$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: xWjT7W91b2tD1kbGf3m2ITLePNDPh1TKYalCKkhiAnA= Subject key identifier: 39:7C:EA:27:9B:05:B8:DB:41:59:F6:DE:6F:F0:27:89:CC:C5:00:93 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 0DF37E8B93880E4BBF581890FC7BA7E4A3C0B73B Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:56 +0000 ROA not before: Sun 03 May 2026 02:06:56 +0000 ROA not after: Sun 02 May 2027 02:11:56 +0000 asID: 153087 IP address blocks: 2404:97c0:163::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f3:7e:8b:93:88:0e:4b:bf:58:18:90:fc:7b:a7:e4:a3:c0:b7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:56 2026 GMT Not After : May 2 02:11:56 2027 GMT Subject: CN=397CEA279B05B8DB4159F6DE6FF02789CCC50093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:dd:b8:18:eb:6e:40:33:0d:19:93:67:bb:86: d2:89:06:47:13:b1:5a:4c:90:d5:8d:ed:13:f0:a4: 19:ce:be:11:52:f8:46:41:1c:83:f2:76:0b:7f:66: 17:c3:e3:a0:a5:31:ef:f9:0d:78:a1:50:a4:33:00: 5a:b7:13:65:cc:87:49:b1:3d:76:17:91:05:36:7e: 9c:2b:cc:f1:7e:a6:da:8d:a8:a5:02:32:e0:4a:b5: 73:06:33:95:3e:39:33:3a:ca:0d:17:2a:6c:30:c1: 3d:b7:8b:f6:e1:7d:b5:e2:2d:7d:54:c9:61:43:ef: fe:7d:b0:a8:f3:ac:19:57:f1:a6:bc:c0:ad:b0:55: 45:07:ff:d4:fb:d6:4c:14:60:45:b6:4e:8e:fa:fc: a5:5d:87:0a:f3:11:9a:b4:c0:6f:89:cb:da:2c:0e: 4d:2e:a3:2a:47:76:92:9b:c4:0d:a0:ce:9e:45:ae: 16:3d:08:84:80:69:9b:54:11:6c:28:3f:b6:79:a5: 97:5a:56:2e:3e:ac:d9:11:bb:fd:32:b5:2e:9e:f9: 4b:69:94:08:f1:6a:90:f0:fb:da:43:e3:db:22:6e: f8:aa:01:f9:c9:0f:99:ed:46:5b:c4:a2:da:12:74: 4d:3e:a9:64:12:36:de:8a:0a:37:4b:8d:65:e1:98: fa:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7C:EA:27:9B:05:B8:DB:41:59:F6:DE:6F:F0:27:89:CC:C5:00:93 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:163::/48 Signature Algorithm: sha256WithRSAEncryption 28:b6:df:ee:38:f1:a3:c9:5c:be:61:3a:75:c0:74:a3:3c:5f: 68:91:41:a1:23:88:27:0b:40:a8:45:51:ca:52:6d:8f:f2:92: 30:d9:a5:53:6f:72:72:93:29:b8:83:db:3e:08:bf:42:90:7f: 37:97:69:53:54:f4:e4:2c:2e:49:d2:43:67:bc:e4:5a:38:48: e2:20:6b:e1:bf:5b:3c:b9:f4:32:28:c3:7c:4a:e7:57:ee:42: 49:6b:72:07:b2:c5:6a:ef:1d:77:41:fb:3f:6a:98:a9:2a:4a: 11:b0:ea:76:80:ee:f4:76:7d:e4:12:ba:2c:7a:fb:03:6d:71: 09:b7:32:33:18:e3:f2:86:15:1c:14:6a:19:77:7e:b9:29:7e: 65:16:bc:57:97:59:04:a8:37:9c:73:5b:0a:bc:88:12:a8:63: 23:cb:48:40:fc:7c:68:d8:0d:2d:50:e8:91:3d:71:4e:c9:df: 42:29:98:55:37:90:14:fc:71:9d:a7:31:23:d4:a7:af:c8:d3: 69:6f:38:6c:cf:6b:f2:f9:d7:b9:97:ef:69:9f:4c:5e:f7:4d: cb:5c:6e:41:ee:f9:2a:55:fb:ca:dd:91:6e:8f:ca:91:42:8b: be:4c:a5:1c:e5:86:76:84:0d:c2:27:e3:90:f7:8d:fb:1c:1d: e7:81:58:ba -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDfN+i5OIDku/WBiQ/Hun5KPAtzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTZaFw0yNzA1MDIwMjExNTZaMDMxMTAvBgNV BAMTKDM5N0NFQTI3OUIwNUI4REI0MTU5RjZERTZGRjAyNzg5Q0NDNTAwOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn3bgY625AMw0Zk2e7htKJBkcT sVpMkNWN7RPwpBnOvhFS+EZBHIPydgt/ZhfD46ClMe/5DXihUKQzAFq3E2XMh0mx PXYXkQU2fpwrzPF+ptqNqKUCMuBKtXMGM5U+OTM6yg0XKmwwwT23i/bhfbXiLX1U yWFD7/59sKjzrBlX8aa8wK2wVUUH/9T71kwUYEW2To76/KVdhwrzEZq0wG+Jy9os Dk0uoypHdpKbxA2gzp5FrhY9CISAaZtUEWwoP7Z5pZdaVi4+rNkRu/0ytS6e+Utp lAjxapDw+9pD49sibviqAfnJD5ntRlvEotoSdE0+qWQSNt6KCjdLjWXhmPoXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOXzqJ5sFuNtBWfbeb/AniczFAJMwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQAott/uOPGjyVy+YTp1wHSjPF9okUGhI4gn C0CoRVHKUm2P8pIw2aVTb3Jykym4g9s+CL9CkH83l2lTVPTkLC5J0kNnvORaOEji IGvhv1s8ufQyKMN8SudX7kJJa3IHssVq7x13Qfs/apipKkoRsOp2gO70dn3kEros evsDbXEJtzIzGOPyhhUcFGoZd365KX5lFrxXl1kEqDecc1sKvIgSqGMjy0hA/Hxo 2A0tUOiRPXFOyd9CKZhVN5AU/HGdpzEj1KevyNNpbzhsz2vy+de5l+9pn0xe903L XG5B7vkqVfvK3ZFuj8qRQou+TKUc5YZ2hA3CJ+OQ9437HB3ngVi6 -----END CERTIFICATE-----Generated at Wed May 13 14:24:45 2026 by rpki-client