$ rpki-client -vvf rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa File: 323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa (raw, json) Hash identifier: 6KPoXiqtvd9nuyAco4ru4jZgNuQNFI930Qn7LAylJPg= Subject key identifier: EF:66:FD:68:F3:6A:2F:6E:D2:A0:49:1A:B5:CF:4D:03:C4:D4:85:F7 Certificate issuer: /CN=BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67 Certificate serial: 4E6C41E51780E18A701CA1943B3C25AA5A8E5013 Authority key identifier: BA:5A:38:A4:D0:FB:8A:AA:8D:D1:8E:1F:B3:9A:43:14:2B:DF:3C:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa Signing time: Sun 03 May 2026 02:23:34 +0000 ROA not before: Sun 03 May 2026 02:18:34 +0000 ROA not after: Sun 02 May 2027 02:23:34 +0000 asID: 137331 IP address blocks: 2001:df4:b100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.crl rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:6c:41:e5:17:80:e1:8a:70:1c:a1:94:3b:3c:25:aa:5a:8e:50:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67 Validity Not Before: May 3 02:18:34 2026 GMT Not After : May 2 02:23:34 2027 GMT Subject: CN=EF66FD68F36A2F6ED2A0491AB5CF4D03C4D485F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:65:f5:5a:91:26:ea:69:7d:b2:f9:2a:52: 5d:2a:d6:6b:48:54:f8:7f:06:e9:c6:9b:94:07:76: a6:4a:bf:74:3a:c9:9b:d0:dd:fd:c9:e9:a9:00:42: f2:00:27:42:76:29:e4:d9:e8:33:73:92:60:08:e1: 2c:87:8d:a1:29:34:48:61:c8:22:39:09:9b:d0:37: a4:c1:b7:be:5f:0d:d9:db:87:5d:2c:80:73:81:f7: 1c:b7:04:b8:fe:2f:be:4a:dd:ac:b1:15:34:0d:87: d9:af:c6:9f:34:96:db:e9:92:1e:df:74:85:5b:17: 85:d2:94:14:f4:26:c2:95:db:ab:f2:f7:65:a5:1d: 21:5f:e7:81:fb:97:85:58:89:00:f7:6b:72:35:10: 86:63:ea:7e:19:5a:c6:54:c6:31:2a:59:ca:97:a8: e7:0d:43:db:56:17:3a:3d:cb:f3:9d:ab:e8:e3:de: c9:a8:28:27:e6:78:7b:d4:f8:0c:7b:aa:db:b2:d5: 09:c3:45:4b:ed:45:95:ae:1f:c9:a2:39:89:a4:2b: 97:79:53:3b:8d:b1:18:37:54:85:ec:e8:43:63:6a: 11:bb:dc:11:07:dc:c0:ac:64:79:6a:f7:08:31:02: da:0d:ea:f9:c2:e3:7f:7a:33:7b:b3:4a:88:e6:0c: bf:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:66:FD:68:F3:6A:2F:6E:D2:A0:49:1A:B5:CF:4D:03:C4:D4:85:F7 X509v3 Authority Key Identifier: keyid:BA:5A:38:A4:D0:FB:8A:AA:8D:D1:8E:1F:B3:9A:43:14:2B:DF:3C:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:b100::/48 Signature Algorithm: sha256WithRSAEncryption 0c:9e:13:fe:99:24:7e:6e:4c:4d:52:50:3e:96:e2:58:0b:af: 29:38:95:61:9f:bd:e3:0b:fa:c2:4b:2f:8d:e5:7d:e6:26:8d: