$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: loXFW1V8IkeUD7nQFeu1gCuv5M5Yxu2XDVs13dsdiGY= Subject key identifier: 86:6B:9F:9A:E0:D1:79:8D:95:13:80:70:A7:2C:AD:6F:D4:57:E1:44 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 5235B285DB31C13CC3B46A91F530C88177DA8DDE Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:42 +0000 ROA not before: Sun 03 May 2026 02:06:42 +0000 ROA not after: Sun 02 May 2027 02:11:42 +0000 asID: 153087 IP address blocks: 2404:97c0:3130::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:35:b2:85:db:31:c1:3c:c3:b4:6a:91:f5:30:c8:81:77:da:8d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:42 2026 GMT Not After : May 2 02:11:42 2027 GMT Subject: CN=866B9F9AE0D1798D95138070A72CAD6FD457E144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bb:51:47:6c:78:6c:f1:8b:80:46:fa:3c:02: c2:06:fd:1b:4e:7a:e3:e3:41:8d:f1:44:41:da:dc: 75:1e:34:0d:2f:d9:60:df:3e:07:0a:56:77:34:b2: d3:0f:b4:9d:98:09:97:29:23:57:56:f4:d6:de:06: 4c:61:1f:a7:5b:29:7c:08:69:86:61:bc:8e:90:42: 06:eb:4e:b3:0b:40:c4:fa:c4:c6:c6:54:8d:9e:9a: 1f:21:c0:50:35:ec:9e:29:fe:3f:c0:aa:48:cc:20: 5f:67:9d:96:78:3c:90:e4:29:8d:03:ae:5a:68:40: 02:3c:1f:2d:cf:69:bd:6f:2e:74:3d:86:90:21:ba: 18:3c:38:84:0c:af:58:f7:07:8c:ec:73:70:12:09: 20:07:dc:26:7f:33:23:77:f3:32:2b:73:8f:d2:0b: 4a:f5:9a:87:e6:72:e5:4d:23:f2:aa:8c:41:3a:2c: 21:d5:e7:99:9e:3f:81:6f:ba:7e:b3:d8:31:49:8c: ab:21:c3:67:58:37:ef:b5:3d:38:b8:e6:44:9e:e0: c0:8d:13:7e:3f:9c:01:ea:a9:24:8f:48:3b:79:87: 38:a1:b8:33:28:46:4b:3f:03:50:d8:ae:b9:ca:9c: 89:83:fc:e5:f5:e3:1c:56:db:50:fe:c4:c2:d1:8e: e3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6B:9F:9A:E0:D1:79:8D:95:13:80:70:A7:2C:AD:6F:D4:57:E1:44 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3130::/48 Signature Algorithm: sha256WithRSAEncryption 9d:4e:96:16:3b:43:81:36:b6:29:03:5e:a4:e6:04:ac:db:09: 8f:54:52:54:3e:a4:d5:8a:71:84:58:98:0b:ad:8f:e4:fb:72: d0:41:c5:8b:e6:e1:a3:56:be:89:1a:f6:a9:00:dd:de:cf:81: d9:9d:76:fc:83:91:e5:10:e4:79:39:7c:60:d7:eb:6c:47:6a: ef:35:7f:e9:49:60:39:16:3f:38:7e:ca:0e:7d:b6:14:50:b5: 5b:31:b6:d2:90:52:4f:76:a7:91:bd:62:d9:a8:87:b6:6c:97: a9:d4:84:f5:b0:3d:de:fa:c6:15:bb:5e:ba:d5:24:da:d2:b0: 43:6d:70:82:3e:81:b6:76:6d:e4:24:f5:83:7e:50:53:17:c4: c9:92:32:bd:14:33:b4:42:e3:d5:bc:62:fa:b5:0a:3c:7c:7f: 6d:0b:96:c8:0e:0f:4a:3b:5b:2c:dd:e6:b4:2f:0d:3a:1e:d7: f3:98:9c:03:e7:b0:8c:62:ba:bb:53:a2:c2:06:b3:4c:37:f3: 88:f6:5b:79:eb:18:b1:27:15:50:2c:e7:b5:a5:78:71:59:b0: 6e:bf:f6:30:5c:28:c5:f9:22:da:c6:c1:9a:25:94:cf:35:c9: d3:85:07:f2:f1:cf:d1:a9:7a:81:73:19:65:e1:af:b1:1e:d6: 61:86:55:e2 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUjWyhdsxwTzDtGqR9TDIgXfajd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDJaFw0yNzA1MDIwMjExNDJaMDMxMTAvBgNV BAMTKDg2NkI5RjlBRTBEMTc5OEQ5NTEzODA3MEE3MkNBRDZGRDQ1N0UxNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTu1FHbHhs8YuARvo8AsIG/RtO euPjQY3xREHa3HUeNA0v2WDfPgcKVnc0stMPtJ2YCZcpI1dW9NbeBkxhH6dbKXwI aYZhvI6QQgbrTrMLQMT6xMbGVI2emh8hwFA17J4p/j/AqkjMIF9nnZZ4PJDkKY0D rlpoQAI8Hy3Pab1vLnQ9hpAhuhg8OIQMr1j3B4zsc3ASCSAH3CZ/MyN38zIrc4/S C0r1mofmcuVNI/KqjEE6LCHV55meP4Fvun6z2DFJjKshw2dYN++1PTi45kSe4MCN E34/nAHqqSSPSDt5hzihuDMoRks/A1DYrrnKnImD/OX14xxW21D+xMLRjuPbAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUhmufmuDReY2VE4Bwpyytb9RX4UQwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMTAwDQYJKoZIhvcNAQELBQADggEBAJ1OlhY7Q4E2tikDXqTmBKzbCY9UUlQ+ pNWKcYRYmAutj+T7ctBBxYvm4aNWvoka9qkA3d7PgdmddvyDkeUQ5Hk5fGDX62xH au81f+lJYDkWPzh+yg59thRQtVsxttKQUk92p5G9Ytmoh7Zsl6nUhPWwPd76xhW7 XrrVJNrSsENtcII+gbZ2beQk9YN+UFMXxMmSMr0UM7RC49W8Yvq1Cjx8f20LlsgO D0o7Wyzd5rQvDToe1/OYnAPnsIxiurtTosIGs0w384j2W3nrGLEnFVAs57WleHFZ sG6/9jBcKMX5ItrGwZollM81ydOFB/Lxz9GpeoFzGWXhr7Ee1mGGVeI= -----END CERTIFICATE-----Generated at Wed May 13 15:26:45 2026 by rpki-client