$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: CT1lTt1XHJVWvWbdNqTchEh5e5PzUrGVMQTe6AMvVkw= Subject key identifier: 66:4F:00:BC:E9:54:ED:59:CB:3B:D4:43:73:89:71:B0:5A:B8:6A:79 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 54B2726040B16A0529B987E8E6992B73EE8E80B5 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:54 +0000 ROA not before: Sun 03 May 2026 02:12:54 +0000 ROA not after: Sun 02 May 2027 02:17:54 +0000 asID: 153087 IP address blocks: 2404:97c0:9700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b2:72:60:40:b1:6a:05:29:b9:87:e8:e6:99:2b:73:ee:8e:80:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:54 2026 GMT Not After : May 2 02:17:54 2027 GMT Subject: CN=664F00BCE954ED59CB3BD443738971B05AB86A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:12:c7:db:67:67:0d:00:3b:7b:eb:f2:d2:36: 8c:b6:35:53:4a:7b:4e:f0:28:e0:c6:cf:34:0b:3e: ce:96:3d:fe:ea:39:98:80:1e:31:4c:28:04:50:52: 30:08:f3:6e:59:b3:12:41:f9:82:92:59:8c:f6:f0: db:b6:42:35:bc:0b:37:a0:ab:91:a4:1a:5b:19:31: 9f:5a:0d:cf:14:f4:df:98:12:7e:24:aa:26:f6:e1: ce:39:03:25:07:bf:ee:05:86:7a:0e:ff:cb:10:c6: f5:5c:5d:5c:cf:27:aa:0f:84:e7:0c:45:a4:60:c4: 4c:a0:73:a5:fe:20:7a:c0:a6:e4:88:88:20:da:6a: 17:3d:d5:65:eb:ea:6e:72:33:da:fe:3e:99:24:c6: b7:7c:55:8b:5b:a3:f6:bc:de:3b:b9:fb:e2:63:cb: 86:15:04:a4:46:e3:d3:c0:a7:c6:95:f9:0b:32:78: 19:6c:3a:7f:d8:1d:5c:69:f5:6c:6f:49:a9:30:61: c4:a5:4a:3d:e3:15:56:bc:d7:a2:ab:37:3c:b4:21: c0:82:cd:46:45:f2:e5:ff:0e:44:4a:e3:da:7c:db: 8e:0a:81:48:22:bc:0d:25:9f:36:e8:68:69:df:10: 64:73:55:f7:f5:73:54:ce:84:9a:11:be:86:77:1e: cc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4F:00:BC:E9:54:ED:59:CB:3B:D4:43:73:89:71:B0:5A:B8:6A:79 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:9700::/40 Signature Algorithm: sha256WithRSAEncryption 98:5d:73:ba:8e:2d:39:7a:32:56:e5:32:de:59:66:92:65:0b: a1:41:48:0b:9d:2c:79:3e:28:9d:d6:71:68:4c:80:a6:ea:1e: b0:6b:17:f7:e0:0e:d6:9a:95:23:48:55:f4:25:6d:96:ab:27: 10:2f:a6:b0:8c:b5:e2:41:af:b8:58:ad:50:e3:4e:4a:3e:99: 14:83:64:23:f1:9f:28:47:75:5d:9b:2f:00:19:e3:ea:91:3b: ee:aa:a4:f3:ad:e3:6d:85:f9:22:69:5e:65:56:38:a1:90:c0: 1f:64:56:36:41:72:50:99:d3:6d:a1:3b:2d:ad:e9:8e:5b:bb: 6d:5b:e1:93:b0:2c:cb:99:06:04:86:91:05:29:b6:11:3e:95: ac:ca:0b:ec:9a:b0:2c:14:dc:e1:3a:7d:9c:55:e2:ee:18:16: 47:9d:49:dc:42:df:72:ae:6d:71:da:13:27:9d:26:c5:a1:c1: e7:0b:13:b9:e0:6f:47:14:90:94:fc:0e:7f:e9:c6:39:88:6b: 32:c4:fb:67:c3:3d:b1:ad:07:ae:cd:7b:ec:46:e7:7f:9a:e5: 3f:42:fd:6f:bd:6b:f4:da:8b:a6:cc:c5:01:7c:c2:11:18:eb: 6f:0d:69:ee:d9:fc:60:0b:bd:66:f9:d0:66:85:3f:2c:61:3c: a1:e4:3d:97 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUVLJyYECxagUpuYfo5pkrc+6OgLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTRaFw0yNzA1MDIwMjE3NTRaMDMxMTAvBgNV BAMTKDY2NEYwMEJDRTk1NEVENTlDQjNCRDQ0MzczODk3MUIwNUFCODZBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6EsfbZ2cNADt76/LSNoy2NVNK e07wKODGzzQLPs6WPf7qOZiAHjFMKARQUjAI825ZsxJB+YKSWYz28Nu2QjW8Czeg q5GkGlsZMZ9aDc8U9N+YEn4kqib24c45AyUHv+4FhnoO/8sQxvVcXVzPJ6oPhOcM RaRgxEygc6X+IHrApuSIiCDaahc91WXr6m5yM9r+Ppkkxrd8VYtbo/a83ju5++Jj y4YVBKRG49PAp8aV+QsyeBlsOn/YHVxp9WxvSakwYcSlSj3jFVa816KrNzy0IcCC zUZF8uX/DkRK49p8244KgUgivA0lnzboaGnfEGRzVff1c1TOhJoRvoZ3HsxJAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUZk8AvOlU7VnLO9RDc4lxsFq4ankwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAlzANBgkqhkiG9w0BAQsFAAOCAQEAmF1zuo4tOXoyVuUy3llmkmULoUFIC50s eT4ondZxaEyApuoesGsX9+AO1pqVI0hV9CVtlqsnEC+msIy14kGvuFitUONOSj6Z FINkI/GfKEd1XZsvABnj6pE77qqk863jbYX5ImleZVY4oZDAH2RWNkFyUJnTbaE7 La3pjlu7bVvhk7Asy5kGBIaRBSm2ET6VrMoL7JqwLBTc4Tp9nFXi7hgWR51J3ELf cq5tcdoTJ50mxaHB5wsTueBvRxSQlPwOf+nGOYhrMsT7Z8M9sa0Hrs177Ebnf5rl P0L9b71r9NqLpszFAXzCERjrbw1p7tn8YAu9ZvnQZoU/LGE8oeQ9lw== -----END CERTIFICATE-----Generated at Wed May 13 14:03:36 2026 by rpki-client