ce:1e:5d:c4:f5:0b:14:39:31:f1:a7:b2:6e:ff:ed:f1:3a:80: 18:68:d2:21:3a:62:f1:6f:8d:fa:60:e1:66:a6:ec:ad:0d:cb: a2:6b:e3:91:b0:87:19:35:ae:64:7a:f3:46:dc:04:85:5b:8d: 9e:2a:84:2d:a9:1f:3b:47:c7:ee:e4:6e:da:d8:19:b8:5f:7d: 8f:4b:5b:e5:9b:18:a0:68:96:94:68:e1:1e:cc:d4:bd:c7:3b: 1e:6f:e0:7f:81:2c:37:ad:1b:4b:c0:46:2f:22:8b:a1:4d:d3: 6d:fc:07:50:18:c3:be:9c:cd:c4:b4:c5:7e:14:34:c7:40:42: 67:b4:cd:f7:91:55:03:44:22:52:14:af:be:d7:a8:95:9c:d0: 6c:8c:ee:f5:89:b7:4d:73:cc:4d:e5:52:c6:91:06:51:42:e3: 26:fc:ff:0b:0d:1a:8c:e3:10:9f:f8:f4:59:f2:1c:f9:19:c0: 3a:4d:34:a2:27:ab:44:98:87:ae:59:87:d8:9a:64:17:f5:ff: f5:12:8a:4f:7c:f4:ce:d6:74:22:6a:bc:63:2f:6f:4e:ca:02: 6d:c6:ed:bb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTmxB5ReA4YpwHKGUOzwlqlqOUBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE1QTM4QTREMEZCOEFBQThERDE4RTFGQjM5QTQzMTQy QkRGM0M2NzAeFw0yNjA1MDMwMjE4MzRaFw0yNzA1MDIwMjIzMzRaMDMxMTAvBgNV BAMTKEVGNjZGRDY4RjM2QTJGNkVEMkEwNDkxQUI1Q0Y0RDAzQzRENDg1RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lGX1WpEm6ml9svkqUl0q1mtI VPh/BunGm5QHdqZKv3Q6yZvQ3f3J6akAQvIAJ0J2KeTZ6DNzkmAI4SyHjaEpNEhh yCI5CZvQN6TBt75fDdnbh10sgHOB9xy3BLj+L75K3ayxFTQNh9mvxp80ltvpkh7f dIVbF4XSlBT0JsKV26vy92WlHSFf54H7l4VYiQD3a3I1EIZj6n4ZWsZUxjEqWcqX qOcNQ9tWFzo9y/Odq+jj3smoKCfmeHvU+Ax7qtuy1QnDRUvtRZWuH8miOYmkK5d5 UzuNsRg3VIXs6ENjahG73BEH3MCsZHlq9wgxAtoN6vnC4396M3uzSojmDL+rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU72b9aPNqL27SoEkatc9NA8TUhfcwHwYDVR0j BBgwFoAUulo4pND7iqqN0Y4fs5pDFCvfPGcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmZkODBkOTYtZWYxYi00NGIyLTkwM2EtN2Y2ZGE5NDFhODM2LzAvQkE1QTM4QTRE MEZCOEFBQThERDE4RTFGQjM5QTQzMTQyQkRGM0M2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTVBMzhBNEQwRkI4QUFBOEREMThFMUZCMzlBNDMxNDJCREYz QzY3LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJmZDgwZDk2LWVmMWItNDRiMi05 MDNhLTdmNmRhOTQxYTgzNi8wLzMyMzAzMDMxM2E2NDY2MzQzYTYyMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9LEAMA0GCSqGSIb3DQEBCwUAA4IBAQAMnhP+mSR+bkxNUlA+luJYC68pOJVhn73j C/rCSy+N5X3mJo3OHl3E9QsUOTHxp7Ju/+3xOoAYaNIhOmLxb436YOFmpuytDcui a+ORsIcZNa5kevNG3ASFW42eKoQtqR87R8fu5G7a2Bm4X32PS1vlmxigaJaUaOEe zNS9xzseb+B/gSw3rRtLwEYvIouhTdNt/AdQGMO+nM3EtMV+FDTHQEJntM33kVUD RCJSFK++16iVnNBsjO71ibdNc8xN5VLGkQZRQuMm/P8LDRqM4xCf+PRZ8hz5GcA6 TTSiJ6tEmIeuWYfYmmQX9f/1EopPfPTO1nQiarxjL29OygJtxu27 -----END CERTIFICATE-----Generated at Tue May 5 16:57:02 2026 by rpki-client