$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: iRwXqlH81TPi96b/UMxYHbJJ+TOKBEzEv3uNYK8OSwA= Subject key identifier: 63:93:BE:64:92:50:31:0B:B3:FF:F6:91:2B:95:C5:B7:B2:F7:F5:E1 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 52710C7A06ECF0095020B200EDED15EE371BE9A6 Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:46 +0000 ROA not before: Sun 03 May 2026 02:06:46 +0000 ROA not after: Sun 02 May 2027 02:11:46 +0000 asID: 153087 IP address blocks: 2404:97c0:3254::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:71:0c:7a:06:ec:f0:09:50:20:b2:00:ed:ed:15:ee:37:1b:e9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:46 2026 GMT Not After : May 2 02:11:46 2027 GMT Subject: CN=6393BE649250310BB3FFF6912B95C5B7B2F7F5E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:94:2d:0e:d1:94:3d:39:f7:95:d2:7b:ed:84: c3:52:c2:9e:d6:b3:b5:49:d0:c2:a7:48:00:a1:89: 86:96:4d:60:2d:63:84:9e:2f:ee:cd:5b:25:d1:3d: 48:51:25:9b:d3:d4:fd:cd:ba:ca:9d:a2:61:7e:75: 53:c0:95:07:6f:b4:91:a3:0f:e8:fd:99:e9:81:3c: 3d:5b:1f:7e:b2:31:fc:9b:18:d4:3a:ac:7d:1a:f8: 34:c9:32:85:b4:a2:31:31:d4:ed:b8:66:0c:2b:d2: 65:c2:48:da:61:b1:93:b6:5c:66:b5:d0:98:af:dc: 42:da:18:d0:e8:e3:ed:b2:a5:92:f2:98:8f:c9:ad: ee:5e:b8:3a:73:75:fd:ae:c3:e9:10:2e:ee:ce:20: 43:4f:38:e6:03:1a:bb:c3:13:7e:a3:0d:33:83:02: 28:3e:38:94:41:11:35:d9:6b:a6:76:a4:1e:84:b0: 5f:fd:d9:9a:b3:9a:c7:5f:9b:31:ff:5b:96:04:d0: a0:f0:84:f6:a5:45:46:cb:ca:47:1c:2d:9b:30:be: 6b:dc:df:4e:e6:18:ed:d7:9d:89:95:81:8c:86:2f: 72:5c:14:58:8a:b7:80:f8:94:8d:17:4d:af:80:16: 0d:c4:bf:25:9e:92:99:aa:d9:d3:5f:16:de:72:65: c1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:93:BE:64:92:50:31:0B:B3:FF:F6:91:2B:95:C5:B7:B2:F7:F5:E1 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3254::/48 Signature Algorithm: sha256WithRSAEncryption 15:03:d7:f4:a9:ef:19:95:43:eb:c7:14:11:db:d6:4e:bb:85: d7:e9:c0:62:bb:42:62:97:2d:b1:9b:65:19:ed:a1:e5:28:42: a5:7d:97:3a:aa:96:39:7e:fa:3e:78:25:66:e8:26:1e:d4:b8: 8c:dc:de:33:87:ed:43:c5:6b:46:54:0e:72:73:ac:50:65:67: 3c:5a:be:d4:15:8d:1e:c7:ef:8c:10:23:1a:e2:b7:de:f2:58: 0a:89:29:f1:33:b9:dc:ac:cb:8c:eb:a7:1d:30:16:63:e1:d9: 39:a7:cb:9b:45:05:91:05:75:aa:42:f5:32:19:ee:a9:2c:70: 11:04:4d:f1:db:fe:e0:9e:ba:34:5f:78:4c:02:6b:ff:69:28: 10:99:f0:ee:48:4f:c9:7f:a0:59:48:d3:a7:76:82:36:f4:5b: 48:9f:93:cd:3c:25:1a:fd:6a:4c:6b:13:aa:9c:e4:79:f3:4a: 3f:c0:56:44:f9:b7:e1:52:bd:15:8f:8c:af:73:11:ea:54:6a: 08:e4:ad:e3:99:96:62:77:c2:0b:ad:6a:a7:dc:cf:c4:11:f3: 99:5d:fa:94:47:0b:3d:3d:a9:c3:7c:c6:d2:22:40:82:db:1c: 9a:e3:d3:1f:35:bd:16:ea:92:48:d8:d7:28:6b:3b:2f:67:eb: ac:92:00:3c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUnEMegbs8AlQILIA7e0V7jcb6aYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NDZaFw0yNzA1MDIwMjExNDZaMDMxMTAvBgNV BAMTKDYzOTNCRTY0OTI1MDMxMEJCM0ZGRjY5MTJCOTVDNUI3QjJGN0Y1RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWlC0O0ZQ9OfeV0nvthMNSwp7W s7VJ0MKnSAChiYaWTWAtY4SeL+7NWyXRPUhRJZvT1P3NusqdomF+dVPAlQdvtJGj D+j9memBPD1bH36yMfybGNQ6rH0a+DTJMoW0ojEx1O24Zgwr0mXCSNphsZO2XGa1 0Jiv3ELaGNDo4+2ypZLymI/Jre5euDpzdf2uw+kQLu7OIENPOOYDGrvDE36jDTOD Aig+OJRBETXZa6Z2pB6EsF/92ZqzmsdfmzH/W5YE0KDwhPalRUbLykccLZswvmvc 307mGO3XnYmVgYyGL3JcFFiKt4D4lI0XTa+AFg3EvyWekpmq2dNfFt5yZcElAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUY5O+ZJJQMQuz//aRK5XFt7L39eEwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMjM1MzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMlQwDQYJKoZIhvcNAQELBQADggEBABUD1/Sp7xmVQ+vHFBHb1k67hdfpwGK7 QmKXLbGbZRntoeUoQqV9lzqqljl++j54JWboJh7UuIzc3jOH7UPFa0ZUDnJzrFBl ZzxavtQVjR7H74wQIxrit97yWAqJKfEzudysy4zrpx0wFmPh2Tmny5tFBZEFdapC 9TIZ7qkscBEETfHb/uCeujRfeEwCa/9pKBCZ8O5IT8l/oFlI06d2gjb0W0ifk808 JRr9akxrE6qc5HnzSj/AVkT5t+FSvRWPjK9zEepUagjkreOZlmJ3wgutaqfcz8QR 85ld+pRHCz09qcN8xtIiQILbHJrj0x81vRbqkkjY1yhrOy9n66ySADw= -----END CERTIFICATE-----Generated at Wed May 13 14:58:59 2026 by rpki-client