$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: /Mmg3ecLSRK255XCBGJB0jTcyiyW2m4kWEh1sFSxNMc= Subject key identifier: 50:F5:76:9D:74:53:C2:DA:6A:15:E5:1F:5F:FA:CA:A9:45:4E:43:58 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 133581D7CAA97F5900A8537B3479F6E1CC05A957 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:51 +0000 ROA not before: Sun 03 May 2026 02:12:51 +0000 ROA not after: Sun 02 May 2027 02:17:51 +0000 asID: 153087 IP address blocks: 2404:97c0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:35:81:d7:ca:a9:7f:59:00:a8:53:7b:34:79:f6:e1:cc:05:a9:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:51 2026 GMT Not After : May 2 02:17:51 2027 GMT Subject: CN=50F5769D7453C2DA6A15E51F5FFACAA9454E4358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8e:f0:22:24:ee:c9:a4:4f:77:2a:26:17:21: 62:85:0d:ec:81:4f:2a:d1:b9:48:1a:b3:1b:19:3f: 8c:ef:86:2d:f3:60:c0:3f:e4:1e:c7:0b:a9:60:e4: aa:05:d6:4e:c9:67:98:c6:23:57:e2:4c:39:97:88: db:b6:5b:5a:bb:64:5b:b2:a9:28:05:8e:9b:52:3f: 61:ba:8d:1b:92:1c:7a:54:b3:23:18:09:48:57:2a: 6b:65:65:b3:8b:33:25:c0:cd:0f:80:4d:b2:20:b5: f9:53:5a:5f:1d:d7:6a:45:e0:0d:58:72:be:79:91: 72:4d:45:6d:f0:17:e0:90:b3:2c:88:f1:13:39:31: 9c:f4:cd:57:9a:9c:be:ea:01:6a:0b:f2:d8:79:85: 44:1e:32:ee:51:e6:e4:6c:3e:28:37:8e:1b:c8:80: 98:38:3b:e6:41:ef:58:a9:10:a9:fc:f5:f9:68:d4: fe:c1:e7:e7:74:66:43:86:e3:68:03:0d:4c:59:4f: 9b:2b:f4:ec:2a:98:e8:09:f2:7d:59:38:f5:ca:b3: 0f:88:a3:02:53:e2:1f:a9:75:d4:3e:39:10:34:04: 95:bd:ae:30:97:69:d9:f1:56:71:1e:be:01:f8:a1: 19:5f:bb:49:60:cc:30:66:a3:86:d3:50:e9:64:4b: 1f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F5:76:9D:74:53:C2:DA:6A:15:E5:1F:5F:FA:CA:A9:45:4E:43:58 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:222::/48 Signature Algorithm: sha256WithRSAEncryption 1b:1c:17:31:00:6b:9a:1a:f4:02:ff:c1:fe:e8:fb:35:d7:b0: 24:6f:72:a3:49:67:5b:48:51:1d:58:c5:24:9a:5e:be:c2:0e: a5:78:67:4e:91:22:ae:04:85:48:68:02:d2:42:2b:e6:76:c8: 0c:50:0d:c3:ca:cb:b2:6e:ea:e2:c8:9d:56:a3:12:1c:0f:70: 2f:02:59:c1:52:f8:11:39:ac:48:b3:43:d6:c7:6c:63:21:cd: 47:d1:c5:d4:ea:9b:9b:b2:39:70:2a:ff:30:27:37:2b:f8:35: 35:ae:2d:3b:c8:c2:9c:c1:e5:1a:5d:d4:cf:f6:1e:6c:ba:db: 41:73:c5:fe:d5:d6:61:f1:58:75:ab:35:bd:08:84:29:4e:d8: 78:92:c2:f4:b7:bc:f0:4b:6a:ed:5c:40:02:9d:3f:1c:b1:21: 75:c4:2b:dc:bf:92:69:a9:ca:b1:e0:a2:2e:75:a0:7e:a2:15: bd:a1:9d:f5:0e:bc:55:22:3c:1c:57:02:63:4e:43:ae:f1:5c: e2:6a:3c:5a:79:11:83:d7:43:5b:8e:42:6c:c4:6f:0d:27:ab: fb:c5:4a:94:27:e2:86:31:cd:d4:f2:1d:aa:4f:37:3a:d5:9c: 41:51:da:b2:4f:ca:41:0f:b9:6d:41:12:48:06:ce:12:cc:57: bd:1c:4f:82 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEzWB18qpf1kAqFN7NHn24cwFqVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTFaFw0yNzA1MDIwMjE3NTFaMDMxMTAvBgNV BAMTKDUwRjU3NjlENzQ1M0MyREE2QTE1RTUxRjVGRkFDQUE5NDU0RTQzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCajvAiJO7JpE93KiYXIWKFDeyB TyrRuUgasxsZP4zvhi3zYMA/5B7HC6lg5KoF1k7JZ5jGI1fiTDmXiNu2W1q7ZFuy qSgFjptSP2G6jRuSHHpUsyMYCUhXKmtlZbOLMyXAzQ+ATbIgtflTWl8d12pF4A1Y cr55kXJNRW3wF+CQsyyI8RM5MZz0zVeanL7qAWoL8th5hUQeMu5R5uRsPig3jhvI gJg4O+ZB71ipEKn89flo1P7B5+d0ZkOG42gDDUxZT5sr9OwqmOgJ8n1ZOPXKsw+I owJT4h+pddQ+ORA0BJW9rjCXadnxVnEevgH4oRlfu0lgzDBmo4bTUOlkSx9HAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUPV2nXRTwtpqFeUfX/rKqUVOQ1gwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQAbHBcxAGuaGvQC/8H+6Ps117Akb3KjSWdb SFEdWMUkml6+wg6leGdOkSKuBIVIaALSQivmdsgMUA3DysuyburiyJ1WoxIcD3Av AlnBUvgROaxIs0PWx2xjIc1H0cXU6pubsjlwKv8wJzcr+DU1ri07yMKcweUaXdTP 9h5suttBc8X+1dZh8Vh1qzW9CIQpTth4ksL0t7zwS2rtXEACnT8csSF1xCvcv5Jp qcqx4KIudaB+ohW9oZ31DrxVIjwcVwJjTkOu8VziajxaeRGD10NbjkJsxG8NJ6v7 xUqUJ+KGMc3U8h2qTzc61ZxBUdqyT8pBD7ltQRJIBs4SzFe9HE+C -----END CERTIFICATE-----Generated at Wed May 13 14:47:34 2026 by rpki-client