$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: yHtq5eP09o6CldsCcFCOM0baU1Suj5TbEm19l5vNQmo= Subject key identifier: A1:EC:22:35:30:00:5C:76:12:8D:6A:68:D4:34:D9:71:74:B2:B7:D0 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 0A1536B0FE105B45304297D191F0895F5DCDB13A Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:57 +0000 ROA not before: Sun 03 May 2026 02:06:57 +0000 ROA not after: Sun 02 May 2027 02:11:57 +0000 asID: 153087 IP address blocks: 2404:97c0:2231::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:15:36:b0:fe:10:5b:45:30:42:97:d1:91:f0:89:5f:5d:cd:b1:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:57 2026 GMT Not After : May 2 02:11:57 2027 GMT Subject: CN=A1EC223530005C76128D6A68D434D97174B2B7D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f0:fb:69:1a:b2:63:85:a8:2a:b3:db:c3:94: ce:37:be:af:91:dc:d2:a6:0b:52:45:ff:5f:50:91: ba:de:27:a2:ee:77:43:b3:a4:22:9f:13:32:9d:00: 52:82:ad:c0:03:27:cf:72:5c:af:59:03:75:d0:35: 24:0f:24:0a:07:ae:bb:37:fd:12:89:9e:f7:df:3e: 37:b6:97:8f:ff:a6:b2:07:fb:d9:e6:a2:eb:79:70: cc:d6:48:39:2f:83:48:b6:79:d4:e8:21:f2:16:5b: 6d:5a:8d:67:62:95:da:de:39:9c:c7:d5:59:17:9c: 51:0d:3d:83:d5:c9:90:c0:6d:fb:5d:43:ca:a1:09: 5a:b3:13:3a:28:2a:be:a9:7e:8d:c1:4d:c7:ff:36: 83:19:20:24:85:22:da:3b:49:6d:db:5b:2b:79:9d: 72:23:36:cc:77:52:97:9a:de:d0:2c:07:3b:40:67: 82:e6:e7:21:03:33:17:1d:f8:e8:64:05:1e:36:62: 23:f6:5c:96:32:2a:fb:43:04:c0:cf:43:ae:40:aa: ac:c0:72:66:d1:6b:e2:9b:d2:3f:18:7f:54:9c:aa: 4a:f2:5e:c3:fd:34:0b:6c:25:0e:e1:1e:08:f7:29: be:f9:f4:fc:81:df:e0:d2:9a:5b:fe:ba:5a:a0:a6: 16:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EC:22:35:30:00:5C:76:12:8D:6A:68:D4:34:D9:71:74:B2:B7:D0 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2231::/48 Signature Algorithm: sha256WithRSAEncryption 88:cc:ee:92:af:2d:11:6b:be:87:20:39:2c:89:6d:6d:8e:3f: f8:b5:88:56:fe:fd:ee:cf:04:6f:a7:b8:ec:a8:db:e1:4e:3d: ca:f8:83:8f:10:6f:0f:91:83:bc:3c:50:89:2c:aa:01:69:28: bc:9c:1a:f6:f7:58:7a:ff:c7:cb:2e:1c:0a:29:f0:3f:b4:a5: 10:ca:70:cb:10:d2:41:46:89:05:83:e3:7b:4a:ee:0b:fa:c0: 85:3f:3c:cd:5e:b6:86:3a:61:8c:b6:c4:f0:99:8d:73:ea:c0: 89:2c:6c:40:b4:e4:b2:ff:d8:85:df:c3:30:7b:b6:8d:c6:a6: aa:fb:50:d9:72:53:6e:54:3b:f4:f1:04:cf:e1:ad:c9:d4:e7: d6:3e:9a:61:50:2a:0e:03:e1:42:72:9a:26:7e:bf:86:93:a3: 2c:4d:6e:98:b5:60:09:42:da:d2:56:49:91:9f:e5:fc:b0:d5: db:d8:b9:89:2e:d1:1b:cc:6a:af:ad:aa:27:56:f5:13:48:0f: d7:b0:b3:ea:49:05:88:14:6b:fd:ff:36:20:12:0f:4c:d6:a2: 35:e4:8e:51:1a:10:e5:36:fe:37:a8:92:b3:2b:87:2a:55:3e: 34:b1:65:0e:92:a6:d3:d2:b1:b2:36:68:c4:d1:91:c1:ee:67: 48:a0:c4:ae -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUChU2sP4QW0UwQpfRkfCJX13NsTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTdaFw0yNzA1MDIwMjExNTdaMDMxMTAvBgNV BAMTKEExRUMyMjM1MzAwMDVDNzYxMjhENkE2OEQ0MzREOTcxNzRCMkI3RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp8PtpGrJjhagqs9vDlM43vq+R 3NKmC1JF/19QkbreJ6Lud0OzpCKfEzKdAFKCrcADJ89yXK9ZA3XQNSQPJAoHrrs3 /RKJnvffPje2l4//prIH+9nmout5cMzWSDkvg0i2edToIfIWW21ajWdildreOZzH 1VkXnFENPYPVyZDAbftdQ8qhCVqzEzooKr6pfo3BTcf/NoMZICSFIto7SW3bWyt5 nXIjNsx3Upea3tAsBztAZ4Lm5yEDMxcd+OhkBR42YiP2XJYyKvtDBMDPQ65AqqzA cmbRa+Kb0j8Yf1ScqkryXsP9NAtsJQ7hHgj3Kb759PyB3+DSmlv+ulqgphZ1AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUoewiNTAAXHYSjWpo1DTZcXSyt9AwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjEwDQYJKoZIhvcNAQELBQADggEBAIjM7pKvLRFrvocgOSyJbW2OP/i1iFb+ /e7PBG+nuOyo2+FOPcr4g48Qbw+Rg7w8UIksqgFpKLycGvb3WHr/x8suHAop8D+0 pRDKcMsQ0kFGiQWD43tK7gv6wIU/PM1etoY6YYy2xPCZjXPqwIksbEC05LL/2IXf wzB7to3Gpqr7UNlyU25UO/TxBM/hrcnU59Y+mmFQKg4D4UJymiZ+v4aToyxNbpi1 YAlC2tJWSZGf5fyw1dvYuYku0RvMaq+tqidW9RNID9ews+pJBYgUa/3/NiASD0zW ojXkjlEaEOU2/jeokrMrhypVPjSxZQ6SptPSsbI2aMTRkcHuZ0igxK4= -----END CERTIFICATE-----Generated at Wed May 13 15:56:46 2026 by rpki-client