$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: pdOHJluQlfq3TkLLSMk30Y8iYQjHQV+KHm0Xmsrswjk= Subject key identifier: D9:45:45:86:49:D6:08:CA:9E:90:4B:C1:52:64:8C:94:68:5E:10:B5 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 50610405A665C964736FF14A2B042B154ECBEC8C Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:48 +0000 ROA not before: Sun 03 May 2026 02:12:48 +0000 ROA not after: Sun 02 May 2027 02:17:48 +0000 asID: 153087 IP address blocks: 2404:97c0:223::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:61:04:05:a6:65:c9:64:73:6f:f1:4a:2b:04:2b:15:4e:cb:ec:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:48 2026 GMT Not After : May 2 02:17:48 2027 GMT Subject: CN=D945458649D608CA9E904BC152648C94685E10B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8a:e7:0d:a8:88:6b:0a:dd:50:58:49:0f:cd: 8a:67:e3:82:ec:72:e9:ba:23:99:a7:b2:03:95:69: 0d:d3:e5:7d:db:91:13:26:9d:32:1b:0b:8d:16:29: eb:64:8e:18:fa:99:d8:d9:ce:e2:6a:d3:f8:04:1e: 29:ac:0d:e4:46:cc:3f:b2:5c:65:23:66:1b:ae:68: 78:ff:76:0b:0a:74:98:d9:10:64:44:dc:dc:85:e4: 31:4c:86:e0:80:7e:73:3e:66:13:7f:d1:fa:46:18: 89:48:70:36:e8:ce:60:72:2b:e2:c4:10:0d:9d:08: 76:c6:d5:bc:60:4f:db:ad:6a:9a:46:cd:7f:61:52: 4b:35:55:da:ec:56:eb:37:fb:ed:c1:48:3a:30:ed: ee:fd:53:16:a5:ee:1a:ed:c4:f9:f3:23:a8:55:db: 14:35:e5:f6:db:12:6c:81:f5:80:bf:92:83:73:dc: 08:d0:de:d3:c3:e1:49:58:9e:d1:df:f9:55:7d:32: cf:8f:6d:82:99:08:4d:c7:46:60:91:ee:56:96:85: ad:52:ad:59:b6:5a:a9:9f:76:0a:ab:9c:0e:2d:ae: 90:08:13:48:d8:64:74:98:b3:65:0c:05:42:fe:09: fc:c8:58:a5:27:7d:7c:66:5e:89:ec:ca:a4:52:7e: d2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:45:45:86:49:D6:08:CA:9E:90:4B:C1:52:64:8C:94:68:5E:10:B5 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:223::/48 Signature Algorithm: sha256WithRSAEncryption 93:0f:09:5e:04:9e:46:54:ee:5f:11:7d:de:61:05:88:a6:6d: 15:b7:20:e6:39:84:48:cf:6f:5e:65:8c:64:ea:0a:fa:fb:15: 3e:e3:91:d6:24:75:02:cd:17:09:f1:2e:10:e3:bf:1f:dc:ef: 04:ba:96:25:9f:02:ee:62:db:9d:1e:7f:72:9b:01:e1:53:4f: dd:44:52:98:c8:70:64:29:68:e6:d2:f4:6a:dd:42:92:ce:3c: 52:ab:46:e6:4e:5b:ec:9d:ad:71:31:a6:f6:14:af:33:57:8a: ce:95:a9:fe:fc:d6:d1:76:f4:0e:7c:f2:3d:85:79:1f:de:d3: 83:8c:5a:b6:a3:64:aa:6e:0f:d5:6d:54:ce:09:8b:5c:29:05: 48:a2:f9:37:16:7e:f0:b0:e9:f8:15:43:1d:48:7c:bd:af:e6: 54:a0:2b:1b:d6:15:5c:44:5e:ea:58:28:fe:7f:97:de:c1:1e: 9e:da:c2:b3:89:a2:dd:6c:d5:ca:6d:b0:71:dd:12:76:fe:96: 4c:e8:2c:fd:5d:c2:d2:cb:eb:8c:42:46:1d:e8:47:94:a7:f5: 88:59:99:de:17:af:4b:65:d3:54:04:18:fe:c9:0d:a8:42:0e: a5:d9:39:8a:f0:62:72:2d:97:5c:28:9e:3d:a5:47:c3:fa:78: 7c:19:44:c8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUGEEBaZlyWRzb/FKKwQrFU7L7IwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDhaFw0yNzA1MDIwMjE3NDhaMDMxMTAvBgNV BAMTKEQ5NDU0NTg2NDlENjA4Q0E5RTkwNEJDMTUyNjQ4Qzk0Njg1RTEwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFiucNqIhrCt1QWEkPzYpn44Ls cum6I5mnsgOVaQ3T5X3bkRMmnTIbC40WKetkjhj6mdjZzuJq0/gEHimsDeRGzD+y XGUjZhuuaHj/dgsKdJjZEGRE3NyF5DFMhuCAfnM+ZhN/0fpGGIlIcDbozmByK+LE EA2dCHbG1bxgT9utappGzX9hUks1VdrsVus3++3BSDow7e79Uxal7hrtxPnzI6hV 2xQ15fbbEmyB9YC/koNz3AjQ3tPD4UlYntHf+VV9Ms+PbYKZCE3HRmCR7laWha1S rVm2WqmfdgqrnA4trpAIE0jYZHSYs2UMBUL+CfzIWKUnfXxmXonsyqRSftLrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2UVFhknWCMqekEvBUmSMlGheELUwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIjMA0GCSqGSIb3DQEBCwUAA4IBAQCTDwleBJ5GVO5fEX3eYQWIpm0VtyDmOYRI z29eZYxk6gr6+xU+45HWJHUCzRcJ8S4Q478f3O8EupYlnwLuYtudHn9ymwHhU0/d RFKYyHBkKWjm0vRq3UKSzjxSq0bmTlvsna1xMab2FK8zV4rOlan+/NbRdvQOfPI9 hXkf3tODjFq2o2Sqbg/VbVTOCYtcKQVIovk3Fn7wsOn4FUMdSHy9r+ZUoCsb1hVc RF7qWCj+f5fewR6e2sKziaLdbNXKbbBx3RJ2/pZM6Cz9XcLSy+uMQkYd6EeUp/WI WZneF69LZdNUBBj+yQ2oQg6l2TmK8GJyLZdcKJ49pUfD+nh8GUTI -----END CERTIFICATE-----Generated at Wed May 13 12:46:36 2026 by rpki-client