$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: gPemj+RQYfgsL9RftHU3xBhj1AC9TppboaB1N+poD8Q= Subject key identifier: 43:74:6D:B3:7D:1D:87:2F:A9:BB:EF:DB:3E:6D:B7:7A:AB:71:8C:7A Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 6CCE5150763A556DFB4ED85935D53164B7D330E0 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:47 +0000 ROA not before: Sun 03 May 2026 02:06:47 +0000 ROA not after: Sun 02 May 2027 02:11:47 +0000 asID: 153087 IP address blocks: 2404:97c0:2229::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ce:51:50:76:3a:55:6d:fb:4e:d8:59:35:d5:31:64:b7:d3:30:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:47 2026 GMT Not After : May 2 02:11:47 2027 GMT Subject: CN=43746DB37D1D872FA9BBEFDB3E6DB77AAB718C7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4d:21:1d:4f:ed:45:c4:1a:49:87:71:24:1c: 69:be:94:f5:a3:64:59:43:1d:82:43:be:97:48:af: bb:75:7a:93:87:ca:10:74:b2:81:3b:fa:4a:2a:81: eb:d7:db:8d:ff:77:4d:55:4d:99:0a:3f:9a:fa:19: 10:79:b5:38:23:9a:1f:67:e3:e7:51:04:a4:1a:4b: 18:b7:6d:f0:8b:b3:91:85:9f:d6:69:46:9b:13:aa: bd:62:a3:8a:93:d6:fa:da:03:cd:bb:c5:3b:de:c1: cc:7d:46:6f:8a:a2:73:62:82:ff:67:2b:96:22:0c: 26:2b:08:8a:bf:76:52:cc:b9:b3:1e:ea:2c:12:a8: 16:f6:32:a3:b2:9c:27:15:66:56:03:5e:a5:38:4e: fd:88:46:35:f8:0c:2c:b9:30:cb:84:61:3f:3d:b0: 32:d9:35:6c:39:7f:11:8b:22:69:82:84:5b:39:fa: 05:ae:ad:ab:4f:ce:65:1d:2e:a5:35:bd:e0:4d:27: 50:40:3b:2f:79:e0:40:a6:5e:ac:50:36:00:05:b7: 3c:f2:95:d6:b2:16:16:76:39:c3:02:45:65:19:9d: 99:86:c7:76:e7:75:e1:c1:1a:1e:f1:12:b4:4d:83: e8:0e:6a:dd:45:26:39:3e:6b:b0:5f:cf:05:e1:24: 32:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:74:6D:B3:7D:1D:87:2F:A9:BB:EF:DB:3E:6D:B7:7A:AB:71:8C:7A X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2229::/48 Signature Algorithm: sha256WithRSAEncryption 60:bf:52:be:1b:8f:49:07:59:48:dc:1e:a4:b6:f2:fb:ce:ba: e5:d9:43:47:ad:a4:9d:7e:34:02:e5:ce:5c:39:8f:5f:3a:19: 38:cd:fd:1f:67:ca:45:82:09:ae:dd:b8:dc:38:33:f3:e3:30: 2a:49:93:89:22:4a:60:c7:a5:26:ef:7f:fa:22:16:73:c2:57: d9:3f:41:6f:51:d1:83:36:4f:bf:e0:ec:37:a6:39:ae:78:3e: fe:40:74:ee:34:70:51:a8:99:22:3a:f8:e1:a4:08:8f:cd:2c: 72:60:43:50:0e:ee:9f:ee:e4:2c:6f:09:24:df:3e:eb:30:40: b0:a2:69:b0:72:10:ef:02:6d:0d:e6:ac:41:03:78:24:13:d0: cb:0b:4c:c5:71:51:43:a6:62:d3:06:29:df:0d:4b:e0:13:de: 37:7b:f7:57:15:32:ab:5e:b3:01:c3:fd:c5:d8:5c:20:79:03: bc:75:6b:14:32:dc:35:6e:85:b6:6a:3e:c7:61:1b:89:1c:fe: 38:9f:2e:fc:3c:15:3c:04:dc:db:f6:72:a9:61:4c:5a:50:d1: 28:41:86:55:6f:ee:44:fe:cd:8e:f1:65:76:c4:3a:74:16:92: 46:dc:7e:b9:fa:84:eb:59:2b:0b:85:6a:8e:8f:60:11:56:6f: 48:4b:43:81 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUbM5RUHY6VW37TthZNdUxZLfTMOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDdaFw0yNzA1MDIwMjExNDdaMDMxMTAvBgNV BAMTKDQzNzQ2REIzN0QxRDg3MkZBOUJCRUZEQjNFNkRCNzdBQUI3MThDN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhTSEdT+1FxBpJh3EkHGm+lPWj ZFlDHYJDvpdIr7t1epOHyhB0soE7+koqgevX243/d01VTZkKP5r6GRB5tTgjmh9n 4+dRBKQaSxi3bfCLs5GFn9ZpRpsTqr1io4qT1vraA827xTvewcx9Rm+KonNigv9n K5YiDCYrCIq/dlLMubMe6iwSqBb2MqOynCcVZlYDXqU4Tv2IRjX4DCy5MMuEYT89 sDLZNWw5fxGLImmChFs5+gWuratPzmUdLqU1veBNJ1BAOy954ECmXqxQNgAFtzzy ldayFhZ2OcMCRWUZnZmGx3bndeHBGh7xErRNg+gOat1FJjk+a7BfzwXhJDJtAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQ3Rts30dhy+pu+/bPm23eqtxjHowHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIikwDQYJKoZIhvcNAQELBQADggEBAGC/Ur4bj0kHWUjcHqS28vvOuuXZQ0et pJ1+NALlzlw5j186GTjN/R9nykWCCa7duNw4M/PjMCpJk4kiSmDHpSbvf/oiFnPC V9k/QW9R0YM2T7/g7DemOa54Pv5AdO40cFGomSI6+OGkCI/NLHJgQ1AO7p/u5Cxv CSTfPuswQLCiabByEO8CbQ3mrEEDeCQT0MsLTMVxUUOmYtMGKd8NS+AT3jd791cV MqteswHD/cXYXCB5A7x1axQy3DVuhbZqPsdhG4kc/jifLvw8FTwE3Nv2cqlhTFpQ 0ShBhlVv7kT+zY7xZXbEOnQWkkbcfrn6hOtZKwuFao6PYBFWb0hLQ4E= -----END CERTIFICATE-----Generated at Wed May 13 14:28:08 2026 by rpki-client