$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: r0l+CHJbGyI5CCIs3233uBO79kCFOc5uwFvHPFbfCLE= Subject key identifier: F9:55:A5:FA:52:BC:73:AD:12:98:7E:19:AF:D1:1E:09:E7:7D:5C:CB Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 1F9DB59194A8DF36BC03279A39F301F2C321490B Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:54 +0000 ROA not before: Sun 03 May 2026 02:12:54 +0000 ROA not after: Sun 02 May 2027 02:17:54 +0000 asID: 153087 IP address blocks: 2404:97c0:2222::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:9d:b5:91:94:a8:df:36:bc:03:27:9a:39:f3:01:f2:c3:21:49:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:54 2026 GMT Not After : May 2 02:17:54 2027 GMT Subject: CN=F955A5FA52BC73AD12987E19AFD11E09E77D5CCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:a2:eb:08:c9:a3:80:3c:ed:e9:ce:23:5f: b0:95:30:62:d1:42:d9:32:6b:5e:bc:d6:95:74:fb: ec:c9:d6:87:16:b4:9b:98:14:d8:c2:1f:82:88:43: d9:c8:e4:f1:4e:f0:8e:11:28:52:a1:79:34:00:33: c9:0a:e8:c6:8f:f5:0a:3c:49:62:97:72:3f:7b:c2: 2d:50:2d:b8:e6:5f:df:b6:e2:0c:f1:b8:df:21:b9: 6d:03:77:16:ad:4c:ca:8b:e8:25:4e:1e:ce:19:b4: dc:82:65:c5:ba:eb:d5:47:0f:e8:57:aa:f1:95:29: c4:9e:f8:86:8a:1b:5a:53:00:47:aa:64:b0:86:b7: 3a:39:90:4a:ce:f2:63:b3:ff:03:c9:fa:d0:2f:e1: 22:60:90:25:43:80:79:46:91:59:1f:e7:84:31:fd: 0b:2d:44:44:33:9c:24:52:6a:b9:df:97:2b:45:5d: 77:42:20:b8:b4:14:0c:f6:fc:22:d7:a0:82:1c:71: 01:29:2f:99:ef:c8:f6:07:a2:d5:66:c7:98:cd:d1: 09:dd:9f:54:cc:90:01:fc:30:9e:e2:67:64:7e:a9: eb:5b:d3:07:b6:d9:67:42:12:71:40:12:1b:d0:05: ad:0f:10:56:28:d8:1b:fe:48:14:f6:fa:41:e4:77: 1e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:55:A5:FA:52:BC:73:AD:12:98:7E:19:AF:D1:1E:09:E7:7D:5C:CB X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2222::/48 Signature Algorithm: sha256WithRSAEncryption 8f:ff:66:0c:a0:65:8a:9c:11:e5:2b:c3:d2:58:6f:9d:46:09: 24:b8:f6:2d:ee:82:8d:e8:64:ff:0f:ec:b2:ef:e0:c1:dd:5f: 23:42:ef:8b:d2:57:eb:bc:1f:6a:2f:27:97:c9:86:af:a9:1d: a2:d5:eb:73:2f:c6:95:b1:01:52:8a:18:c8:bd:e1:db:42:73: 1c:62:95:30:d5:2a:03:8f:9b:ae:4e:f5:16:70:04:02:62:03: be:57:b0:37:08:79:bb:fd:94:27:33:ba:23:b1:0f:35:bd:fe: 74:3c:7f:c8:56:44:36:37:c4:ae:a3:55:5d:fc:ef:0c:79:bf: 60:1a:88:ca:4f:3d:1c:cd:26:ca:20:1c:8b:51:ba:7e:7e:9a: 62:ac:8f:56:1e:c0:35:70:08:23:af:13:4c:8b:37:12:d0:dd: 13:c4:41:4c:d7:ab:18:17:f6:a9:52:8d:43:d5:62:0e:05:57: b9:5c:a1:db:32:7e:5e:37:b7:34:c9:15:86:a8:bc:14:b4:ea: 15:aa:4c:c7:42:d1:3b:f7:ad:4a:5d:f0:92:88:9e:48:41:5b: 45:77:70:45:7d:91:9e:52:4c:04:fc:62:ba:e7:8d:1e:2f:96: 11:12:8a:d8:0b:94:1c:6e:58:cf:41:3a:ec:1b:c0:a2:96:c9: df:1b:f2:3b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUH521kZSo3za8AyeaOfMB8sMhSQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTRaFw0yNzA1MDIwMjE3NTRaMDMxMTAvBgNV BAMTKEY5NTVBNUZBNTJCQzczQUQxMjk4N0UxOUFGRDExRTA5RTc3RDVDQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/sqLrCMmjgDzt6c4jX7CVMGLR Qtkya1681pV0++zJ1ocWtJuYFNjCH4KIQ9nI5PFO8I4RKFKheTQAM8kK6MaP9Qo8 SWKXcj97wi1QLbjmX9+24gzxuN8huW0DdxatTMqL6CVOHs4ZtNyCZcW669VHD+hX qvGVKcSe+IaKG1pTAEeqZLCGtzo5kErO8mOz/wPJ+tAv4SJgkCVDgHlGkVkf54Qx /QstREQznCRSarnflytFXXdCILi0FAz2/CLXoIIccQEpL5nvyPYHotVmx5jN0Qnd n1TMkAH8MJ7iZ2R+qetb0we22WdCEnFAEhvQBa0PEFYo2Bv+SBT2+kHkdx79AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU+VWl+lK8c60SmH4Zr9EeCed9XMswHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiIwDQYJKoZIhvcNAQELBQADggEBAI//ZgygZYqcEeUrw9JYb51GCSS49i3u go3oZP8P7LLv4MHdXyNC74vSV+u8H2ovJ5fJhq+pHaLV63MvxpWxAVKKGMi94dtC cxxilTDVKgOPm65O9RZwBAJiA75XsDcIebv9lCczuiOxDzW9/nQ8f8hWRDY3xK6j VV387wx5v2AaiMpPPRzNJsogHItRun5+mmKsj1YewDVwCCOvE0yLNxLQ3RPEQUzX qxgX9qlSjUPVYg4FV7lcodsyfl43tzTJFYaovBS06hWqTMdC0Tv3rUpd8JKInkhB W0V3cEV9kZ5STAT8YrrnjR4vlhESitgLlBxuWM9BOuwbwKKWyd8b8js= -----END CERTIFICATE-----Generated at Wed May 13 13:50:54 2026 by rpki-client