$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: q4GFRcWVs+Ai4gXERrwVrrYZbhWnp7v5yT7e4NRdMGk= Subject key identifier: AB:44:16:AD:5D:51:E0:84:72:02:73:3E:03:C9:99:D9:3C:0F:A3:D6 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 6F6CA838DE996AA173382F2A71EFE84823905BAD Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:39 +0000 ROA not before: Sun 03 May 2026 02:30:39 +0000 ROA not after: Sun 02 May 2027 02:35:39 +0000 asID: 138089 IP address blocks: 2403:e0c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:6c:a8:38:de:99:6a:a1:73:38:2f:2a:71:ef:e8:48:23:90:5b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:39 2026 GMT Not After : May 2 02:35:39 2027 GMT Subject: CN=AB4416AD5D51E0847202733E03C999D93C0FA3D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:70:c4:e0:4c:c6:db:44:d8:3f:1f:18:47: 15:b3:83:7a:ec:bf:d4:b2:b2:57:47:a3:fd:4f:fe: 49:ee:9a:5e:c5:d3:60:55:5a:95:bc:45:33:66:3f: 91:b6:0a:96:f0:e3:df:f8:e4:9d:c4:b5:ae:07:64: e7:66:a6:94:d0:dd:99:1e:43:bf:ba:d7:d2:f3:ae: 9a:62:17:5b:4d:d9:6e:b4:5d:08:34:40:ef:48:fd: 07:4c:4a:d3:16:dc:82:1b:c2:97:ad:9a:a7:6a:0a: 28:16:60:ef:2b:83:c9:15:4f:ff:6e:e3:4d:c1:d3: cc:33:a7:9a:18:a3:17:8d:76:2f:1e:3d:7e:3f:cc: 31:56:d5:7f:2f:e4:88:9e:70:d7:59:76:7d:a3:d4: cf:8b:3a:04:32:23:7a:f3:e9:c8:b8:88:c8:3e:25: 12:18:fc:7a:c1:ab:44:ee:94:bc:ed:a7:ba:4b:52: 64:ad:9e:77:1b:a5:4e:11:39:77:aa:77:13:3d:38: b5:93:6d:17:17:65:dc:91:7c:11:55:fb:19:30:e4: 7d:0e:eb:25:6c:f5:24:ea:34:a8:05:07:9a:9f:d8: 9d:d0:8b:14:91:ca:40:47:72:6e:bf:d4:7f:1e:f0: 8a:03:f1:52:d3:eb:f2:d5:e8:db:ca:09:3b:57:3d: d0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:44:16:AD:5D:51:E0:84:72:02:73:3E:03:C9:99:D9:3C:0F:A3:D6 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:1::/48 Signature Algorithm: sha256WithRSAEncryption a8:4b:25:79:0c:45:d5:4b:3f:97:86:95:96:34:c0:00:c2:71: 8f:06:ee:54:b2:d8:ea:dd:68:be:92:90:f6:ac:08:12:e0:6c: d9:9f:49:78:55:99:a9:36:24:58:33:ca:2c:ac:4a:29:07:68: 2f:34:ae:b9:0b:cb:81:fa:72:bc:b7:1b:8c:dd:4e:b1:b9:ce: 47:6c:61:9d:7d:f4:77:a6:59:3f:11:21:a0:a1:94:e4:46:8e: 27:ea:b9:fc:7a:3b:38:4e:9b:9a:e9:0c:d6:9e:df:ca:54:e8: f2:84:7d:ae:52:7a:78:b4:aa:ae:93:e2:17:0b:97:89:61:f9: 14:e3:ce:68:83:c8:e6:ce:f6:21:71:1e:b7:90:af:3a:6d:7c: 2c:4d:af:f8:3d:b7:c8:11:ca:60:45:e1:91:bd:4b:2a:47:77: 54:86:bf:bb:8e:c1:55:88:16:aa:a5:77:2f:e0:87:0f:b1:43: a2:e7:69:65:54:b2:13:84:3c:25:c1:55:8c:a3:51:eb:66:89: 27:dd:df:af:14:2e:76:5a:d1:7a:bf:3f:ef:e1:ec:09:c5:46: 71:24:87:dd:b4:38:bc:bc:64:b1:85:76:17:f0:a3:7e:e7:17: 03:6f:53:7d:a1:33:0c:6c:a1:5e:e8:a3:92:ce:2d:72:d6:84: 74:fb:88:76 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUb2yoON6ZaqFzOC8qce/oSCOQW60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzlaFw0yNzA1MDIwMjM1MzlaMDMxMTAvBgNV BAMTKEFCNDQxNkFENUQ1MUUwODQ3MjAyNzMzRTAzQzk5OUQ5M0MwRkEzRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxOXDE4EzG20TYPx8YRxWzg3rs v9SysldHo/1P/knuml7F02BVWpW8RTNmP5G2Cpbw49/45J3Eta4HZOdmppTQ3Zke Q7+619LzrppiF1tN2W60XQg0QO9I/QdMStMW3IIbwpetmqdqCigWYO8rg8kVT/9u 403B08wzp5oYoxeNdi8ePX4/zDFW1X8v5IiecNdZdn2j1M+LOgQyI3rz6ci4iMg+ JRIY/HrBq0TulLztp7pLUmStnncbpU4ROXeqdxM9OLWTbRcXZdyRfBFV+xkw5H0O 6yVs9STqNKgFB5qf2J3QixSRykBHcm6/1H8e8IoD8VLT6/LV6NvKCTtXPdCHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUq0QWrV1R4IRyAnM+A8mZ2TwPo9YwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAEw DQYJKoZIhvcNAQELBQADggEBAKhLJXkMRdVLP5eGlZY0wADCcY8G7lSy2OrdaL6S kPasCBLgbNmfSXhVmak2JFgzyiysSikHaC80rrkLy4H6cry3G4zdTrG5zkdsYZ19 9HemWT8RIaChlORGjifqufx6OzhOm5rpDNae38pU6PKEfa5Seni0qq6T4hcLl4lh +RTjzmiDyObO9iFxHreQrzptfCxNr/g9t8gRymBF4ZG9SypHd1SGv7uOwVWIFqql dy/ghw+xQ6LnaWVUshOEPCXBVYyjUetmiSfd368ULnZa0Xq/P+/h7AnFRnEkh920 OLy8ZLGFdhfwo37nFwNvU32hMwxsoV7oo5LOLXLWhHT7iHY= -----END CERTIFICATE-----Generated at Wed May 13 02:47:13 2026 by rpki-client