$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a623030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a623030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: +tWUVdPDeV8dmUbVn9ZR75d3dBPBsnV62IVfil8fxAY= Subject key identifier: E7:04:A8:4F:ED:DE:21:28:2F:73:C9:15:38:1A:52:C1:E0:40:E1:C1 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 1CB0690DBF45B17C16AA679A4409F5304193F92C Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a623030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:53 +0000 ROA not before: Sun 03 May 2026 02:12:53 +0000 ROA not after: Sun 02 May 2027 02:17:53 +0000 asID: 153087 IP address blocks: 2404:97c0:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b0:69:0d:bf:45:b1:7c:16:aa:67:9a:44:09:f5:30:41:93:f9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:53 2026 GMT Not After : May 2 02:17:53 2027 GMT Subject: CN=E704A84FEDDE21282F73C915381A52C1E040E1C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:65:cd:47:c6:58:9f:24:fe:58:3a:5f:d4:84: 08:b9:d7:a8:a7:1c:20:d2:05:d7:2c:bc:fa:0c:ed: e9:9b:dc:4b:bc:0a:05:d2:5e:c9:41:16:f4:af:74: 0b:86:d0:51:75:28:28:26:4e:ac:fe:c5:e7:3b:91: 2e:60:13:7c:ba:7b:14:f6:22:48:f6:56:a1:73:d8: 7c:5d:ac:39:e6:7c:a9:ce:fe:14:c0:27:d2:58:44: 8a:ee:68:6d:43:de:d3:8e:19:e2:34:05:b1:8f:56: 9a:34:9c:ae:34:1e:0e:49:72:bb:94:86:e6:52:e2: 0a:8a:18:71:74:39:e8:47:b0:58:06:e8:c1:13:79: 6d:0b:93:ee:30:56:74:be:1a:67:ed:43:4e:9a:4c: 56:a1:dd:19:aa:86:c2:9d:54:b8:69:06:0a:90:d3: bc:f7:73:7d:d6:f2:5e:4c:40:e4:a3:c7:ed:8a:80: 3c:ce:83:0d:0c:63:9f:7d:8f:6e:47:cb:81:ee:38: 9d:67:d7:ad:35:4d:4d:2b:92:9a:d7:53:ec:71:5b: a3:99:0c:40:f7:a0:69:07:35:ad:f9:f1:70:f9:2f: 65:e0:d2:bd:a6:b3:17:42:e5:a5:f9:db:4d:e5:a0: 65:f6:77:8d:6d:81:12:a1:14:60:94:5c:0e:4c:c9: 0b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:04:A8:4F:ED:DE:21:28:2F:73:C9:15:38:1A:52:C1:E0:40:E1:C1 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a623030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:b000::/36 Signature Algorithm: sha256WithRSAEncryption 8b:19:47:23:40:d7:80:8d:6a:37:c1:34:45:41:27:61:70:49: 9c:3c:c9:34:00:1a:76:3f:0f:a5:19:52:5b:45:b1:ce:39:91: f0:c8:4d:fc:20:1f:d9:ec:d7:e7:2d:22:c7:ff:f9:6a:77:39: 3f:5a:cb:6b:a3:e1:c1:69:2d:bb:cd:ac:dd:b6:25:dd:02:90: 82:dc:47:2a:8e:22:89:75:14:eb:d2:35:61:e8:6e:91:01:d6: bf:03:29:fc:00:a7:7f:15:1d:94:8b:f1:7a:e9:ba:cf:67:9c: 49:4a:1c:41:84:86:7f:7d:50:b5:86:34:4c:d0:3d:96:ff:95: d1:48:8a:bf:6e:1c:17:44:ce:44:84:c9:77:ab:81:23:03:cc: a8:dd:7a:a6:b1:73:66:8b:fe:fb:e7:9c:5f:f2:ed:d9:69:23: 0b:02:ec:99:9b:53:69:96:f5:41:2c:b9:ae:bf:b9:64:c4:13: 9c:43:fa:31:32:72:a2:a7:93:e7:20:04:78:78:40:ed:b9:37: 98:cc:58:ce:73:0b:5e:08:0d:5b:cb:29:2b:54:b1:71:b5:73: 17:20:3a:68:64:19:86:60:5f:d2:57:d9:c2:4e:11:c2:6c:00: 73:82:6c:fb:05:60:ce:0f:4c:50:c6:9d:89:35:7d:7c:74:62: 7e:1c:eb:47 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUHLBpDb9FsXwWqmeaRAn1MEGT+SwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTNaFw0yNzA1MDIwMjE3NTNaMDMxMTAvBgNV BAMTKEU3MDRBODRGRURERTIxMjgyRjczQzkxNTM4MUE1MkMxRTA0MEUxQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Zc1HxlifJP5YOl/UhAi516in HCDSBdcsvPoM7emb3Eu8CgXSXslBFvSvdAuG0FF1KCgmTqz+xec7kS5gE3y6exT2 Ikj2VqFz2HxdrDnmfKnO/hTAJ9JYRIruaG1D3tOOGeI0BbGPVpo0nK40Hg5JcruU huZS4gqKGHF0OehHsFgG6METeW0Lk+4wVnS+GmftQ06aTFah3RmqhsKdVLhpBgqQ 07z3c33W8l5MQOSjx+2KgDzOgw0MY599j25Hy4HuOJ1n1601TU0rkprXU+xxW6OZ DED3oGkHNa358XD5L2Xg0r2msxdC5aX5203loGX2d41tgRKhFGCUXA5MyQt9AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU5wSoT+3eISgvc8kVOBpSweBA4cEwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhNjIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAsDANBgkqhkiG9w0BAQsFAAOCAQEAixlHI0DXgI1qN8E0RUEnYXBJnDzJNAAa dj8PpRlSW0WxzjmR8MhN/CAf2ezX5y0ix//5anc5P1rLa6PhwWktu82s3bYl3QKQ gtxHKo4iiXUU69I1YehukQHWvwMp/ACnfxUdlIvxeum6z2ecSUocQYSGf31QtYY0 TNA9lv+V0UiKv24cF0TORITJd6uBIwPMqN16prFzZov+++ecX/Lt2WkjCwLsmZtT aZb1QSy5rr+5ZMQTnEP6MTJyoqeT5yAEeHhA7bk3mMxYznMLXggNW8spK1SxcbVz FyA6aGQZhmBf0lfZwk4RwmwAc4Js+wVgzg9MUMadiTV9fHRifhzrRw== -----END CERTIFICATE-----Generated at Wed May 13 14:47:48 2026 by rpki-client