$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa File: 323430333a653063303a3a2f33322d3332203d3e20313338303839.roa (raw, json) Hash identifier: 29cKBY9SmIDNcy8Up3JMwSzyFn85kJNfVtGR4zVqHOo= Subject key identifier: 30:2A:B0:06:85:89:20:E0:5B:1D:4B:79:D9:6E:C7:C3:93:3B:26:40 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 245A66AF8ACEBADBF91144C075783F4F94915076 Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:40 +0000 ROA not before: Sun 03 May 2026 02:30:40 +0000 ROA not after: Sun 02 May 2027 02:35:40 +0000 asID: 138089 IP address blocks: 2403:e0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5a:66:af:8a:ce:ba:db:f9:11:44:c0:75:78:3f:4f:94:91:50:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:40 2026 GMT Not After : May 2 02:35:40 2027 GMT Subject: CN=302AB006858920E05B1D4B79D96EC7C3933B2640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:64:51:b0:ba:55:7f:1a:b9:c5:e0:b7:45: 5e:48:f7:b9:25:6e:95:3c:2c:a7:91:8b:9d:54:96: 30:0b:2d:28:84:3e:83:14:7e:88:0b:44:b2:39:fc: a6:85:cb:96:a9:15:91:a7:44:6a:fd:84:bb:02:1d: c8:f5:45:97:d5:4a:99:88:df:0d:b1:04:5e:c2:e2: d3:7d:d7:53:b3:4f:a5:55:fc:17:5e:e4:c2:d2:8d: ac:9d:0b:db:b3:5f:3b:ce:5e:24:cb:fb:e3:dc:25: 8f:49:97:63:8d:75:95:c3:fa:d4:52:e5:5c:61:b3: 11:9a:1f:7a:26:45:95:af:74:be:32:bd:1d:76:3f: 79:bc:39:83:79:e7:0f:30:7b:55:2c:e0:88:ae:78: ca:8f:3f:9c:28:be:d0:b8:f2:70:66:3f:d6:e4:67: 82:9b:c6:42:f1:cf:3b:7a:63:d9:39:92:08:f1:74: 65:80:ca:ab:49:c0:71:32:65:8c:16:7f:72:ad:c0: a7:85:4b:7a:dc:7c:06:ed:74:a9:63:ae:cd:6a:79: 42:bd:5c:51:d0:f1:96:c2:16:13:85:cb:55:ff:15: 31:a9:3b:c6:43:77:8c:ff:4e:37:8a:bc:6e:26:08: 28:d7:d5:9c:78:3c:a0:a2:e4:2b:45:6d:38:ea:3d: 52:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:2A:B0:06:85:89:20:E0:5B:1D:4B:79:D9:6E:C7:C3:93:3B:26:40 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0::/32 Signature Algorithm: sha256WithRSAEncryption 54:f6:6e:05:ef:7e:3e:a5:06:0f:f5:85:28:b2:22:cb:e9:29: 64:f9:63:13:2b:94:7e:4b:7a:f7:a1:a4:7e:1b:d3:28:ff:d6: be:b7:ee:63:7d:5f:26:cf:2f:d2:a5:aa:18:05:f5:4d:d3:04: 64:3e:9d:60:b2:af:a2:06:6e:86:37:22:49:d4:fb:d4:eb:7a: f6:10:3d:89:08:f5:b3:94:7e:b5:92:b7:e1:72:34:b7:d9:8a: c5:7a:fb:04:4f:1f:a7:b3:c9:34:0c:71:3a:2c:66:fa:ae:2d: 4b:89:4b:38:b0:4d:fd:dd:a1:62:3a:dd:6b:24:97:e9:b0:28: 19:22:6f:7c:10:1e:58:64:1e:ce:e5:3c:60:05:7d:4d:44:ee: b1:4e:c9:93:29:35:6f:c5:9e:3b:ac:3a:53:64:94:fb:3e:9f: f9:f7:d9:8d:59:49:81:6c:6d:89:e0:3a:d8:e2:92:52:68:9c: b1:9f:64:4c:ce:3e:61:04:d6:df:c3:36:b0:d2:59:a8:ae:f3: 47:66:92:10:3c:46:28:52:d4:7b:be:22:55:f4:a5:41:26:b1: 54:a4:60:18:cc:72:8d:66:f9:1f:90:d8:2d:d0:92:a3:ae:c9: d5:9d:11:0c:eb:80:0a:9d:35:d7:e3:15:f4:05:46:bf:15:47: 46:56:a5:e4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJFpmr4rOutv5EUTAdXg/T5SRUHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwNDBaFw0yNzA1MDIwMjM1NDBaMDMxMTAvBgNV BAMTKDMwMkFCMDA2ODU4OTIwRTA1QjFENEI3OUQ5NkVDN0MzOTMzQjI2NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/WRRsLpVfxq5xeC3RV5I97kl bpU8LKeRi51UljALLSiEPoMUfogLRLI5/KaFy5apFZGnRGr9hLsCHcj1RZfVSpmI 3w2xBF7C4tN911OzT6VV/Bde5MLSjaydC9uzXzvOXiTL++PcJY9Jl2ONdZXD+tRS 5VxhsxGaH3omRZWvdL4yvR12P3m8OYN55w8we1Us4IiueMqPP5wovtC48nBmP9bk Z4KbxkLxzzt6Y9k5kgjxdGWAyqtJwHEyZYwWf3KtwKeFS3rcfAbtdKljrs1qeUK9 XFHQ8ZbCFhOFy1X/FTGpO8ZDd4z/TjeKvG4mCCjX1Zx4PKCi5CtFbTjqPVILAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUMCqwBoWJIOBbHUt52W7Hw5M7JkAwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD4MAwDQYJKoZI hvcNAQELBQADggEBAFT2bgXvfj6lBg/1hSiyIsvpKWT5YxMrlH5LevehpH4b0yj/ 1r637mN9XybPL9KlqhgF9U3TBGQ+nWCyr6IGboY3IknU+9TrevYQPYkI9bOUfrWS t+FyNLfZisV6+wRPH6ezyTQMcTosZvquLUuJSziwTf3doWI63Wskl+mwKBkib3wQ HlhkHs7lPGAFfU1E7rFOyZMpNW/FnjusOlNklPs+n/n32Y1ZSYFsbYngOtjiklJo nLGfZEzOPmEE1t/DNrDSWaiu80dmkhA8RihS1Hu+IlX0pUEmsVSkYBjMco1m+R+Q 2C3QkqOuydWdEQzrgAqdNdfjFfQFRr8VR0ZWpeQ= -----END CERTIFICATE-----Generated at Wed May 13 03:56:10 2026 by rpki-client