$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: 6GaLrBJRDeCPmVnv9HWmJ60Gaf1Noay2UqTb1qe1J6U= Subject key identifier: A5:6C:96:12:05:7C:2E:D0:D6:50:E7:1B:A0:A1:33:8A:29:DB:E4:7D Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 3FAAE9F59B7420C2AA2C043CD1B0A825DA58BDB6 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:47 +0000 ROA not before: Sun 03 May 2026 02:12:47 +0000 ROA not after: Sun 02 May 2027 02:17:47 +0000 asID: 153087 IP address blocks: 2404:97c0:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:aa:e9:f5:9b:74:20:c2:aa:2c:04:3c:d1:b0:a8:25:da:58:bd:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:47 2026 GMT Not After : May 2 02:17:47 2027 GMT Subject: CN=A56C9612057C2ED0D650E71BA0A1338A29DBE47D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9f:c2:af:f9:77:cf:14:30:96:55:74:0a:cf: 54:82:f0:66:1c:56:57:87:1c:11:9c:2e:e3:dc:24: 43:94:4c:30:8e:a5:25:22:56:b3:ea:17:1f:46:29: ec:f2:fe:6c:4e:82:14:04:02:a9:5a:54:67:dd:38: da:d9:78:9d:d8:b9:d6:9d:b3:2e:b2:55:a4:4d:68: 58:60:93:01:d6:d1:d2:e5:a5:af:6f:7d:e0:ec:03: fe:f2:7f:ef:31:09:4c:37:6e:e9:a5:2b:b5:ae:0e: fc:35:33:36:98:dc:b0:0d:d0:8d:52:d2:5e:2a:3d: 6f:bd:c3:46:45:3e:c2:4c:c4:96:bb:6f:c9:46:0c: 27:52:eb:e5:e5:b8:cd:32:95:c6:a5:86:af:e4:56: 53:9a:2d:57:35:62:c6:54:2d:dd:90:0e:4e:a0:f0: 2f:27:78:94:ff:1d:54:f8:a9:f9:a4:53:a8:01:ff: 0c:23:99:92:9b:db:97:32:b2:86:c5:0e:3a:1e:ce: 5b:95:ad:5f:ce:b9:38:51:f4:50:18:8b:ae:be:05: 68:3c:61:0d:fd:fa:cc:96:50:d7:09:c0:1e:62:87: 73:99:2d:fb:0b:6e:10:b5:2d:78:64:6c:e5:45:c9: be:cc:59:8c:07:38:5e:b5:aa:75:c0:5d:91:c2:11: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6C:96:12:05:7C:2E:D0:D6:50:E7:1B:A0:A1:33:8A:29:DB:E4:7D X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:9000::/36 Signature Algorithm: sha256WithRSAEncryption 08:67:1e:5a:e8:64:2d:f2:c6:e2:06:a6:4f:58:b3:d8:5e:3a: 19:a9:85:5d:02:fa:18:07:bf:4c:89:34:3b:4b:46:6c:04:06: 98:05:64:99:41:97:c0:39:ad:38:91:91:0f:a4:61:ab:bf:29: 17:f3:22:5f:20:2d:3c:1a:2f:6f:f6:02:55:94:af:dd:18:d7: 8a:6d:1e:53:ca:6f:19:6d:b0:c3:ff:69:7c:57:b2:88:39:5d: ca:1f:15:e7:7a:2f:a3:0d:98:93:4f:64:e6:f5:6d:a3:d3:51: 66:f6:f7:72:06:c2:f6:bc:41:2d:bc:c1:44:3a:92:0d:17:0f: 7a:10:b7:4f:3c:36:a3:1c:a6:af:a4:44:7f:ca:f4:ae:7e:8e: 24:06:cb:3b:ac:1d:56:02:fc:e5:93:6f:80:8d:87:cc:f6:55: 2e:bc:e8:69:96:4d:d6:4a:b6:d0:be:89:a2:bb:76:47:3c:cf: 24:2a:94:cf:37:1f:79:dd:99:05:19:1c:5a:56:bf:c1:3b:e9: e5:fc:69:a5:1d:04:a5:19:93:d2:34:81:d7:05:41:ac:ad:f8: e4:70:ff:2f:00:df:20:18:58:bb:b3:c7:4e:b5:a4:90:c7:ca: d0:4d:f8:68:3e:23:95:50:ab:27:60:79:9f:3f:58:35:79:59: dd:f7:3b:2f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUP6rp9Zt0IMKqLAQ80bCoJdpYvbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDdaFw0yNzA1MDIwMjE3NDdaMDMxMTAvBgNV BAMTKEE1NkM5NjEyMDU3QzJFRDBENjUwRTcxQkEwQTEzMzhBMjlEQkU0N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnn8Kv+XfPFDCWVXQKz1SC8GYc VleHHBGcLuPcJEOUTDCOpSUiVrPqFx9GKezy/mxOghQEAqlaVGfdONrZeJ3Yudad sy6yVaRNaFhgkwHW0dLlpa9vfeDsA/7yf+8xCUw3bumlK7WuDvw1MzaY3LAN0I1S 0l4qPW+9w0ZFPsJMxJa7b8lGDCdS6+XluM0ylcalhq/kVlOaLVc1YsZULd2QDk6g 8C8neJT/HVT4qfmkU6gB/wwjmZKb25cysobFDjoezluVrV/OuThR9FAYi66+BWg8 YQ39+syWUNcJwB5ih3OZLfsLbhC1LXhkbOVFyb7MWYwHOF61qnXAXZHCEU4/AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUpWyWEgV8LtDWUOcboKEziinb5H0wHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAkDANBgkqhkiG9w0BAQsFAAOCAQEACGceWuhkLfLG4gamT1iz2F46GamFXQL6 GAe/TIk0O0tGbAQGmAVkmUGXwDmtOJGRD6Rhq78pF/MiXyAtPBovb/YCVZSv3RjX im0eU8pvGW2ww/9pfFeyiDldyh8V53ovow2Yk09k5vVto9NRZvb3cgbC9rxBLbzB RDqSDRcPehC3Tzw2oxymr6REf8r0rn6OJAbLO6wdVgL85ZNvgI2HzPZVLrzoaZZN 1kq20L6Jort2RzzPJCqUzzcfed2ZBRkcWla/wTvp5fxppR0EpRmT0jSB1wVBrK34 5HD/LwDfIBhYu7PHTrWkkMfK0E34aD4jlVCrJ2B5nz9YNXlZ3fc7Lw== -----END CERTIFICATE-----Generated at Wed May 13 12:45:58 2026 by rpki-client