$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: UdoPkZ+2AOHg3vZbgjXSJjipAK97nm8TlruCo/DcsiI= Subject key identifier: 2D:0E:91:97:6C:99:D8:65:DC:B0:4F:CD:02:35:E6:F5:06:0A:2C:68 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 58F82DF8CDC6FC34DA692AB9CEF8DC866028C642 Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:37 +0000 ROA not before: Sun 03 May 2026 02:30:37 +0000 ROA not after: Sun 02 May 2027 02:35:37 +0000 asID: 138089 IP address blocks: 2403:e0c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f8:2d:f8:cd:c6:fc:34:da:69:2a:b9:ce:f8:dc:86:60:28:c6:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:37 2026 GMT Not After : May 2 02:35:37 2027 GMT Subject: CN=2D0E91976C99D865DCB04FCD0235E6F5060A2C68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:20:8d:31:2c:ba:5e:7a:a1:a0:22:f2:61:e5: 5a:f6:86:4b:8f:a1:93:b2:fc:95:e3:f3:94:4a:08: 0d:de:0c:36:63:fc:6f:08:d8:6f:b6:d7:d5:fc:4b: 10:1e:b2:73:b9:72:34:cf:3e:d0:27:f6:3b:32:d0: ea:55:f1:96:d1:0f:1c:2b:e2:47:79:00:88:d0:7c: dd:81:58:5e:ad:a0:38:5f:64:c9:4b:ab:3a:d3:c5: ec:e1:97:d9:59:1b:21:43:d0:b2:74:1e:a2:1b:ec: 26:7d:1d:5b:c8:49:11:22:36:e7:1b:0c:f6:91:0a: dc:9a:4d:81:28:95:6e:c5:8f:5f:00:86:f2:b3:93: ef:2f:b8:b9:a5:09:a3:26:bb:c9:2c:4a:d3:81:f2: be:76:74:cc:b9:8b:b8:5d:f6:2d:9a:61:1c:7b:af: e1:3d:9f:e2:e8:9c:14:c1:99:0f:ef:76:f4:49:bc: 56:a6:ef:70:fd:e0:a5:9f:4a:06:15:b1:60:12:b5: b5:5e:87:eb:78:f7:70:49:d9:fd:6d:cb:52:69:c6: 07:84:9c:39:a1:88:c8:12:27:ea:c8:06:fd:76:19: 27:f6:4c:5a:33:28:ba:80:37:21:8f:59:05:16:53: 9c:96:c1:13:e3:41:4c:8b:99:67:a3:bf:99:4e:dc: ff:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0E:91:97:6C:99:D8:65:DC:B0:4F:CD:02:35:E6:F5:06:0A:2C:68 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:2::/48 Signature Algorithm: sha256WithRSAEncryption a3:74:d5:5e:12:b9:54:b3:54:d4:da:37:c3:d8:82:6c:0c:6d: e3:48:78:f8:bb:8a:ef:c3:5c:d7:85:d4:6a:cb:12:cf:ed:a0: 34:6c:ab:e9:96:a5:17:05:1f:2e:90:fa:02:a9:26:21:1a:48: 36:ed:d7:a3:8e:5b:97:fa:d9:08:8f:19:96:90:38:2d:41:41: 93:6a:41:2f:1d:96:6d:1f:9b:f4:60:56:e1:f1:38:fa:9d:7e: d4:e9:70:9a:b4:7b:f2:85:79:cf:88:cf:68:e9:54:20:9e:75: 44:17:fd:24:b4:4f:a9:3b:9b:0a:ac:5c:dd:65:30:ae:38:4a: 56:fa:43:f1:93:b1:45:f5:93:02:df:f4:20:c2:56:19:0e:5e: ee:f0:5d:51:9d:db:57:d2:ad:f1:c8:60:01:5a:0e:c6:c6:3f: 85:26:d0:3c:6e:81:12:fc:cf:79:d1:49:50:26:87:48:46:d1: 98:83:98:14:15:9d:2f:2f:99:11:59:68:5f:97:41:96:f2:32: 12:48:8c:e4:06:ae:b8:fe:4a:9a:36:e6:26:49:f0:9d:ea:e3: ac:10:62:4c:59:80:86:12:87:71:a3:24:f2:07:b0:c5:1e:a6: c1:43:f7:60:08:da:d4:5a:67:b1:e4:cf:07:95:0d:b7:9c:f6: a1:a1:43:fa -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWPgt+M3G/DTaaSq5zvjchmAoxkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzdaFw0yNzA1MDIwMjM1MzdaMDMxMTAvBgNV BAMTKDJEMEU5MTk3NkM5OUQ4NjVEQ0IwNEZDRDAyMzVFNkY1MDYwQTJDNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwII0xLLpeeqGgIvJh5Vr2hkuP oZOy/JXj85RKCA3eDDZj/G8I2G+219X8SxAesnO5cjTPPtAn9jsy0OpV8ZbRDxwr 4kd5AIjQfN2BWF6toDhfZMlLqzrTxezhl9lZGyFD0LJ0HqIb7CZ9HVvISREiNucb DPaRCtyaTYEolW7Fj18AhvKzk+8vuLmlCaMmu8ksStOB8r52dMy5i7hd9i2aYRx7 r+E9n+LonBTBmQ/vdvRJvFam73D94KWfSgYVsWAStbVeh+t493BJ2f1ty1JpxgeE nDmhiMgSJ+rIBv12GSf2TFozKLqANyGPWQUWU5yWwRPjQUyLmWejv5lO3P/fAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQULQ6Rl2yZ2GXcsE/NAjXm9QYKLGgwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAIw DQYJKoZIhvcNAQELBQADggEBAKN01V4SuVSzVNTaN8PYgmwMbeNIePi7iu/DXNeF 1GrLEs/toDRsq+mWpRcFHy6Q+gKpJiEaSDbt16OOW5f62QiPGZaQOC1BQZNqQS8d lm0fm/RgVuHxOPqdftTpcJq0e/KFec+Iz2jpVCCedUQX/SS0T6k7mwqsXN1lMK44 Slb6Q/GTsUX1kwLf9CDCVhkOXu7wXVGd21fSrfHIYAFaDsbGP4Um0DxugRL8z3nR SVAmh0hG0ZiDmBQVnS8vmRFZaF+XQZbyMhJIjOQGrrj+Spo25iZJ8J3q46wQYkxZ gIYSh3GjJPIHsMUepsFD92AI2tRaZ7HkzweVDbec9qGhQ/o= -----END CERTIFICATE-----Generated at Wed May 13 02:47:12 2026 by rpki-client