$ rpki-client -vvf rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa File: 323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa (raw, json) Hash identifier: Z144p4vK3Wc0Wvxj3ow3CyTWpjreny/dO0BWeCNgJ+I= Subject key identifier: 99:F9:7D:A8:F1:8C:05:48:76:9D:4B:E1:CD:33:53:93:90:4A:19:1E Certificate issuer: /CN=BAA4294A62FFBF344CA7AF61DA13D0994A0000E3 Certificate serial: 3E9AC81FD86C5EDDA34013A50D2E0F3E06D2CB88 Authority key identifier: BA:A4:29:4A:62:FF:BF:34:4C:A7:AF:61:DA:13:D0:99:4A:00:00:E3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa Signing time: Sun 03 May 2026 03:18:05 +0000 ROA not before: Sun 03 May 2026 03:13:05 +0000 ROA not after: Sun 02 May 2027 03:18:05 +0000 asID: 138873 IP address blocks: 2001:df0:b280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.crl rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:9a:c8:1f:d8:6c:5e:dd:a3:40:13:a5:0d:2e:0f:3e:06:d2:cb:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA4294A62FFBF344CA7AF61DA13D0994A0000E3 Validity Not Before: May 3 03:13:05 2026 GMT Not After : May 2 03:18:05 2027 GMT Subject: CN=99F97DA8F18C0548769D4BE1CD335393904A191E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:86:ba:83:70:f9:18:05:84:f6:55:20:b3:ea: 46:52:d2:6d:7a:2c:76:a1:ed:28:6d:ca:79:a5:8c: f2:a5:ef:a7:22:ae:12:53:10:63:16:d6:85:27:1d: dc:a6:cb:b2:af:3d:ca:8b:e7:38:b1:1c:f6:7a:19: 04:e7:a8:ae:63:71:50:8d:60:81:c9:e2:d2:f2:9f: cf:0f:7b:08:92:64:6e:2b:7e:11:6f:94:9b:31:1e: 1b:89:e4:4b:d1:79:a0:a3:3b:97:14:4a:4a:9b:04: 63:eb:d5:22:b1:fb:6e:9a:56:1e:2c:f6:5a:b2:ee: ff:fb:d2:7c:c1:1e:31:26:42:fb:b3:a4:3c:6a:55: 26:a2:db:7f:3f:dc:2a:74:76:d4:b3:33:23:8b:b0: 4c:52:87:f8:57:37:a2:39:6f:6e:bf:d7:e5:1e:15: 45:57:c0:2f:44:77:60:d3:31:f8:33:9e:22:ff:df: b2:91:e6:b8:db:e8:00:d9:d6:0a:18:a5:48:f3:a8: 64:9c:2e:e7:26:bf:9e:af:c1:a6:41:fd:23:23:d6: 89:96:51:c0:19:86:b0:a9:c5:0b:cd:ad:29:e8:8a: 27:73:49:1e:35:ea:5b:40:a3:8b:58:b3:ab:f6:97: 10:95:4e:3d:1a:61:6c:c6:0b:d6:69:0a:43:e1:ee: cf:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F9:7D:A8:F1:8C:05:48:76:9D:4B:E1:CD:33:53:93:90:4A:19:1E X509v3 Authority Key Identifier: keyid:BA:A4:29:4A:62:FF:BF:34:4C:A7:AF:61:DA:13:D0:99:4A:00:00:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b280::/48 Signature Algorithm: sha256WithRSAEncryption 60:37:d2:f9:a0:13:8a:46:2a:35:c7:42:b6:51:9c:e0:6c:05: 1a:d2:5b:0d:98:aa:64:e7:ee:a2:5a:db:af:80:99:6a:db:f9: 