$ rpki-client -vvf rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: VJgOjHGIxblXrzrkaX+lbvvw8H0oWZAett+dpCPZJa4= Subject key identifier: 94:98:A5:D5:B2:92:05:5B:82:98:D7:C6:28:B5:EF:E6:6D:1B:80:91 Certificate issuer: /CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Certificate serial: 157E1963A01BB2FAC00FAC5E2B83EC5D2E93126D Authority key identifier: B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:11:50 +0000 ROA not before: Sun 03 May 2026 02:06:50 +0000 ROA not after: Sun 02 May 2027 02:11:50 +0000 asID: 153087 IP address blocks: 2404:97c0:33::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:7e:19:63:a0:1b:b2:fa:c0:0f:ac:5e:2b:83:ec:5d:2e:93:12:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B Validity Not Before: May 3 02:06:50 2026 GMT Not After : May 2 02:11:50 2027 GMT Subject: CN=9498A5D5B292055B8298D7C628B5EFE66D1B8091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c2:a9:7f:bd:25:d6:44:d0:99:de:38:fd:d1: 12:60:48:c0:13:72:eb:69:4a:39:80:1e:1e:1a:79: c0:14:d3:7b:f7:bd:ad:77:c5:cc:7b:41:90:3b:46: b3:42:94:c3:cd:f1:5b:42:40:a0:d5:77:c2:62:ac: 93:4c:92:f3:78:4d:eb:bd:c9:86:a4:b8:d5:7e:89: ef:b4:94:7d:fc:46:98:9a:8c:bb:32:10:10:cb:96: da:81:b7:65:9c:ae:1a:5b:22:fc:7d:b6:6d:2b:4e: 93:c1:3f:e3:0b:0a:0b:48:27:83:a8:76:4a:21:bd: 30:33:16:a5:84:78:8c:09:30:45:b1:46:27:5d:85: cd:6a:28:d7:3a:a5:ba:ad:cf:8e:97:8d:9b:43:c0: be:ca:78:da:8e:f4:5b:01:1e:af:26:82:dd:10:cc: 4e:0a:96:2b:5a:8e:25:52:34:5a:90:a7:2b:31:41: b1:ba:62:56:a4:48:fc:cb:76:14:d3:98:e6:e3:16: d8:8e:d5:70:07:85:89:7c:02:3f:7a:00:c7:5a:bf: 89:e9:42:9f:4c:a2:69:f7:c1:49:c6:83:f6:14:a0: 00:93:28:5d:9d:00:96:5c:a4:59:78:b3:9b:22:3e: f2:93:67:bb:93:ad:1d:86:3a:3c:4a:cd:6d:20:a9: 37:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:98:A5:D5:B2:92:05:5B:82:98:D7:C6:28:B5:EF:E6:6D:1B:80:91 X509v3 Authority Key Identifier: keyid:B9:80:EF:D6:9D:A4:C8:AB:3F:C7:13:8F:57:BE:3C:DA:F8:02:23:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B980EFD69DA4C8AB3FC7138F57BE3CDAF802238B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:33::/48 Signature Algorithm: sha256WithRSAEncryption 46:ef:3d:52:a2:f2:47:5d:a8:dd:e0:7c:e4:ac:d6:83:2e:b4: cb:ff:bf:ce:f1:52:e3:18:3b:a2:9c:5f:e3:2e:59:c2:df:32: a7:9d:7e:75:88:06:71:19:26:e0:cf:79:35:1e:74:42:0d:de: bf:b6:12:3b:a5:af:b1:47:a3:3d:95:65:99:47:76:41:3f:7c: 0d:11:fd:41:26:55:7b:26:ba:0a:1c:a0:7e:12:ad:06:3d:39: 8b:93:8e:62:28:df:2f:80:86:45:11:ef:78:01:bf:3e:d1:81: bf:af:88:8b:a7:6d:db:43:9f:e4:6f:b7:0c:a2:b0:a8:0e:a8: 0f:71:b1:a3:a0:1f:87:7f:d3:58:ce:ac:f1:4f:35:be:7e:4d: f6:4b:8b:d6:6e:03:72:6e:68:8f:1f:11:78:04:97:ca:8a:cc: 5e:1a:11:5a:0a:db:66:55:57:ff:71:6f:f6:a6:ee:d7:ea:31: a7:aa:77:9b:b0:c7:65:47:0a:e4:df:00:8e:46:8f:e8:17:9d: d7:cc:c5:e4:c4:20:1a:4c:1e:93:0b:ce:a0:4b:97:d7:f7:e3: 58:a0:82:04:f2:a2:34:b6:0a:b6:0e:ce:70:41:ad:73:1d:30: 45:ad:eb:20:c6:9a:4d:54:75:ff:3c:d5:0f:11:3b:7f:59:37: f2:b1:42:58 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFX4ZY6AbsvrAD6xeK4PsXS6TEm0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk4MEVGRDY5REE0QzhBQjNGQzcxMzhGNTdCRTNDREFG ODAyMjM4QjAeFw0yNjA1MDMwMjA2NTBaFw0yNzA1MDIwMjExNTBaMDMxMTAvBgNV BAMTKDk0OThBNUQ1QjI5MjA1NUI4Mjk4RDdDNjI4QjVFRkU2NkQxQjgwOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiwql/vSXWRNCZ3jj90RJgSMAT cutpSjmAHh4aecAU03v3va13xcx7QZA7RrNClMPN8VtCQKDVd8JirJNMkvN4Teu9 yYakuNV+ie+0lH38RpiajLsyEBDLltqBt2WcrhpbIvx9tm0rTpPBP+MLCgtIJ4Oo dkohvTAzFqWEeIwJMEWxRiddhc1qKNc6pbqtz46XjZtDwL7KeNqO9FsBHq8mgt0Q zE4KlitajiVSNFqQpysxQbG6YlakSPzLdhTTmObjFtiO1XAHhYl8Aj96AMdav4np Qp9Momn3wUnGg/YUoACTKF2dAJZcpFl4s5siPvKTZ7uTrR2GOjxKzW0gqTeDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUlJil1bKSBVuCmNfGKLXv5m0bgJEwHwYDVR0j BBgwFoAUuYDv1p2kyKs/xxOPV7482vgCI4swDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDY1NGE4YzMtMzBjOC00OTU3LTgyOTEtYTBjMWY5YjE4MzllLzAvQjk4MEVGRDY5 REE0QzhBQjNGQzcxMzhGNTdCRTNDREFGODAyMjM4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9COTgwRUZENjlEQTRDOEFCM0ZDNzEzOEY1N0JFM0NEQUY4MDIy MzhCLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEl8AA MzANBgkqhkiG9w0BAQsFAAOCAQEARu89UqLyR12o3eB85KzWgy60y/+/zvFS4xg7 opxf4y5Zwt8yp51+dYgGcRkm4M95NR50Qg3ev7YSO6WvsUejPZVlmUd2QT98DRH9 QSZVeya6ChygfhKtBj05i5OOYijfL4CGRRHveAG/PtGBv6+Ii6dt20Of5G+3DKKw qA6oD3Gxo6Afh3/TWM6s8U81vn5N9kuL1m4Dcm5ojx8ReASXyorMXhoRWgrbZlVX /3Fv9qbu1+oxp6p3m7DHZUcK5N8AjkaP6Bed18zF5MQgGkwekwvOoEuX1/fjWKCC BPKiNLYKtg7OcEGtcx0wRa3rIMaaTVR1/zzVDxE7f1k38rFCWA== -----END CERTIFICATE-----Generated at Wed May 13 13:57:39 2026 by rpki-client