$ rpki-client -vvf rpki-rsync.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa File: 323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa (raw, json) Hash identifier: pNmag7DqpLNIaTSD2kV29A9NQgGNcDVD3R4gOpGFNMo= Subject key identifier: 5F:EC:AC:F5:D2:91:CB:BE:1E:22:63:E3:8F:18:64:94:DB:BD:47:42 Certificate issuer: /CN=B78F928B080DA5B0F037D7BECB8B941F49D5BC7A Certificate serial: 13711A733005424F83C2E1DF66631FA1A6D10C4F Authority key identifier: B7:8F:92:8B:08:0D:A5:B0:F0:37:D7:BE:CB:8B:94:1F:49:D5:BC:7A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B78F928B080DA5B0F037D7BECB8B941F49D5BC7A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa Signing time: Sun 03 May 2026 03:04:00 +0000 ROA not before: Sun 03 May 2026 02:59:00 +0000 ROA not after: Sun 02 May 2027 03:04:00 +0000 asID: 138871 IP address blocks: 2001:df7:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/B78F928B080DA5B0F037D7BECB8B941F49D5BC7A.crl rsync://rpki-rsync.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/B78F928B080DA5B0F037D7BECB8B941F49D5BC7A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B78F928B080DA5B0F037D7BECB8B941F49D5BC7A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 May 2026 03:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:71:1a:73:30:05:42:4f:83:c2:e1:df:66:63:1f:a1:a6:d1:0c:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B78F928B080DA5B0F037D7BECB8B941F49D5BC7A Validity Not Before: May 3 02:59:00 2026 GMT Not After : May 2 03:04:00 2027 GMT Subject: CN=5FECACF5D291CBBE1E2263E38F186494DBBD4742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6c:b9:4c:cd:eb:12:69:58:09:ef:ca:8b:3d: 10:20:7f:bf:45:b3:d4:07:5c:27:a5:ed:f6:1a:47: 0a:72:76:58:c9:8e:6b:fb:65:46:6f:48:be:c8:f6: d7:b8:31:95:52:d3:df:52:4f:fd:9f:be:f9:f0:ad: 08:d6:05:c7:6f:f4:3b:7c:2b:79:5c:90:7e:2d:4e: 7a:31:38:0b:9b:06:73:83:10:fa:0d:70:c2:22:06: 78:43:11:1b:30:79:7d:cb:03:3e:8e:ce:90:c3:f3: 17:11:01:22:9a:73:3b:02:df:61:19:b3:73:5c:ee: 5e:40:2e:fe:85:bb:a9:4b:34:0d:3d:aa:a7:af:93: 08:0d:fb:56:65:d2:df:4a:dc:58:ae:91:e5:66:7f: 36:b1:5b:61:87:75:89:67:b2:27:03:2f:9d:1d:28: d5:72:44:e1:06:37:7f:e8:c0:3f:48:cb:d1:2a:c7: 8e:58:89:1b:c1:9f:e9:a1:85:ce:46:37:e1:e4:cd: f6:dd:9c:eb:34:35:f9:f8:69:56:24:3c:81:7c:c4: f8:6a:38:ae:e1:5d:d8:07:ec:af:f3:65:e8:88:dc: 42:58:b0:4f:e5:1e:a8:ff:9c:eb:c1:79:b7:df:2f: 7a:15:e8:6b:31:b8:8f:54:58:70:d6:23:d5:9d:52: cd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EC:AC:F5:D2:91:CB:BE:1E:22:63:E3:8F:18:64:94:DB:BD:47:42 X509v3 Authority Key Identifier: keyid:B7:8F:92:8B:08:0D:A5:B0:F0:37:D7:BE:CB:8B:94:1F:49:D5:BC:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/B78F928B080DA5B0F037D7BECB8B941F49D5BC7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B78F928B080DA5B0F037D7BECB8B941F49D5BC7A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c2be4f18-ceed-4f23-a0a4-e24e04d320d3/0/323030313a6466373a663130303a3a2f34382d3438203d3e20313338383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:f100::/48 