34:bc:a1:25:55:3d:75:6d:6d:20:43:eb:ff:cd:a3:f7:99:c2: 26:b9:f3:61:dc:93:f8:db:b2:24:52:1e:61:07:dc:0f:9f:a4: f5:37:ae:5f:bb:3f:f2:fb:9f:fd:a1:b4:d8:47:18:4b:a0:1d: 6a:b7:a6:f0:26:4a:30:55:81:78:0b:81:83:c4:5d:32:8e:7b: a5:fd:1f:87:88:86:43:47:64:75:5c:7f:93:47:3a:39:0e:97: 8b:bb:08:39:b2:9a:73:1e:2b:97:b1:91:68:b6:b3:c8:5f:aa: f9:30:e0:0a:1b:44:34:20:19:c6:fc:38:6c:c6:d6:51:01:73: 9e:2b:5b:c0:95:27:f6:9f:23:bb:fc:8e:54:12:a2:e9:fb:9b: cd:c9:0d:10:31:be:d6:c4:c5:b8:16:3f:61:9d:08:26:d1:b9: 4b:8b:83:ac:b8:0d:c6:61:59:bb:70:eb:e5:62:d8:7f:f1:28: c1:5e:33:a3:0d:6f:a7:cc:9e:b2:c1:0e:dc:42:94:8d:74:cd: 96:ed:f5:4e:5c:3f:ce:44:69:32:d8:c8:d9:aa:ba:34:2c:11: 4c:74:4f:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPprIH9hsXt2jQBOlDS4PPgbSy4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBNDI5NEE2MkZGQkYzNDRDQTdBRjYxREExM0QwOTk0 QTAwMDBFMzAeFw0yNjA1MDMwMzEzMDVaFw0yNzA1MDIwMzE4MDVaMDMxMTAvBgNV BAMTKDk5Rjk3REE4RjE4QzA1NDg3NjlENEJFMUNEMzM1MzkzOTA0QTE5MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/hrqDcPkYBYT2VSCz6kZS0m16 LHah7ShtynmljPKl76cirhJTEGMW1oUnHdymy7KvPcqL5zixHPZ6GQTnqK5jcVCN YIHJ4tLyn88PewiSZG4rfhFvlJsxHhuJ5EvReaCjO5cUSkqbBGPr1SKx+26aVh4s 9lqy7v/70nzBHjEmQvuzpDxqVSai238/3Cp0dtSzMyOLsExSh/hXN6I5b26/1+Ue FUVXwC9Ed2DTMfgzniL/37KR5rjb6ADZ1goYpUjzqGScLucmv56vwaZB/SMj1omW UcAZhrCpxQvNrSnoiidzSR416ltAo4tYs6v2lxCVTj0aYWzGC9ZpCkPh7s8tAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUmfl9qPGMBUh2nUvhzTNTk5BKGR4wHwYDVR0j BBgwFoAUuqQpSmL/vzRMp69h2hPQmUoAAOMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjczYWI3OWQtMDBkNS00OWNiLWFjMTAtM2JkNGYyMzg2YmM2LzAvQkFBNDI5NEE2 MkZGQkYzNDRDQTdBRjYxREExM0QwOTk0QTAwMDBFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQUE0Mjk0QTYyRkZCRjM0NENBN0FGNjFEQTEzRDA5OTRBMDAw MEUzLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2Y3M2FiNzlkLTAwZDUtNDljYi1h YzEwLTNiZDRmMjM4NmJjNi8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8LKAMA0GCSqGSIb3DQEBCwUAA4IBAQBgN9L5oBOKRio1x0K2UZzgbAUa0lsNmKpk 5+6iWtuvgJlq2/k0vKElVT11bW0gQ+v/zaP3mcImufNh3JP427IkUh5hB9wPn6T1 N65fuz/y+5/9obTYRxhLoB1qt6bwJkowVYF4C4GDxF0yjnul/R+HiIZDR2R1XH+T Rzo5DpeLuwg5sppzHiuXsZFotrPIX6r5MOAKG0Q0IBnG/DhsxtZRAXOeK1vAlSf2 nyO7/I5UEqLp+5vNyQ0QMb7WxMW4Fj9hnQgm0blLi4OsuA3GYVm7cOvlYth/8SjB XjOjDW+nzJ6ywQ7cQpSNdM2W7fVOXD/ORGky2MjZqro0LBFMdE/j -----END CERTIFICATE-----Generated at Tue May 5 19:06:22 2026 by rpki-client