$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: x7DLCEw85VnPtCuNSSL0AaGObSR6a+SBIwdHJ1h1Mpw= Subject key identifier: 51:55:7F:1E:63:EF:E0:23:64:31:EA:3B:F3:39:F5:D8:0D:CA:7D:77 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 74CE53CBA63470F6811301E14486F7971D128693 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:43 +0000 ROA not before: Sun 03 May 2026 02:12:43 +0000 ROA not after: Sun 02 May 2027 02:17:43 +0000 asID: 153087 IP address blocks: 2404:97c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:ce:53:cb:a6:34:70:f6:81:13:01:e1:44:86:f7:97:1d:12:86:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:43 2026 GMT Not After : May 2 02:17:43 2027 GMT Subject: CN=51557F1E63EFE0236431EA3BF339F5D80DCA7D77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f1:22:bb:8a:8b:ed:a6:6c:1d:7e:6d:b7:8c: c8:25:63:9f:88:80:35:a1:57:c7:cf:0b:c1:f9:82: 92:59:4d:64:fe:79:22:45:3a:e2:b9:e6:43:4f:7f: 99:fd:6b:f5:14:f0:7c:e4:26:d8:b0:b0:e7:62:44: 02:d2:48:ba:d3:2f:8a:d8:5c:88:b2:14:ba:ea:83: 15:bb:74:8f:b7:06:02:19:48:5e:02:40:52:82:13: bc:95:41:bc:06:09:21:3a:15:40:bd:3c:5d:f0:40: 3c:71:09:2f:35:e6:57:83:18:a0:91:8d:9e:19:a2: ca:f6:8b:a7:37:1a:e4:9d:91:d8:26:9e:ba:cc:bf: 3d:15:07:3c:90:22:28:4a:17:34:d3:5b:81:ef:5f: a3:94:fc:b8:4b:3c:d9:57:21:b8:96:5e:6e:10:2d: 8e:16:49:dc:b1:03:e4:90:b8:eb:77:b4:de:ad:46: 3d:a5:e3:b5:0d:5a:0b:ad:75:09:1e:e9:d0:0e:f9: 1a:eb:6c:a5:bf:35:1b:bd:5a:d0:ac:3a:90:24:d3: 35:61:5c:40:1e:c2:fd:d1:b0:cc:71:c1:cb:6b:d1: 4a:5d:a0:2b:5c:2b:f7:f2:94:d8:e0:52:f9:93:67: ad:cf:9b:6f:b7:3d:7f:a4:ae:da:31:aa:12:94:ac: 57:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:55:7F:1E:63:EF:E0:23:64:31:EA:3B:F3:39:F5:D8:0D:CA:7D:77 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2000::/36 Signature Algorithm: sha256WithRSAEncryption bf:19:62:34:ec:9b:7f:d5:83:e2:ba:8d:80:45:75:d1:9c:f0: 88:7d:2d:65:0c:34:05:c4:3d:0a:ad:5a:87:d1:6d:da:b7:bb: 67:7c:20:e5:9f:82:e4:b0:d0:78:39:0f:0d:bc:ef:18:d5:bd: f0:3a:b1:1a:2f:90:b3:74:e6:48:95:ad:d8:16:c9:b4:10:29: 0b:86:76:7e:7f:53:78:11:97:e5:55:92:9b:e7:e6:2c:0f:18: c7:9a:c4:d5:ae:8a:ed:d2:c8:71:66:bd:cb:e2:20:7e:6a:1f: f4:ee:cc:ce:fb:3c:a2:06:7f:30:21:19:51:43:f2:76:2d:a5: ad:0e:06:30:d0:74:a1:13:00:b4:7d:21:ef:44:de:c3:1c:ee: a9:8c:1a:55:bb:7d:b7:46:aa:f6:9c:04:93:77:41:57:d9:ab: f6:f4:07:fe:f2:c2:5f:f0:11:3f:c1:89:0c:4c:ea:4f:1d:85: 00:20:6e:b4:55:4f:57:67:92:07:a9:9c:7b:e0:61:47:41:a3: ca:88:93:a0:a6:93:67:1e:94:07:74:01:02:5c:12:7d:02:17: 4e:01:3d:fe:8f:e7:02:c0:22:4e:09:37:3c:3a:ea:e7:41:81: 3f:d7:cb:7a:58:17:bd:c0:ff:01:8d:5e:e2:8a:ca:c7:63:9f: 96:d4:38:f9 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUdM5Ty6Y0cPaBEwHhRIb3lx0ShpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDNaFw0yNzA1MDIwMjE3NDNaMDMxMTAvBgNV BAMTKDUxNTU3RjFFNjNFRkUwMjM2NDMxRUEzQkYzMzlGNUQ4MERDQTdENzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz8SK7iovtpmwdfm23jMglY5+I gDWhV8fPC8H5gpJZTWT+eSJFOuK55kNPf5n9a/UU8HzkJtiwsOdiRALSSLrTL4rY XIiyFLrqgxW7dI+3BgIZSF4CQFKCE7yVQbwGCSE6FUC9PF3wQDxxCS815leDGKCR jZ4Zosr2i6c3GuSdkdgmnrrMvz0VBzyQIihKFzTTW4HvX6OU/LhLPNlXIbiWXm4Q LY4WSdyxA+SQuOt3tN6tRj2l47UNWgutdQke6dAO+RrrbKW/NRu9WtCsOpAk0zVh XEAewv3RsMxxwctr0UpdoCtcK/fylNjgUvmTZ63Pm2+3PX+krtoxqhKUrFfdAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUUVV/HmPv4CNkMeo78zn12A3KfXcwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAIDANBgkqhkiG9w0BAQsFAAOCAQEAvxliNOybf9WD4rqNgEV10ZzwiH0tZQw0 BcQ9Cq1ah9Ft2re7Z3wg5Z+C5LDQeDkPDbzvGNW98DqxGi+Qs3TmSJWt2BbJtBAp C4Z2fn9TeBGX5VWSm+fmLA8Yx5rE1a6K7dLIcWa9y+Igfmof9O7Mzvs8ogZ/MCEZ UUPydi2lrQ4GMNB0oRMAtH0h70TewxzuqYwaVbt9t0aq9pwEk3dBV9mr9vQH/vLC X/ARP8GJDEzqTx2FACButFVPV2eSB6mce+BhR0GjyoiToKaTZx6UB3QBAlwSfQIX TgE9/o/nAsAiTgk3PDrq50GBP9fLelgXvcD/AY1e4orKx2OfltQ4+Q== -----END CERTIFICATE-----Generated at Wed May 13 12:51:30 2026 by rpki-client