$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232383a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232383a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: wjcY2tpU7lJo11+8kU/E4ONKG27Q/PjJ7O8QkTZC+ns= Subject key identifier: 6F:63:1C:E6:79:F1:5C:11:79:E7:C9:7A:F7:66:81:33:0D:EB:22:E9 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 4B6679CCC4904ED13EDCE27548FBF8AAC5989946 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232383a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:51 +0000 ROA not before: Sun 03 May 2026 02:06:51 +0000 ROA not after: Sun 02 May 2027 02:11:51 +0000 asID: 153087 IP address blocks: 2404:97c0:2228::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:66:79:cc:c4:90:4e:d1:3e:dc:e2:75:48:fb:f8:aa:c5:98:99:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:51 2026 GMT Not After : May 2 02:11:51 2027 GMT Subject: CN=6F631CE679F15C1179E7C97AF76681330DEB22E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:23:a2:a5:ac:1c:0c:e5:32:6f:36:ac:f7:d0: e2:39:4b:72:a8:63:cf:d2:98:15:26:03:7f:0a:9a: df:e4:5f:e3:2d:eb:91:50:ec:ad:aa:d1:f1:cb:13: 67:23:73:ed:64:bf:58:bd:19:f2:fa:d6:10:bb:6f: e7:33:fc:bf:27:24:f4:b5:61:08:52:2e:03:af:24: a5:3d:30:70:bb:f1:5d:8a:67:cc:d9:8c:e0:96:4c: 44:fb:71:67:1d:f5:79:f1:6c:8f:4b:46:2a:f2:1d: 75:7a:27:7e:95:a9:b7:09:f9:51:b3:89:3b:f8:e7: f3:71:8c:5e:af:5a:19:9f:37:31:9c:37:46:1b:ea: f7:a2:6b:25:14:0b:f3:ef:d0:4f:fc:dc:af:99:cd: 6b:47:13:ec:df:60:e9:88:0c:a3:17:6c:8c:3d:82: f0:82:d0:67:62:64:9c:0e:7a:4f:3d:37:e4:f9:59: 1b:16:4f:05:73:37:e3:58:3c:bb:80:09:85:52:51: 5c:f1:04:fc:31:61:c8:96:07:80:4d:7a:87:15:e0: 01:6a:51:1c:20:bb:23:1b:b7:97:a5:46:ee:dc:a9: d9:d3:1e:cc:a5:90:8c:c6:95:47:29:dd:18:40:73: 09:21:98:73:b5:7f:63:5a:07:39:34:fe:46:59:90: 63:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:63:1C:E6:79:F1:5C:11:79:E7:C9:7A:F7:66:81:33:0D:EB:22:E9 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232383a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2228::/48 Signature Algorithm: sha256WithRSAEncryption 3c:22:35:ab:6a:ad:01:2d:20:9a:7a:ba:7d:73:74:bc:0a:39: d0:99:50:c6:b3:1b:63:2f:b3:0b:cd:80:78:3f:1a:ff:5f:cd: ad:ee:7e:1f:54:c5:de:1f:47:27:04:c0:30:2f:61:b9:e0:ad: e5:9e:73:05:ed:4b:c4:f2:c5:f9:1d:9d:09:05:ea:f3:e8:92: cb:96:a1:20:98:73:09:37:b7:4d:3e:09:3f:9c:f9:77:b0:b3: 90:c2:7f:07:d7:af:3b:4a:5e:3f:0d:42:35:4d:1b:27:6e:f7: d7:15:24:b2:bb:50:fb:4e:ab:34:bb:66:02:8b:fc:1d:e0:b7: af:38:02:e4:0c:48:cc:f9:14:2c:d9:03:71:f5:3e:0a:d3:26: 55:67:30:84:cd:85:e5:c6:4a:2d:64:ce:a3:cc:8b:37:60:fc: 59:51:57:46:a4:95:c5:ed:b5:93:0c:f8:59:2d:48:69:f3:61: 50:16:03:f4:a3:af:b1:8f:c7:af:6d:4d:19:45:27:4b:16:9c: cc:11:69:f8:64:f8:ec:a4:2b:85:16:3f:fd:f1:f7:d7:ca:37: 24:ac:81:a9:0f:c2:dd:2d:a8:7a:ec:6d:76:07:1a:35:f5:ff: f6:0c:b7:56:8f:7c:c2:08:af:ca:8e:6b:05:3c:21:9a:18:b3: 76:9b:da:ec -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUS2Z5zMSQTtE+3OJ1SPv4qsWYmUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTFaFw0yNzA1MDIwMjExNTFaMDMxMTAvBgNV BAMTKDZGNjMxQ0U2NzlGMTVDMTE3OUU3Qzk3QUY3NjY4MTMzMERFQjIyRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcI6KlrBwM5TJvNqz30OI5S3Ko Y8/SmBUmA38Kmt/kX+Mt65FQ7K2q0fHLE2cjc+1kv1i9GfL61hC7b+cz/L8nJPS1 YQhSLgOvJKU9MHC78V2KZ8zZjOCWTET7cWcd9XnxbI9LRiryHXV6J36VqbcJ+VGz iTv45/NxjF6vWhmfNzGcN0Yb6veiayUUC/Pv0E/83K+ZzWtHE+zfYOmIDKMXbIw9 gvCC0GdiZJwOek89N+T5WRsWTwVzN+NYPLuACYVSUVzxBPwxYciWB4BNeocV4AFq URwguyMbt5elRu7cqdnTHsylkIzGlUcp3RhAcwkhmHO1f2NaBzk0/kZZkGPXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUb2Mc5nnxXBF558l692aBMw3rIukwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIigwDQYJKoZIhvcNAQELBQADggEBADwiNatqrQEtIJp6un1zdLwKOdCZUMaz G2MvswvNgHg/Gv9fza3ufh9Uxd4fRycEwDAvYbngreWecwXtS8TyxfkdnQkF6vPo ksuWoSCYcwk3t00+CT+c+Xews5DCfwfXrztKXj8NQjVNGydu99cVJLK7UPtOqzS7 ZgKL/B3gt684AuQMSMz5FCzZA3H1PgrTJlVnMITNheXGSi1kzqPMizdg/FlRV0ak lcXttZMM+FktSGnzYVAWA/Sjr7GPx69tTRlFJ0sWnMwRafhk+OykK4UWP/3x99fK NySsgakPwt0tqHrsbXYHGjX1//YMt1aPfMIIr8qOawU8IZoYs3ab2uw= -----END CERTIFICATE-----Generated at Wed May 13 14:27:45 2026 by rpki-client