$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: DkrBZkvkfTGYcAnb/q24MD7TOXJYh2ZRG294v85u6vc= Subject key identifier: 5A:06:44:56:BD:E4:2C:D5:46:AA:44:12:B8:3D:99:09:78:A6:B9:30 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 5D747FB89A91785106E90161984C9CBE53D1DC0D Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:51 +0000 ROA not before: Sun 03 May 2026 02:12:51 +0000 ROA not after: Sun 02 May 2027 02:17:51 +0000 asID: 153087 IP address blocks: 2404:97c0:3100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:74:7f:b8:9a:91:78:51:06:e9:01:61:98:4c:9c:be:53:d1:dc:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:51 2026 GMT Not After : May 2 02:17:51 2027 GMT Subject: CN=5A064456BDE42CD546AA4412B83D990978A6B930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a4:4c:18:48:2b:46:dc:75:12:d1:bb:cc:02: 03:ac:9f:23:49:4a:24:d3:3b:fe:81:9a:1a:65:dc: d2:2e:96:20:b3:39:03:2a:b1:18:73:e8:74:26:c0: 32:12:cb:6a:d4:70:b8:42:c6:00:f3:e9:c3:bf:53: 2e:98:34:b3:cd:ff:53:2f:6a:00:f4:51:55:ce:b0: 25:b7:ad:1e:d1:63:9f:69:1c:18:7a:ae:65:ad:0b: d8:45:3a:00:66:9a:49:83:ad:0c:82:e8:39:2e:53: 1b:91:c8:e1:69:f4:fb:82:24:87:1c:59:32:16:e6: f9:74:23:b3:8a:b4:96:7c:0e:1f:2b:d5:56:52:e9: 35:8e:a5:3a:a0:fc:c6:23:4c:c7:ba:a3:54:bd:69: f4:e5:39:85:1e:5a:58:9f:4b:39:d0:d6:7e:c3:df: 44:30:d4:d1:f0:ab:4a:66:f5:68:1c:cf:07:63:db: 20:0a:51:9c:0e:91:8b:c3:1f:73:28:e8:1f:6c:a7: d6:a8:b7:dd:09:5d:88:ad:d8:7b:72:c2:04:8e:ec: b8:2d:b2:1a:66:a9:fc:ba:0a:d5:24:66:d0:23:f9: b0:3c:1d:23:cb:fd:5a:4a:41:1a:6c:e9:77:a9:f8: 55:ab:a3:fe:a4:7a:aa:17:ae:8a:94:e7:82:f7:de: e0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:06:44:56:BD:E4:2C:D5:46:AA:44:12:B8:3D:99:09:78:A6:B9:30 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3100::/40 Signature Algorithm: sha256WithRSAEncryption 49:7f:af:1a:12:c1:97:14:2d:eb:60:c7:16:59:57:d5:f3:db: f1:44:8e:38:4f:51:a7:ba:53:94:ca:71:8c:35:10:00:4e:7e: dd:dd:97:31:11:21:e7:a2:e7:cc:ce:71:e5:08:14:1f:eb:26: 70:b6:d3:54:a7:fd:56:66:75:16:07:8f:63:2f:ad:c0:1f:da: 7b:78:fd:cf:da:e8:be:13:75:ad:1f:ca:fd:2f:51:b6:17:85: 6b:cb:de:7f:29:84:35:d7:39:45:00:bf:ac:e9:ec:a2:ce:2a: dc:04:5e:37:9b:a3:d8:e4:1f:67:cb:cd:2c:3c:b2:41:5f:18: 49:88:89:86:9e:31:90:42:36:1f:b0:b6:49:64:e8:dd:c8:89: d6:1b:83:8d:99:d8:1e:25:13:67:f5:31:76:ab:c6:25:bd:b1: d3:25:74:f1:40:30:aa:8e:48:f5:9a:8c:30:c1:05:b5:2f:73: dc:56:b5:1f:79:9a:c9:28:23:e1:10:32:8a:c4:0f:7f:82:b4: d6:d9:aa:fc:b8:39:8c:6f:30:2f:f5:b2:47:47:01:2d:83:c1: fd:77:dd:c0:33:04:5a:01:9a:d3:3f:1f:30:12:ee:f4:da:e0: 5c:1a:3c:6f:f0:c4:6b:68:f5:95:16:5e:d4:49:68:79:dc:cc: dd:50:27:79 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUXXR/uJqReFEG6QFhmEycvlPR3A0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTFaFw0yNzA1MDIwMjE3NTFaMDMxMTAvBgNV BAMTKDVBMDY0NDU2QkRFNDJDRDU0NkFBNDQxMkI4M0Q5OTA5NzhBNkI5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHpEwYSCtG3HUS0bvMAgOsnyNJ SiTTO/6Bmhpl3NIuliCzOQMqsRhz6HQmwDISy2rUcLhCxgDz6cO/Uy6YNLPN/1Mv agD0UVXOsCW3rR7RY59pHBh6rmWtC9hFOgBmmkmDrQyC6DkuUxuRyOFp9PuCJIcc WTIW5vl0I7OKtJZ8Dh8r1VZS6TWOpTqg/MYjTMe6o1S9afTlOYUeWlifSznQ1n7D 30Qw1NHwq0pm9Wgczwdj2yAKUZwOkYvDH3Mo6B9sp9aot90JXYit2HtywgSO7Lgt shpmqfy6CtUkZtAj+bA8HSPL/VpKQRps6Xep+FWro/6keqoXroqU54L33uD9AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUWgZEVr3kLNVGqkQSuD2ZCXimuTAwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAMTANBgkqhkiG9w0BAQsFAAOCAQEASX+vGhLBlxQt62DHFllX1fPb8USOOE9R p7pTlMpxjDUQAE5+3d2XMREh56LnzM5x5QgUH+smcLbTVKf9VmZ1FgePYy+twB/a e3j9z9rovhN1rR/K/S9RtheFa8vefymENdc5RQC/rOnsos4q3AReN5uj2OQfZ8vN LDyyQV8YSYiJhp4xkEI2H7C2SWTo3ciJ1huDjZnYHiUTZ/UxdqvGJb2x0yV08UAw qo5I9ZqMMMEFtS9z3Fa1H3maySgj4RAyisQPf4K01tmq/Lg5jG8wL/WyR0cBLYPB /XfdwDMEWgGa0z8fMBLu9NrgXBo8b/DEa2j1lRZe1EloedzM3VAneQ== -----END CERTIFICATE-----Generated at Wed May 13 12:46:23 2026 by rpki-client