$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: uuY3akMv8WdLlBArvbLvTc6Ot8Er35ZApMPQiyXxWHc= Subject key identifier: 96:23:EF:0C:E8:8C:2E:55:15:81:D5:2E:E8:F5:2E:37:2C:2C:42:81 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 69D547F384F070020E38419551381EB80E64E01A Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:54 +0000 ROA not before: Sun 03 May 2026 02:12:54 +0000 ROA not after: Sun 02 May 2027 02:17:54 +0000 asID: 153087 IP address blocks: 2404:97c0:1600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d5:47:f3:84:f0:70:02:0e:38:41:95:51:38:1e:b8:0e:64:e0:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:54 2026 GMT Not After : May 2 02:17:54 2027 GMT Subject: CN=9623EF0CE88C2E551581D52EE8F52E372C2C4281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4f:38:99:1c:db:60:2d:d9:06:82:82:cb:fb: c2:0b:d0:36:9e:74:79:6a:f5:03:5c:c8:db:62:50: b4:bc:96:bf:8f:82:f1:97:4a:3c:35:c1:56:8d:ce: 91:dc:a4:11:89:03:a0:f3:59:eb:da:a7:c1:92:cb: 07:96:c7:27:86:8c:5f:20:09:a1:99:ad:21:96:d0: 5e:a1:24:6e:1b:f6:67:56:f3:07:ff:3a:15:e3:b4: 3a:c4:2c:c6:9a:4e:23:bf:4c:b9:05:f4:f1:00:0f: 7c:dd:e3:31:11:43:6c:26:99:18:b5:4a:af:61:81: 1d:77:79:ae:9a:3b:d1:bb:07:48:ea:f9:c8:66:e2: 67:3f:45:30:2c:35:18:1d:09:44:bf:35:ab:bf:22: 1c:b5:28:0d:40:f0:79:77:bd:f5:d6:c6:cc:ae:9d: 32:91:2e:0c:a7:cf:3d:dd:e2:c6:82:b1:ce:57:05: 60:63:ca:1c:3e:c6:d6:4f:d9:97:fa:b6:70:bf:1c: 2d:04:a7:e1:c6:24:b4:b4:65:dc:25:6e:d1:7c:a1: 90:97:66:47:70:15:23:97:22:e2:74:fb:77:18:6f: 31:53:bb:3d:19:30:ba:67:d7:fb:ad:a9:4b:16:47: b7:14:48:18:78:06:a3:cc:0d:fd:17:02:f7:ad:a8: 11:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:23:EF:0C:E8:8C:2E:55:15:81:D5:2E:E8:F5:2E:37:2C:2C:42:81 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1600::/40 Signature Algorithm: sha256WithRSAEncryption 62:77:ab:c1:f4:b2:b0:3c:9b:54:a5:8f:35:a4:13:0c:f2:cf: be:3f:65:e7:23:72:40:e2:5b:ac:62:ac:80:23:2a:3a:6f:ea: 44:c3:e3:5d:4d:12:42:44:a1:8d:86:24:f2:47:17:db:14:89: fb:9f:57:48:1c:e2:80:6b:51:91:5b:40:a0:ca:8b:d3:6c:35: 95:a5:9b:23:1d:98:cb:5e:6c:b8:09:66:a4:33:8b:f4:4e:45: 62:77:58:a6:02:cd:22:26:e2:76:30:6c:47:de:1a:20:16:8a: df:f0:ad:8e:c0:a1:13:b6:ac:fe:d6:f4:2d:3c:36:88:55:66: 11:22:c8:23:1d:76:51:bf:62:02:50:a9:d1:fb:9e:87:78:a7: ac:1d:af:b2:0e:2f:46:94:c5:ff:db:14:7f:5e:3e:95:18:a2: 31:6d:4f:30:29:1a:6b:a0:99:b0:03:6a:60:94:25:b8:75:f8: 14:9d:9c:32:68:fe:40:07:77:8f:eb:ff:34:22:65:50:f3:62: 3e:dc:53:cb:86:c7:0b:bb:ab:65:56:b7:5c:6b:72:ba:a2:48: b7:ba:e0:3b:95:b9:ff:32:4f:c9:d5:f6:5f:79:8d:74:8c:2e: b0:18:49:ab:d8:a1:67:96:35:b8:e9:a2:ea:27:1a:f3:0c:a2: a4:ca:e7:ed -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUadVH84TwcAIOOEGVUTgeuA5k4BowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTRaFw0yNzA1MDIwMjE3NTRaMDMxMTAvBgNV BAMTKDk2MjNFRjBDRTg4QzJFNTUxNTgxRDUyRUU4RjUyRTM3MkMyQzQyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxTziZHNtgLdkGgoLL+8IL0Dae dHlq9QNcyNtiULS8lr+PgvGXSjw1wVaNzpHcpBGJA6DzWevap8GSyweWxyeGjF8g CaGZrSGW0F6hJG4b9mdW8wf/OhXjtDrELMaaTiO/TLkF9PEAD3zd4zERQ2wmmRi1 Sq9hgR13ea6aO9G7B0jq+chm4mc/RTAsNRgdCUS/Nau/Ihy1KA1A8Hl3vfXWxsyu nTKRLgynzz3d4saCsc5XBWBjyhw+xtZP2Zf6tnC/HC0Ep+HGJLS0ZdwlbtF8oZCX ZkdwFSOXIuJ0+3cYbzFTuz0ZMLpn1/utqUsWR7cUSBh4BqPMDf0XAvetqBHnAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUliPvDOiMLlUVgdUu6PUuNywsQoEwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAFjANBgkqhkiG9w0BAQsFAAOCAQEAYnerwfSysDybVKWPNaQTDPLPvj9l5yNy QOJbrGKsgCMqOm/qRMPjXU0SQkShjYYk8kcX2xSJ+59XSBzigGtRkVtAoMqL02w1 laWbIx2Yy15suAlmpDOL9E5FYndYpgLNIibidjBsR94aIBaK3/CtjsChE7as/tb0 LTw2iFVmESLIIx12Ub9iAlCp0fueh3inrB2vsg4vRpTF/9sUf14+lRiiMW1PMCka a6CZsANqYJQluHX4FJ2cMmj+QAd3j+v/NCJlUPNiPtxTy4bHC7urZVa3XGtyuqJI t7rgO5W5/zJPydX2X3mNdIwusBhJq9ihZ5Y1uOmi6ica8wyipMrn7Q== -----END CERTIFICATE-----Generated at Wed May 13 13:44:47 2026 by rpki-client