$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3438203d3e20313338303839.roa File: 323430333a653063303a3a2f33322d3438203d3e20313338303839.roa (raw, json) Hash identifier: Gh74rlG6cZiGWXdiLt7turdRPANg8uysBJZ/a1V4u3c= Subject key identifier: F0:92:F7:CD:48:C1:17:F8:0D:30:F8:6D:1D:2F:37:98:F2:F6:D8:69 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 3B1CEE04862026A7CAC42B916575C7E0F1B6F941 Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3438203d3e20313338303839.roa Signing time: Sun 03 May 2026 02:35:38 +0000 ROA not before: Sun 03 May 2026 02:30:38 +0000 ROA not after: Sun 02 May 2027 02:35:38 +0000 asID: 138089 IP address blocks: 2403:e0c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1c:ee:04:86:20:26:a7:ca:c4:2b:91:65:75:c7:e0:f1:b6:f9:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: May 3 02:30:38 2026 GMT Not After : May 2 02:35:38 2027 GMT Subject: CN=F092F7CD48C117F80D30F86D1D2F3798F2F6D869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b9:12:4a:e3:53:69:75:08:86:b7:76:73:11: 57:38:47:3e:7b:37:2b:55:64:8f:a5:2e:ca:33:fc: 98:7d:be:2a:b4:5d:a2:f3:09:f7:30:6a:69:1a:1a: 33:b1:ad:67:b9:6d:9f:a0:b4:4b:58:4a:5c:04:de: be:e0:0a:fa:83:6f:4c:20:fe:bd:4d:f9:d9:77:ca: 00:51:dd:be:d2:1f:f4:71:aa:bc:1c:7a:87:e8:26: 9e:bc:7f:7e:0c:67:31:76:bb:69:b7:a9:14:6f:7a: e9:ee:4b:9f:3d:91:08:af:39:78:a1:46:3c:0a:c3: f7:03:c5:b1:6a:c8:5e:a0:9b:61:8d:58:3d:11:cd: 6c:3f:48:31:66:c1:f0:b6:8b:63:f5:97:00:5d:68: 02:77:1e:e4:64:31:cd:83:5a:a9:b1:dc:73:43:b3: de:4d:ee:f0:98:62:2c:43:bc:21:17:9f:e7:98:43: f6:05:29:89:9c:c6:b1:62:43:eb:37:3c:b7:3a:97: 03:a6:1a:09:c3:a4:5f:52:62:a2:67:de:6e:af:1b: da:3b:20:a0:a7:b6:dd:d6:0f:82:ea:1e:e7:cb:d7: 8c:94:2b:65:5f:43:05:75:ef:a1:24:c5:00:f0:5a: 75:b7:b7:55:c3:3f:c0:0c:32:bc:e0:85:78:4d:08: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:92:F7:CD:48:C1:17:F8:0D:30:F8:6D:1D:2F:37:98:F2:F6:D8:69 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0::/32 Signature Algorithm: sha256WithRSAEncryption 2d:b1:be:1d:30:41:97:03:c8:05:41:94:b5:f0:9c:9f:37:4a: 2e:a8:df:25:f0:56:cd:5b:b1:d9:41:41:5f:f7:90:cf:38:a3: f5:b3:c7:af:c5:0d:38:0f:78:f6:7c:ec:e4:71:d8:06:b7:09: 75:7b:be:46:39:a9:7e:c0:9a:51:2c:d8:ad:cb:e7:8d:3b:ab: 83:7d:55:db:a9:bb:12:75:b2:c1:bc:3f:93:1d:3f:5a:e4:81: 4e:45:00:00:ce:6e:d0:f2:3c:23:67:c1:d3:50:50:2d:97:7a: 1b:2a:88:08:86:da:d7:8f:71:72:c2:72:0e:d0:c4:0b:91:a5: 6f:76:a0:f4:e8:85:33:64:f4:67:14:60:85:3e:66:a8:3d:31: c1:89:28:25:68:89:16:44:0e:8c:47:aa:a5:2b:4b:8b:07:5c: ad:16:63:b2:66:1c:ac:7d:b5:e8:75:1d:d1:d3:cf:de:ca:56: a6:ad:7b:6f:a1:bf:0d:40:4e:0d:69:84:30:da:2c:b5:c0:81: 33:d1:8e:64:f3:7c:c0:fc:7b:f3:57:72:eb:70:12:79:74:15: af:c4:8d:7b:8a:0e:99:84:6e:13:11:db:da:ae:e2:c6:a6:b1: 18:cb:57:14:84:73:83:b1:c0:37:91:30:a0:d7:97:a2:fc:0b: 29:19:a9:3e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOxzuBIYgJqfKxCuRZXXH4PG2+UEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA1MDMwMjMwMzhaFw0yNzA1MDIwMjM1MzhaMDMxMTAvBgNV BAMTKEYwOTJGN0NENDhDMTE3RjgwRDMwRjg2RDFEMkYzNzk4RjJGNkQ4NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiuRJK41NpdQiGt3ZzEVc4Rz57 NytVZI+lLsoz/Jh9viq0XaLzCfcwamkaGjOxrWe5bZ+gtEtYSlwE3r7gCvqDb0wg /r1N+dl3ygBR3b7SH/RxqrwceofoJp68f34MZzF2u2m3qRRveunuS589kQivOXih RjwKw/cDxbFqyF6gm2GNWD0RzWw/SDFmwfC2i2P1lwBdaAJ3HuRkMc2DWqmx3HND s95N7vCYYixDvCEXn+eYQ/YFKYmcxrFiQ+s3PLc6lwOmGgnDpF9SYqJn3m6vG9o7 IKCntt3WD4LqHufL14yUK2VfQwV176EkxQDwWnW3t1XDP8AMMrzghXhNCLmhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU8JL3zUjBF/gNMPhtHS83mPL22GkwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD4MAwDQYJKoZI hvcNAQELBQADggEBAC2xvh0wQZcDyAVBlLXwnJ83Si6o3yXwVs1bsdlBQV/3kM84 o/Wzx6/FDTgPePZ87ORx2Aa3CXV7vkY5qX7AmlEs2K3L5407q4N9VdupuxJ1ssG8 P5MdP1rkgU5FAADObtDyPCNnwdNQUC2XehsqiAiG2tePcXLCcg7QxAuRpW92oPTo hTNk9GcUYIU+Zqg9McGJKCVoiRZEDoxHqqUrS4sHXK0WY7JmHKx9teh1HdHTz97K Vqate2+hvw1ATg1phDDaLLXAgTPRjmTzfMD8e/NXcutwEnl0Fa/EjXuKDpmEbhMR 29qu4samsRjLVxSEc4OxwDeRMKDXl6L8CykZqT4= -----END CERTIFICATE-----Generated at Wed May 13 03:17:04 2026 by rpki-client