$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323233303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a323233303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: LmzJWGcro3bi8Jg3lwtItH4wYWQEdh7V8747CwKqF4U= Subject key identifier: F0:DF:63:47:95:1E:9E:E1:CB:9B:C1:17:EA:D7:15:2B:82:7F:05:AC Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 5CF11EEF30BDDCA4ED9417B3CBB817DF35AC3094 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323233303a3a2f34342d3434203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:44 +0000 ROA not before: Sun 03 May 2026 02:12:44 +0000 ROA not after: Sun 02 May 2027 02:17:44 +0000 asID: 153087 IP address blocks: 2404:97c0:2230::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f1:1e:ef:30:bd:dc:a4:ed:94:17:b3:cb:b8:17:df:35:ac:30:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:44 2026 GMT Not After : May 2 02:17:44 2027 GMT Subject: CN=F0DF6347951E9EE1CB9BC117EAD7152B827F05AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8d:b7:5f:81:97:a4:49:77:9e:49:07:ec:d1: 89:76:27:d1:50:b7:ff:9d:b1:11:27:0f:db:5f:76: a3:87:05:82:6e:b4:3f:6b:16:50:cd:17:fa:d4:05: 41:81:55:4e:15:7e:38:c5:e2:2b:57:c2:ab:26:ef: 8e:3e:15:98:50:0a:25:54:41:55:8b:33:76:b1:52: 01:60:44:32:5c:bd:00:4d:8c:cb:59:d8:a9:9c:99: bf:92:c0:43:1d:8a:27:1f:a6:e3:d4:38:91:d1:c5: 60:13:59:3c:6d:50:a3:45:e9:7d:9d:c8:64:1b:db: 84:a4:58:3c:99:df:3e:72:c2:85:1f:c6:b7:37:6a: 98:1c:7f:36:aa:71:9b:16:6c:51:99:e5:16:a3:b3: 44:9d:1e:a6:0d:9f:51:4d:14:bc:d9:be:b9:e2:70: df:a0:9a:f9:80:78:7f:2f:32:a2:cb:48:d6:12:b5: 82:df:8d:94:6d:1e:b7:0d:05:fa:82:ba:fd:cf:d9: 22:2f:c2:be:1f:9d:8d:3d:b9:f3:22:60:90:ae:a9: ee:2e:7d:84:3e:d7:c9:73:c8:f0:ca:77:66:47:b5: 6c:b9:6e:ce:84:44:3b:88:f2:9b:da:c5:e1:d3:48: 17:d0:75:10:f5:2e:7c:23:eb:d5:59:be:c6:81:16: 1e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DF:63:47:95:1E:9E:E1:CB:9B:C1:17:EA:D7:15:2B:82:7F:05:AC X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323233303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2230::/44 Signature Algorithm: sha256WithRSAEncryption 6a:bf:af:c7:9d:fb:92:60:34:a3:da:38:53:4d:95:4f:6c:ed: 64:b9:07:a6:82:f3:4e:36:41:b4:13:75:49:f5:f4:66:7a:15: ee:7e:3c:fc:fa:3f:13:4e:91:19:c2:cb:97:72:eb:42:9f:ad: eb:26:17:a3:e3:b6:61:bb:41:fe:89:0c:62:65:66:e9:ea:78: 7a:c7:ca:2f:49:b6:28:ec:b2:6c:f1:28:87:d9:e7:46:93:10: cc:b0:1c:67:22:4b:5d:03:f1:b8:63:60:ee:ea:07:c6:72:b3: 73:3a:8a:cd:ae:09:56:76:20:44:df:3c:d1:4c:ae:74:ec:df: 62:7d:ee:af:e6:5a:9a:9f:24:1e:08:96:46:4a:14:e3:b7:ea: eb:ee:4a:32:a2:c9:ce:73:50:d5:a2:72:0a:dd:44:d8:d5:d1: b0:cb:3b:cb:fe:86:56:e6:40:c8:0d:41:24:fa:46:bb:f6:49: a8:f7:53:f7:60:bf:29:99:8d:f3:8b:01:c4:af:4c:89:b7:81: 74:56:ed:9b:f7:a0:5a:7f:97:e1:23:71:73:4e:42:b8:ce:b3: 99:7c:05:d3:65:13:57:60:d6:07:0b:c5:d3:7c:b5:17:01:20: fd:e7:30:c8:13:89:21:27:98:2d:6c:dc:f4:fb:56:90:34:46: 72:40:a3:2f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXPEe7zC93KTtlBezy7gX3zWsMJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDRaFw0yNzA1MDIwMjE3NDRaMDMxMTAvBgNV BAMTKEYwREY2MzQ3OTUxRTlFRTFDQjlCQzExN0VBRDcxNTJCODI3RjA1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5jbdfgZekSXeeSQfs0Yl2J9FQ t/+dsREnD9tfdqOHBYJutD9rFlDNF/rUBUGBVU4VfjjF4itXwqsm744+FZhQCiVU QVWLM3axUgFgRDJcvQBNjMtZ2Kmcmb+SwEMdiicfpuPUOJHRxWATWTxtUKNF6X2d yGQb24SkWDyZ3z5ywoUfxrc3apgcfzaqcZsWbFGZ5Rajs0SdHqYNn1FNFLzZvrni cN+gmvmAeH8vMqLLSNYStYLfjZRtHrcNBfqCuv3P2SIvwr4fnY09ufMiYJCuqe4u fYQ+18lzyPDKd2ZHtWy5bs6ERDuI8pvaxeHTSBfQdRD1Lnwj69VZvsaBFh41AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU8N9jR5UenuHLm8EX6tcVK4J/BawwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk BJfAIjAwDQYJKoZIhvcNAQELBQADggEBAGq/r8ed+5JgNKPaOFNNlU9s7WS5B6aC 8042QbQTdUn19GZ6Fe5+PPz6PxNOkRnCy5dy60KfresmF6PjtmG7Qf6JDGJlZunq eHrHyi9JtijssmzxKIfZ50aTEMywHGciS10D8bhjYO7qB8Zys3M6is2uCVZ2IETf PNFMrnTs32J97q/mWpqfJB4IlkZKFOO36uvuSjKiyc5zUNWicgrdRNjV0bDLO8v+ hlbmQMgNQST6Rrv2Saj3U/dgvymZjfOLAcSvTIm3gXRW7Zv3oFp/l+EjcXNOQrjO s5l8BdNlE1dg1gcLxdN8tRcBIP3nMMgTiSEnmC1s3PT7VpA0RnJAoy8= -----END CERTIFICATE-----Generated at Wed May 13 14:16:57 2026 by rpki-client