$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a643030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a643030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: 2YjH226BreYnQdG65DzUH0FRXit9Bilp1mnr8DqxkNI= Subject key identifier: D7:14:CD:88:E9:90:BC:5E:5E:07:FD:E7:3C:78:EF:28:66:8C:B5:6A Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: A6E881858467C496DE882349E8E4EC88401618 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a643030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:55 +0000 ROA not before: Sun 03 May 2026 02:12:55 +0000 ROA not after: Sun 02 May 2027 02:17:55 +0000 asID: 153087 IP address blocks: 2404:97c0:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a6:e8:81:85:84:67:c4:96:de:88:23:49:e8:e4:ec:88:40:16:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:55 2026 GMT Not After : May 2 02:17:55 2027 GMT Subject: CN=D714CD88E990BC5E5E07FDE73C78EF28668CB56A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1f:b5:f0:82:9c:76:fe:a8:f0:c7:58:43:2a: f7:30:e4:ef:03:95:79:b4:ee:7d:82:7b:89:43:fb: f5:3d:1f:82:b6:0b:68:b4:fe:da:8d:e3:da:a8:46: 53:ed:d0:6c:7e:e3:96:9f:21:93:f0:7c:72:2d:1c: c1:36:b8:1e:65:ff:35:54:07:44:86:64:fd:1e:79: 6e:c9:be:ef:ab:a4:a7:03:41:f9:eb:b0:23:18:0d: c4:c3:d9:f2:14:30:01:3b:e3:c5:4e:e9:f6:42:11: b4:43:db:cd:4b:e8:af:fb:a9:a2:84:15:e1:78:12: 0d:d9:a5:b4:12:46:15:7f:23:3b:7d:c4:4b:c8:64: 1f:76:64:cd:af:95:55:2c:ca:25:23:79:24:de:e4: fe:49:66:93:36:3e:2a:5f:df:b2:cc:da:b2:d0:05: b7:be:96:62:b0:8c:f6:d5:6d:94:bf:9a:b1:71:06: 2d:8e:81:23:a2:4c:fe:fa:1a:46:df:09:c9:c2:9f: 80:bd:fd:56:c7:cc:52:5f:42:b9:9b:cc:04:c6:de: 17:4d:c0:bf:a4:94:0f:b7:56:f0:14:ec:b5:60:73: ae:1e:d4:29:43:8f:eb:7e:3e:ac:5e:f4:e8:ab:59: dc:28:fb:07:11:f9:91:75:83:a1:4a:20:cb:eb:b0: a7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:14:CD:88:E9:90:BC:5E:5E:07:FD:E7:3C:78:EF:28:66:8C:B5:6A X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a643030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:d000::/36 Signature Algorithm: sha256WithRSAEncryption b9:58:69:16:1f:6e:4a:bb:0d:66:34:8e:f9:dc:1f:f3:89:38: 75:b6:94:70:a5:8b:9b:8d:c6:ca:13:ea:d6:73:1d:72:c0:b8: 4d:d6:55:a7:da:ce:a3:4f:33:11:eb:67:7e:ba:97:50:23:9d: 76:2c:e1:e6:ff:57:5b:4a:a0:22:56:29:63:85:28:11:7c:22: b3:f3:03:25:97:ae:48:40:68:9b:e1:29:9e:33:4d:1a:92:ba: 5a:db:0a:f0:53:e4:18:ba:78:00:5b:1b:bf:c2:9b:cb:1a:a7: 13:1f:c5:6c:47:63:2c:44:46:79:b4:9b:0c:0c:7e:f8:3a:fe: 02:c6:9c:61:b5:df:50:64:74:17:b0:0d:68:3e:f2:a7:a0:1f: 88:6b:6f:aa:a6:c1:49:5e:77:5e:df:35:d0:13:06:06:09:42: 32:7a:e6:fb:a9:a1:58:94:61:9b:13:87:e3:8c:4f:1b:4e:76: c7:d3:ed:e6:80:e1:c7:e7:9e:7a:0a:7d:c3:8b:82:81:ce:7f: c5:89:fe:1d:2e:6c:25:6e:1c:6f:c3:71:ea:d8:51:25:d5:15: f4:18:42:06:8d:fd:d1:e7:64:49:77:9b:aa:34:57:89:51:39: 53:cd:a4:41:7e:a0:3b:bb:96:e5:56:0e:d8:ef:94:09:d1:d2: 1e:60:36:59 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUAKbogYWEZ8SW3ogjSejk7IhAFhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNTVaFw0yNzA1MDIwMjE3NTVaMDMxMTAvBgNV BAMTKEQ3MTRDRDg4RTk5MEJDNUU1RTA3RkRFNzNDNzhFRjI4NjY4Q0I1NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0H7Xwgpx2/qjwx1hDKvcw5O8D lXm07n2Ce4lD+/U9H4K2C2i0/tqN49qoRlPt0Gx+45afIZPwfHItHME2uB5l/zVU B0SGZP0eeW7Jvu+rpKcDQfnrsCMYDcTD2fIUMAE748VO6fZCEbRD281L6K/7qaKE FeF4Eg3ZpbQSRhV/Izt9xEvIZB92ZM2vlVUsyiUjeSTe5P5JZpM2Pipf37LM2rLQ Bbe+lmKwjPbVbZS/mrFxBi2OgSOiTP76GkbfCcnCn4C9/VbHzFJfQrmbzATG3hdN wL+klA+3VvAU7LVgc64e1ClDj+t+Pqxe9OirWdwo+wcR+ZF1g6FKIMvrsKeFAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU1xTNiOmQvF5eB/3nPHjvKGaMtWowHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhNjQzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfA0DANBgkqhkiG9w0BAQsFAAOCAQEAuVhpFh9uSrsNZjSO+dwf84k4dbaUcKWL m43GyhPq1nMdcsC4TdZVp9rOo08zEetnfrqXUCOddizh5v9XW0qgIlYpY4UoEXwi s/MDJZeuSEBom+EpnjNNGpK6WtsK8FPkGLp4AFsbv8KbyxqnEx/FbEdjLERGebSb DAx++Dr+AsacYbXfUGR0F7ANaD7yp6AfiGtvqqbBSV53Xt810BMGBglCMnrm+6mh WJRhmxOH44xPG052x9Pt5oDhx+eeegp9w4uCgc5/xYn+HS5sJW4cb8Nx6thRJdUV 9BhCBo390edkSXebqjRXiVE5U82kQX6gO7uW5VYO2O+UCdHSHmA2WQ== -----END CERTIFICATE-----Generated at Wed May 13 12:46:56 2026 by rpki-client