$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: Zjq+1ra+5ltOWECWEESnNde65OewXc1URAEFFgrl3ZI= Subject key identifier: CD:3A:44:04:CA:80:EF:22:B4:EC:C5:3B:90:F3:E9:11:DC:88:8A:43 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 775D5A507D579349464C06E5ACF76845F17036ED Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:58 +0000 ROA not before: Sun 03 May 2026 02:06:58 +0000 ROA not after: Sun 02 May 2027 02:11:58 +0000 asID: 153087 IP address blocks: 2404:97c0:2249::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:5d:5a:50:7d:57:93:49:46:4c:06:e5:ac:f7:68:45:f1:70:36:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:58 2026 GMT Not After : May 2 02:11:58 2027 GMT Subject: CN=CD3A4404CA80EF22B4ECC53B90F3E911DC888A43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:32:1d:d3:00:97:96:51:bc:a2:63:7e:bb: e6:a5:df:da:3c:3d:8f:7d:0c:9d:6f:11:ed:f7:9b: 1a:be:ee:82:a9:87:e2:75:cb:4a:5f:42:7f:37:e9: a3:7f:3f:f7:1f:e6:ed:cc:a6:47:da:ef:69:f0:e9: 82:b6:00:8d:11:7e:50:bd:0a:be:e0:45:d7:ca:47: 75:61:1e:a0:04:f4:70:ce:d1:4a:6f:5f:f3:63:0a: e7:b8:7a:5e:a6:aa:20:03:fd:37:d4:e4:2c:c2:65: 9b:e8:ed:f8:91:0c:82:9b:0c:1f:9b:3a:be:fb:82: 0c:6a:d6:3e:8c:b6:03:79:f1:c1:f1:3e:59:7d:75: 75:22:64:6c:e0:45:c0:a4:65:6b:28:2f:20:cf:2b: a4:81:57:7e:22:e1:0e:ab:71:25:0c:e4:8b:73:5e: 17:22:82:bc:6c:ab:05:37:36:1f:3d:b6:88:4f:f0: d7:73:a3:9e:de:1d:a5:d2:cb:b1:88:46:8b:16:2b: c9:ea:d0:d5:28:2e:c3:b6:c1:61:2a:f1:fc:f6:47: 18:13:8c:82:b7:6e:d5:b3:ad:b6:1b:4b:6d:7e:9c: f7:3e:77:d6:26:b5:8b:ed:88:ff:71:a0:79:81:22: b4:cf:1d:0f:7d:0f:54:ea:99:ea:cf:4c:54:26:24: 5c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3A:44:04:CA:80:EF:22:B4:EC:C5:3B:90:F3:E9:11:DC:88:8A:43 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2249::/48 Signature Algorithm: sha256WithRSAEncryption 94:d9:b7:d7:3f:d4:9d:65:50:b7:44:6d:60:9d:07:92:6e:eb: 96:97:6b:63:cd:d9:15:2d:9c:42:14:5c:e6:87:ea:52:96:4a: 0a:db:04:c5:35:64:41:9b:88:3a:33:f2:07:4a:56:0f:bd:9d: 88:bd:25:bb:84:bc:1d:c3:12:55:68:58:10:aa:a8:22:fc:4f: 3b:23:44:cc:50:f8:4a:8b:fc:04:2c:74:3c:a8:c4:7e:fd:1b: c7:94:a4:4b:b4:63:d8:b4:5e:50:0a:a8:b8:f3:92:d0:ca:1b: 06:c4:d5:aa:50:48:5c:20:0e:19:de:ed:70:fc:8e:7f:5e:07: 84:54:3c:d8:bc:53:04:f8:b8:c2:aa:85:ee:c7:6e:c7:e4:bc: ee:01:35:91:ad:ee:a4:c4:21:2f:29:cd:f4:d1:5b:d7:de:61: 7e:46:92:55:dc:01:f9:bf:0a:27:dc:31:ff:a9:83:8d:9f:19: ba:49:ac:fa:d8:2c:bc:d3:f3:cd:5a:3d:f3:02:02:35:1f:98: ce:b0:cb:4c:09:23:03:08:f8:ab:04:3f:8f:03:61:90:a9:d8: 2b:47:1a:d1:f1:45:17:7b:6b:19:42:c8:1d:73:29:ad:0d:4d: b8:62:b9:54:ad:7c:3d:dd:77:b3:45:72:71:b1:ae:c2:29:6a: 32:9d:0e:c1 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUd11aUH1Xk0lGTAblrPdoRfFwNu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NThaFw0yNzA1MDIwMjExNThaMDMxMTAvBgNV BAMTKENEM0E0NDA0Q0E4MEVGMjJCNEVDQzUzQjkwRjNFOTExREM4ODhBNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzhzId0wCXllG8omN+u+al39o8 PY99DJ1vEe33mxq+7oKph+J1y0pfQn836aN/P/cf5u3Mpkfa72nw6YK2AI0RflC9 Cr7gRdfKR3VhHqAE9HDO0UpvX/NjCue4el6mqiAD/TfU5CzCZZvo7fiRDIKbDB+b Or77ggxq1j6MtgN58cHxPll9dXUiZGzgRcCkZWsoLyDPK6SBV34i4Q6rcSUM5Itz XhcigrxsqwU3Nh89tohP8Ndzo57eHaXSy7GIRosWK8nq0NUoLsO2wWEq8fz2RxgT jIK3btWzrbYbS21+nPc+d9YmtYvtiP9xoHmBIrTPHQ99D1TqmerPTFQmJFwXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUzTpEBMqA7yK07MU7kPPpEdyIikMwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkkwDQYJKoZIhvcNAQELBQADggEBAJTZt9c/1J1lULdEbWCdB5Ju65aXa2PN 2RUtnEIUXOaH6lKWSgrbBMU1ZEGbiDoz8gdKVg+9nYi9JbuEvB3DElVoWBCqqCL8 TzsjRMxQ+EqL/AQsdDyoxH79G8eUpEu0Y9i0XlAKqLjzktDKGwbE1apQSFwgDhne 7XD8jn9eB4RUPNi8UwT4uMKqhe7HbsfkvO4BNZGt7qTEIS8pzfTRW9feYX5GklXc Afm/CifcMf+pg42fGbpJrPrYLLzT881aPfMCAjUfmM6wy0wJIwMI+KsEP48DYZCp 2CtHGtHxRRd7axlCyB1zKa0NTbhiuVStfD3dd7NFcnGxrsIpajKdDsE= -----END CERTIFICATE-----Generated at Wed May 13 15:03:52 2026 by rpki-client