$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: IMl9iQnhItCyWQ/UiebCqpIUJ7RXyOEIa+uhnJSi0p0= Subject key identifier: D8:68:41:77:6A:64:98:9A:66:F8:C3:7D:AE:0D:71:EA:DB:7F:AF:63 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 363357C4C6AE08AEAE224EE3DFA7157535C3029B Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:52 +0000 ROA not before: Sun 03 May 2026 02:06:52 +0000 ROA not after: Sun 02 May 2027 02:11:52 +0000 asID: 153087 IP address blocks: 2404:97c0:3176::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:33:57:c4:c6:ae:08:ae:ae:22:4e:e3:df:a7:15:75:35:c3:02:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:52 2026 GMT Not After : May 2 02:11:52 2027 GMT Subject: CN=D86841776A64989A66F8C37DAE0D71EADB7FAF63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:2c:d6:03:d7:6f:36:9d:7a:a9:80:f9:50: bd:43:0b:6c:4c:a7:33:27:6b:44:49:a8:e3:86:8f: dd:b5:e5:b7:57:9b:01:6a:d4:3d:82:97:ce:e1:fc: 94:1a:3e:f3:66:10:f1:1d:d8:11:30:d5:71:f4:9b: 91:d4:cf:c8:d6:09:6b:85:c6:6b:93:ed:d5:ec:74: 71:80:d4:e3:58:8b:27:9e:95:84:ad:5f:d5:0d:8a: 67:3e:e9:1b:6b:0c:bc:74:f8:2d:82:f4:6d:83:da: 95:4d:b6:46:bc:eb:ac:88:dc:f0:e4:22:d2:2d:60: bc:2a:b0:f0:f6:83:13:02:ab:e5:1a:ae:33:10:e2: 55:a6:56:81:db:f0:2a:f4:2b:ed:59:e2:e0:2e:84: 94:80:b3:e3:88:07:dc:47:fe:d2:00:83:6e:73:3c: 1e:bf:f0:02:8e:db:2b:b5:61:07:0e:41:dc:44:a9: f5:0f:bb:95:d0:ea:ed:e4:6b:4f:44:76:37:99:c4: 3a:7c:ac:28:bd:3c:0e:e4:89:0a:43:27:cb:d8:19: bb:64:6e:11:e6:c1:4f:c6:ff:66:d3:12:08:5d:fe: c6:40:66:f0:15:1d:9e:60:25:63:ff:92:be:90:e9: bc:75:dc:54:ce:b7:5a:24:72:72:0d:51:df:3e:42: 0c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:68:41:77:6A:64:98:9A:66:F8:C3:7D:AE:0D:71:EA:DB:7F:AF:63 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3176::/48 Signature Algorithm: sha256WithRSAEncryption 30:15:20:3f:d5:55:8f:79:09:68:e1:81:74:52:57:4e:80:5d: 75:63:de:92:6a:e3:0e:b9:5b:c8:dd:ef:f5:24:8c:f5:f3:fa: 82:13:5d:6d:46:84:af:d4:60:52:cd:c3:dd:44:6a:fd:c6:44: 98:ea:87:18:be:5e:7f:93:2b:be:69:59:a4:25:24:68:7b:4a: 63:b0:d8:3c:f8:ea:6c:76:a3:cd:f8:67:00:bb:6c:a1:8a:ce: 8c:9f:8e:43:62:fc:42:f5:6c:80:f3:ff:46:0f:9f:ab:6c:1f: 1b:a3:74:56:e5:bb:40:8c:c5:df:f8:95:d5:01:99:fe:77:a3: cb:25:6d:a7:3b:64:ec:2a:b0:3c:6c:ac:e7:f0:e0:59:75:71: 0a:75:92:4a:d1:ab:95:bb:68:20:16:e3:6d:3d:d9:13:20:b9: 4f:4d:9b:01:df:ef:9b:9c:c2:a1:20:b4:07:07:8d:c5:c9:6e: 81:4b:2a:05:cc:dc:f8:4c:8a:04:5e:f0:8a:a5:88:28:8a:f1: 6a:7f:9c:cf:8b:f3:0f:64:a5:aa:57:5d:9f:b0:b9:b0:3f:ad: 8a:6b:b6:1a:0a:a5:ca:b4:6f:f6:26:8f:3a:c4:a8:48:a0:a4: 6f:04:46:c3:99:8c:06:3c:0f:70:da:6c:6e:23:16:4d:c5:8a: ca:c0:d9:dc -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNjNXxMauCK6uIk7j36cVdTXDApswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTJaFw0yNzA1MDIwMjExNTJaMDMxMTAvBgNV BAMTKEQ4Njg0MTc3NkE2NDk4OUE2NkY4QzM3REFFMEQ3MUVBREI3RkFGNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ3CzWA9dvNp16qYD5UL1DC2xM pzMna0RJqOOGj9215bdXmwFq1D2Cl87h/JQaPvNmEPEd2BEw1XH0m5HUz8jWCWuF xmuT7dXsdHGA1ONYiyeelYStX9UNimc+6RtrDLx0+C2C9G2D2pVNtka866yI3PDk ItItYLwqsPD2gxMCq+UarjMQ4lWmVoHb8Cr0K+1Z4uAuhJSAs+OIB9xH/tIAg25z PB6/8AKO2yu1YQcOQdxEqfUPu5XQ6u3ka09EdjeZxDp8rCi9PA7kiQpDJ8vYGbtk bhHmwU/G/2bTEghd/sZAZvAVHZ5gJWP/kr6Q6bx13FTOt1okcnINUd8+Qgx3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU2GhBd2pkmJpm+MN9rg1x6tt/r2MwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTM3MzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMXYwDQYJKoZIhvcNAQELBQADggEBADAVID/VVY95CWjhgXRSV06AXXVj3pJq 4w65W8jd7/UkjPXz+oITXW1GhK/UYFLNw91Eav3GRJjqhxi+Xn+TK75pWaQlJGh7 SmOw2Dz46mx2o834ZwC7bKGKzoyfjkNi/EL1bIDz/0YPn6tsHxujdFblu0CMxd/4 ldUBmf53o8slbac7ZOwqsDxsrOfw4Fl1cQp1kkrRq5W7aCAW42092RMguU9NmwHf 75ucwqEgtAcHjcXJboFLKgXM3PhMigRe8IqliCiK8Wp/nM+L8w9kpapXXZ+wubA/ rYprthoKpcq0b/YmjzrEqEigpG8ERsOZjAY8D3DabG4jFk3FisrA2dw= -----END CERTIFICATE-----Generated at Wed May 13 15:37:07 2026 by rpki-client