$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: KNU1RVIDnMxtoNQaQ5WJddr1ZXVPNHYjfuRaOeaMD0Y= Subject key identifier: 97:66:91:1F:64:64:8F:B9:A6:A8:BD:66:CD:75:8E:70:83:64:1E:A7 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 3E6352F75A1325CCE31FFEB96E4C3CA04E867E0E Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:44 +0000 ROA not before: Sun 03 May 2026 02:06:44 +0000 ROA not after: Sun 02 May 2027 02:11:44 +0000 asID: 153087 IP address blocks: 2404:97c0:2239::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:63:52:f7:5a:13:25:cc:e3:1f:fe:b9:6e:4c:3c:a0:4e:86:7e:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:44 2026 GMT Not After : May 2 02:11:44 2027 GMT Subject: CN=9766911F64648FB9A6A8BD66CD758E7083641EA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:c8:bd:cd:86:35:20:b3:fb:d0:8a:59:d0: 81:9c:04:11:e2:c7:cf:f8:95:db:06:e6:87:dc:3b: 96:de:c5:e0:d0:8f:fa:58:be:f3:2e:d2:d0:09:aa: 37:01:21:3d:62:48:2b:46:c9:13:7a:ce:b6:f4:47: 40:b4:2c:f4:3b:53:25:bb:07:bc:9f:a5:36:0f:11: 50:65:47:7b:a0:38:dd:ce:42:9c:ef:fd:fb:77:a9: 96:92:e8:74:bd:79:3f:d2:6c:24:98:e5:da:2d:9e: 8e:9b:a6:85:5b:47:33:88:ad:d8:ac:c7:aa:22:10: 71:87:8c:68:93:db:3f:21:c4:42:c5:ec:41:22:18: b9:f5:9e:cb:5d:55:3b:88:ff:ac:85:e4:41:7d:36: 70:6e:8d:3a:25:17:a7:d0:b1:10:c3:63:d9:b9:00: 69:99:66:4b:ed:4d:b9:c8:58:86:c0:14:1c:45:b6: a6:3a:e4:d6:e1:33:2a:23:93:16:17:88:c6:fe:46: f8:dc:ec:26:cb:67:f4:e6:44:7e:5e:8d:37:3d:ba: a6:4e:bc:39:72:6b:32:ec:c1:8d:0c:e8:b8:f7:e6: 16:f9:4e:d4:d9:96:70:07:11:cc:bf:5a:4a:4b:7f: 19:62:bd:ef:9f:1a:8c:92:9e:21:7d:3c:d1:23:f8: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:66:91:1F:64:64:8F:B9:A6:A8:BD:66:CD:75:8E:70:83:64:1E:A7 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2239::/48 Signature Algorithm: sha256WithRSAEncryption 05:98:2d:39:29:e9:18:df:ef:28:e3:cf:5e:ff:0f:3e:56:1d: 53:73:74:97:36:e8:09:cb:ca:4d:c1:72:44:4a:d1:cf:d4:5c: ae:a7:92:5b:2f:80:71:5c:18:d3:c1:c6:e6:92:2f:ad:b1:24: 35:7e:1a:65:30:89:41:7c:11:05:e8:e9:13:12:df:0b:1f:d1: f7:15:ba:75:a3:77:ab:b8:d9:bf:f3:aa:a8:a8:9c:7e:ae:cd: 7c:9e:2f:99:d0:f2:aa:db:39:cb:9e:88:5e:a0:1b:47:96:69: d1:18:54:c3:31:9a:27:0d:f2:4a:96:60:ee:dd:e0:f1:7a:3a: cd:98:aa:45:5f:b9:d9:06:c9:62:8e:29:8b:e5:86:27:49:a1: a8:32:61:63:33:dd:b2:75:f2:da:f2:80:31:b1:87:af:5f:8b: fc:fe:a7:c2:13:82:e7:cf:03:f8:5c:0d:fc:ef:66:95:f0:1c: 04:7b:51:ae:0d:b8:26:77:4b:f7:1b:7f:f8:e2:a5:cb:b9:91: 61:89:c2:5e:2e:74:39:1d:54:bd:47:a4:78:4a:ff:0d:c4:21: ff:63:96:7c:85:ff:f2:cb:4e:99:38:18:de:71:e7:4d:23:8c: df:c0:47:60:49:b1:1a:a1:2d:8c:4f:d5:5c:2b:d7:50:7d:88: cc:e9:2e:a1 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPmNS91oTJczjH/65bkw8oE6Gfg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDRaFw0yNzA1MDIwMjExNDRaMDMxMTAvBgNV BAMTKDk3NjY5MTFGNjQ2NDhGQjlBNkE4QkQ2NkNENzU4RTcwODM2NDFFQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzV8i9zYY1ILP70IpZ0IGcBBHi x8/4ldsG5ofcO5bexeDQj/pYvvMu0tAJqjcBIT1iSCtGyRN6zrb0R0C0LPQ7UyW7 B7yfpTYPEVBlR3ugON3OQpzv/ft3qZaS6HS9eT/SbCSY5dotno6bpoVbRzOIrdis x6oiEHGHjGiT2z8hxELF7EEiGLn1nstdVTuI/6yF5EF9NnBujTolF6fQsRDDY9m5 AGmZZkvtTbnIWIbAFBxFtqY65NbhMyojkxYXiMb+Rvjc7CbLZ/TmRH5ejTc9uqZO vDlyazLswY0M6Lj35hb5TtTZlnAHEcy/WkpLfxlive+fGoySniF9PNEj+JDdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUl2aRH2Rkj7mmqL1mzXWOcINkHqcwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjkwDQYJKoZIhvcNAQELBQADggEBAAWYLTkp6Rjf7yjjz17/Dz5WHVNzdJc2 6AnLyk3BckRK0c/UXK6nklsvgHFcGNPBxuaSL62xJDV+GmUwiUF8EQXo6RMS3wsf 0fcVunWjd6u42b/zqqionH6uzXyeL5nQ8qrbOcueiF6gG0eWadEYVMMxmicN8kqW YO7d4PF6Os2YqkVfudkGyWKOKYvlhidJoagyYWMz3bJ18trygDGxh69fi/z+p8IT gufPA/hcDfzvZpXwHAR7Ua4NuCZ3S/cbf/jipcu5kWGJwl4udDkdVL1HpHhK/w3E If9jlnyF//LLTpk4GN5x500jjN/AR2BJsRqhLYxP1Vwr11B9iMzpLqE= -----END CERTIFICATE-----Generated at Wed May 13 14:33:36 2026 by rpki-client