$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: gbWPvSn9oGzplXTJuKiGVXfJ3QszW1p69Bh6AB3NY50= Subject key identifier: AA:C9:66:95:13:26:8A:2A:DD:89:7F:AC:DA:76:59:E0:6D:DB:D0:84 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 5BCE697323AB466C1120FD1264B2EA66D1517A64 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:46 +0000 ROA not before: Sun 03 May 2026 02:12:46 +0000 ROA not after: Sun 02 May 2027 02:17:46 +0000 asID: 153087 IP address blocks: 2404:97c0:2220::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ce:69:73:23:ab:46:6c:11:20:fd:12:64:b2:ea:66:d1:51:7a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:46 2026 GMT Not After : May 2 02:17:46 2027 GMT Subject: CN=AAC9669513268A2ADD897FACDA7659E06DDBD084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:65:29:13:08:7e:7a:04:77:98:f4:76:e0:07: 88:82:9c:dd:05:6f:49:62:45:e5:a1:ea:be:58:b8: a2:00:55:8d:b2:a6:d8:78:09:f2:b2:85:86:90:06: b5:31:a1:52:d3:b3:8c:b3:e5:b9:28:59:cf:cf:29: 77:14:9c:12:0d:72:7a:2d:e9:3e:7c:14:a7:94:f3: eb:44:76:d9:b7:44:d3:3e:cb:c1:70:ae:9f:dc:ce: 0d:09:6f:c5:e0:13:9d:ce:07:50:9b:20:8d:55:d0: 3d:72:62:11:f0:d8:8b:a8:0d:e6:07:d9:b2:71:fd: f9:40:ed:6d:2a:da:fc:81:63:4d:98:4b:39:de:95: bc:47:31:69:62:46:42:21:ef:f5:e6:7c:77:86:11: 7f:16:8c:b6:60:8b:c3:4e:bf:ff:da:46:16:23:66: 34:44:50:99:de:5c:c8:c2:99:c8:fc:ae:2f:c2:d4: 0b:b1:24:d9:4f:b4:24:bc:c9:5e:11:72:39:fc:fa: 4a:0c:ea:e2:31:7b:62:6d:90:e6:7a:8b:78:c2:f7: ea:a5:7b:db:ee:85:fc:ff:86:e6:b7:9e:38:db:6e: a7:d7:17:73:9c:84:7b:e8:c6:54:87:42:71:5b:76: 1a:d2:c4:1e:93:13:29:e2:f2:6d:1a:57:b8:cf:12: 8f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C9:66:95:13:26:8A:2A:DD:89:7F:AC:DA:76:59:E0:6D:DB:D0:84 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2220::/44 Signature Algorithm: sha256WithRSAEncryption 7a:9e:7e:35:d8:54:c6:21:bd:be:8c:d7:8e:d9:53:67:28:1e: bd:6d:c8:28:8e:b2:02:6d:a8:22:32:35:aa:3f:69:07:bd:6a: 55:d3:5a:ba:0d:96:88:b4:d0:1e:38:b0:8f:b8:94:97:4f:83: ca:4d:a5:44:42:a4:59:1c:d2:e1:01:69:99:20:a9:0c:76:22: 56:c2:cd:81:7d:21:57:11:71:1a:9b:73:64:1f:79:9c:bf:0a: a7:00:3b:0c:cb:b4:73:24:56:17:16:8e:24:d1:20:17:52:17: ab:45:52:f9:89:8c:97:0d:f7:bc:ac:4a:f3:12:80:8d:0f:31: b4:bf:64:25:73:19:83:3e:67:d1:e2:d2:2e:c8:c4:cb:16:a1: 4c:be:7c:ce:5b:d2:d9:dc:79:19:37:1d:07:19:02:a7:68:56: 11:af:24:83:1b:b6:e0:6b:04:db:06:fb:93:0b:5e:74:90:8b: a1:29:69:7e:51:5e:24:e8:87:86:76:6b:ca:e1:3c:57:01:b6: af:f2:c5:40:e7:36:a8:df:99:cd:27:3d:55:8e:f1:be:4c:b7: 62:92:5d:ea:41:5a:0e:55:4c:c9:93:53:a4:cc:6c:ce:67:05: 8f:08:86:3e:d0:03:6c:d1:c3:a5:11:20:df:e7:4a:eb:9c:ee: d6:7d:72:74 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUW85pcyOrRmwRIP0SZLLqZtFRemQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDZaFw0yNzA1MDIwMjE3NDZaMDMxMTAvBgNV BAMTKEFBQzk2Njk1MTMyNjhBMkFERDg5N0ZBQ0RBNzY1OUUwNkREQkQwODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzZSkTCH56BHeY9HbgB4iCnN0F b0liReWh6r5YuKIAVY2ypth4CfKyhYaQBrUxoVLTs4yz5bkoWc/PKXcUnBINcnot 6T58FKeU8+tEdtm3RNM+y8Fwrp/czg0Jb8XgE53OB1CbII1V0D1yYhHw2IuoDeYH 2bJx/flA7W0q2vyBY02YSznelbxHMWliRkIh7/XmfHeGEX8WjLZgi8NOv//aRhYj ZjREUJneXMjCmcj8ri/C1AuxJNlPtCS8yV4Rcjn8+koM6uIxe2JtkOZ6i3jC9+ql e9vuhfz/hua3njjbbqfXF3OchHvoxlSHQnFbdhrSxB6TEyni8m0aV7jPEo+XAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUqslmlRMmiirdiX+s2nZZ4G3b0IQwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk BJfAIiAwDQYJKoZIhvcNAQELBQADggEBAHqefjXYVMYhvb6M147ZU2coHr1tyCiO sgJtqCIyNao/aQe9alXTWroNloi00B44sI+4lJdPg8pNpURCpFkc0uEBaZkgqQx2 IlbCzYF9IVcRcRqbc2QfeZy/CqcAOwzLtHMkVhcWjiTRIBdSF6tFUvmJjJcN97ys SvMSgI0PMbS/ZCVzGYM+Z9Hi0i7IxMsWoUy+fM5b0tnceRk3HQcZAqdoVhGvJIMb tuBrBNsG+5MLXnSQi6EpaX5RXiToh4Z2a8rhPFcBtq/yxUDnNqjfmc0nPVWO8b5M t2KSXepBWg5VTMmTU6TMbM5nBY8Ihj7QA2zRw6URIN/nSuuc7tZ9cnQ= -----END CERTIFICATE-----Generated at Wed May 13 16:42:31 2026 by rpki-client