$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: i8/9Al23162Hh9EuI4r+PROdnYjP3rvKgLEi0SE1gko= Subject key identifier: 45:E3:34:26:55:A1:DE:F5:41:C0:F7:0A:FE:BB:BB:3D:38:2E:66:36 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 7C5CF1C7404C5543E62B04B002EFAD6894C38589 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:43 +0000 ROA not before: Sun 03 May 2026 02:12:43 +0000 ROA not after: Sun 02 May 2027 02:17:43 +0000 asID: 153087 IP address blocks: 2404:97c0:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:5c:f1:c7:40:4c:55:43:e6:2b:04:b0:02:ef:ad:68:94:c3:85:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:43 2026 GMT Not After : May 2 02:17:43 2027 GMT Subject: CN=45E3342655A1DEF541C0F70AFEBBBB3D382E6636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1f:35:4c:cb:23:db:12:88:0b:6d:e9:03:eb: 58:5f:0e:82:1c:c6:22:30:2a:99:9b:36:a7:15:3a: e1:b9:21:95:c3:99:f5:27:c0:c0:0d:d7:ce:9c:7a: ff:7b:73:30:01:61:43:70:33:91:65:08:86:ba:31: 1f:8e:9f:f2:f5:62:51:c4:fe:d1:6c:ce:81:73:92: 1c:cf:ab:4c:69:eb:05:0e:b8:c9:4e:6e:39:ed:7d: c4:32:ac:70:85:a8:74:b8:8c:06:2f:24:e1:75:19: 84:40:3c:6e:ee:09:e7:0d:82:eb:83:bc:fd:85:ba: e1:7a:4c:95:e7:15:dd:3c:78:0c:a0:57:64:0a:56: c7:08:03:38:25:31:f6:95:7c:c4:93:9c:74:8d:86: 5e:3c:27:52:59:ac:8d:4c:c3:37:47:91:6c:b5:ef: 27:94:f7:cf:76:50:a9:ed:2a:f3:56:2c:ae:1b:c6: aa:2a:eb:51:fb:51:f6:b5:23:06:92:03:90:ed:25: a0:f9:14:e0:76:79:bd:39:2d:69:42:c1:40:02:a9: 27:ee:dc:a6:5f:59:41:4b:74:ab:46:27:bf:8a:d7: 86:c5:a5:80:f6:df:65:e2:84:98:a0:c6:f7:06:57: 25:c7:37:33:76:6a:2d:0b:9e:a7:3a:e5:d9:a1:bf: 98:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E3:34:26:55:A1:DE:F5:41:C0:F7:0A:FE:BB:BB:3D:38:2E:66:36 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 78:0f:eb:a3:8b:31:40:f6:c9:fc:c7:62:9e:27:d5:ed:11:8a: c8:8a:1c:2b:e9:8a:fe:60:44:21:97:36:fe:13:84:c5:43:3e: 2b:8e:9e:8c:8a:d0:f6:f4:64:55:39:22:3e:47:71:af:d0:db: 36:03:b8:99:14:2d:7a:37:54:cd:18:7d:c0:a0:78:f2:8d:f0: 17:20:40:a6:a7:92:7f:8f:70:20:86:b5:f9:d4:fa:eb:16:16: ea:87:2e:23:a3:f1:aa:b5:8e:be:ac:c1:bb:d9:de:59:56:b9: c6:0d:d2:de:9a:8d:8f:3f:2f:b9:4b:5c:19:25:d7:d7:70:1e: 28:e2:48:f7:84:96:22:fd:8b:ef:ec:aa:8d:0e:2f:1c:60:2c: 5d:25:d8:8b:d3:92:7e:34:8c:5b:96:7c:a9:2a:0e:64:63:3c: 48:c1:bd:2b:5b:64:6d:61:67:90:47:1b:b3:e8:e1:32:27:26: ea:a5:59:6b:9f:68:4c:44:59:b7:96:58:0a:3f:89:8f:94:27: de:97:f9:c5:e8:a9:e0:25:44:44:da:d7:cc:db:2f:fa:18:81: ed:51:24:e0:0e:b2:d4:e7:b1:3b:4c:d5:76:ea:cf:67:67:43: d7:a4:82:bc:db:e6:58:b4:db:1f:58:01:a9:ac:07:8e:7a:8d: 38:dc:c2:6a -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUfFzxx0BMVUPmKwSwAu+taJTDhYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDNaFw0yNzA1MDIwMjE3NDNaMDMxMTAvBgNV BAMTKDQ1RTMzNDI2NTVBMURFRjU0MUMwRjcwQUZFQkJCQjNEMzgyRTY2MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxHzVMyyPbEogLbekD61hfDoIc xiIwKpmbNqcVOuG5IZXDmfUnwMAN186cev97czABYUNwM5FlCIa6MR+On/L1YlHE /tFszoFzkhzPq0xp6wUOuMlObjntfcQyrHCFqHS4jAYvJOF1GYRAPG7uCecNguuD vP2FuuF6TJXnFd08eAygV2QKVscIAzglMfaVfMSTnHSNhl48J1JZrI1MwzdHkWy1 7yeU9892UKntKvNWLK4bxqoq61H7Ufa1IwaSA5DtJaD5FOB2eb05LWlCwUACqSfu 3KZfWUFLdKtGJ7+K14bFpYD232XihJigxvcGVyXHNzN2ai0Lnqc65dmhv5jTAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUReM0JlWh3vVBwPcK/ru7PTguZjYwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzczMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAcDANBgkqhkiG9w0BAQsFAAOCAQEAeA/ro4sxQPbJ/MdinifV7RGKyIocK+mK /mBEIZc2/hOExUM+K46ejIrQ9vRkVTkiPkdxr9DbNgO4mRQtejdUzRh9wKB48o3w FyBApqeSf49wIIa1+dT66xYW6ocuI6PxqrWOvqzBu9neWVa5xg3S3pqNjz8vuUtc GSXX13AeKOJI94SWIv2L7+yqjQ4vHGAsXSXYi9OSfjSMW5Z8qSoOZGM8SMG9K1tk bWFnkEcbs+jhMicm6qVZa59oTERZt5ZYCj+Jj5Qn3pf5xeip4CVERNrXzNsv+hiB 7VEk4A6y1OexO0zVdurPZ2dD16SCvNvmWLTbH1gBqawHjnqNONzCag== -----END CERTIFICATE-----Generated at Wed May 13 14:24:55 2026 by rpki-client