$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 9W28cZkGg0hftsQIpVll1/m9CRrAf96INGqb30EGZdY= Subject key identifier: 8E:32:C3:18:44:53:8D:4C:B5:9E:C4:FF:2A:5D:34:6F:F2:05:2E:E7 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 270B6A9FE6695E50CA3257C47C218F7924D9362D Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:56 +0000 ROA not before: Sun 03 May 2026 02:06:56 +0000 ROA not after: Sun 02 May 2027 02:11:56 +0000 asID: 153087 IP address blocks: 2404:97c0:2248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:0b:6a:9f:e6:69:5e:50:ca:32:57:c4:7c:21:8f:79:24:d9:36:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:56 2026 GMT Not After : May 2 02:11:56 2027 GMT Subject: CN=8E32C31844538D4CB59EC4FF2A5D346FF2052EE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7a:e7:7d:0c:b0:fe:4c:1d:71:06:01:ac:07: 4c:f6:99:5b:8a:b0:cd:2e:fc:86:03:85:7b:aa:6c: 5f:68:c5:c0:a1:b1:5b:f3:74:a9:55:58:8f:59:a7: 3d:39:bb:0b:d8:d6:37:dd:a2:a5:2f:bf:bc:26:2c: 9d:ec:aa:32:5b:2f:c3:eb:85:18:c5:d5:bd:f2:5a: 71:3b:d2:fa:16:80:24:fe:b1:b3:e0:b0:6f:fb:7f: fb:2b:5d:13:bb:ef:eb:40:a8:c7:28:2b:f6:56:41: 21:5a:16:c1:70:98:7b:71:20:35:ae:79:f3:b5:29: c5:fa:88:fa:c4:5f:c3:85:ed:e9:d9:18:8f:0e:ff: f0:6e:72:97:17:07:42:1e:e5:c2:4f:c7:44:34:4e: 91:a2:e3:f3:65:a9:f3:4f:15:d8:ef:00:ec:c0:4f: 7c:0f:bf:be:cc:80:9b:1a:45:39:b1:76:f8:16:8a: a6:52:98:cd:4f:39:05:db:e2:06:0b:0c:39:9f:75: 5e:53:c1:b4:11:1f:97:9f:bf:c8:d8:fb:a2:32:e6: a7:1b:d0:93:c4:f6:73:11:6c:7f:43:c2:bb:74:3e: 23:83:67:68:b9:da:0a:9d:3a:59:9c:e4:71:f4:cb: 19:3a:57:a6:f9:a0:b4:dc:49:16:19:f5:41:1a:b4: 93:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:32:C3:18:44:53:8D:4C:B5:9E:C4:FF:2A:5D:34:6F:F2:05:2E:E7 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2248::/48 Signature Algorithm: sha256WithRSAEncryption 16:48:11:16:21:3b:e1:b1:07:c0:03:46:1e:d7:50:1e:63:d5: bf:4b:d0:9b:ee:d9:76:45:10:63:c1:60:ef:a1:9a:e3:cd:6e: 5a:9e:f5:fd:25:69:9c:91:23:12:58:29:8c:76:51:56:81:4d: d8:39:05:7b:16:8c:6e:6c:b7:e8:7a:c8:89:02:5d:7f:c5:2f: 12:eb:14:b5:92:a3:1b:ad:71:b1:69:84:84:66:01:a1:20:e8: 29:f0:22:42:6b:ee:26:f1:41:06:08:00:4e:82:f4:d4:77:42: d7:3c:13:ad:b0:53:c3:12:cb:0b:f8:cc:29:31:5d:0c:d2:62: a5:d8:7c:8c:f4:01:f0:32:59:31:e7:96:73:cb:59:15:55:36: b7:4c:fe:d3:a7:fe:76:a7:ef:d9:46:a9:d1:7b:ec:47:88:6f: 94:db:74:b1:ee:bd:0b:11:8c:e3:9e:1c:cf:4a:01:17:4d:0b: 69:cb:0b:1c:cc:bf:c3:c1:78:60:12:b9:f3:d3:21:be:22:dd: a7:a8:6d:d0:e4:f2:08:62:f9:e2:5d:23:59:4c:33:c2:3c:f7: 89:b0:af:23:1a:9f:75:2f:60:8c:8b:d7:de:47:ca:fe:82:60: 65:a6:11:79:9e:43:d8:b7:fb:bb:e0:53:7a:d3:24:88:11:8f: 09:a4:0b:a0 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJwtqn+ZpXlDKMlfEfCGPeSTZNi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTZaFw0yNzA1MDIwMjExNTZaMDMxMTAvBgNV BAMTKDhFMzJDMzE4NDQ1MzhENENCNTlFQzRGRjJBNUQzNDZGRjIwNTJFRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfeud9DLD+TB1xBgGsB0z2mVuK sM0u/IYDhXuqbF9oxcChsVvzdKlVWI9Zpz05uwvY1jfdoqUvv7wmLJ3sqjJbL8Pr hRjF1b3yWnE70voWgCT+sbPgsG/7f/srXRO77+tAqMcoK/ZWQSFaFsFwmHtxIDWu efO1KcX6iPrEX8OF7enZGI8O//BucpcXB0Ie5cJPx0Q0TpGi4/NlqfNPFdjvAOzA T3wPv77MgJsaRTmxdvgWiqZSmM1POQXb4gYLDDmfdV5TwbQRH5efv8jY+6Iy5qcb 0JPE9nMRbH9Dwrt0PiODZ2i52gqdOlmc5HH0yxk6V6b5oLTcSRYZ9UEatJOBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjjLDGERTjUy1nsT/Kl00b/IFLucwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkgwDQYJKoZIhvcNAQELBQADggEBABZIERYhO+GxB8ADRh7XUB5j1b9L0Jvu 2XZFEGPBYO+hmuPNblqe9f0laZyRIxJYKYx2UVaBTdg5BXsWjG5st+h6yIkCXX/F LxLrFLWSoxutcbFphIRmAaEg6CnwIkJr7ibxQQYIAE6C9NR3Qtc8E62wU8MSywv4 zCkxXQzSYqXYfIz0AfAyWTHnlnPLWRVVNrdM/tOn/nan79lGqdF77EeIb5TbdLHu vQsRjOOeHM9KARdNC2nLCxzMv8PBeGASufPTIb4i3aeobdDk8ghi+eJdI1lMM8I8 94mwryMan3UvYIyL195Hyv6CYGWmEXmeQ9i3+7vgU3rTJIgRjwmkC6A= -----END CERTIFICATE-----Generated at Wed May 13 13:41:28 2026 by rpki-client