$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: u+MqAUk2B5ExGfN0EJwIauHmEXqaYtpRPVvNSr0HHrA= Subject key identifier: 40:36:EE:BD:A1:86:F0:74:1D:C9:A7:4A:67:C1:A2:61:49:D7:BB:84 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 6B149E62C94E5FD48133FF4E08AD269BA70FBD35 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:50 +0000 ROA not before: Sun 03 May 2026 02:12:50 +0000 ROA not after: Sun 02 May 2027 02:17:50 +0000 asID: 153087 IP address blocks: 2404:97c0:220::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:14:9e:62:c9:4e:5f:d4:81:33:ff:4e:08:ad:26:9b:a7:0f:bd:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:50 2026 GMT Not After : May 2 02:17:50 2027 GMT Subject: CN=4036EEBDA186F0741DC9A74A67C1A26149D7BB84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b4:16:87:f7:a0:ae:1a:da:bb:b3:de:28:2e: d2:98:8e:5c:19:8c:1f:7e:9b:31:e9:46:d7:44:23: c6:1e:dd:3a:29:b7:b3:5b:5c:f9:28:d9:2d:85:1f: d4:fe:39:d9:3a:96:41:f6:7d:04:a7:ce:eb:ab:39: b5:06:97:8f:30:8b:83:c9:7d:f6:8c:a2:9f:2f:97: be:2f:b6:42:93:eb:95:0a:8b:56:2b:0c:60:3d:1b: 7a:27:d8:0f:72:a1:af:11:94:6c:f4:3a:24:ee:96: a1:19:13:cf:2b:53:fa:ba:b1:d4:42:de:05:d9:62: ee:5e:aa:83:21:c0:a8:a6:3d:17:36:09:08:b1:7b: 33:82:33:6c:c7:ef:7a:31:ae:e5:54:71:5a:9b:02: 55:fb:a0:a0:21:6f:83:e2:34:04:ea:02:eb:88:5f: d7:8a:5f:61:4a:1a:20:27:94:86:d2:38:ad:a2:7f: 5a:df:c2:e0:e6:ef:b1:ef:34:51:1b:21:9f:10:c2: 00:8f:e7:81:30:55:ef:fa:b4:78:30:1e:c5:01:9c: 22:9e:15:b5:78:60:58:43:41:ad:42:3d:85:2c:5f: a5:1c:95:35:d5:22:30:fa:f9:ab:5b:7b:37:12:e2: bd:d9:35:32:ca:8f:ab:a4:3b:fe:7e:37:8d:df:ff: 40:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:36:EE:BD:A1:86:F0:74:1D:C9:A7:4A:67:C1:A2:61:49:D7:BB:84 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:220::/44 Signature Algorithm: sha256WithRSAEncryption 6c:bd:6e:e7:16:65:fc:8b:6d:22:66:96:77:1d:cb:ff:87:76: 8e:62:2b:5e:53:6c:6d:e8:ce:f3:2b:d6:f3:bd:d4:d9:2f:c7: 37:17:ed:d7:3b:4b:3c:d3:0b:41:a5:2e:9e:1a:52:f4:27:3f: 12:16:dc:79:36:ea:45:ed:ef:de:17:ae:c0:e7:06:f4:ec:c1: 12:1d:53:66:de:9e:05:5a:fe:36:8d:48:32:ba:fc:56:12:bd: c1:4a:b2:58:1e:81:dc:50:8d:8a:4c:ae:8f:2f:da:ed:86:10: 45:a5:ca:1b:94:a6:48:97:6e:cb:4e:99:34:d8:cc:7f:cd:fc: 3a:31:f3:04:8a:54:40:7e:18:5b:91:f2:be:06:24:9d:07:d1: 45:5c:1a:f2:69:7e:79:9b:27:ae:23:f9:83:4f:e2:b3:0e:75: 63:b3:db:af:5c:ae:42:bc:38:75:82:dd:22:f0:f2:fc:3c:7d: 84:c9:d9:1b:a5:11:ef:6c:20:8f:d9:71:72:3a:a9:b0:fd:f8: 98:78:58:48:28:7f:0e:f7:5d:ef:85:75:79:80:c0:ef:28:27: 33:ec:5a:7e:03:c4:f3:76:7d:89:86:4a:d3:b0:b9:e2:6d:a4: 05:5c:fe:e0:89:31:0d:1a:ff:3b:a2:6b:71:fd:8a:a4:12:91: b5:ef:1a:66 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaxSeYslOX9SBM/9OCK0mm6cPvTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTBaFw0yNzA1MDIwMjE3NTBaMDMxMTAvBgNV BAMTKDQwMzZFRUJEQTE4NkYwNzQxREM5QTc0QTY3QzFBMjYxNDlEN0JCODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvtBaH96CuGtq7s94oLtKYjlwZ jB9+mzHpRtdEI8Ye3Topt7NbXPko2S2FH9T+Odk6lkH2fQSnzuurObUGl48wi4PJ ffaMop8vl74vtkKT65UKi1YrDGA9G3on2A9yoa8RlGz0OiTulqEZE88rU/q6sdRC 3gXZYu5eqoMhwKimPRc2CQixezOCM2zH73oxruVUcVqbAlX7oKAhb4PiNATqAuuI X9eKX2FKGiAnlIbSOK2if1rfwuDm77HvNFEbIZ8QwgCP54EwVe/6tHgwHsUBnCKe FbV4YFhDQa1CPYUsX6UclTXVIjD6+atbezcS4r3ZNTLKj6ukO/5+N43f/0DpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQDbuvaGG8HQdyadKZ8GiYUnXu4QwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMwM2Ez YTJmMzQzNDJkMzQzNDIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEJASX wAIgMA0GCSqGSIb3DQEBCwUAA4IBAQBsvW7nFmX8i20iZpZ3Hcv/h3aOYiteU2xt 6M7zK9bzvdTZL8c3F+3XO0s80wtBpS6eGlL0Jz8SFtx5NupF7e/eF67A5wb07MES HVNm3p4FWv42jUgyuvxWEr3BSrJYHoHcUI2KTK6PL9rthhBFpcoblKZIl27LTpk0 2Mx/zfw6MfMEilRAfhhbkfK+BiSdB9FFXBryaX55myeuI/mDT+KzDnVjs9uvXK5C vDh1gt0i8PL8PH2EydkbpRHvbCCP2XFyOqmw/fiYeFhIKH8O913vhXV5gMDvKCcz 7Fp+A8Tzdn2JhkrTsLnibaQFXP7giTENGv87omtx/YqkEpG17xpm -----END CERTIFICATE-----Generated at Wed May 13 12:18:53 2026 by rpki-client