$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: lEE/SUDsgTw04f8LaVsCPBIjXLNcAcdIsJ4mtUovfqM= Subject key identifier: 84:80:B8:20:0A:0C:D1:BF:23:5E:E4:C7:D4:69:1E:98:B4:AE:B4:8D Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 1C2263C89701450616D1273B5E1A7EDA72983949 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:55 +0000 ROA not before: Sun 03 May 2026 02:12:55 +0000 ROA not after: Sun 02 May 2027 02:17:55 +0000 asID: 153087 IP address blocks: 2404:97c0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:22:63:c8:97:01:45:06:16:d1:27:3b:5e:1a:7e:da:72:98:39:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:55 2026 GMT Not After : May 2 02:17:55 2027 GMT Subject: CN=8480B8200A0CD1BF235EE4C7D4691E98B4AEB48D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:55:35:34:f4:75:6c:07:c2:41:27:f3:47:0b: 93:db:03:43:6b:8a:92:77:b5:87:7c:ad:74:95:f0: 62:7c:ef:7b:8b:59:ac:ee:f5:30:1b:46:d9:8c:30: 60:6a:25:97:60:f1:b3:f0:17:44:ac:7f:b8:72:6c: d6:b3:ce:6a:1f:92:db:ce:9f:08:37:95:49:7f:63: dc:19:2e:23:8d:fc:25:5f:8d:b2:60:b6:8d:49:73: 2d:4b:1b:94:67:eb:57:af:21:64:b1:0f:f0:3c:5d: 20:75:3c:7b:d7:d3:dc:90:90:83:55:71:dd:20:31: cb:a2:09:4b:14:da:10:a0:8c:62:d3:2a:0f:db:2b: 53:bd:a7:f6:4d:e5:37:30:14:3a:c8:e0:f1:e2:d1: 20:55:aa:4c:4b:b6:b3:94:da:40:d9:b4:00:cc:24: 18:22:15:e5:69:3b:8e:37:81:27:88:5c:94:8e:41: 5a:56:12:fa:69:62:a8:e0:ab:a1:e1:31:d8:60:df: 16:18:a3:e8:18:fc:3d:a2:32:b7:7b:e3:19:70:84: ce:88:f3:99:db:c6:c3:10:4e:24:2e:cb:d4:69:1a: 38:fa:53:5f:44:86:ea:0c:1e:cf:c4:a4:4d:fc:61: a8:5e:67:59:b2:c2:20:5c:8f:4a:be:fc:ae:3f:32: d7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:80:B8:20:0A:0C:D1:BF:23:5E:E4:C7:D4:69:1E:98:B4:AE:B4:8D X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3000::/36 Signature Algorithm: sha256WithRSAEncryption d2:96:08:de:a6:67:0e:0d:3e:60:a5:c7:b7:0d:9a:62:9f:91: fb:a0:6c:d2:5f:3f:ef:5b:cf:f1:f2:85:69:3c:5a:bf:0f:f5: c0:df:11:33:8b:17:93:92:21:59:cf:5d:26:7d:b6:b6:3b:70: 86:93:39:8c:3f:87:73:a2:07:82:8a:52:a4:66:42:fb:3e:f9: ca:52:2a:c4:94:99:41:74:70:c9:0b:7b:ba:a9:8e:ba:b0:a3: f0:a3:b2:c4:72:27:06:bf:86:c0:d7:48:02:1a:27:bd:94:51: a0:82:7f:58:02:a7:89:e4:23:06:48:b4:e7:e1:12:d3:fc:8f: 33:30:51:7c:21:ca:fd:17:00:a5:f3:4a:7f:8e:90:32:49:de: 65:da:1b:45:f3:15:bb:1a:59:21:8e:8c:80:44:64:68:ee:a7: cd:d8:40:7e:8f:97:54:98:ff:5d:69:c5:77:30:36:b2:e1:da: 38:70:64:11:91:cd:f0:20:2f:9b:38:e2:7b:64:c7:00:39:cb: 5d:e5:54:ba:5e:f4:e2:12:07:f4:25:26:9c:9b:a0:49:8f:45: ab:9c:da:a6:c6:15:e3:13:73:38:93:8f:6a:6d:01:f9:ac:63: 7c:6b:76:52:30:f5:94:76:48:a8:75:57:7b:16:5b:cb:ce:5b: b5:b1:0f:e9 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUHCJjyJcBRQYW0Sc7Xhp+2nKYOUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTVaFw0yNzA1MDIwMjE3NTVaMDMxMTAvBgNV BAMTKDg0ODBCODIwMEEwQ0QxQkYyMzVFRTRDN0Q0NjkxRTk4QjRBRUI0OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvVTU09HVsB8JBJ/NHC5PbA0Nr ipJ3tYd8rXSV8GJ873uLWazu9TAbRtmMMGBqJZdg8bPwF0Ssf7hybNazzmofktvO nwg3lUl/Y9wZLiON/CVfjbJgto1Jcy1LG5Rn61evIWSxD/A8XSB1PHvX09yQkINV cd0gMcuiCUsU2hCgjGLTKg/bK1O9p/ZN5TcwFDrI4PHi0SBVqkxLtrOU2kDZtADM JBgiFeVpO443gSeIXJSOQVpWEvppYqjgq6HhMdhg3xYYo+gY/D2iMrd74xlwhM6I 85nbxsMQTiQuy9RpGjj6U19EhuoMHs/EpE38YaheZ1mywiBcj0q+/K4/MtfZAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUhIC4IAoM0b8jXuTH1GkemLSutI0wHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAMDANBgkqhkiG9w0BAQsFAAOCAQEA0pYI3qZnDg0+YKXHtw2aYp+R+6Bs0l8/ 71vP8fKFaTxavw/1wN8RM4sXk5IhWc9dJn22tjtwhpM5jD+Hc6IHgopSpGZC+z75 ylIqxJSZQXRwyQt7uqmOurCj8KOyxHInBr+GwNdIAhonvZRRoIJ/WAKnieQjBki0 5+ES0/yPMzBRfCHK/RcApfNKf46QMkneZdobRfMVuxpZIY6MgERkaO6nzdhAfo+X VJj/XWnFdzA2suHaOHBkEZHN8CAvmzjie2THADnLXeVUul704hIH9CUmnJugSY9F q5zapsYV4xNzOJOPam0B+axjfGt2UjD1lHZIqHVXexZby85btbEP6Q== -----END CERTIFICATE-----Generated at Wed May 13 13:57:15 2026 by rpki-client