$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: IhMG+Dj1FXrUSPXRgjufdh2xCdNmXbe6PG0xNSVB2Do= Subject key identifier: 3E:6D:BC:77:1E:69:85:F9:7A:9F:69:51:CD:DD:4E:B6:FF:89:26:B9 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 7A13D7945B035AB6677622D8027CBC539A4BC4AC Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:47 +0000 ROA not before: Sun 03 May 2026 02:06:47 +0000 ROA not after: Sun 02 May 2027 02:11:47 +0000 asID: 153087 IP address blocks: 2404:97c0:103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:13:d7:94:5b:03:5a:b6:67:76:22:d8:02:7c:bc:53:9a:4b:c4:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:47 2026 GMT Not After : May 2 02:11:47 2027 GMT Subject: CN=3E6DBC771E6985F97A9F6951CDDD4EB6FF8926B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:b6:5e:d9:8b:8b:3f:34:29:dc:32:e4:cd: 91:41:a3:08:92:35:69:7f:ea:01:5e:86:dd:12:79: 5f:0f:82:7c:27:9c:5b:0d:e6:e6:e9:d5:9a:85:e5: 40:33:15:9f:0b:2f:dd:13:34:15:35:fe:e4:a6:69: 9a:6c:d4:9a:4b:43:d6:d1:c2:8a:0e:17:8d:35:63: 3a:0a:b0:9f:de:cc:80:a7:f4:af:87:ee:a2:92:ff: b2:b0:bd:47:11:95:f5:03:06:51:64:dc:b8:35:3a: 3d:0f:31:f3:2c:61:5a:15:e7:bd:1e:6f:bf:5a:c4: f4:6f:57:b5:7e:32:5c:93:0a:cf:97:76:29:54:e5: 78:7a:83:77:04:95:87:46:4f:60:d0:0a:63:b0:fd: bc:99:24:72:2a:67:0b:52:ce:5e:aa:98:b1:62:5d: 5f:19:10:60:41:e5:83:d5:b0:10:c3:15:3d:2c:e4: e8:87:57:34:fe:2f:43:d9:8b:59:d4:ed:91:f5:10: f0:c6:c9:25:48:77:a3:53:10:a1:78:84:4e:2d:9a: 46:a7:fa:49:08:41:46:2b:ce:3b:b2:dc:b5:6c:b9: 81:6a:d7:dc:52:a9:38:8b:0d:6e:fc:67:31:7a:f4: ae:d8:fe:19:cf:36:a3:dc:d5:63:7b:d0:7b:34:fb: e9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6D:BC:77:1E:69:85:F9:7A:9F:69:51:CD:DD:4E:B6:FF:89:26:B9 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:103::/48 Signature Algorithm: sha256WithRSAEncryption 83:3b:b7:6d:dc:d0:d0:aa:19:15:1e:77:fa:3b:05:17:ef:58: db:91:b8:93:bd:bd:2d:90:3c:e3:ba:e8:d1:69:f3:0b:f3:23: ca:60:be:00:f2:fe:02:ad:76:29:a2:ca:05:00:fc:52:7f:d8: c5:25:f7:8d:ad:d1:2b:df:50:19:a1:8f:4b:d8:3a:93:20:5b: d7:4e:d9:d7:9c:aa:53:cd:2e:36:7d:b1:27:e9:07:52:1b:7f: 04:10:ec:e6:65:a5:0c:5f:8c:82:af:ed:18:2a:8a:70:f1:5d: 7c:5c:0e:d3:69:1c:ed:7c:d9:8f:d6:af:54:f1:1d:80:fe:63: e6:b1:00:d5:a6:b0:19:90:1d:57:0c:4e:04:d4:6f:ec:33:92: a7:18:5c:14:6d:46:72:cf:41:10:20:48:29:0f:5a:a3:6a:f4: 64:1a:d4:5d:ae:62:ca:23:08:1a:bd:e4:2b:f6:ed:89:b1:3a: 7d:e2:11:f5:04:3d:e8:90:b2:b1:0d:23:7f:cd:0b:40:ac:8e: 8b:83:68:b5:ab:dc:c3:ca:cc:a2:c6:dc:b7:23:d9:7e:f2:0a: 2b:64:30:90:85:24:7b:57:88:c1:3c:5f:ef:af:18:08:68:eb: 65:5c:2e:69:1f:ba:74:89:5e:0c:9e:a9:54:c9:f5:43:c2:48: 81:82:5c:73 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUehPXlFsDWrZndiLYAny8U5pLxKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDdaFw0yNzA1MDIwMjExNDdaMDMxMTAvBgNV BAMTKDNFNkRCQzc3MUU2OTg1Rjk3QTlGNjk1MUNEREQ0RUI2RkY4OTI2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ErZe2YuLPzQp3DLkzZFBowiS NWl/6gFeht0SeV8PgnwnnFsN5ubp1ZqF5UAzFZ8LL90TNBU1/uSmaZps1JpLQ9bR wooOF401YzoKsJ/ezICn9K+H7qKS/7KwvUcRlfUDBlFk3Lg1Oj0PMfMsYVoV570e b79axPRvV7V+MlyTCs+XdilU5Xh6g3cElYdGT2DQCmOw/byZJHIqZwtSzl6qmLFi XV8ZEGBB5YPVsBDDFT0s5OiHVzT+L0PZi1nU7ZH1EPDGySVId6NTEKF4hE4tmkan +kkIQUYrzjuy3LVsuYFq19xSqTiLDW78ZzF69K7Y/hnPNqPc1WN70Hs0++nPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPm28dx5phfl6n2lRzd1Otv+JJrkwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQCDO7dt3NDQqhkVHnf6OwUX71jbkbiTvb0t kDzjuujRafML8yPKYL4A8v4CrXYposoFAPxSf9jFJfeNrdEr31AZoY9L2DqTIFvX TtnXnKpTzS42fbEn6QdSG38EEOzmZaUMX4yCr+0YKopw8V18XA7TaRztfNmP1q9U 8R2A/mPmsQDVprAZkB1XDE4E1G/sM5KnGFwUbUZyz0EQIEgpD1qjavRkGtRdrmLK IwgaveQr9u2JsTp94hH1BD3okLKxDSN/zQtArI6Lg2i1q9zDysyixty3I9l+8gor ZDCQhSR7V4jBPF/vrxgIaOtlXC5pH7p0iV4MnqlUyfVDwkiBglxz -----END CERTIFICATE-----Generated at Wed May 13 14:41:18 2026 by rpki-client