$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: mb6stKBonjjNRvfMm98TbumJRAVflg9hiU378+4IYt4= Subject key identifier: E4:B0:0C:7A:05:E0:62:84:B0:A9:7D:64:21:11:88:0B:67:93:79:E0 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 4705A0E5889BF429A024D9D7A5BC1B721712EB1A Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:38 +0000 ROA not before: Sun 03 May 2026 02:30:38 +0000 ROA not after: Sun 02 May 2027 02:35:38 +0000 asID: 138089 IP address blocks: 2403:e0c0:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:05:a0:e5:88:9b:f4:29:a0:24:d9:d7:a5:bc:1b:72:17:12:eb:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:38 2026 GMT Not After : May 2 02:35:38 2027 GMT Subject: CN=E4B00C7A05E06284B0A97D642111880B679379E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:26:60:bf:4c:6a:03:2a:4b:bb:3d:1a:38:63: df:d6:de:a1:fa:4d:67:a6:45:93:6c:10:a7:7e:4d: 88:ae:82:41:ee:d9:81:70:dc:ba:67:5b:8c:d7:0c: d1:06:28:56:78:d2:a9:68:02:bf:fa:56:13:f2:86: 13:cf:b3:7b:79:5f:03:64:86:b7:01:ed:9b:ad:7f: 7b:e2:4e:9f:e3:c8:a9:b6:0f:72:e6:73:6b:64:89: 6a:fe:27:1f:26:2b:a3:0d:ad:7b:6f:5e:7b:bb:73: 0b:b0:08:f9:75:93:90:eb:5f:97:12:33:e7:38:31: 84:f4:de:6b:6e:88:92:bd:4a:3c:4b:0a:b7:41:bd: 08:b8:f9:a7:6d:4f:8c:21:8f:09:ff:9b:ea:e3:c9: 13:b9:a5:47:54:ae:26:8d:56:2f:02:59:3b:89:76: 80:f9:1e:f9:0c:ad:61:3b:fd:97:bc:8b:91:04:e3: c2:dd:2e:50:6e:ad:58:3a:3c:c8:b7:89:08:50:29: 05:26:bd:6f:5c:1a:8c:42:07:21:d2:ba:4c:cc:82: 1c:00:bb:62:63:69:52:90:c3:6f:22:f3:77:44:89: 95:00:b8:98:ec:0a:45:22:5d:95:75:e6:ea:d6:ee: e7:00:40:63:a8:a0:23:cd:38:7b:95:34:a0:b9:20: f6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B0:0C:7A:05:E0:62:84:B0:A9:7D:64:21:11:88:0B:67:93:79:E0 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:13::/48 Signature Algorithm: sha256WithRSAEncryption 4e:c4:3d:bb:07:4d:f3:2e:e6:cb:04:a0:e3:39:2a:e9:9b:0c: 6a:f1:cd:7e:39:1a:fe:96:9c:5c:8a:7e:a8:1b:8e:9e:f4:ed: 74:0b:8f:cc:42:ca:d7:d3:b1:ce:db:82:e1:92:42:a9:b1:c9: 94:14:bd:b6:40:4d:4a:5a:62:c9:2b:2c:e5:fb:21:49:57:56: 14:8c:b3:78:d0:ba:16:a1:11:cc:73:f1:b4:8e:dc:cb:04:8a: 78:8d:fa:bd:22:cd:58:cb:07:d0:7c:ff:53:85:ed:75:32:f7: 41:1a:d8:4b:72:89:7f:21:e6:3e:f5:b3:92:df:b0:bd:05:ec: 20:cd:33:bd:3b:a2:4a:d7:a5:82:cf:89:3d:79:bf:ef:17:21: 1a:fd:e0:f6:80:78:f9:35:9d:54:bc:ff:b2:96:46:07:18:7a: ec:95:b8:47:a4:0a:68:47:0d:4d:23:cb:b0:45:20:f5:39:07: 0c:6b:e8:c1:bc:06:43:95:98:cb:7b:f8:20:8d:0a:93:76:c4: ac:fc:d6:3b:a4:24:97:f1:19:18:84:11:5b:d6:85:4f:63:88: 75:93:8a:5d:1c:fd:7e:cc:9b:fc:2d:e6:3c:56:29:09:bf:20: eb:f1:a9:bb:7b:f9:28:3f:40:7c:c9:a8:d4:b5:97:23:31:5a: f2:e3:0a:cf -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIURwWg5Yib9CmgJNnXpbwbchcS6xowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzhaFw0yNzA1MDIwMjM1MzhaMDMxMTAvBgNV BAMTKEU0QjAwQzdBMDVFMDYyODRCMEE5N0Q2NDIxMTE4ODBCNjc5Mzc5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXJmC/TGoDKku7PRo4Y9/W3qH6 TWemRZNsEKd+TYiugkHu2YFw3LpnW4zXDNEGKFZ40qloAr/6VhPyhhPPs3t5XwNk hrcB7Zutf3viTp/jyKm2D3Lmc2tkiWr+Jx8mK6MNrXtvXnu7cwuwCPl1k5DrX5cS M+c4MYT03mtuiJK9SjxLCrdBvQi4+adtT4whjwn/m+rjyRO5pUdUriaNVi8CWTuJ doD5HvkMrWE7/Ze8i5EE48LdLlBurVg6PMi3iQhQKQUmvW9cGoxCByHSukzMghwA u2JjaVKQw28i83dEiZUAuJjsCkUiXZV15urW7ucAQGOooCPNOHuVNKC5IPb/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU5LAMegXgYoSwqX1kIRGIC2eTeeAwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD4MAA EzANBgkqhkiG9w0BAQsFAAOCAQEATsQ9uwdN8y7mywSg4zkq6ZsMavHNfjka/pac XIp+qBuOnvTtdAuPzELK19OxztuC4ZJCqbHJlBS9tkBNSlpiySss5fshSVdWFIyz eNC6FqERzHPxtI7cywSKeI36vSLNWMsH0Hz/U4XtdTL3QRrYS3KJfyHmPvWzkt+w vQXsIM0zvTuiStelgs+JPXm/7xchGv3g9oB4+TWdVLz/spZGBxh67JW4R6QKaEcN TSPLsEUg9TkHDGvowbwGQ5WYy3v4II0Kk3bErPzWO6Qkl/EZGIQRW9aFT2OIdZOK XRz9fsyb/C3mPFYpCb8g6/Gpu3v5KD9AfMmo1LWXIzFa8uMKzw== -----END CERTIFICATE-----Generated at Wed May 13 02:49:02 2026 by rpki-client