$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: dKLyf6w8KL4C7KRBQVvsmkG+O6JyFboVAWvLUYUit+k= Subject key identifier: 3D:87:B0:02:5E:BA:C7:5E:A8:5F:7C:7F:3C:11:2C:49:C3:66:2A:C1 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 55E658F78596AAEDEEBD5C50E2757C1C9CC65331 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:45 +0000 ROA not before: Sun 03 May 2026 02:12:45 +0000 ROA not after: Sun 02 May 2027 02:17:45 +0000 asID: 153087 IP address blocks: 2404:97c0:103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e6:58:f7:85:96:aa:ed:ee:bd:5c:50:e2:75:7c:1c:9c:c6:53:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:45 2026 GMT Not After : May 2 02:17:45 2027 GMT Subject: CN=3D87B0025EBAC75EA85F7C7F3C112C49C3662AC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3e:b2:7f:22:de:de:ca:88:47:b2:41:08:52: e5:27:22:94:fa:9b:2c:f7:26:3b:d0:ce:a0:e9:99: 5a:4e:64:b0:60:79:3e:48:9a:07:db:f6:19:0a:75: 52:b6:77:03:35:66:68:a0:0f:c2:5d:24:7a:fe:c9: 65:7a:b6:c7:cb:da:7b:cc:6c:6a:41:60:ba:f2:9d: a3:ca:56:18:6e:d6:75:f4:46:01:47:0e:91:bb:f8: eb:77:d4:94:98:0e:5a:d8:89:d5:cf:5b:d6:04:42: 10:a0:b1:d0:43:91:56:9f:f4:0c:82:dd:a5:4d:6e: d8:3b:8c:3e:ff:1b:76:7e:6d:9a:d0:c2:3c:05:22: 2b:14:4a:3e:e2:ca:ae:de:ec:5b:3a:09:4e:fb:86: d8:99:6d:b7:de:ad:7a:e3:45:14:0d:1a:d9:49:f3: dc:dc:72:69:a0:95:cf:52:b8:bc:0f:37:84:c7:25: d3:57:64:63:67:cb:1b:2a:f9:5f:41:2a:cb:c4:ea: d6:0e:34:eb:bc:10:af:c6:26:93:28:62:92:e2:e6: 7b:2e:bb:ce:0a:d7:19:cf:8f:34:bd:42:2e:6b:62: 71:20:ab:35:26:d5:94:39:ba:40:73:a9:b8:cc:c7: d4:3b:7a:17:f3:13:3d:0a:4d:70:26:29:ec:49:2b: cc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:87:B0:02:5E:BA:C7:5E:A8:5F:7C:7F:3C:11:2C:49:C3:66:2A:C1 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:103::/48 Signature Algorithm: sha256WithRSAEncryption 1e:f1:90:7c:d7:88:3f:f2:f0:61:0a:21:a6:1a:4c:40:77:79: dd:08:02:f1:49:f6:f4:af:73:e5:86:5b:17:fd:5b:3a:b1:b7: e2:c0:fe:ed:45:a9:10:51:60:d2:c2:32:45:92:fc:24:68:4f: ec:bd:11:18:74:ef:50:88:36:9e:29:32:55:36:9e:ec:45:77: 0f:7c:ee:99:52:26:3c:b2:70:87:b7:81:ea:ca:ac:7b:e7:51: 94:fe:a8:d7:0c:4a:b8:6d:44:23:e9:4f:a9:86:de:b1:1c:1d: ad:50:6b:13:5c:80:4a:66:9d:05:87:f7:47:ce:f2:a7:3d:eb: a9:97:56:b4:d2:bf:9c:5a:82:58:1e:08:d9:57:d9:87:b4:4a: 46:66:df:e7:65:e8:98:33:fd:af:68:93:da:a4:4b:b3:11:72: f6:85:dd:9f:21:e3:36:f3:7d:fa:57:6b:bd:d3:60:98:b8:d1: 03:b6:0f:f6:bb:53:46:aa:76:01:2f:8c:e5:b7:73:69:23:07: c4:dc:ca:9e:4e:d7:ea:2d:76:3f:70:e5:ac:46:1f:6f:56:1b: ce:c6:2e:56:7f:d2:be:be:fc:98:bc:8a:56:e1:04:2f:b7:b7: 84:29:ca:fd:e7:f4:59:14:e1:e3:21:42:c8:57:87:eb:0f:68: 6d:50:ea:51 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVeZY94WWqu3uvVxQ4nV8HJzGUzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDVaFw0yNzA1MDIwMjE3NDVaMDMxMTAvBgNV BAMTKDNEODdCMDAyNUVCQUM3NUVBODVGN0M3RjNDMTEyQzQ5QzM2NjJBQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjPrJ/It7eyohHskEIUuUnIpT6 myz3JjvQzqDpmVpOZLBgeT5Imgfb9hkKdVK2dwM1ZmigD8JdJHr+yWV6tsfL2nvM bGpBYLrynaPKVhhu1nX0RgFHDpG7+Ot31JSYDlrYidXPW9YEQhCgsdBDkVaf9AyC 3aVNbtg7jD7/G3Z+bZrQwjwFIisUSj7iyq7e7Fs6CU77htiZbbferXrjRRQNGtlJ 89zccmmglc9SuLwPN4THJdNXZGNnyxsq+V9BKsvE6tYONOu8EK/GJpMoYpLi5nsu u84K1xnPjzS9Qi5rYnEgqzUm1ZQ5ukBzqbjMx9Q7ehfzEz0KTXAmKexJK8wHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPYewAl66x16oX3x/PBEsScNmKsEwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQAe8ZB814g/8vBhCiGmGkxAd3ndCALxSfb0 r3PlhlsX/Vs6sbfiwP7tRakQUWDSwjJFkvwkaE/svREYdO9QiDaeKTJVNp7sRXcP fO6ZUiY8snCHt4Hqyqx751GU/qjXDEq4bUQj6U+pht6xHB2tUGsTXIBKZp0Fh/dH zvKnPeupl1a00r+cWoJYHgjZV9mHtEpGZt/nZeiYM/2vaJPapEuzEXL2hd2fIeM2 8336V2u902CYuNEDtg/2u1NGqnYBL4zlt3NpIwfE3MqeTtfqLXY/cOWsRh9vVhvO xi5Wf9K+vvyYvIpW4QQvt7eEKcr95/RZFOHjIULIV4frD2htUOpR -----END CERTIFICATE-----Generated at Wed May 13 14:53:17 2026 by rpki-client