$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 9No/Rq2pyR3mKQHqy7RjSdmCzhJts9GXXDo5Zn7Oh6g= Subject key identifier: 78:1B:F9:5A:19:A6:4D:8E:E2:2F:65:D4:8E:00:8C:57:63:B9:CD:24 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 0ECE7CD462828B34322CADBAE5FC8EDAC339B56E Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:43 +0000 ROA not before: Sun 03 May 2026 02:06:43 +0000 ROA not after: Sun 02 May 2027 02:11:43 +0000 asID: 153087 IP address blocks: 2404:97c0:3150::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ce:7c:d4:62:82:8b:34:32:2c:ad:ba:e5:fc:8e:da:c3:39:b5:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:43 2026 GMT Not After : May 2 02:11:43 2027 GMT Subject: CN=781BF95A19A64D8EE22F65D48E008C5763B9CD24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:e5:43:e7:db:1c:71:7c:9e:9e:67:2d:7d: 05:e1:af:fe:f6:6c:41:96:a8:69:1e:6a:c9:b6:b1: d7:6c:f3:95:45:48:5f:84:6a:7e:b2:63:6a:04:c2: 1c:3b:7f:b3:e2:09:0c:c5:26:1f:c7:7c:d9:46:66: aa:37:72:86:b2:a8:80:a2:7f:f1:1b:9a:a6:9e:49: b0:37:77:fb:46:e9:18:f5:09:4b:77:6a:e9:24:1c: 3f:6e:40:a4:3e:8a:a0:99:92:bb:1c:5c:8c:99:63: 83:3b:ae:28:4b:d1:d8:3b:4f:f7:31:fa:01:41:72: f7:f8:5a:bf:3a:5a:e8:ec:e6:ab:17:ed:5b:d5:43: ce:08:67:de:f8:2b:86:14:40:6d:70:9e:16:b9:0f: 24:6c:87:8b:98:ce:4b:1f:0b:2c:7e:83:eb:56:5c: 44:35:bc:32:bc:61:58:9c:23:8f:d7:5d:f5:37:1b: 86:a5:0b:4f:69:5d:2c:c2:b4:f7:11:73:97:6c:27: b7:88:d5:5e:8b:dd:33:55:b7:38:0c:a3:21:a3:59: ba:37:b6:f3:b3:dc:ad:26:23:8a:01:bc:a6:3e:8c: 14:a6:3f:cf:4d:24:70:57:ca:8e:10:ea:25:c5:e7: c8:7e:71:80:25:2c:bd:e5:57:a6:43:2a:63:2d:e6: e6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:1B:F9:5A:19:A6:4D:8E:E2:2F:65:D4:8E:00:8C:57:63:B9:CD:24 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3150::/48 Signature Algorithm: sha256WithRSAEncryption 28:36:a0:fd:1f:05:07:a1:c0:f0:36:74:d0:e2:ed:ec:45:8e: 0f:c5:a8:04:ad:21:b9:4f:a4:19:16:62:4a:3e:6f:cc:43:9a: 10:32:48:ad:38:c1:7f:51:0f:c7:45:2d:6a:b4:83:c4:0d:24: 0d:55:db:b9:cb:af:9d:65:1b:18:53:a5:2d:fc:8e:bf:22:d8: 6a:41:b8:e6:4d:20:6c:47:d8:e5:d4:c9:aa:d3:c9:d3:07:ce: 61:ec:9a:ce:b6:8a:58:a9:fd:bd:31:4c:f2:ad:e6:0e:93:f1: 46:b6:3e:d3:71:d5:13:aa:9d:e4:56:f8:07:99:c3:48:e0:72: 07:e4:09:86:83:81:31:00:9b:f6:5c:cb:6f:6c:b9:d5:ea:6d: 06:91:a7:bd:32:72:ff:5a:30:58:f4:05:12:1e:df:e7:89:77: 54:25:cc:39:d7:a3:b9:2e:82:41:99:76:dd:fc:b4:63:e5:08: ba:86:5b:b2:54:e3:21:ad:25:a4:3a:ae:8c:ad:6b:ee:d0:a0: 1a:d3:4f:85:ed:ea:10:02:a5:01:ae:72:e1:b0:15:27:66:41: b3:71:c0:f7:44:48:8b:3e:61:ff:55:25:8f:21:3d:6d:11:2a: 3b:d8:f8:5c:3d:e4:95:5d:14:d4:40:e1:4d:61:0e:f5:d0:1a: 03:9d:ed:6c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDs581GKCizQyLK265fyO2sM5tW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDNaFw0yNzA1MDIwMjExNDNaMDMxMTAvBgNV BAMTKDc4MUJGOTVBMTlBNjREOEVFMjJGNjVENDhFMDA4QzU3NjNCOUNEMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7xOVD59sccXyenmctfQXhr/72 bEGWqGkeasm2sdds85VFSF+Ean6yY2oEwhw7f7PiCQzFJh/HfNlGZqo3coayqICi f/EbmqaeSbA3d/tG6Rj1CUt3aukkHD9uQKQ+iqCZkrscXIyZY4M7rihL0dg7T/cx +gFBcvf4Wr86Wujs5qsX7VvVQ84IZ974K4YUQG1wnha5DyRsh4uYzksfCyx+g+tW XEQ1vDK8YVicI4/XXfU3G4alC09pXSzCtPcRc5dsJ7eI1V6L3TNVtzgMoyGjWbo3 tvOz3K0mI4oBvKY+jBSmP89NJHBXyo4Q6iXF58h+cYAlLL3lV6ZDKmMt5ua3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUeBv5WhmmTY7iL2XUjgCMV2O5zSQwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTM1MzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMVAwDQYJKoZIhvcNAQELBQADggEBACg2oP0fBQehwPA2dNDi7exFjg/FqASt IblPpBkWYko+b8xDmhAySK04wX9RD8dFLWq0g8QNJA1V27nLr51lGxhTpS38jr8i 2GpBuOZNIGxH2OXUyarTydMHzmHsms62ilip/b0xTPKt5g6T8Ua2PtNx1ROqneRW +AeZw0jgcgfkCYaDgTEAm/Zcy29sudXqbQaRp70ycv9aMFj0BRIe3+eJd1QlzDnX o7kugkGZdt38tGPlCLqGW7JU4yGtJaQ6royta+7QoBrTT4Xt6hACpQGucuGwFSdm QbNxwPdESIs+Yf9VJY8hPW0RKjvY+Fw95JVdFNRA4U1hDvXQGgOd7Ww= -----END CERTIFICATE-----Generated at Wed May 13 15:23:28 2026 by rpki-client