$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: xb3LQP98Wnkeaa73FeAsRO67APus8QpwaxgRv7W1gB0= Subject key identifier: FB:01:53:4D:EB:B2:D8:A5:89:7D:4F:A8:BF:B5:97:81:C2:11:6B:D6 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 51A06E3CDD293613E9695C70331BB3C143871FF8 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:44 +0000 ROA not before: Sun 03 May 2026 02:12:44 +0000 ROA not after: Sun 02 May 2027 02:17:44 +0000 asID: 153087 IP address blocks: 2404:97c0:163::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a0:6e:3c:dd:29:36:13:e9:69:5c:70:33:1b:b3:c1:43:87:1f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:44 2026 GMT Not After : May 2 02:17:44 2027 GMT Subject: CN=FB01534DEBB2D8A5897D4FA8BFB59781C2116BD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7d:e3:50:5f:31:5a:3d:19:cc:0b:7f:96:a5: d3:76:71:4e:6f:40:a3:aa:8c:d3:89:5d:20:c2:c4: 70:83:d3:a5:9a:f8:6b:fb:f3:3b:d8:d0:eb:e0:18: 52:97:2e:8b:60:27:11:fe:57:7d:85:b6:f0:51:f7: 23:64:a6:f5:68:cf:75:fa:eb:a6:1d:74:65:4f:bc: bd:02:83:0d:cd:19:8a:d1:e6:e9:b1:21:09:26:0a: 41:db:fc:30:4b:68:f3:3f:8b:79:06:fe:71:fd:e5: 17:a1:ad:e5:d9:32:ad:27:3d:dc:3e:74:3d:0a:2b: 3d:2d:c8:4a:7e:3c:6b:b1:d0:83:09:80:70:84:7b: 78:7a:f1:08:2e:64:1a:5b:b5:37:1b:eb:be:05:f0: 0e:1d:3d:e2:c0:69:03:c2:a6:32:44:ba:21:90:63: 28:de:29:e2:6b:29:2f:c2:53:2c:38:0b:d3:70:6d: ae:e7:78:56:c9:42:0c:66:be:59:60:4d:3a:4b:70: b9:c3:15:bc:01:58:16:38:67:f0:c6:49:35:8e:72: ec:81:7a:ac:d0:51:f8:5e:53:e2:11:46:66:35:9c: 2f:f1:07:1b:56:eb:0c:17:93:0a:d7:f6:81:f5:28: 95:37:8e:4c:f1:82:5c:57:f7:76:c3:b1:5b:06:04: 20:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:01:53:4D:EB:B2:D8:A5:89:7D:4F:A8:BF:B5:97:81:C2:11:6B:D6 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:163::/48 Signature Algorithm: sha256WithRSAEncryption 1d:65:44:bc:ab:0a:c8:16:da:be:88:07:c2:90:b0:bb:e4:77: 4c:91:f1:52:01:81:f2:d7:a9:7f:13:a0:a4:ce:64:95:90:70: a8:86:8f:76:61:df:8e:4c:24:86:a8:73:d7:ad:67:41:93:07: 71:60:39:6f:4b:88:47:3a:0f:b0:9c:41:6e:d8:d6:22:4d:18: 62:83:3e:ac:99:38:c8:c5:36:07:49:29:4c:4d:5d:cb:6a:29: 4c:a4:db:7e:f0:25:20:d7:59:3a:d3:b8:a7:e0:33:80:7d:18: 98:63:31:8e:18:0d:99:ef:a9:51:be:8f:5d:34:7c:2f:ec:46: 50:70:88:ab:a6:9e:00:35:cb:7e:8c:6b:8c:6f:8a:e5:6a:d3: c8:43:33:1e:23:1b:50:5f:01:e5:5d:24:dc:25:b2:b7:80:a4: 1e:6f:ff:56:ab:df:9d:86:77:73:03:66:e3:03:76:37:2c:49: 3d:df:f5:34:79:fd:c2:01:ab:7b:77:97:ad:2c:aa:d7:8e:69: 8f:f7:c5:bc:b0:1c:d5:f7:a9:3d:28:8f:fc:54:37:f0:f0:b3: 35:7d:e6:6c:8c:0a:f3:1d:5d:97:f9:c1:a2:ac:a2:e3:88:ab: da:d8:1f:01:b6:be:dc:8b:42:80:7c:30:72:79:46:b5:a4:85: 3a:78:dd:79 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUaBuPN0pNhPpaVxwMxuzwUOHH/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDRaFw0yNzA1MDIwMjE3NDRaMDMxMTAvBgNV BAMTKEZCMDE1MzRERUJCMkQ4QTU4OTdENEZBOEJGQjU5NzgxQzIxMTZCRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9feNQXzFaPRnMC3+WpdN2cU5v QKOqjNOJXSDCxHCD06Wa+Gv78zvY0OvgGFKXLotgJxH+V32FtvBR9yNkpvVoz3X6 66YddGVPvL0Cgw3NGYrR5umxIQkmCkHb/DBLaPM/i3kG/nH95RehreXZMq0nPdw+ dD0KKz0tyEp+PGux0IMJgHCEe3h68QguZBpbtTcb674F8A4dPeLAaQPCpjJEuiGQ YyjeKeJrKS/CUyw4C9Nwba7neFbJQgxmvllgTTpLcLnDFbwBWBY4Z/DGSTWOcuyB eqzQUfheU+IRRmY1nC/xBxtW6wwXkwrX9oH1KJU3jkzxglxX93bDsVsGBCAHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+wFTTeuy2KWJfU+ov7WXgcIRa9YwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQAdZUS8qwrIFtq+iAfCkLC75HdMkfFSAYHy 16l/E6CkzmSVkHCoho92Yd+OTCSGqHPXrWdBkwdxYDlvS4hHOg+wnEFu2NYiTRhi gz6smTjIxTYHSSlMTV3LailMpNt+8CUg11k607in4DOAfRiYYzGOGA2Z76lRvo9d NHwv7EZQcIirpp4ANct+jGuMb4rlatPIQzMeIxtQXwHlXSTcJbK3gKQeb/9Wq9+d hndzA2bjA3Y3LEk93/U0ef3CAat7d5etLKrXjmmP98W8sBzV96k9KI/8VDfw8LM1 feZsjArzHV2X+cGirKLjiKva2B8Btr7ci0KAfDByeUa1pIU6eN15 -----END CERTIFICATE-----Generated at Wed May 13 13:02:43 2026 by rpki-client