$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a363030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a363030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: 7D5LmbcAwQhQzj7d7JHDYQ+AtJDaVqhWb2RhRIlRhaU= Subject key identifier: E3:E4:D3:80:61:CE:5D:8B:50:4F:C6:A0:62:D8:2E:11:B9:EF:6E:ED Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 31DF1E7E96146AC4132A42107D6526FB2AA2BA52 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a363030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:43 +0000 ROA not before: Sun 03 May 2026 02:12:43 +0000 ROA not after: Sun 02 May 2027 02:17:43 +0000 asID: 153087 IP address blocks: 2404:97c0:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:df:1e:7e:96:14:6a:c4:13:2a:42:10:7d:65:26:fb:2a:a2:ba:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:43 2026 GMT Not After : May 2 02:17:43 2027 GMT Subject: CN=E3E4D38061CE5D8B504FC6A062D82E11B9EF6EED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:ea:33:a8:84:06:ea:58:a8:01:e1:09:94: 8e:fa:b7:53:be:8b:3c:8a:16:65:e6:c1:43:9a:c6: 1e:55:0f:27:80:21:9e:df:58:01:15:e8:9d:b9:9a: 98:bd:3f:54:52:bd:1e:ea:10:2a:5a:c4:9a:8a:8a: ba:d4:91:99:5b:e5:65:e4:b7:c3:a6:88:f6:40:11: 8d:e2:38:be:76:b6:e9:b6:f5:55:d0:92:6f:2c:dd: eb:a0:2f:ed:fa:c6:e8:ff:67:23:22:24:22:e7:5a: 8c:0f:1c:3e:28:41:11:d6:3a:55:c2:45:ae:96:ac: 83:6c:a8:56:af:78:5f:b2:f6:ab:29:4f:48:6d:76: fd:13:0a:76:25:41:b4:69:56:9b:56:fa:20:90:06: 74:4e:e9:40:cb:51:46:bf:eb:24:a9:cf:92:1e:42: 2c:bb:c0:32:5a:5e:07:53:e6:14:f7:28:c1:b8:b4: e4:92:7b:b0:13:81:7b:7b:3c:bc:77:60:e7:08:47: 4a:9e:fa:43:b1:0d:a6:66:35:2e:6c:c6:c9:06:3b: 0b:96:14:b7:20:21:47:77:fd:0a:1d:ee:b3:e1:82: 9b:23:1e:4d:0f:70:9a:25:ff:66:f1:a1:e2:fb:22: 56:6d:15:56:4f:d0:66:18:7f:fa:59:77:68:fe:38: 78:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E4:D3:80:61:CE:5D:8B:50:4F:C6:A0:62:D8:2E:11:B9:EF:6E:ED X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a363030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:6000::/36 Signature Algorithm: sha256WithRSAEncryption 3f:26:e0:02:d3:96:6a:00:06:bc:89:a3:0d:89:2c:66:07:85: b4:fc:23:30:87:4a:54:ab:bc:e1:61:4c:b5:04:4f:e5:15:f1: 2a:84:49:43:6f:90:19:ae:ce:8b:01:00:09:28:97:94:cb:31: 36:8b:0f:3e:05:b4:7a:a2:fb:6b:ae:d9:ca:85:6d:ed:f5:26: 76:2c:f7:25:95:7f:b8:37:e4:73:8a:cd:58:92:33:53:d7:bf: 02:8b:6d:f9:35:e6:f7:b7:01:4c:0e:2d:af:47:3c:1b:9e:b1: ed:78:0b:81:42:9d:cf:ba:c7:d2:f7:c8:fa:27:74:25:d0:16: ee:fe:4e:80:21:8b:b9:c7:09:f0:70:cc:59:da:10:e4:a4:71: ff:97:12:32:10:c2:5e:34:07:87:36:d8:fc:2f:dc:ca:2d:2d: 02:b9:34:95:85:93:60:8b:df:8d:f2:2c:e7:91:13:02:0c:44: eb:52:7b:d1:d2:61:85:11:d0:38:16:74:81:ca:69:f5:20:9b: ab:4f:93:6d:87:d5:08:67:7f:9a:56:af:df:f1:dc:49:44:4f: 0f:a2:8c:e0:d8:c8:3f:cf:80:d3:96:07:48:9a:e9:7a:8e:e6: fe:48:95:7b:5f:d5:74:9a:f7:ec:33:75:a6:02:d4:11:60:30: e8:06:34:2b -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUMd8efpYUasQTKkIQfWUm+yqiulIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDNaFw0yNzA1MDIwMjE3NDNaMDMxMTAvBgNV BAMTKEUzRTREMzgwNjFDRTVEOEI1MDRGQzZBMDYyRDgyRTExQjlFRjZFRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBceozqIQG6lioAeEJlI76t1O+ izyKFmXmwUOaxh5VDyeAIZ7fWAEV6J25mpi9P1RSvR7qECpaxJqKirrUkZlb5WXk t8OmiPZAEY3iOL52tum29VXQkm8s3eugL+36xuj/ZyMiJCLnWowPHD4oQRHWOlXC Ra6WrINsqFaveF+y9qspT0htdv0TCnYlQbRpVptW+iCQBnRO6UDLUUa/6ySpz5Ie Qiy7wDJaXgdT5hT3KMG4tOSSe7ATgXt7PLx3YOcIR0qe+kOxDaZmNS5sxskGOwuW FLcgIUd3/Qod7rPhgpsjHk0PcJol/2bxoeL7IlZtFVZP0GYYf/pZd2j+OHgDAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU4+TTgGHOXYtQT8agYtguEbnvbu0wHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzYzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAYDANBgkqhkiG9w0BAQsFAAOCAQEAPybgAtOWagAGvImjDYksZgeFtPwjMIdK VKu84WFMtQRP5RXxKoRJQ2+QGa7OiwEACSiXlMsxNosPPgW0eqL7a67ZyoVt7fUm diz3JZV/uDfkc4rNWJIzU9e/Aott+TXm97cBTA4tr0c8G56x7XgLgUKdz7rH0vfI +id0JdAW7v5OgCGLuccJ8HDMWdoQ5KRx/5cSMhDCXjQHhzbY/C/cyi0tArk0lYWT YIvfjfIs55ETAgxE61J70dJhhRHQOBZ0gcpp9SCbq0+TbYfVCGd/mlav3/HcSURP D6KM4NjIP8+A05YHSJrpeo7m/kiVe1/VdJr37DN1pgLUEWAw6AY0Kw== -----END CERTIFICATE-----Generated at Wed May 13 12:29:13 2026 by rpki-client