki-rsync.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/595ADE95CD3971264537934C7A4061E2FCA6CCC2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/595ADE95CD3971264537934C7A4061E2FCA6CCC2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 19:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:78:50:f1:ab:36:8f:f1:31:09:ee:98:db:74:4f:e6:33:b8:ae:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=595ADE95CD3971264537934C7A4061E2FCA6CCC2 Validity Not Before: May 3 02:16:05 2026 GMT Not After : May 2 02:21:05 2027 GMT Subject: CN=D78B40082BDD5568C4254B555ED5A9BCC0DEC704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:42:77:2c:f7:ac:d2:f6:48:06:b2:9a:b4:a7: 9e:fc:38:ef:cf:b0:6a:5c:5e:47:0b:6d:32:2c:42: 50:45:75:c3:27:b0:b7:9f:d8:07:eb:28:a6:b2:12: 9d:82:b3:f1:ee:5e:ef:fb:82:c9:8a:8d:a2:69:b4: f2:fb:05:40:e6:81:63:d3:17:a9:fb:a4:1e:1e:8f: 14:4c:3f:b0:3d:35:7f:5b:9e:20:1d:be:a0:e5:7b: 6d:ef:0b:1f:7e:2c:6b:52:21:72:db:9b:b9:43:e9: fa:26:28:ea:e6:b5:96:d0:f5:14:7e:a0:7a:10:2d: 28:70:17:96:23:99:2d:5a:57:e2:c7:34:e9:cb:cc: 90:59:4e:f4:b3:44:58:4e:1f:f8:b0:d3:f7:7a:39: 60:f9:95:26:5b:84:4f:fb:ac:04:5b:44:48:59:40: 21:4f:f6:ba:14:0f:7b:46:50:d9:49:8e:d8:da:a8: 31:83:34:55:36:ee:3e:b0:a3:69:31:7d:fe:18:55: 80:75:3e:49:ae:9f:d0:3e:23:41:db:d2:e3:60:80: 0a:45:c2:76:ad:94:43:ee:c2:78:99:66:59:88:d7: 52:20:b8:18:96:c9:a6:cd:80:3c:86:16:55:75:40: 37:3c:0d:b2:d5:64:91:66:7d:4d:5c:b6:2d:4f:b3: 6f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8B:40:08:2B:DD:55:68:C4:25:4B:55:5E:D5:A9:BC:C0:DE:C7:04 X509v3 Authority Key Identifier: keyid:59:5A:DE:95:CD:39:71:26:45:37:93:4C:7A:40:61:E2:FC:A6:CC:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/595ADE95CD3971264537934C7A4061E2FCA6CCC2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/595ADE95CD3971264537934C7A4061E2FCA6CCC2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/323030313a6466313a316334303a3a2f34382d3438203d3e20313532333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1c40::/48 Signature Algorithm: sha256WithRSAEncryption 71:09:43:3f:83:b5:cd:63:3b:6f:99:e0:62:8e:da:0d:21:39: 8b:75:72:32:86:a1:1a:ab:be:7f:0e:20:6d:fb:29:f5:cc:72: 02:67:ba:d1:ce:f8:20:60:6e:d9:00:cb:49:96:22:ad:ba:3f: 68:28:42:b3:29:54:2f:28:70:f1:34:e5:3f:ec:af:45:46:64: 63:f1:14:6b:0e:de:8b:94:42:5e:70:c8:98:18:14:ea:d0:91: 5e:32:18:30:e4:89:86:e5:3c:7c:5e:33:d0:25:20:09:29:8e: be:f6:b0:f0:29:ff:17:73:f8:02:a2:9b:84:3e:b2:9c:86:eb: 60:2c:48:1f:84:a5:3b:18:46:a0:80:7d:75:0b:b8:fa:05:aa: 78:f8:47:f3:e2:03:de:0a:6c:67:f6:f8:e9:92:2e:03:a8:94: 18:c7:37:32:8e:af:40:53:88:4c:1c:0f:12:6b:6b:a7:30:32: aa:9a:f0:b4:c5:3e:58:cf:9f:f8:93:5a:03:33:2e:a4:eb:77: 4c:50:d9:ad:41:f7:f4:08:2c:91:24:d4:a8:b8:fa:8f:36:dc: 04:55:85:47:31:3f:4b:f8:d2:78:4e:9e:13:0a:25:db:4a:db: 14:bd:90:c2:ca:fe:a4:cc:d9:1f:3f:58:05:ac:eb:0d:df:86: ca:3e:59:84 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURHhQ8as2j/ExCe6Y23RP5jO4rkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTk1QURFOTVDRDM5NzEyNjQ1Mzc5MzRDN0E0MDYxRTJG Q0E2Q0NDMjAeFw0yNjA1MDMwMjE2MDVaFw0yNzA1MDIwMjIxMDVaMDMxMTAvBgNV BAMTKEQ3OEI0MDA4MkJERDU1NjhDNDI1NEI1NTVFRDVBOUJDQzBERUM3MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1Qncs96zS9kgGspq0p578OO/P sGpcXkcLbTIsQlBFdcMnsLef2AfrKKayEp2Cs/HuXu/7gsmKjaJptPL7BUDmgWPT F6n7pB4ejxRMP7A9NX9bniAdvqDle23vCx9+LGtSIXLbm7lD6fomKOrmtZbQ9RR+ oHoQLShwF5YjmS1aV+LHNOnLzJBZTvSzRFhOH/iw0/d6OWD5lSZbhE/7rARbREhZ QCFP9roUD3tGUNlJjtjaqDGDNFU27j6wo2kxff4YVYB1Pkmun9A+I0Hb0uNggApF wnatlEPuwniZZlmI11IguBiWyabNgDyGFlV1QDc8DbLVZJFmfU1cti1Ps283AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU14tACCvdVWjEJUtVXtWpvMDexwQwHwYDVR0j BBgwFoAUWVrelc05cSZFN5NMekBh4vymzMIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjdkOWQ3Y2ItNmNmYi00ZGUwLTlkYWEtZDIyMmI3YTg5MDcyLzAvNTk1QURFOTVD RDM5NzEyNjQ1Mzc5MzRDN0E0MDYxRTJGQ0E2Q0NDMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81OTVBREU5NUNEMzk3MTI2NDUzNzkzNEM3QTQwNjFFMkZDQTZD Q0MyLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2NiLTZjZmItNGRlMC05 ZGFhLWQyMjJiN2E4OTA3Mi8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzMzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RxAMA0GCSqGSIb3DQEBCwUAA4IBAQBxCUM/g7XNYztvmeBijtoNITmLdXIyhqEa q75/DiBt+yn1zHICZ7rRzvggYG7ZAMtJliKtuj9oKEKzKVQvKHDxNOU/7K9FRmRj 8RRrDt6LlEJecMiYGBTq0JFeMhgw5ImG5Tx8XjPQJSAJKY6+9rDwKf8Xc/gCopuE PrKchutgLEgfhKU7GEaggH11C7j6Bap4+Efz4gPeCmxn9vjpki4DqJQYxzcyjq9A U4hMHA8Sa2unMDKqmvC0xT5Yz5/4k1oDMy6k63dMUNmtQff0CCyRJNSouPqPNtwE VYVHMT9L+NJ4Tp4TCiXbStsUvZDCyv6kzNkfP1gFrOsN34bKPlmE -----END CERTIFICATE-----Generated at Thu May 7 05:38:53 2026 by rpki-client