$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 80RHQ4ODaDHMZIdKPmNRTUIHjtLxnPyVhaTr9kZ6K7M= Subject key identifier: 44:CA:01:FB:85:29:A8:D3:DA:EE:C2:4C:36:61:50:90:11:A7:18:54 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 76E721CD8F3C1687BF40CA03747690F8840B3939 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:49 +0000 ROA not before: Sun 03 May 2026 02:06:49 +0000 ROA not after: Sun 02 May 2027 02:11:49 +0000 asID: 153087 IP address blocks: 2404:97c0:266::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e7:21:cd:8f:3c:16:87:bf:40:ca:03:74:76:90:f8:84:0b:39:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:49 2026 GMT Not After : May 2 02:11:49 2027 GMT Subject: CN=44CA01FB8529A8D3DAEEC24C3661509011A71854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:19:52:18:e3:c0:44:78:31:69:04:51:2b:78: 14:af:4f:69:44:a6:fd:7c:bf:18:09:c3:8f:0b:d9: 68:73:33:71:ed:86:ec:a0:05:c3:76:ed:7c:bf:3c: 76:07:51:3e:10:c2:32:28:fe:af:9d:99:f8:06:8b: f2:69:38:0a:c9:c9:cc:bd:b2:0e:89:20:23:31:11: 2c:fd:22:a7:ee:37:f6:5a:63:4b:a1:24:5f:b7:7e: b6:92:55:ba:96:46:b2:49:f6:b9:f9:08:74:40:47: 63:3e:c2:d8:46:30:56:79:0a:53:72:48:3e:fd:0e: 24:40:85:ab:ec:84:95:6d:71:b1:2a:7a:f6:8f:05: 5f:a8:8c:67:f3:6f:c2:76:bc:63:f8:4c:94:34:a6: 7e:47:39:f8:15:dd:a9:aa:c9:91:48:5f:43:61:c2: 31:1e:3e:0a:59:4c:3b:9d:56:af:1d:03:83:6a:5c: e5:ae:82:05:ad:1e:1c:8c:2b:79:84:bc:3d:d1:53: df:ad:46:c2:11:57:c4:f5:10:6d:d8:de:a9:2f:a4: c1:de:a8:46:ae:b9:a2:89:62:71:6a:8e:ee:96:b9: 14:7d:04:56:ea:0a:c3:ed:af:72:41:20:50:eb:c7: 04:0c:0e:69:55:b8:bc:6a:b1:bf:a8:33:22:a1:c5: 22:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CA:01:FB:85:29:A8:D3:DA:EE:C2:4C:36:61:50:90:11:A7:18:54 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:266::/48 Signature Algorithm: sha256WithRSAEncryption b6:1e:f6:14:cc:26:f5:b6:85:53:0f:dc:a0:3b:46:b9:09:b2: a7:ae:f9:65:ad:1f:51:52:7d:b9:64:a9:28:fc:84:17:13:cc: ce:4a:8b:bd:aa:5d:61:35:9c:8f:96:dc:26:43:5c:1b:46:00: f5:6e:89:63:bc:d7:92:f1:43:23:4b:31:0a:f1:84:3e:c7:68: 78:06:b4:60:97:be:e7:79:40:85:72:bd:f2:41:de:c8:d2:87: f3:49:11:0f:d7:35:c8:3c:3c:3e:9f:67:9f:48:44:e8:16:86: b2:57:41:31:b1:a6:5a:84:cc:28:51:16:ef:14:0e:0b:a6:08: 88:ea:54:43:80:0c:79:3a:90:f5:64:13:e4:d6:2a:c0:f5:f2: 0a:2a:5e:3a:98:b9:66:81:fd:18:07:5e:6f:41:92:61:21:4a: 23:be:e8:d8:91:4c:6d:38:80:66:09:51:96:c0:7c:a4:a1:3f: 61:85:1c:11:4f:05:99:18:10:a7:5b:c1:c1:df:8e:ae:c8:37: 7e:86:03:fe:f6:85:fb:63:06:63:98:30:fa:f3:9d:8c:3f:1d: b2:20:5c:51:06:59:92:aa:4d:75:d5:59:92:28:46:82:da:3d: 20:26:aa:2b:de:a8:d0:6d:aa:e9:d1:a6:cb:bd:d8:24:40:0a: be:6a:7d:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUduchzY88Foe/QMoDdHaQ+IQLOTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDlaFw0yNzA1MDIwMjExNDlaMDMxMTAvBgNV BAMTKDQ0Q0EwMUZCODUyOUE4RDNEQUVFQzI0QzM2NjE1MDkwMTFBNzE4NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeGVIY48BEeDFpBFEreBSvT2lE pv18vxgJw48L2WhzM3HthuygBcN27Xy/PHYHUT4QwjIo/q+dmfgGi/JpOArJycy9 sg6JICMxESz9IqfuN/ZaY0uhJF+3fraSVbqWRrJJ9rn5CHRAR2M+wthGMFZ5ClNy SD79DiRAhavshJVtcbEqevaPBV+ojGfzb8J2vGP4TJQ0pn5HOfgV3amqyZFIX0Nh wjEePgpZTDudVq8dA4NqXOWuggWtHhyMK3mEvD3RU9+tRsIRV8T1EG3Y3qkvpMHe qEauuaKJYnFqju6WuRR9BFbqCsPtr3JBIFDrxwQMDmlVuLxqsb+oMyKhxSJ3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURMoB+4UpqNPa7sJMNmFQkBGnGFQwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzNjM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAJmMA0GCSqGSIb3DQEBCwUAA4IBAQC2HvYUzCb1toVTD9ygO0a5CbKnrvllrR9R Un25ZKko/IQXE8zOSou9ql1hNZyPltwmQ1wbRgD1boljvNeS8UMjSzEK8YQ+x2h4 BrRgl77neUCFcr3yQd7I0ofzSREP1zXIPDw+n2efSEToFoayV0ExsaZahMwoURbv FA4LpgiI6lRDgAx5OpD1ZBPk1irA9fIKKl46mLlmgf0YB15vQZJhIUojvujYkUxt OIBmCVGWwHykoT9hhRwRTwWZGBCnW8HB346uyDd+hgP+9oX7YwZjmDD6852MPx2y IFxRBlmSqk111VmSKEaC2j0gJqor3qjQbarp0abLvdgkQAq+an19 -----END CERTIFICATE-----Generated at Wed May 13 13:04:42 2026 by rpki-client