Signature Algorithm: sha256WithRSAEncryption 90:8f:36:c0:0a:92:af:e1:39:0d:60:ae:e0:0b:5f:69:c0:6e: 8f:34:93:a1:30:4a:96:b4:ab:41:73:89:59:84:17:a6:7c:53: 1b:c5:ec:d0:68:fa:82:7e:14:dd:7d:7f:87:42:4d:4e:f4:63: d7:e4:95:7f:2a:ae:ac:06:7f:9f:e5:c2:f1:a0:3e:98:12:e1: b0:4a:6f:0e:d0:2e:55:a2:2c:ca:a0:d8:20:8a:83:c1:13:82: 81:7b:55:94:a6:77:b6:4d:be:94:3c:09:0f:79:98:a8:a5:04: 21:6f:6a:cf:73:07:45:c9:82:5a:95:de:b3:72:f1:8f:8b:8e: 29:87:95:60:84:2d:41:9c:ba:58:91:3a:9f:c1:ed:4d:ec:48: 48:59:12:eb:7d:c7:5e:14:c4:66:8b:c6:2f:4e:49:b3:34:b3: a3:07:30:81:a2:c4:e1:3a:6d:3a:19:bb:e7:bf:35:ce:f0:37: db:36:83:2d:53:4c:59:9a:1a:36:e1:22:b3:63:98:2f:a0:ce: 60:cc:ef:7c:5a:64:26:6a:f7:9e:26:18:13:33:60:f2:47:57: 0e:64:43:3c:5d:dd:ff:5b:eb:ac:76:c6:1f:8c:b8:5c:d6:ed: bc:58:f9:bb:f3:ef:0d:ba:e0:03:63:95:c1:ce:dc:14:16:d1: 2e:6c:6d:78 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE3EaczAFQk+DwuHfZmMfoabRDE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc4RjkyOEIwODBEQTVCMEYwMzdEN0JFQ0I4Qjk0MUY0 OUQ1QkM3QTAeFw0yNjA1MDMwMjU5MDBaFw0yNzA1MDIwMzA0MDBaMDMxMTAvBgNV BAMTKDVGRUNBQ0Y1RDI5MUNCQkUxRTIyNjNFMzhGMTg2NDk0REJCRDQ3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3bLlMzesSaVgJ78qLPRAgf79F s9QHXCel7fYaRwpydljJjmv7ZUZvSL7I9te4MZVS099ST/2fvvnwrQjWBcdv9Dt8 K3lckH4tTnoxOAubBnODEPoNcMIiBnhDERsweX3LAz6OzpDD8xcRASKaczsC32EZ s3Nc7l5ALv6Fu6lLNA09qqevkwgN+1Zl0t9K3FiukeVmfzaxW2GHdYlnsicDL50d KNVyROEGN3/owD9Iy9Eqx45YiRvBn+mhhc5GN+HkzfbdnOs0Nfn4aVYkPIF8xPhq OK7hXdgH7K/zZeiI3EJYsE/lHqj/nOvBebffL3oV6GsxuI9UWHDWI9WdUs2TAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUX+ys9dKRy74eImPjjxhklNu9R0IwHwYDVR0j BBgwFoAUt4+SiwgNpbDwN9e+y4uUH0nVvHowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzJiZTRmMTgtY2VlZC00ZjIzLWEwYTQtZTI0ZTA0ZDMyMGQzLzAvQjc4RjkyOEIw ODBEQTVCMEYwMzdEN0JFQ0I4Qjk0MUY0OUQ1QkM3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNzhGOTI4QjA4MERBNUIwRjAzN0Q3QkVDQjhCOTQxRjQ5RDVC QzdBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MyYmU0ZjE4LWNlZWQtNGYyMy1h MGE0LWUyNGUwNGQzMjBkMy8wLzMyMzAzMDMxM2E2NDY2MzczYTY2MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9/EAMA0GCSqGSIb3DQEBCwUAA4IBAQCQjzbACpKv4TkNYK7gC19pwG6PNJOhMEqW tKtBc4lZhBemfFMbxezQaPqCfhTdfX+HQk1O9GPX5JV/Kq6sBn+f5cLxoD6YEuGw Sm8O0C5VoizKoNggioPBE4KBe1WUpne2Tb6UPAkPeZiopQQhb2rPcwdFyYJald6z cvGPi44ph5VghC1BnLpYkTqfwe1N7EhIWRLrfcdeFMRmi8YvTkmzNLOjBzCBosTh Om06GbvnvzXO8DfbNoMtU0xZmho24SKzY5gvoM5gzO98WmQmaveeJhgTM2DyR1cO ZEM8Xd3/W+usdsYfjLhc1u28WPm78+8NuuADY5XBztwUFtEubG14 -----END CERTIFICATE-----Generated at Sat May 9 11:06:04 2026 by rpki-client