$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: UP4KqxKIyfXJPle+ZIqlhop+JenglD9I225759g3UHQ= Subject key identifier: 86:4F:81:A3:B7:FB:14:3B:D9:56:0F:0B:39:03:48:FF:D0:11:43:AD Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 0B3088C26E79131EC15AC793DEECBF2BCD8C138A Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:42 +0000 ROA not before: Sun 03 May 2026 02:06:42 +0000 ROA not after: Sun 02 May 2027 02:11:42 +0000 asID: 153087 IP address blocks: 2404:97c0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:30:88:c2:6e:79:13:1e:c1:5a:c7:93:de:ec:bf:2b:cd:8c:13:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:42 2026 GMT Not After : May 2 02:11:42 2027 GMT Subject: CN=864F81A3B7FB143BD9560F0B390348FFD01143AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:0d:a8:00:0c:ab:fb:36:53:e5:b8:a7:af: f8:e4:ba:0c:92:f8:b5:61:5f:2c:0f:fb:c3:17:f7: 89:bf:da:8b:1e:07:9d:b5:2f:70:e3:53:23:ed:e4: 79:b4:78:f7:92:8a:d5:ab:b3:b5:00:3b:1a:e6:34: 8f:a0:8d:4c:d3:cf:0a:40:42:b1:d4:51:4c:14:ee: e2:c1:3b:5a:50:aa:6d:5e:82:a7:d2:68:f9:37:d9: c4:a2:df:52:08:4f:e3:66:15:54:1d:e6:6b:40:54: 48:e9:8a:a1:3a:21:96:33:ef:81:12:22:f5:40:3d: 15:ab:92:de:4c:b9:15:a3:62:8c:1b:0a:6a:69:0a: f1:2c:ab:3d:6b:9b:3b:60:6d:9e:3e:2d:d1:04:88: ab:d7:e4:a2:53:12:91:14:c3:de:67:53:d1:35:d0: c5:98:1a:a4:26:87:8a:58:3e:6b:14:bf:9d:b8:f0: ec:29:94:e6:25:43:65:de:05:e7:5c:89:0f:fe:9d: 60:db:7d:bd:00:21:38:c0:b8:07:87:41:5a:76:e3: 05:ae:9d:46:34:33:f5:ed:02:fd:3f:01:12:32:e2: dc:19:47:c6:95:47:c9:cf:9e:dc:0f:60:9a:d7:2c: 05:c6:67:ef:fc:d0:c9:30:06:93:8f:e2:28:46:ed: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4F:81:A3:B7:FB:14:3B:D9:56:0F:0B:39:03:48:FF:D0:11:43:AD X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:222::/48 Signature Algorithm: sha256WithRSAEncryption 1d:54:cf:6a:f7:e5:14:8c:0d:f9:df:93:7c:82:a7:98:ed:05: 83:78:2c:ba:84:ff:6b:6a:aa:ff:72:e2:92:8d:15:45:52:a6: 29:64:bd:6a:ae:01:29:63:fc:3f:7c:f8:96:b0:58:a8:70:f9: 14:fe:b9:66:6b:5c:03:7d:22:20:3b:c9:db:24:b1:87:ae:4e: dd:2e:03:fe:7e:64:d1:dd:8f:e9:53:96:23:4a:69:7c:54:08: a6:34:82:04:31:d7:cb:5c:c0:31:f5:ac:3f:02:59:d3:92:30: ee:a4:7c:cb:a8:8a:e4:52:c6:0c:9d:ef:14:23:ed:89:5d:a2: 53:79:f1:07:2b:18:7d:3a:4b:1f:01:c4:c4:e2:a7:40:40:59: 20:c7:74:8f:47:8f:57:d4:11:2b:9e:27:15:26:f0:0f:68:d8: 16:38:3e:22:33:2b:63:d4:81:7f:c5:ce:f3:0f:67:f2:f7:3b: 1d:e9:9d:b1:97:d8:0c:16:03:09:59:49:70:76:4e:47:2f:29: 9f:49:7a:5e:5a:09:d8:5a:b9:fb:01:38:38:93:52:69:48:b1: b4:ae:c3:00:be:22:15:a1:f3:a0:d1:64:1d:45:e3:c6:49:91: 51:4f:b0:b0:e9:06:6c:c0:8f:b6:85:e2:17:66:25:ce:0c:7d: f2:73:42:7c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCzCIwm55Ex7BWseT3uy/K82ME4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDJaFw0yNzA1MDIwMjExNDJaMDMxMTAvBgNV BAMTKDg2NEY4MUEzQjdGQjE0M0JEOTU2MEYwQjM5MDM0OEZGRDAxMTQzQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Kw2oAAyr+zZT5binr/jkugyS +LVhXywP+8MX94m/2oseB521L3DjUyPt5Hm0ePeSitWrs7UAOxrmNI+gjUzTzwpA QrHUUUwU7uLBO1pQqm1egqfSaPk32cSi31IIT+NmFVQd5mtAVEjpiqE6IZYz74ES IvVAPRWrkt5MuRWjYowbCmppCvEsqz1rmztgbZ4+LdEEiKvX5KJTEpEUw95nU9E1 0MWYGqQmh4pYPmsUv5248OwplOYlQ2XeBedciQ/+nWDbfb0AITjAuAeHQVp24wWu nUY0M/XtAv0/ARIy4twZR8aVR8nPntwPYJrXLAXGZ+/80MkwBpOP4ihG7VSXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhk+Bo7f7FDvZVg8LOQNI/9ARQ60wHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQAdVM9q9+UUjA3535N8gqeY7QWDeCy6hP9r aqr/cuKSjRVFUqYpZL1qrgEpY/w/fPiWsFiocPkU/rlma1wDfSIgO8nbJLGHrk7d LgP+fmTR3Y/pU5YjSml8VAimNIIEMdfLXMAx9aw/AlnTkjDupHzLqIrkUsYMne8U I+2JXaJTefEHKxh9OksfAcTE4qdAQFkgx3SPR49X1BErnicVJvAPaNgWOD4iMytj 1IF/xc7zD2fy9zsd6Z2xl9gMFgMJWUlwdk5HLymfSXpeWgnYWrn7ATg4k1JpSLG0 rsMAviIVofOg0WQdRePGSZFRT7Cw6QZswI+2heIXZiXODH3yc0J8 -----END CERTIFICATE-----Generated at Wed May 13 13:48:13 2026 by rpki-client