$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a313030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: FCOHH3FF0Huxbp0d4hbnKZLONEdjGgytLEA2qKU8GKw= Subject key identifier: C0:AE:2B:DD:92:F1:72:9E:12:68:12:97:7B:79:4D:60:2F:22:4F:C0 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 1EBFD3E73233BE3E149EE4451EDFF11C62B053AB Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:53 +0000 ROA not before: Sun 03 May 2026 02:12:53 +0000 ROA not after: Sun 02 May 2027 02:17:53 +0000 asID: 153087 IP address blocks: 2404:97c0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:bf:d3:e7:32:33:be:3e:14:9e:e4:45:1e:df:f1:1c:62:b0:53:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:53 2026 GMT Not After : May 2 02:17:53 2027 GMT Subject: CN=C0AE2BDD92F1729E126812977B794D602F224FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d4:2d:73:56:42:63:9e:df:61:13:70:12:4e: a9:f4:7e:0b:c8:49:9b:41:1b:ca:4f:0a:e0:e8:b8: 56:b5:77:1c:89:af:3f:ac:90:0e:10:d9:ea:95:a3: a4:86:ab:77:35:30:70:66:4a:90:e9:b0:a4:7f:4b: 3e:2e:97:22:55:ba:5b:9b:6f:a0:38:2a:8a:a1:20: 42:76:15:72:74:9f:9a:11:5d:58:1f:4d:5b:ac:df: be:0e:6d:ff:fc:99:5c:27:29:4e:cf:a6:5e:8a:5a: ff:cf:d4:9a:d5:4b:e4:4f:80:0f:9e:e6:15:89:3a: 6e:30:0d:44:b0:62:38:71:8e:5d:28:64:70:cf:31: db:5e:c3:85:23:fd:0f:40:53:bc:9a:ed:45:20:ae: 04:7b:a2:18:b5:43:fe:b6:23:59:48:6e:20:33:82: 40:9f:ca:5b:9c:69:af:37:12:83:69:65:9e:08:b2: d2:eb:73:88:6a:9c:37:f5:63:a2:00:a8:f2:56:3c: bc:32:42:4b:2a:36:54:e6:86:59:43:91:7a:8f:ad: e6:37:62:aa:55:51:51:b7:bb:8c:bd:87:8b:f5:7c: 42:ba:1a:3e:26:b2:08:9f:0d:11:15:3d:ce:84:47: ca:bf:13:ba:e0:c0:5d:e8:c1:ec:e6:20:c3:78:34: 11:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:AE:2B:DD:92:F1:72:9E:12:68:12:97:7B:79:4D:60:2F:22:4F:C0 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 72:6a:46:55:7c:da:71:f9:f3:3c:97:16:7e:04:ce:b2:24:59: 0d:64:23:26:07:75:c7:91:28:54:a5:94:d2:71:d1:86:94:64: fa:6e:7c:e9:18:81:5f:cc:5e:ac:65:ac:10:50:04:d8:70:39: d3:d9:73:13:ff:ad:75:2b:bb:54:3a:de:f6:2e:03:09:e8:51: 1d:31:12:b6:a3:15:e1:02:c9:71:d8:46:0b:d2:ed:dd:c8:38: 38:28:b4:ab:e1:fa:9e:70:bb:56:bb:b4:83:10:17:cc:17:bf: b5:1d:73:22:ce:fb:30:a8:5d:27:bc:4d:bd:52:93:f5:c7:76: 90:cc:2e:37:29:32:28:74:de:fa:7f:03:ea:9c:25:4d:72:8a: eb:24:21:65:9d:1e:57:21:02:ae:59:68:99:20:9d:ee:fa:b5: ee:12:3d:cc:bd:5f:f2:53:0d:b0:36:95:85:2f:32:e8:c6:e7: ce:89:49:f2:2a:7a:14:a6:d9:b0:80:e9:10:f7:36:d6:02:4b: 35:16:df:52:be:3c:5a:0a:2e:fd:a2:dd:60:74:96:36:47:71: 16:1f:82:35:25:ed:be:2d:a0:92:02:d9:5e:46:8a:66:1a:42: ef:b4:28:8a:fd:87:fd:36:c8:17:78:8d:cd:89:b5:b6:3b:97: af:81:78:c8 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUHr/T5zIzvj4UnuRFHt/xHGKwU6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTNaFw0yNzA1MDIwMjE3NTNaMDMxMTAvBgNV BAMTKEMwQUUyQkREOTJGMTcyOUUxMjY4MTI5NzdCNzk0RDYwMkYyMjRGQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX1C1zVkJjnt9hE3ASTqn0fgvI SZtBG8pPCuDouFa1dxyJrz+skA4Q2eqVo6SGq3c1MHBmSpDpsKR/Sz4ulyJVulub b6A4KoqhIEJ2FXJ0n5oRXVgfTVus374Obf/8mVwnKU7Ppl6KWv/P1JrVS+RPgA+e 5hWJOm4wDUSwYjhxjl0oZHDPMdtew4Uj/Q9AU7ya7UUgrgR7ohi1Q/62I1lIbiAz gkCfylucaa83EoNpZZ4IstLrc4hqnDf1Y6IAqPJWPLwyQksqNlTmhllDkXqPreY3 YqpVUVG3u4y9h4v1fEK6Gj4msgifDREVPc6ER8q/E7rgwF3owezmIMN4NBGPAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUwK4r3ZLxcp4SaBKXe3lNYC8iT8AwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAEDANBgkqhkiG9w0BAQsFAAOCAQEAcmpGVXzacfnzPJcWfgTOsiRZDWQjJgd1 x5EoVKWU0nHRhpRk+m586RiBX8xerGWsEFAE2HA509lzE/+tdSu7VDre9i4DCehR HTEStqMV4QLJcdhGC9Lt3cg4OCi0q+H6nnC7Vru0gxAXzBe/tR1zIs77MKhdJ7xN vVKT9cd2kMwuNykyKHTe+n8D6pwlTXKK6yQhZZ0eVyECrllomSCd7vq17hI9zL1f 8lMNsDaVhS8y6MbnzolJ8ip6FKbZsIDpEPc21gJLNRbfUr48Wgou/aLdYHSWNkdx Fh+CNSXtvi2gkgLZXkaKZhpC77Qoiv2H/TbIF3iNzYm1tjuXr4F4yA== -----END CERTIFICATE-----Generated at Wed May 13 13:05:34 2026 by rpki-client