$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: e+Gw3YTY2+X+FfuH6e/RIS9HElWcKHLwAE2PQqgXfvw= Subject key identifier: 85:49:2F:08:41:7E:84:1D:A6:28:C1:3F:F9:A4:7C:A4:2A:84:CF:6B Certificate issuer: /CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Certificate serial: 52D66DEA8EC8A9BBFD37F0AD7855845AF4937D53 Authority key identifier: BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa Signing time: Sun 03 May 2026 02:56:59 +0000 ROA not before: Sun 03 May 2026 02:51:59 +0000 ROA not after: Sun 02 May 2027 02:56:59 +0000 asID: 132647 IP address blocks: 2402:ee80:58::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d6:6d:ea:8e:c8:a9:bb:fd:37:f0:ad:78:55:84:5a:f4:93:7d:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Validity Not Before: May 3 02:51:59 2026 GMT Not After : May 2 02:56:59 2027 GMT Subject: CN=85492F08417E841DA628C13FF9A47CA42A84CF6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4b:15:34:31:f5:1e:fb:3b:4b:16:72:9d:36: 92:57:c3:6d:1f:20:e7:31:a4:4c:6c:f4:fe:11:3d: 55:1f:35:ad:8e:ff:5a:d8:5f:12:29:03:5f:84:8e: ff:60:b9:70:66:08:9f:8d:42:80:bb:aa:dc:ff:88: ba:d0:72:b2:85:a7:b6:95:6b:ca:7b:17:06:16:e3: 4e:2c:cf:a1:e5:6e:52:61:06:2b:4a:d9:9e:2a:bd: 84:a1:db:50:15:14:81:b7:87:6b:44:cb:8b:eb:66: f3:05:b3:de:21:55:8c:5d:07:17:cf:23:90:26:88: 52:2d:76:5b:eb:0a:ab:04:e0:f6:8e:3b:11:e9:da: e6:58:f1:9a:b7:37:a2:26:24:f3:ac:ec:6b:a0:26: aa:c0:7a:a6:b2:ce:47:e4:76:4a:41:e3:cf:58:f3: c7:f7:00:b8:1d:99:8e:47:f9:39:6e:8f:ea:09:5e: bf:35:4b:92:06:51:09:3b:c0:c4:97:e3:67:95:5e: 3a:56:e6:dd:a2:02:c4:09:48:1a:e1:8e:d9:c2:18: 14:81:e1:c8:29:0e:7b:bf:96:f5:49:b9:9a:ec:03: a1:ee:d7:c7:d0:fc:9d:70:33:1a:80:58:4f:95:39: 5c:d7:94:e6:c7:b0:06:ed:c1:85:51:c8:c8:10:ec: 22:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:49:2F:08:41:7E:84:1D:A6:28:C1:3F:F9:A4:7C:A4:2A:84:CF:6B X509v3 Authority Key Identifier: keyid:BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a35383a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80:58::/48 Signature Algorithm: sha256WithRSAEncryption 59:b0:2b:47:c2:28:e1:64:e0:a5:be:5e:89:77:53:96:4c:7a: 2c:8c:24:20:87:48:4f:94:71:42:c8:44:95:3d:5c:42:d8:9a: e8:35:c2:b2:79:46:72:c7:b4:60:89:05:24:96:83:c7:e4:06: b8:e8:aa:58:f6:72:97:4a:81:af:8e:b5:ad:ac:df:26:11:10: 87:6c:eb:0e:16:be:da:d4:7d:ca:83:59:ff:ee:38:c0:b5:98: 17:f2:16:99:95:b8:68:8d:10:69:ae:d3:16:2c:2c:7c:46:21: d2:ee:8f:3e:1c:04:40:b1:d9:61:d8:29:e7:04:02:9f:fe:6b: 0e:e0:bc:16:1d:a0:9f:7e:6d:d4:98:e8:92:63:d0:51:aa:0b: 31:8c:21:b9:2a:e8:21:0a:2e:aa:f0:06:16:72:b3:63:e4:2d: d2:44:9e:01:59:c1:c7:7f:92:a5:6f:69:ba:f3:30:bb:75:f1: d6:19:30:07:6d:94:34:25:08:8b:95:bb:d8:65:25:7f:8d:44: 49:a7:09:f8:fc:07:7e:da:20:a5:c1:22:6b:b6:f5:47:8f:3c: a9:98:3d:41:b6:4b:9c:34:bd:48:85:da:e1:80:99:c4:8a:4b: b4:0f:f2:28:87:78:d9:1c:ac:f9:45:d0:f5:7c:dc:7d:75:c3: 76:cb:f2:b8 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUtZt6o7Iqbv9N/CteFWEWvSTfVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1NzY4MzVFRDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2 NTUzN0VCNjAeFw0yNjA1MDMwMjUxNTlaFw0yNzA1MDIwMjU2NTlaMDMxMTAvBgNV BAMTKDg1NDkyRjA4NDE3RTg0MURBNjI4QzEzRkY5QTQ3Q0E0MkE4NENGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaSxU0MfUe+ztLFnKdNpJXw20f IOcxpExs9P4RPVUfNa2O/1rYXxIpA1+Ejv9guXBmCJ+NQoC7qtz/iLrQcrKFp7aV a8p7FwYW404sz6HlblJhBitK2Z4qvYSh21AVFIG3h2tEy4vrZvMFs94hVYxdBxfP I5AmiFItdlvrCqsE4PaOOxHp2uZY8Zq3N6ImJPOs7GugJqrAeqayzkfkdkpB489Y 88f3ALgdmY5H+Tluj+oJXr81S5IGUQk7wMSX42eVXjpW5t2iAsQJSBrhjtnCGBSB 4cgpDnu/lvVJuZrsA6Hu18fQ/J1wMxqAWE+VOVzXlObHsAbtwYVRyMgQ7CIZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUhUkvCEF+hB2mKME/+aR8pCqEz2swHwYDVR0j BBgwFoAUu1doNe2KRuMPuN31ZqvEd2VTfrYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2MTdkOGMtZDE1NC00NjFlLWJjY2EtYjY2ZDI2N2NmZmM3LzAvQkI1NzY4MzVF RDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2NTUzN0VCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjU3NjgzNUVEOEE0NkUzMEZCOERERjU2NkFCQzQ3NzY1NTM3 RUI2LmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMyMzQzMDMyM2E2NTY1MzgzMDNhMzUzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC7oAA WDANBgkqhkiG9w0BAQsFAAOCAQEAWbArR8Io4WTgpb5eiXdTlkx6LIwkIIdIT5Rx QshElT1cQtia6DXCsnlGcse0YIkFJJaDx+QGuOiqWPZyl0qBr461razfJhEQh2zr Dha+2tR9yoNZ/+44wLWYF/IWmZW4aI0Qaa7TFiwsfEYh0u6PPhwEQLHZYdgp5wQC n/5rDuC8Fh2gn35t1JjokmPQUaoLMYwhuSroIQouqvAGFnKzY+Qt0kSeAVnBx3+S pW9puvMwu3Xx1hkwB22UNCUIi5W72GUlf41ESacJ+PwHftogpcEia7b1R488qZg9 QbZLnDS9SIXa4YCZxIpLtA/yKId42Rys+UXQ9XzcfXXDdsvyuA== -----END CERTIFICATE-----Generated at Wed May 13 07:57:21 2026 by rpki-client