$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a663030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a663030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: PGxee0fWO8kkb9q2Thzi1Vdd0Q2fRcNQi8ITPZial4A= Subject key identifier: 69:D2:CF:DC:98:83:55:8A:C8:CF:D7:2E:32:DA:39:20:EB:E0:E3:A6 Certificate issuer: /CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Certificate serial: 4A23CE007563F0433A2E331FA03CFD7E400DAD23 Authority key identifier: BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a663030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Sun 03 May 2026 02:17:47 +0000 ROA not before: Sun 03 May 2026 02:12:47 +0000 ROA not after: Sun 02 May 2027 02:17:47 +0000 asID: 153087 IP address blocks: 2404:97c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:23:ce:00:75:63:f0:43:3a:2e:33:1f:a0:3c:fd:7e:40:0d:ad:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6 Validity Not Before: May 3 02:12:47 2026 GMT Not After : May 2 02:17:47 2027 GMT Subject: CN=69D2CFDC9883558AC8CFD72E32DA3920EBE0E3A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:28:6b:c8:db:cc:3c:8f:cf:91:b5:ee:ba: 5c:ba:de:97:0e:87:de:01:47:91:3c:c9:b6:77:d9: 61:1c:1c:2a:ab:2a:c3:b5:ea:ca:ec:1f:a4:27:bd: 77:55:68:d7:53:c0:52:1e:27:96:a8:5d:5d:79:21: ef:fa:a2:36:db:74:b0:9b:64:32:25:d7:f6:d4:9a: fc:4b:3e:ec:13:10:21:21:fc:e5:df:f8:9d:82:1a: 8e:b8:0f:8a:fe:21:a0:a7:55:a0:f0:e6:bd:18:7d: 8b:ec:d3:1f:c5:77:85:12:34:65:b4:24:2b:eb:25: cd:8a:33:03:3d:be:50:e0:05:dd:64:75:bb:e8:b9: 13:93:61:53:6a:a8:33:82:6f:93:ba:c8:cd:36:ae: 33:a8:9d:c1:27:f1:f8:85:c1:a4:3a:7f:22:4e:23: b4:0d:59:38:fd:ec:2e:f2:2b:db:7b:5c:d0:15:7f: 22:d4:a9:a8:9f:c4:79:7a:f0:73:93:8c:bf:76:02: 55:dc:09:e1:86:bb:a4:9e:c6:8c:cb:6b:94:c5:c1: de:31:40:23:54:1e:b8:b6:80:fd:c5:50:07:9f:fa: 4f:21:51:d5:53:b6:20:18:1f:12:90:49:a8:50:72: 74:6b:89:c1:83:28:a9:a4:24:60:79:86:fc:6e:5d: 2e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:D2:CF:DC:98:83:55:8A:C8:CF:D7:2E:32:DA:39:20:EB:E0:E3:A6 X509v3 Authority Key Identifier: keyid:BB:62:BA:C3:DC:FD:2A:86:CC:6D:24:F4:56:4A:73:D4:BD:D0:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB62BAC3DCFD2A86CC6D24F4564A73D4BDD04BC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a663030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:f000::/36 Signature Algorithm: sha256WithRSAEncryption 55:15:a8:39:40:30:12:5f:90:dd:a5:b7:26:36:09:d8:b0:88: 79:17:f7:f4:68:16:d8:cc:9c:6e:73:b8:bf:21:d1:ea:45:94: e0:19:e3:91:0b:fe:bb:7e:bc:99:3b:d3:01:7b:3c:69:88:f8: b8:39:45:cc:e2:e5:2c:2e:98:9e:48:4e:90:b2:a1:51:0c:87: 65:1c:13:75:f4:7b:76:2b:1a:fe:b1:4f:24:01:bb:49:b1:a7: 3f:7f:6d:4f:18:a4:5a:d9:fa:a3:f7:d3:b1:49:c7:5a:a5:9c: 0e:07:1f:cc:53:8e:7e:ee:91:8d:5e:63:93:fa:20:8b:ed:e3: 14:eb:9a:5f:91:c9:b4:bc:c4:92:8b:e6:2c:0f:2e:90:f8:35: 8c:38:5e:4f:90:46:fa:ad:86:69:d0:85:e9:59:af:94:d3:5c: 99:73:79:06:08:00:8c:ac:a2:42:9c:61:06:0e:4d:1f:4a:5e: 03:8d:f0:98:62:33:bf:a0:b8:85:94:61:d7:ef:3d:77:ac:e8: c8:56:77:cc:90:63:e1:01:e8:31:1f:9d:aa:a2:a5:da:f1:5f: 82:4b:34:2d:ae:a9:36:61:95:0e:fc:03:2f:dc:63:c6:3f:57: 33:de:8f:68:a2:31:cb:36:e7:35:41:f4:e5:70:4e:24:c9:7f: 6a:98:a8:5f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUSiPOAHVj8EM6LjMfoDz9fkANrSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2MkJBQzNEQ0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRC REQwNEJDNjAeFw0yNjA1MDMwMjEyNDdaFw0yNzA1MDIwMjE3NDdaMDMxMTAvBgNV BAMTKDY5RDJDRkRDOTg4MzU1OEFDOENGRDcyRTMyREEzOTIwRUJFMEUzQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjrShryNvMPI/PkbXuuly63pcO h94BR5E8ybZ32WEcHCqrKsO16srsH6QnvXdVaNdTwFIeJ5aoXV15Ie/6ojbbdLCb ZDIl1/bUmvxLPuwTECEh/OXf+J2CGo64D4r+IaCnVaDw5r0YfYvs0x/Fd4USNGW0 JCvrJc2KMwM9vlDgBd1kdbvouROTYVNqqDOCb5O6yM02rjOoncEn8fiFwaQ6fyJO I7QNWTj97C7yK9t7XNAVfyLUqaifxHl68HOTjL92AlXcCeGGu6SexozLa5TFwd4x QCNUHri2gP3FUAef+k8hUdVTtiAYHxKQSahQcnRricGDKKmkJGB5hvxuXS5HAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUadLP3JiDVYrIz9cuMto5IOvg46YwHwYDVR0j BBgwFoAUu2K6w9z9KobMbST0Vkpz1L3QS8YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWRlZDU4MTEtYmU1MC00Y2FhLTlmOTYtNjNkMzcyMDMxMWRlLzEvQkI2MkJBQzNE Q0ZEMkE4NkNDNkQyNEY0NTY0QTczRDRCREQwNEJDNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjYyQkFDM0RDRkQyQTg2Q0M2RDI0RjQ1NjRBNzNENEJERDA0 QkM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhNjYzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfA8DANBgkqhkiG9w0BAQsFAAOCAQEAVRWoOUAwEl+Q3aW3JjYJ2LCIeRf39GgW 2MycbnO4vyHR6kWU4BnjkQv+u368mTvTAXs8aYj4uDlFzOLlLC6YnkhOkLKhUQyH ZRwTdfR7disa/rFPJAG7SbGnP39tTxikWtn6o/fTsUnHWqWcDgcfzFOOfu6RjV5j k/ogi+3jFOuaX5HJtLzEkovmLA8ukPg1jDheT5BG+q2GadCF6VmvlNNcmXN5BggA jKyiQpxhBg5NH0peA43wmGIzv6C4hZRh1+89d6zoyFZ3zJBj4QHoMR+dqqKl2vFf gks0La6pNmGVDvwDL9xjxj9XM96PaKIxyzbnNUH05XBOJMl/apioXw== -----END CERTIFICATE-----Generated at Wed May 13 13:34:46 2026 by rpki-client