$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: pgQH0i0ehGmzFb43nuct0pqH5vRJ2AnbTi4ssXBmCns= Subject key identifier: 5D:6E:EA:59:3F:DA:87:80:E9:A8:4F:0A:73:7F:8E:4A:16:1C:D3:FB Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 3D23217376573503B5F507A0A54494AF506A8AA1 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:55 +0000 ROA not before: Sun 03 May 2026 02:12:55 +0000 ROA not after: Sun 02 May 2027 02:17:55 +0000 asID: 153087 IP address blocks: 2404:97c0:3126::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:23:21:73:76:57:35:03:b5:f5:07:a0:a5:44:94:af:50:6a:8a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:55 2026 GMT Not After : May 2 02:17:55 2027 GMT Subject: CN=5D6EEA593FDA8780E9A84F0A737F8E4A161CD3FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:44:a4:23:6a:6e:88:8a:8c:15:25:01:ff:e6: b6:5f:79:fc:22:4c:e9:c3:8b:d7:5f:e7:bc:e6:8d: e9:91:01:01:e4:11:f2:35:17:de:51:f2:d0:72:0d: 08:41:af:93:b6:5c:28:20:b0:3e:2d:00:10:2a:16: 81:e2:f9:6c:be:2e:a7:2a:c0:72:51:e2:58:92:9c: 41:71:c8:7d:3c:a0:f3:e6:c2:dc:c0:5d:e4:a7:a4: 11:c4:9a:de:71:ef:cc:3c:9a:76:f0:53:41:cd:4c: f5:e8:18:f0:9c:6f:08:bf:24:6c:ce:77:2e:fc:3b: 66:61:45:c9:c2:6c:8b:fe:e8:19:1e:bc:5d:dc:0c: 70:c0:8c:6e:b6:1b:73:d4:a8:5e:49:61:35:31:62: 38:32:d4:a0:d2:7b:83:3f:8b:b2:a3:87:28:f4:7b: 51:46:05:4d:ce:01:cc:14:5e:94:f7:d3:19:05:27: bc:44:38:07:5e:44:3b:d7:25:54:76:df:26:3d:9e: cc:04:00:dc:c8:6b:97:60:f4:45:5b:8a:1b:b2:13: 84:28:86:05:dd:d7:b0:0a:db:eb:a3:b3:74:3e:53: ea:fe:0d:d9:c2:98:bd:96:7f:87:74:15:0d:86:a8: 72:32:df:9d:34:e8:b6:cb:a4:3f:09:ff:c7:15:c2: 29:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6E:EA:59:3F:DA:87:80:E9:A8:4F:0A:73:7F:8E:4A:16:1C:D3:FB X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3126::/48 Signature Algorithm: sha256WithRSAEncryption d0:64:e0:d3:9c:ee:0f:32:46:57:97:1a:8d:c0:9e:77:40:e8: 88:73:39:5a:ce:25:54:21:69:fd:fd:2c:b9:d1:0b:c7:bd:75: a4:2e:29:b9:48:5d:b6:93:c5:b3:5d:06:52:af:ad:79:e5:e4: 33:c2:40:64:80:76:9b:ee:a2:2a:01:3f:8f:32:26:06:35:21: 63:6f:d0:16:37:08:94:7c:e3:0b:eb:0c:c0:36:26:99:44:e2: 6d:29:02:e7:1c:32:92:e9:c5:87:e5:db:71:f4:60:d1:20:0b: 50:47:79:38:45:66:4a:e7:46:de:a8:19:eb:e8:fc:e3:58:76: 74:b5:8b:ef:90:7d:38:4b:10:ac:f7:fe:5d:8b:87:26:35:d6: c2:9e:ea:61:94:3c:8a:a8:c2:39:28:65:6c:2f:ad:a5:6e:53: 1c:22:7e:d9:3b:4b:38:d0:90:c8:49:ac:77:72:e8:ef:d9:c2: ca:58:24:c5:87:17:05:4a:d5:aa:ec:f9:eb:94:b4:91:af:c7: b3:35:98:33:d5:a4:7e:14:29:38:21:13:7c:2e:95:1c:c4:8d: ee:96:6f:bb:70:36:c0:66:59:14:1f:d1:09:bd:c2:c3:20:aa: 99:29:44:15:e6:61:05:0e:97:de:44:2f:d9:90:ce:75:00:a8: 38:a5:25:18 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPSMhc3ZXNQO19QegpUSUr1BqiqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTVaFw0yNzA1MDIwMjE3NTVaMDMxMTAvBgNV BAMTKDVENkVFQTU5M0ZEQTg3ODBFOUE4NEYwQTczN0Y4RTRBMTYxQ0QzRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6RKQjam6IiowVJQH/5rZfefwi TOnDi9df57zmjemRAQHkEfI1F95R8tByDQhBr5O2XCggsD4tABAqFoHi+Wy+Lqcq wHJR4liSnEFxyH08oPPmwtzAXeSnpBHEmt5x78w8mnbwU0HNTPXoGPCcbwi/JGzO dy78O2ZhRcnCbIv+6BkevF3cDHDAjG62G3PUqF5JYTUxYjgy1KDSe4M/i7Kjhyj0 e1FGBU3OAcwUXpT30xkFJ7xEOAdeRDvXJVR23yY9nswEANzIa5dg9EVbihuyE4Qo hgXd17AK2+ujs3Q+U+r+DdnCmL2Wf4d0FQ2GqHIy35006LbLpD8J/8cVwinDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUXW7qWT/ah4DpqE8Kc3+OShYc0/swHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMSYwDQYJKoZIhvcNAQELBQADggEBANBk4NOc7g8yRleXGo3AnndA6IhzOVrO JVQhaf39LLnRC8e9daQuKblIXbaTxbNdBlKvrXnl5DPCQGSAdpvuoioBP48yJgY1 IWNv0BY3CJR84wvrDMA2JplE4m0pAuccMpLpxYfl23H0YNEgC1BHeThFZkrnRt6o Gevo/ONYdnS1i++QfThLEKz3/l2LhyY11sKe6mGUPIqowjkoZWwvraVuUxwiftk7 SzjQkMhJrHdy6O/ZwspYJMWHFwVK1ars+euUtJGvx7M1mDPVpH4UKTghE3wulRzE je6Wb7twNsBmWRQf0Qm9wsMgqpkpRBXmYQUOl95EL9mQznUAqDilJRg= -----END CERTIFICATE-----Generated at Wed May 13 14:24:35 2026 by rpki-client