$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: Sy30XvdOCHsDFc6tf8GymK/SXz6cRMawxom4NZrdev8= Subject key identifier: 80:78:B9:CA:DD:7A:94:A3:48:66:4D:40:02:DA:E2:2A:D0:E3:3B:C5 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 6873BADCEC9E41ECC7119A2BC453CA5E8EE1DB28 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:44 +0000 ROA not before: Sun 03 May 2026 02:06:44 +0000 ROA not after: Sun 02 May 2027 02:11:44 +0000 asID: 153087 IP address blocks: 2404:97c0:2232::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:73:ba:dc:ec:9e:41:ec:c7:11:9a:2b:c4:53:ca:5e:8e:e1:db:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:44 2026 GMT Not After : May 2 02:11:44 2027 GMT Subject: CN=8078B9CADD7A94A348664D4002DAE22AD0E33BC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:b3:27:5e:56:ba:38:d5:29:26:65:4b:c6: 99:ad:19:be:16:fd:4e:03:ee:59:20:b7:bf:12:0a: 66:00:cd:33:d6:37:ab:c0:ff:55:b6:d1:fb:a6:85: 21:3a:ac:03:08:2f:ed:e8:65:03:06:2b:61:6f:ea: 65:ed:33:bc:fc:94:9a:7d:fa:83:31:31:5f:bf:0c: bf:44:61:70:00:55:1d:cd:bb:b7:d6:76:8b:9d:76: 6a:0c:af:08:ac:46:f4:d4:12:a4:9d:86:c8:95:0f: 1a:88:27:51:c3:b6:de:0a:68:32:3d:b9:1f:fb:dd: 87:b8:85:5d:f7:00:a3:44:36:31:44:3a:b8:7f:a3: 37:19:62:87:99:4d:37:79:75:e5:c0:e7:7e:1f:d7: e6:9e:b3:68:56:0a:e4:9b:55:24:87:77:cb:47:38: 39:38:68:83:95:32:30:a6:c0:67:b0:f4:21:e3:ce: df:7a:cf:d7:f1:f2:44:b4:a9:b9:91:7e:a7:d2:46: 11:22:76:3f:21:5c:0c:42:7f:bc:70:50:eb:c4:9d: 69:84:18:e2:80:3b:6e:84:82:d4:a4:e5:30:d0:65: e9:50:aa:b6:3c:36:52:1b:5e:93:d8:79:9a:ba:ee: 84:cf:ae:14:5b:cc:28:3d:2e:56:70:4f:18:3d:7b: 01:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:78:B9:CA:DD:7A:94:A3:48:66:4D:40:02:DA:E2:2A:D0:E3:3B:C5 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2232::/48 Signature Algorithm: sha256WithRSAEncryption 02:53:df:f5:d8:25:7f:3a:19:42:c9:fa:95:a2:d7:43:51:93: 55:46:8a:da:48:b9:32:c5:59:da:ed:06:6b:97:12:b3:53:83: b0:b3:9a:41:c9:51:7f:22:17:f7:f1:bb:4a:f3:9c:a7:e9:1c: 78:06:df:8b:80:67:e8:0a:27:97:63:b2:25:86:f1:ad:28:82: d7:5d:ca:00:47:4c:50:b0:49:c9:cf:ed:26:68:07:7a:18:3b: af:42:91:1b:0c:19:3d:7c:21:98:42:49:3e:ce:cf:8d:26:2e: cf:61:1d:cc:d8:f0:da:07:d5:32:de:83:85:62:7b:48:d5:b1: 96:e6:a1:40:cc:1d:43:75:f5:86:af:83:c0:eb:70:f9:ec:cf: 26:4d:33:7e:de:44:b0:71:a5:c9:93:78:f6:22:95:71:16:66: c6:d8:9e:9c:96:57:ff:8f:3a:a8:94:60:d9:57:71:54:ec:53: 08:3f:37:a6:2c:10:c7:d2:ab:d8:17:ed:b3:9f:32:09:a9:69: fe:11:5c:16:77:6f:7e:a9:4e:9e:d8:08:36:22:91:a0:e8:46: 50:18:df:6a:69:04:02:d3:a8:81:49:90:f2:a4:57:af:80:11: ec:f1:b0:3b:f1:a0:4b:76:96:15:88:f9:ec:9b:8b:f0:68:76: a8:95:e7:f8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUaHO63OyeQezHEZorxFPKXo7h2ygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDRaFw0yNzA1MDIwMjExNDRaMDMxMTAvBgNV BAMTKDgwNzhCOUNBREQ3QTk0QTM0ODY2NEQ0MDAyREFFMjJBRDBFMzNCQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCPbMnXla6ONUpJmVLxpmtGb4W /U4D7lkgt78SCmYAzTPWN6vA/1W20fumhSE6rAMIL+3oZQMGK2Fv6mXtM7z8lJp9 +oMxMV+/DL9EYXAAVR3Nu7fWdouddmoMrwisRvTUEqSdhsiVDxqIJ1HDtt4KaDI9 uR/73Ye4hV33AKNENjFEOrh/ozcZYoeZTTd5deXA534f1+aes2hWCuSbVSSHd8tH ODk4aIOVMjCmwGew9CHjzt96z9fx8kS0qbmRfqfSRhEidj8hXAxCf7xwUOvEnWmE GOKAO26EgtSk5TDQZelQqrY8NlIbXpPYeZq67oTPrhRbzCg9LlZwTxg9ewGnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUgHi5yt16lKNIZk1AAtriKtDjO8UwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjIwDQYJKoZIhvcNAQELBQADggEBAAJT3/XYJX86GULJ+pWi10NRk1VGitpI uTLFWdrtBmuXErNTg7CzmkHJUX8iF/fxu0rznKfpHHgG34uAZ+gKJ5djsiWG8a0o gtddygBHTFCwScnP7SZoB3oYO69CkRsMGT18IZhCST7Oz40mLs9hHczY8NoH1TLe g4Vie0jVsZbmoUDMHUN19Yavg8DrcPnszyZNM37eRLBxpcmTePYilXEWZsbYnpyW V/+POqiUYNlXcVTsUwg/N6YsEMfSq9gX7bOfMgmpaf4RXBZ3b36pTp7YCDYikaDo RlAY32ppBALTqIFJkPKkV6+AEezxsDvxoEt2lhWI+eybi/BodqiV5/g= -----END CERTIFICATE-----Generated at Wed May 13 15:56:48 2026 by rpki-client