$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: XSTLCvwBgsGiboNB4g5XCd3pqhrYQdYr6dWo2vfozoY= Subject key identifier: C0:40:C2:0F:11:6E:33:6C:12:46:34:E2:AB:C6:72:15:0E:D2:46:65 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 46F95CCEF21FC693DACFFF517BC2D02738BCDC76 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:53 +0000 ROA not before: Sun 03 May 2026 02:12:53 +0000 ROA not after: Sun 02 May 2027 02:17:53 +0000 asID: 153087 IP address blocks: 2404:97c0:2200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f9:5c:ce:f2:1f:c6:93:da:cf:ff:51:7b:c2:d0:27:38:bc:dc:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:53 2026 GMT Not After : May 2 02:17:53 2027 GMT Subject: CN=C040C20F116E336C124634E2ABC672150ED24665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:95:61:c4:78:f5:80:6b:82:e3:a1:be:94:8f: c8:9d:36:8c:c9:4b:59:91:5f:a8:34:b1:b2:c9:0c: 77:d1:60:21:57:61:7f:12:d6:5b:ec:44:e6:e3:f8: f7:3d:75:2d:d1:43:4c:34:91:16:14:a7:10:d8:1f: eb:98:ba:66:b9:88:fe:c6:b4:19:29:cc:3f:b3:85: 02:f7:4f:73:aa:2f:aa:47:29:b3:08:7c:82:28:91: a2:4e:03:fb:bd:90:18:0d:10:60:31:59:24:99:e7: 13:ae:00:4e:ba:cc:9b:f8:46:74:98:a4:70:f3:61: 42:cf:23:c3:0a:9b:fc:35:2d:87:48:bb:d7:d3:c6: 69:6f:32:b5:1f:e4:12:2f:2c:50:dc:ce:28:06:19: cb:72:62:b6:1f:20:8d:5a:6e:f4:af:dd:4b:0f:22: 2e:1b:5d:f3:56:e7:cb:3f:4a:b9:f0:60:9b:22:d6: d4:3d:77:68:e3:3f:6a:04:c8:6c:d0:01:74:9f:f3: 56:eb:c5:48:cf:ac:a8:ee:12:1b:52:7d:04:03:4f: 9c:11:49:2b:ff:5d:08:9e:1e:63:8a:4d:50:20:74: c0:99:f4:69:c7:c5:0c:ff:1e:50:8b:23:5e:b9:14: 70:e2:26:86:5c:a8:72:f0:50:09:36:c1:8d:a3:9d: d2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:40:C2:0F:11:6E:33:6C:12:46:34:E2:AB:C6:72:15:0E:D2:46:65 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2200::/40 Signature Algorithm: sha256WithRSAEncryption 21:64:14:67:e7:86:f6:19:56:5b:3f:d4:99:a8:97:06:c3:0d: 49:3b:4c:42:c3:5d:b2:08:e2:ae:db:72:5a:3e:b9:94:11:42: 41:bd:b0:9e:9b:7a:db:6b:3c:8b:e6:93:54:83:52:1c:b8:d3: 55:df:b6:d7:13:b5:dc:35:db:4c:5f:60:00:4f:40:b6:93:cf: 5c:a7:df:45:3a:d1:ba:1c:62:7d:7e:d2:a8:bb:96:80:97:f3: b0:22:c2:26:cc:f0:a9:b7:24:93:e7:3b:87:e8:35:e9:02:05: 21:10:2f:b5:af:65:69:eb:9f:8d:73:22:eb:c1:ac:f7:18:0e: 81:a1:75:ee:e3:72:d8:46:a8:d6:f1:43:81:48:4e:4f:e0:4f: 36:7c:3f:f1:a6:9b:ad:b6:dc:b9:2d:5e:8d:18:11:03:17:2d: a9:27:33:24:12:36:37:c6:e0:2a:44:a0:db:4b:5d:39:e1:ac: ff:40:b1:ec:a0:93:d5:03:ff:7d:98:08:8d:15:23:01:62:cd: 09:4d:40:f9:d1:64:88:7d:91:04:cc:9b:56:5f:8f:95:07:54: a2:db:81:2f:89:5a:28:5c:0c:fc:47:3a:ac:5e:30:ab:23:75: 56:73:97:4f:ae:6e:97:da:d9:b7:19:63:e3:f0:7f:01:4d:b6: ff:49:05:da -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIURvlczvIfxpPaz/9Re8LQJzi83HYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTNaFw0yNzA1MDIwMjE3NTNaMDMxMTAvBgNV BAMTKEMwNDBDMjBGMTE2RTMzNkMxMjQ2MzRFMkFCQzY3MjE1MEVEMjQ2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSlWHEePWAa4Ljob6Uj8idNozJ S1mRX6g0sbLJDHfRYCFXYX8S1lvsRObj+Pc9dS3RQ0w0kRYUpxDYH+uYuma5iP7G tBkpzD+zhQL3T3OqL6pHKbMIfIIokaJOA/u9kBgNEGAxWSSZ5xOuAE66zJv4RnSY pHDzYULPI8MKm/w1LYdIu9fTxmlvMrUf5BIvLFDczigGGctyYrYfII1abvSv3UsP Ii4bXfNW58s/SrnwYJsi1tQ9d2jjP2oEyGzQAXSf81brxUjPrKjuEhtSfQQDT5wR SSv/XQieHmOKTVAgdMCZ9GnHxQz/HlCLI165FHDiJoZcqHLwUAk2wY2jndK3AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUwEDCDxFuM2wSRjTiq8ZyFQ7SRmUwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAIjANBgkqhkiG9w0BAQsFAAOCAQEAIWQUZ+eG9hlWWz/UmaiXBsMNSTtMQsNd sgjirttyWj65lBFCQb2wnpt622s8i+aTVINSHLjTVd+21xO13DXbTF9gAE9AtpPP XKffRTrRuhxifX7SqLuWgJfzsCLCJszwqbckk+c7h+g16QIFIRAvta9laeufjXMi 68Gs9xgOgaF17uNy2Eao1vFDgUhOT+BPNnw/8aabrbbcuS1ejRgRAxctqSczJBI2 N8bgKkSg20tdOeGs/0Cx7KCT1QP/fZgIjRUjAWLNCU1A+dFkiH2RBMybVl+PlQdU otuBL4laKFwM/Ec6rF4wqyN1VnOXT65ul9rZtxlj4/B/AU22/0kF2g== -----END CERTIFICATE-----Generated at Wed May 13 14:47:29 2026 by rpki-client