$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: lSgNBzeujBoJYYDvFPtGkE6i6dyf/XanUcOh1lWqPf0= Subject key identifier: 8F:3A:2E:1D:76:D0:76:08:A1:3A:C6:45:23:C7:28:E4:19:83:6F:66 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 1FCA66F443524EE825BAA42D9AAD7271B8E9E365 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:44 +0000 ROA not before: Sun 03 May 2026 02:06:44 +0000 ROA not after: Sun 02 May 2027 02:11:44 +0000 asID: 153087 IP address blocks: 2404:97c0:2226::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ca:66:f4:43:52:4e:e8:25:ba:a4:2d:9a:ad:72:71:b8:e9:e3:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:44 2026 GMT Not After : May 2 02:11:44 2027 GMT Subject: CN=8F3A2E1D76D07608A13AC64523C728E419836F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:18:3e:f4:fc:c8:d2:53:8c:30:60:b6:29:c9: ea:f7:31:92:75:27:fe:50:8f:a7:77:b1:98:00:db: 2b:ca:41:72:b3:d2:8a:17:e2:82:d0:55:fe:e0:48: 12:1d:02:89:c5:5d:49:33:4d:99:0c:a1:18:af:63: ee:5e:94:28:4b:c3:e6:b3:de:96:b8:9a:a8:4e:6a: 04:dd:6f:7d:7a:af:d0:c7:f2:86:ff:8c:73:4d:6e: 69:e8:9f:41:b6:78:8b:00:f5:d3:24:e5:0d:f7:80: dc:10:e8:e6:9b:98:81:50:da:8b:1d:25:52:a4:02: 75:33:93:cf:37:5c:2c:1d:b2:b4:38:79:ad:10:0a: 36:a0:a7:b5:b0:68:6c:27:aa:f9:61:5f:3d:88:a0: 38:b1:d2:c7:6f:7d:df:fc:d5:14:89:5d:5c:51:3f: 1f:72:50:f2:bd:ce:9d:3d:ea:11:77:be:dd:02:bb: 4b:5d:8f:5d:87:9e:8e:35:a8:91:da:d4:63:b6:c6: b2:5d:bc:56:92:bd:13:52:c3:99:2f:96:60:31:c8: 2a:a9:9c:4b:15:ff:1c:b7:d3:2a:40:e8:c6:25:ee: b3:6e:f6:dd:48:2f:67:28:6e:f6:37:bf:01:d3:dc: bd:ce:1b:27:d9:2e:ec:39:5f:48:be:a7:c7:d8:50: 7b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3A:2E:1D:76:D0:76:08:A1:3A:C6:45:23:C7:28:E4:19:83:6F:66 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2226::/48 Signature Algorithm: sha256WithRSAEncryption 14:5a:25:f4:5e:69:ee:c3:7d:79:1a:10:0e:ec:e5:b5:23:23: ff:48:ae:3d:c7:ad:2c:af:6b:0e:5f:61:17:d9:df:66:6d:03: ff:c2:de:64:8d:e2:b4:12:fe:f5:04:8d:2d:40:d5:f0:ce:9a: e2:d9:b2:b1:25:b8:0b:e5:8d:63:dc:88:2e:2f:49:6a:a9:38: 06:9e:09:77:25:a8:c2:dc:39:ac:56:10:e9:47:cc:3e:d6:22: 6c:d9:a3:8c:9e:d7:b3:a5:74:ad:b5:6d:7e:ef:9b:99:72:d5: 7d:37:3b:7e:51:f0:66:1a:b8:c9:97:3c:d0:4c:42:66:e5:4b: e5:82:61:ec:4a:f2:07:3f:b7:89:68:04:d0:8e:f2:4b:61:82: d9:c3:ec:93:87:ad:b0:72:b0:ec:10:85:ee:d5:3e:40:1c:aa: c0:0d:e5:2e:f8:bc:65:88:49:66:e4:74:96:27:5b:d0:1d:6a: 64:9e:1e:6a:bf:6f:59:64:ca:a4:e4:06:65:4a:f9:38:62:1f: 30:af:2f:9c:57:43:49:07:30:a9:57:71:dc:da:55:9d:7d:8b: ac:67:0f:77:61:fb:7b:2b:1e:ad:79:dd:df:37:61:89:88:6b: f2:12:11:25:bf:e9:b4:c0:47:da:60:60:e1:e5:fe:8a:b8:b2: 98:14:45:cb -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUH8pm9ENSTugluqQtmq1ycbjp42UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDRaFw0yNzA1MDIwMjExNDRaMDMxMTAvBgNV BAMTKDhGM0EyRTFENzZEMDc2MDhBMTNBQzY0NTIzQzcyOEU0MTk4MzZGNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIGD70/MjSU4wwYLYpyer3MZJ1 J/5Qj6d3sZgA2yvKQXKz0ooX4oLQVf7gSBIdAonFXUkzTZkMoRivY+5elChLw+az 3pa4mqhOagTdb316r9DH8ob/jHNNbmnon0G2eIsA9dMk5Q33gNwQ6OabmIFQ2osd JVKkAnUzk883XCwdsrQ4ea0QCjagp7WwaGwnqvlhXz2IoDix0sdvfd/81RSJXVxR Px9yUPK9zp096hF3vt0Cu0tdj12Hno41qJHa1GO2xrJdvFaSvRNSw5kvlmAxyCqp nEsV/xy30ypA6MYl7rNu9t1IL2cobvY3vwHT3L3OGyfZLuw5X0i+p8fYUHupAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjzouHXbQdgihOsZFI8co5BmDb2YwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiYwDQYJKoZIhvcNAQELBQADggEBABRaJfReae7DfXkaEA7s5bUjI/9Irj3H rSyvaw5fYRfZ32ZtA//C3mSN4rQS/vUEjS1A1fDOmuLZsrEluAvljWPciC4vSWqp OAaeCXclqMLcOaxWEOlHzD7WImzZo4ye17OldK21bX7vm5ly1X03O35R8GYauMmX PNBMQmblS+WCYexK8gc/t4loBNCO8kthgtnD7JOHrbBysOwQhe7VPkAcqsAN5S74 vGWISWbkdJYnW9AdamSeHmq/b1lkyqTkBmVK+ThiHzCvL5xXQ0kHMKlXcdzaVZ19 i6xnD3dh+3srHq153d83YYmIa/ISESW/6bTAR9pgYOHl/oq4spgURcs= -----END CERTIFICATE-----Generated at Wed May 13 14:27:33 2026 by rpki-client