$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: bon90A14TeJB2MQZ6lFwQ+xqFFD8xc2HW5MwCKJvZ4E= Subject key identifier: 0C:04:37:AD:C1:CF:BB:F5:03:7C:2E:FA:D1:D5:F7:13:92:69:DC:B4 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 6B56926033623500959D2F215AF24D75425A9431 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:44 +0000 ROA not before: Sun 03 May 2026 02:12:44 +0000 ROA not after: Sun 02 May 2027 02:17:44 +0000 asID: 153087 IP address blocks: 2404:97c0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:56:92:60:33:62:35:00:95:9d:2f:21:5a:f2:4d:75:42:5a:94:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:44 2026 GMT Not After : May 2 02:17:44 2027 GMT Subject: CN=0C0437ADC1CFBBF5037C2EFAD1D5F7139269DCB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d6:69:35:4b:a3:da:f3:18:7e:f8:cc:a9:3d: 92:3f:e4:e4:1d:f5:21:2c:42:21:21:05:fd:bf:41: 8d:e7:3c:e9:01:b1:73:6a:8c:19:3b:5a:b2:bc:3f: d0:34:38:5a:90:3d:12:90:ce:ac:83:4e:dd:a5:ac: a3:e1:10:65:4f:09:1c:a1:db:2c:a7:eb:e8:cb:89: 88:f4:1e:40:1d:a8:03:39:af:3e:fa:e8:61:91:6c: e9:23:ef:5c:46:1e:7f:b3:b5:7c:72:37:1e:f6:5f: 45:d5:a1:54:01:de:ab:4c:ce:47:e7:22:9b:f7:52: c4:a6:dc:af:ce:f4:71:da:b9:43:1e:b5:00:47:82: 17:56:b9:f3:f7:ac:97:eb:60:20:47:e8:f4:ac:e8: 4a:58:de:fa:c9:6a:d3:bb:11:91:f3:dc:9c:a1:d0: 08:2d:9c:e7:cf:76:93:1b:75:73:27:19:53:b3:70: 85:d5:9b:2f:cd:54:a4:e1:1f:35:27:5b:1d:35:23: 50:67:21:14:bd:9a:d1:67:e5:cc:e4:0a:f0:a6:d0: cf:0b:a1:01:ff:b4:77:c7:fe:89:87:b3:4d:6b:fa: d0:02:0e:8f:0c:7f:12:df:a1:5c:9b:ae:01:5b:89: 5e:7b:d6:27:53:a8:f5:94:7d:c9:23:be:c4:da:b0: 02:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:04:37:AD:C1:CF:BB:F5:03:7C:2E:FA:D1:D5:F7:13:92:69:DC:B4 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0::/36 Signature Algorithm: sha256WithRSAEncryption b9:6b:b0:ea:c8:2f:f8:ce:87:81:46:a5:63:0d:d0:e6:c7:0e: d8:99:24:28:32:ce:87:57:60:d1:79:1e:7d:82:4c:d1:00:31: 88:94:43:59:3c:bf:98:63:1b:48:58:fa:d0:50:3e:7e:cb:15: e9:0f:ad:ff:44:97:4b:84:42:a4:75:0a:f7:24:43:74:6b:10: 7b:bb:69:76:53:76:3f:ab:b3:5b:3b:ee:35:b5:4d:90:47:de: 76:ce:6b:bd:0b:14:6f:3d:5b:e8:04:44:6d:41:98:62:15:44: c5:97:b1:b7:c7:17:fd:b5:5a:56:bb:fa:aa:8a:bf:19:62:cc: c4:32:3b:77:be:fd:d2:9b:fe:28:4e:88:49:a4:fa:8a:82:2e: 0a:c5:9f:fe:ce:a7:78:06:40:f7:93:c9:bf:89:4f:e1:a7:e8: 48:6b:09:57:90:7c:07:4a:32:d5:87:94:b9:86:3a:ab:88:cd: 8c:38:ad:16:c9:3e:2f:1d:8b:00:94:ce:f9:ff:98:ad:f1:2d: 59:e0:88:68:cb:de:10:4a:15:b9:ef:38:9f:1a:8c:95:a1:85: 3a:43:39:11:dc:a2:66:c1:43:44:23:13:9c:e3:75:50:27:85: 03:8a:a8:0c:17:a6:41:b6:61:d1:b4:fe:f8:93:dc:c6:e9:48: 41:61:cc:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUa1aSYDNiNQCVnS8hWvJNdUJalDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDRaFw0yNzA1MDIwMjE3NDRaMDMxMTAvBgNV BAMTKDBDMDQzN0FEQzFDRkJCRjUwMzdDMkVGQUQxRDVGNzEzOTI2OURDQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX1mk1S6Pa8xh++MypPZI/5OQd 9SEsQiEhBf2/QY3nPOkBsXNqjBk7WrK8P9A0OFqQPRKQzqyDTt2lrKPhEGVPCRyh 2yyn6+jLiYj0HkAdqAM5rz766GGRbOkj71xGHn+ztXxyNx72X0XVoVQB3qtMzkfn Ipv3UsSm3K/O9HHauUMetQBHghdWufP3rJfrYCBH6PSs6EpY3vrJatO7EZHz3Jyh 0AgtnOfPdpMbdXMnGVOzcIXVmy/NVKThHzUnWx01I1BnIRS9mtFn5czkCvCm0M8L oQH/tHfH/omHs01r+tACDo8MfxLfoVybrgFbiV571idTqPWUfckjvsTasAItAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDAQ3rcHPu/UDfC760dX3E5Jp3LQwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhM2EyZjMzMzYy ZDMzMzYyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEl8AAMA0GCSqG SIb3DQEBCwUAA4IBAQC5a7DqyC/4zoeBRqVjDdDmxw7YmSQoMs6HV2DReR59gkzR ADGIlENZPL+YYxtIWPrQUD5+yxXpD63/RJdLhEKkdQr3JEN0axB7u2l2U3Y/q7Nb O+41tU2QR952zmu9CxRvPVvoBERtQZhiFUTFl7G3xxf9tVpWu/qqir8ZYszEMjt3 vv3Sm/4oTohJpPqKgi4KxZ/+zqd4BkD3k8m/iU/hp+hIawlXkHwHSjLVh5S5hjqr iM2MOK0WyT4vHYsAlM75/5it8S1Z4Ihoy94QShW57zifGoyVoYU6QzkR3KJmwUNE IxOc43VQJ4UDiqgMF6ZBtmHRtP74k9zG6UhBYcxY -----END CERTIFICATE-----Generated at Wed May 13 07:46:06 2026 by rpki-client