$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: FTytwgj96vIWcbvbYlXdLpn/BUIurxU0Hg79MSiGw4M= Subject key identifier: BB:F8:A7:84:AA:56:F2:D7:C0:EC:7F:23:4B:71:BE:5C:3F:6E:F3:38 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 050DAA0DB44C37A001C6C751620C9E9C447B7BC3 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:54 +0000 ROA not before: Sun 03 May 2026 02:06:54 +0000 ROA not after: Sun 02 May 2027 02:11:54 +0000 asID: 153087 IP address blocks: 2404:97c0:2222::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:0d:aa:0d:b4:4c:37:a0:01:c6:c7:51:62:0c:9e:9c:44:7b:7b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:54 2026 GMT Not After : May 2 02:11:54 2027 GMT Subject: CN=BBF8A784AA56F2D7C0EC7F234B71BE5C3F6EF338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:23:c5:15:9b:ff:47:f6:b1:80:2d:e2:6d:af: 9a:e1:de:75:1b:d1:0f:d2:17:d2:60:12:56:fc:1e: 51:ca:f1:17:4d:56:da:90:11:02:c7:0b:e0:4d:d6: 8f:b1:da:83:2b:ea:ea:60:6c:98:d4:a8:a6:b2:3c: 7d:91:a2:8c:f9:2b:a7:cb:53:71:4b:2f:9a:3d:b8: bb:c7:d9:f0:e9:3d:21:c7:a0:f1:6e:63:8c:c8:2b: cd:a9:36:54:d6:4f:1e:62:9d:94:05:aa:f8:48:fd: b2:a8:f3:ab:53:cc:15:d1:d3:42:86:5b:41:b0:61: 8f:68:3c:62:9d:d2:a3:b0:96:b5:30:67:ed:a8:39: a1:7b:50:86:13:23:1e:ea:f4:7b:62:f8:64:a5:e5: 12:53:f8:a0:36:29:64:f4:9f:c0:b0:b9:42:10:35: 32:d0:85:c6:93:f9:e9:60:c2:b0:d5:46:97:e6:1a: a0:f7:a6:47:c2:52:47:5d:e6:f8:96:aa:e0:f7:a0: 9a:38:a4:7c:02:4d:92:5d:bb:1c:ae:b1:80:5c:20: ba:16:a2:4d:c2:5b:ba:66:bb:f8:77:05:98:8e:75: 9d:9a:ba:6d:0c:c2:ca:f4:09:e8:e1:fc:6b:18:ed: 5d:4f:a4:c5:4b:c1:1d:b8:6b:70:c3:5e:82:50:1d: 03:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F8:A7:84:AA:56:F2:D7:C0:EC:7F:23:4B:71:BE:5C:3F:6E:F3:38 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2222::/48 Signature Algorithm: sha256WithRSAEncryption 9e:12:d7:dc:44:7e:d2:77:36:ad:15:15:b9:3b:af:59:f8:85: 23:9f:4f:9e:0f:d5:0e:36:b7:93:cf:30:b7:63:de:3f:b7:09: 19:ea:8a:14:c5:38:3a:a6:b7:8d:4d:68:9d:39:c6:8b:8c:a2: 91:b8:61:0d:4e:04:96:cc:93:a1:77:84:aa:54:da:e1:63:3c: b4:de:9d:ac:ce:38:f7:a6:20:c3:b2:6f:e0:0f:91:c9:0c:fd: eb:b5:e2:23:d8:1d:ef:3e:9a:b5:16:7a:73:89:04:b1:81:60: 0e:40:fb:38:58:39:77:e0:94:bf:ab:cb:c7:10:86:4e:49:c5: b7:cf:f7:ea:59:31:e4:6b:9c:e8:ea:59:4d:9c:2b:ea:49:20: 4e:77:37:91:11:5f:da:f0:bf:68:ab:76:94:7b:01:7a:2a:7f: f8:b1:16:2d:56:35:d4:2a:ba:ed:a5:da:0a:68:8f:00:5a:bf: 84:55:77:82:91:7f:7b:6b:ac:7e:8f:26:b3:a5:39:60:6b:65: 6d:59:cf:1c:3f:65:88:f7:a9:72:a0:20:18:bb:4a:cd:83:fc: fa:d1:07:34:55:94:ba:4f:5d:81:79:c2:53:60:a4:07:de:35: e9:2b:61:80:75:90:ae:6d:f7:f9:20:73:12:01:1f:7e:0e:0a: 36:91:7e:75 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUBQ2qDbRMN6ABxsdRYgyenER7e8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTRaFw0yNzA1MDIwMjExNTRaMDMxMTAvBgNV BAMTKEJCRjhBNzg0QUE1NkYyRDdDMEVDN0YyMzRCNzFCRTVDM0Y2RUYzMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYI8UVm/9H9rGALeJtr5rh3nUb 0Q/SF9JgElb8HlHK8RdNVtqQEQLHC+BN1o+x2oMr6upgbJjUqKayPH2Rooz5K6fL U3FLL5o9uLvH2fDpPSHHoPFuY4zIK82pNlTWTx5inZQFqvhI/bKo86tTzBXR00KG W0GwYY9oPGKd0qOwlrUwZ+2oOaF7UIYTIx7q9Hti+GSl5RJT+KA2KWT0n8CwuUIQ NTLQhcaT+elgwrDVRpfmGqD3pkfCUkdd5viWquD3oJo4pHwCTZJduxyusYBcILoW ok3CW7pmu/h3BZiOdZ2aum0Mwsr0Cejh/GsY7V1PpMVLwR24a3DDXoJQHQMtAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUu/inhKpW8tfA7H8jS3G+XD9u8zgwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiIwDQYJKoZIhvcNAQELBQADggEBAJ4S19xEftJ3Nq0VFbk7r1n4hSOfT54P 1Q42t5PPMLdj3j+3CRnqihTFODqmt41NaJ05xouMopG4YQ1OBJbMk6F3hKpU2uFj PLTenazOOPemIMOyb+APkckM/eu14iPYHe8+mrUWenOJBLGBYA5A+zhYOXfglL+r y8cQhk5JxbfP9+pZMeRrnOjqWU2cK+pJIE53N5ERX9rwv2irdpR7AXoqf/ixFi1W NdQquu2l2gpojwBav4RVd4KRf3trrH6PJrOlOWBrZW1Zzxw/ZYj3qXKgIBi7Ss2D /PrRBzRVlLpPXYF5wlNgpAfeNekrYYB1kK5t9/kgcxIBH34OCjaRfnU= -----END CERTIFICATE-----Generated at Wed May 13 14:40:54 2026 by rpki-client