$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: anG8TUGcjaOPDV3iZyfW/+kLySKpCh/f3G30OEhjhik= Subject key identifier: 37:FC:AF:26:45:91:26:BF:D3:1B:A1:AD:E4:CD:7E:54:FB:AB:04:AA Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 607ED8664FCE9F26AC78F1356682780A99F4E313 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:58 +0000 ROA not before: Sun 03 May 2026 02:06:58 +0000 ROA not after: Sun 02 May 2027 02:11:58 +0000 asID: 153087 IP address blocks: 2404:97c0:223::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:7e:d8:66:4f:ce:9f:26:ac:78:f1:35:66:82:78:0a:99:f4:e3:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:58 2026 GMT Not After : May 2 02:11:58 2027 GMT Subject: CN=37FCAF26459126BFD31BA1ADE4CD7E54FBAB04AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:45:c2:89:63:5b:6f:28:35:84:4f:8a:6b:bf: c2:eb:2d:b8:01:9c:b4:47:e8:6d:90:9d:4d:61:94: 3d:f5:47:7a:f2:61:f4:54:a6:8f:ef:cc:33:91:df: b8:68:36:0c:4e:ba:7d:5f:b6:89:e4:a9:42:87:b5: a3:89:71:6b:65:7d:6e:2c:4e:3a:97:f2:89:da:4f: a4:30:c1:fb:46:2f:02:93:88:1b:fc:4c:4b:a3:8c: 3c:b3:46:90:08:67:3f:70:53:0a:25:ee:16:46:6a: 88:32:76:29:f1:43:c3:2a:b2:e3:79:6f:70:13:8c: 35:e6:0b:12:fd:ae:ce:6a:bc:7a:c6:03:04:df:eb: 72:9a:cf:e1:25:a0:f6:04:12:cb:f7:98:4a:40:b9: a0:a9:c2:fb:15:ad:aa:c3:85:2e:c1:ec:a5:ab:04: cc:d5:66:11:67:0a:63:f2:23:a6:6b:5b:a6:3f:d6: 4b:a5:b1:d0:64:81:2e:32:7e:e1:66:99:d3:62:7d: d9:ca:94:8f:5a:30:2e:f7:32:71:d4:d5:15:28:87: 44:c0:66:bc:bf:ec:47:1c:16:bb:b5:1e:9e:3a:82: ae:ce:7e:ba:ef:f2:ee:87:f4:77:95:e2:2b:43:77: 5a:cf:aa:82:1d:13:74:35:10:e6:82:82:f5:45:93: 56:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FC:AF:26:45:91:26:BF:D3:1B:A1:AD:E4:CD:7E:54:FB:AB:04:AA X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:223::/48 Signature Algorithm: sha256WithRSAEncryption 79:fd:e1:5b:b3:d2:0e:fd:64:30:84:a8:87:88:fa:64:0c:f1: 9d:3c:43:7d:6c:57:ae:81:d3:63:82:77:b9:b6:91:cc:c3:a3: 27:08:05:d7:e4:59:db:7c:73:35:56:99:cb:1c:a6:47:25:b4: 5d:11:ea:91:ca:91:5a:9d:3b:5a:45:be:d6:d2:a8:54:a9:9b: de:9c:e8:fb:92:23:52:20:24:00:99:46:89:e2:55:56:ee:a3: eb:f8:24:51:c2:71:94:dc:8b:d7:c4:55:ff:c8:18:a4:1c:47: d6:a2:d8:99:2f:e0:39:62:3f:f2:62:95:10:56:bb:92:36:b0: e5:c6:46:4c:06:55:de:c4:d0:03:67:de:1b:c5:91:a9:a0:ce: 03:b8:01:d2:73:ee:c4:e2:46:a7:18:4c:04:43:9f:ab:ac:f4: 12:e4:4a:78:70:d4:fc:6b:87:41:f4:ec:f7:50:17:1e:0e:e5: 63:6b:2f:3a:93:ed:1e:a1:bc:73:48:71:73:1d:34:6a:c2:3c: d7:9b:aa:c0:a3:ab:02:b4:3a:ef:69:74:c7:0e:99:e8:0f:b3: 04:8c:3a:f1:38:36:fb:2b:9c:4e:e4:87:28:46:ee:f3:e5:0f: 52:f9:08:0a:41:78:bd:71:59:9f:b3:87:4d:e1:aa:a6:bf:d2: ad:fa:4f:a6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYH7YZk/OnyasePE1ZoJ4Cpn04xMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NThaFw0yNzA1MDIwMjExNThaMDMxMTAvBgNV BAMTKDM3RkNBRjI2NDU5MTI2QkZEMzFCQTFBREU0Q0Q3RTU0RkJBQjA0QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuRcKJY1tvKDWET4prv8LrLbgB nLRH6G2QnU1hlD31R3ryYfRUpo/vzDOR37hoNgxOun1ftonkqUKHtaOJcWtlfW4s TjqX8onaT6QwwftGLwKTiBv8TEujjDyzRpAIZz9wUwol7hZGaogydinxQ8MqsuN5 b3ATjDXmCxL9rs5qvHrGAwTf63Kaz+EloPYEEsv3mEpAuaCpwvsVrarDhS7B7KWr BMzVZhFnCmPyI6ZrW6Y/1kulsdBkgS4yfuFmmdNifdnKlI9aMC73MnHU1RUoh0TA Zry/7EccFru1Hp46gq7Ofrrv8u6H9HeV4itDd1rPqoIdE3Q1EOaCgvVFk1ZbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUN/yvJkWRJr/TG6Gt5M1+VPurBKowHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIjMA0GCSqGSIb3DQEBCwUAA4IBAQB5/eFbs9IO/WQwhKiHiPpkDPGdPEN9bFeu gdNjgne5tpHMw6MnCAXX5FnbfHM1VpnLHKZHJbRdEeqRypFanTtaRb7W0qhUqZve nOj7kiNSICQAmUaJ4lVW7qPr+CRRwnGU3IvXxFX/yBikHEfWotiZL+A5Yj/yYpUQ VruSNrDlxkZMBlXexNADZ94bxZGpoM4DuAHSc+7E4kanGEwEQ5+rrPQS5Ep4cNT8 a4dB9Oz3UBceDuVjay86k+0eobxzSHFzHTRqwjzXm6rAo6sCtDrvaXTHDpnoD7ME jDrxODb7K5xO5IcoRu7z5Q9S+QgKQXi9cVmfs4dN4aqmv9Kt+k+m -----END CERTIFICATE-----Generated at Wed May 13 14:57:16 2026 by rpki-client