$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ku9dMAhpUhJs61GXqpgzLKekUKf1tGDVznuujdt7keM= Subject key identifier: 6C:10:49:C1:40:30:AC:EA:4D:2B:C3:6A:48:D6:98:9F:77:89:F5:40 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 69C90A5D309333759A53296BCED324BD1AD7CFB6 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:50 +0000 ROA not before: Sun 03 May 2026 02:06:50 +0000 ROA not after: Sun 02 May 2027 02:11:50 +0000 asID: 153087 IP address blocks: 2404:97c0:2241::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c9:0a:5d:30:93:33:75:9a:53:29:6b:ce:d3:24:bd:1a:d7:cf:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:50 2026 GMT Not After : May 2 02:11:50 2027 GMT Subject: CN=6C1049C14030ACEA4D2BC36A48D6989F7789F540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e1:6a:ee:47:67:0c:0c:2a:c3:d1:d2:f4:52: 68:76:ea:dd:47:75:db:d2:57:58:12:b0:44:6a:78: 7a:ed:d2:c8:fc:d4:01:07:6e:c0:94:f2:2e:e1:66: 03:34:ec:08:c6:a2:0b:c5:f9:ae:45:c3:8e:3a:95: f7:10:32:cc:43:7c:5b:9f:2a:e4:ea:45:60:3d:73: 13:d1:61:a4:06:b1:be:21:88:8e:d5:53:7d:7f:22: 96:ba:9a:48:23:cd:d7:f3:51:5c:22:a5:f2:a2:f1: 51:7c:d9:a1:be:47:43:01:28:60:e4:bd:0e:b9:d2: 9f:98:0a:3c:3e:d4:53:5f:b4:84:f5:c0:22:e1:1f: 36:e2:5b:8d:97:f8:28:91:5c:26:c0:e1:cd:bf:1e: 72:db:e3:1c:4c:85:88:73:63:60:7e:40:e1:76:f2: 14:a6:a9:e8:0b:ec:01:bd:f5:54:b8:ea:50:f9:18: 81:ab:20:25:4c:04:d2:48:b0:c4:44:8a:2d:37:e0: 8d:e9:d7:be:7b:c2:bd:85:30:ba:4f:29:09:f9:09: 72:ef:63:11:9d:06:3b:a4:2e:20:1b:0f:9d:57:d2: 8f:02:f8:f1:a4:96:f7:43:29:5a:5a:eb:bf:d2:d7: 91:5f:9f:c9:4f:00:44:2d:e9:de:62:31:0d:28:92: ce:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:10:49:C1:40:30:AC:EA:4D:2B:C3:6A:48:D6:98:9F:77:89:F5:40 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2241::/48 Signature Algorithm: sha256WithRSAEncryption 91:28:f5:76:8d:d1:84:e1:db:c7:53:eb:55:c0:29:33:19:63: 25:db:0b:21:53:9f:77:ec:2a:5a:70:33:e5:74:11:80:4a:e5: 48:9c:cb:0a:02:e3:eb:fd:e5:f4:29:0e:42:9e:38:c6:c9:2f: 4b:15:6d:d0:08:65:b8:b3:13:3a:6a:ea:bf:07:c5:2d:c5:38: 6f:34:eb:03:4b:d4:19:67:5b:74:a8:77:02:09:73:17:15:b8: 91:51:d0:97:29:06:6b:31:3a:98:17:8c:ef:42:98:de:29:f1: 0a:87:f7:28:61:34:37:d8:42:d3:86:cb:d4:8b:ed:72:19:75: 44:1e:54:80:d6:0f:ae:b0:09:c9:7e:d5:a6:8f:77:d9:4c:8e: ca:5a:32:be:a5:d6:45:c5:6c:3b:6c:bc:56:b5:d8:27:b1:05: 46:22:ec:84:d1:09:7a:0a:0f:26:1a:a5:82:a3:cf:e1:d2:0c: 92:07:9d:27:02:c8:3f:f3:d6:79:eb:e6:79:74:cf:6a:d0:a3: 20:c7:26:81:3e:78:5b:21:da:d7:3e:08:eb:8e:07:83:88:fa: 0f:58:39:c9:a3:c2:75:f3:55:c1:c9:20:36:c4:23:88:12:4a: 1f:f2:25:9d:c3:e2:0e:62:e6:e2:bd:bd:c1:a6:8c:2d:f9:58: 82:e0:c4:ed -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUackKXTCTM3WaUylrztMkvRrXz7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTBaFw0yNzA1MDIwMjExNTBaMDMxMTAvBgNV BAMTKDZDMTA0OUMxNDAzMEFDRUE0RDJCQzM2QTQ4RDY5ODlGNzc4OUY1NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT4WruR2cMDCrD0dL0Umh26t1H ddvSV1gSsERqeHrt0sj81AEHbsCU8i7hZgM07AjGogvF+a5Fw446lfcQMsxDfFuf KuTqRWA9cxPRYaQGsb4hiI7VU31/Ipa6mkgjzdfzUVwipfKi8VF82aG+R0MBKGDk vQ650p+YCjw+1FNftIT1wCLhHzbiW42X+CiRXCbA4c2/HnLb4xxMhYhzY2B+QOF2 8hSmqegL7AG99VS46lD5GIGrICVMBNJIsMREii034I3p1757wr2FMLpPKQn5CXLv YxGdBjukLiAbD51X0o8C+PGklvdDKVpa67/S15Ffn8lPAEQt6d5iMQ0oks6JAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUbBBJwUAwrOpNK8NqSNaYn3eJ9UAwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0MzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkEwDQYJKoZIhvcNAQELBQADggEBAJEo9XaN0YTh28dT61XAKTMZYyXbCyFT n3fsKlpwM+V0EYBK5UicywoC4+v95fQpDkKeOMbJL0sVbdAIZbizEzpq6r8HxS3F OG806wNL1BlnW3SodwIJcxcVuJFR0JcpBmsxOpgXjO9CmN4p8QqH9yhhNDfYQtOG y9SL7XIZdUQeVIDWD66wCcl+1aaPd9lMjspaMr6l1kXFbDtsvFa12CexBUYi7ITR CXoKDyYapYKjz+HSDJIHnScCyD/z1nnr5nl0z2rQoyDHJoE+eFsh2tc+COuOB4OI +g9YOcmjwnXzVcHJIDbEI4gSSh/yJZ3D4g5i5uK9vcGmjC35WILgxO0= -----END CERTIFICATE-----Generated at Wed May 13 14:37:23 2026 by rpki-client