$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: JfyDnqHJb/IufIySH4lkzSgcs9cgy3rL8v9+jaM2np0= Subject key identifier: 29:D6:07:65:5E:0A:1B:EE:AF:92:A7:59:D6:DB:65:35:87:85:52:D4 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 36A8D8E4BFAA16E290162AD2516BC22889C8F196 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f34302d3430203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:50 +0000 ROA not before: Sun 03 May 2026 02:12:50 +0000 ROA not after: Sun 02 May 2027 02:17:50 +0000 asID: 153087 IP address blocks: 2404:97c0::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a8:d8:e4:bf:aa:16:e2:90:16:2a:d2:51:6b:c2:28:89:c8:f1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:50 2026 GMT Not After : May 2 02:17:50 2027 GMT Subject: CN=29D607655E0A1BEEAF92A759D6DB6535878552D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:58:a1:bb:69:93:35:d3:7c:56:9a:a7:f9:d8: 8b:a8:4c:55:6c:23:ed:50:76:f9:ec:35:06:55:52: e6:11:74:17:02:31:2e:fd:82:fd:df:72:2d:97:7f: 45:f2:dd:34:05:39:61:18:9a:8e:0b:34:7b:fd:10: 5d:be:31:e2:7b:af:37:aa:c5:65:8e:b7:42:0a:63: eb:bd:e5:1b:45:24:e6:07:f9:e5:e5:01:b4:8d:b2: 3c:0d:3a:95:09:00:f9:8f:87:ed:d6:4b:25:70:5b: b5:c2:33:3a:8a:7b:6a:f9:86:2f:ca:93:51:45:87: 52:c1:ca:c7:04:35:ff:cd:fc:fc:57:50:1a:05:12: b7:9a:28:73:c8:5e:33:dc:9f:ae:ce:b3:85:5c:7a: 1a:ef:b8:b9:bf:bf:80:28:70:3b:9e:27:15:66:df: d0:4b:54:0c:06:e4:e5:b6:a6:c4:9d:0a:61:82:bc: 8b:4d:4a:fc:93:6e:e6:5a:93:e9:48:bc:85:9a:6e: 0b:c9:81:cc:7c:52:86:ae:fc:26:4a:7c:97:3c:72: 2d:70:01:d6:be:e3:6a:98:30:b9:8b:16:41:dc:61: cd:2c:50:bc:c2:fc:91:11:43:78:f8:fd:0b:3d:0a: 9c:c0:d6:96:e2:31:3e:83:8a:8e:dc:71:ec:b7:af: 2d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D6:07:65:5E:0A:1B:EE:AF:92:A7:59:D6:DB:65:35:87:85:52:D4 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0::/40 Signature Algorithm: sha256WithRSAEncryption 03:a9:c5:42:28:d8:f5:2d:3a:c6:e7:fe:51:c9:f0:1c:1e:26: 95:8b:73:4b:83:b6:1f:63:f0:ef:3f:80:2c:68:8f:3a:6a:0c: dc:61:dd:76:0e:8e:85:98:59:33:1a:46:6b:14:b5:ca:61:55: 8f:ee:f1:df:79:c4:2b:37:ad:95:1d:3c:ea:94:a9:ec:f4:f7: a3:08:7d:7d:b1:e4:67:71:b2:26:6d:dd:98:c7:d3:af:1a:ba: 9b:51:ee:5f:aa:10:cd:7b:59:82:f9:fc:17:4a:1c:2f:ef:97: fd:6d:d4:cc:74:c0:b2:5d:ce:ae:46:48:df:21:7b:c1:49:2b: 1c:69:ce:42:11:e0:79:17:29:51:f8:07:25:45:ce:27:3c:63: 48:e6:f3:4d:20:f7:87:fb:6e:86:d8:81:4d:84:6b:26:ea:6c: c1:5b:89:41:b0:84:3b:49:4c:da:8f:51:64:8d:89:67:71:e1: 9a:8f:b7:6b:83:99:56:a2:2a:90:4f:3b:f8:da:09:33:5b:8a: b6:be:6e:6f:4e:f4:de:dc:8f:1b:15:44:87:32:55:70:48:22: dd:f0:9e:7f:27:ad:ac:aa:f8:c7:91:b1:31:e1:fa:28:f1:ce: c1:85:23:e4:27:60:7e:76:18:c4:42:c4:30:71:27:5f:bb:6a: 87:6f:30:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNqjY5L+qFuKQFirSUWvCKInI8ZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTBaFw0yNzA1MDIwMjE3NTBaMDMxMTAvBgNV BAMTKDI5RDYwNzY1NUUwQTFCRUVBRjkyQTc1OUQ2REI2NTM1ODc4NTUyRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6WKG7aZM103xWmqf52IuoTFVs I+1QdvnsNQZVUuYRdBcCMS79gv3fci2Xf0Xy3TQFOWEYmo4LNHv9EF2+MeJ7rzeq xWWOt0IKY+u95RtFJOYH+eXlAbSNsjwNOpUJAPmPh+3WSyVwW7XCMzqKe2r5hi/K k1FFh1LByscENf/N/PxXUBoFEreaKHPIXjPcn67Os4VcehrvuLm/v4AocDueJxVm 39BLVAwG5OW2psSdCmGCvItNSvyTbuZak+lIvIWabgvJgcx8Uoau/CZKfJc8ci1w Ada+42qYMLmLFkHcYc0sULzC/JERQ3j4/Qs9CpzA1pbiMT6Dio7ccey3ry1vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKdYHZV4KG+6vkqdZ1ttlNYeFUtQwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhM2EyZjM0MzAy ZDM0MzAyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQEl8AAMA0GCSqG SIb3DQEBCwUAA4IBAQADqcVCKNj1LTrG5/5RyfAcHiaVi3NLg7YfY/DvP4AsaI86 agzcYd12Do6FmFkzGkZrFLXKYVWP7vHfecQrN62VHTzqlKns9PejCH19seRncbIm bd2Yx9OvGrqbUe5fqhDNe1mC+fwXShwv75f9bdTMdMCyXc6uRkjfIXvBSSscac5C EeB5FylR+AclRc4nPGNI5vNNIPeH+26G2IFNhGsm6mzBW4lBsIQ7SUzaj1FkjYln ceGaj7drg5lWoiqQTzv42gkzW4q2vm5vTvTe3I8bFUSHMlVwSCLd8J5/J62sqvjH kbEx4foo8c7BhSPkJ2B+dhjEQsQwcSdfu2qHbzAF -----END CERTIFICATE-----Generated at Wed May 13 07:45:55 2026 by rpki-client