$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: d2p1pz6iSVKmhRvc7KcXU5ZyLMfCL4gLganI40S2YnI= Subject key identifier: E7:FC:20:85:27:E9:10:9C:FF:88:31:5A:6F:A1:ED:32:FA:C6:76:C0 Certificate issuer: /CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Certificate serial: 3629616EB768A9918D90C80B11FF198D4781FBC5 Authority key identifier: BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a3a2f34382d3438203d3e20313332363437.roa Signing time: Sun 03 May 2026 02:57:00 +0000 ROA not before: Sun 03 May 2026 02:52:00 +0000 ROA not after: Sun 02 May 2027 02:57:00 +0000 asID: 132647 IP address blocks: 2402:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:29:61:6e:b7:68:a9:91:8d:90:c8:0b:11:ff:19:8d:47:81:fb:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Validity Not Before: May 3 02:52:00 2026 GMT Not After : May 2 02:57:00 2027 GMT Subject: CN=E7FC208527E9109CFF88315A6FA1ED32FAC676C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a5:c2:73:13:7b:eb:2d:1a:98:72:c1:71:ab: 26:84:e8:4a:ad:ac:2f:11:d1:22:5b:07:71:20:70: 2d:6f:c9:93:09:45:c8:0d:1f:45:c4:5d:72:58:73: 13:a8:8e:47:56:94:3d:8e:8d:28:dc:88:df:18:32: aa:5a:57:38:8e:fe:0b:a4:d0:43:58:57:33:30:59: 5a:ff:45:ca:df:28:a4:ab:da:22:b8:97:40:38:25: 85:35:75:95:55:72:e2:83:3b:f6:0f:48:f0:00:ae: 45:58:43:e0:4f:55:4c:29:b4:94:0e:4b:cc:3a:63: 88:78:38:d4:e3:f4:0c:2d:69:d5:24:cb:e5:ac:77: a0:f9:22:36:89:73:a3:1c:ed:8b:5e:a0:c8:96:0c: ae:1e:8f:e5:36:5e:3a:b7:37:25:b7:cc:0e:66:70: 17:ff:32:b5:71:d4:ef:ab:45:20:f4:14:2c:27:71: ed:69:a6:c6:5e:ad:b2:ee:75:cc:b9:88:dc:1d:7c: b9:b1:b5:10:56:39:f9:c4:1e:33:f7:23:04:98:c9: ad:b1:24:8c:1b:4d:d1:78:98:bf:24:67:c7:94:fd: 4f:82:a6:f9:81:e7:81:f6:89:e7:e9:20:b4:63:68: 62:37:a2:0a:58:4d:16:40:fd:05:d4:b5:10:64:84: c0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FC:20:85:27:E9:10:9C:FF:88:31:5A:6F:A1:ED:32:FA:C6:76:C0 X509v3 Authority Key Identifier: keyid:BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80::/48 Signature Algorithm: sha256WithRSAEncryption 0d:4c:00:a6:6e:89:0a:24:d4:39:7d:8a:4d:8c:61:77:5e:ca: 68:3c:de:29:28:f9:83:ee:17:6d:79:68:cc:65:7a:c9:dd:8d: c4:e3:d1:d9:33:b2:41:89:6b:0e:76:95:e9:2b:a6:ec:0a:cd: 3c:aa:cb:d7:28:ef:e7:76:bb:30:00:be:27:8d:30:90:fb:02: af:f3:c4:a1:ec:99:67:6d:4c:d8:dc:f9:9c:72:c9:4a:8e:4b: e5:26:c6:ba:44:5d:51:e7:c2:e1:64:42:9d:5a:6a:31:3f:15: 8c:36:72:13:d4:84:cd:59:cd:a0:c4:57:cb:51:10:73:8a:82: 72:3f:02:71:b9:7d:cf:4c:b7:c9:e2:6a:54:eb:cf:07:45:7c: 7b:23:1b:7b:2a:b6:a3:17:9e:6a:3e:a0:c3:86:e6:8d:f4:72: 9d:92:2c:3e:9c:e7:58:52:14:be:3d:38:81:24:ae:a3:41:43: db:ce:db:22:d6:ca:08:3b:04:12:df:55:3c:d9:67:21:1e:6d: 82:99:fc:2c:01:b8:3e:3c:e6:b3:3b:9d:ef:a0:d0:1b:3b:eb: a2:7b:3c:dc:87:7e:e7:2e:39:8b:82:12:f3:38:a8:e5:40:40: b0:36:f2:ed:f3:5b:36:78:6a:1d:3d:b0:81:4c:9c:ee:a8:be: ec:68:eb:d2 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUNilhbrdoqZGNkMgLEf8ZjUeB+8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1NzY4MzVFRDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2 NTUzN0VCNjAeFw0yNjA1MDMwMjUyMDBaFw0yNzA1MDIwMjU3MDBaMDMxMTAvBgNV BAMTKEU3RkMyMDg1MjdFOTEwOUNGRjg4MzE1QTZGQTFFRDMyRkFDNjc2QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQpcJzE3vrLRqYcsFxqyaE6Eqt rC8R0SJbB3EgcC1vyZMJRcgNH0XEXXJYcxOojkdWlD2OjSjciN8YMqpaVziO/guk 0ENYVzMwWVr/RcrfKKSr2iK4l0A4JYU1dZVVcuKDO/YPSPAArkVYQ+BPVUwptJQO S8w6Y4h4ONTj9AwtadUky+Wsd6D5IjaJc6Mc7YteoMiWDK4ej+U2Xjq3NyW3zA5m cBf/MrVx1O+rRSD0FCwnce1ppsZerbLudcy5iNwdfLmxtRBWOfnEHjP3IwSYya2x JIwbTdF4mL8kZ8eU/U+CpvmB54H2iefpILRjaGI3ogpYTRZA/QXUtRBkhMBNAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU5/wghSfpEJz/iDFab6HtMvrGdsAwHwYDVR0j BBgwFoAUu1doNe2KRuMPuN31ZqvEd2VTfrYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2MTdkOGMtZDE1NC00NjFlLWJjY2EtYjY2ZDI2N2NmZmM3LzAvQkI1NzY4MzVF RDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2NTUzN0VCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjU3NjgzNUVEOEE0NkUzMEZCOERERjU2NkFCQzQ3NzY1NTM3 RUI2LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMyMzQzMDMyM2E2NTY1MzgzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC7oAAADANBgkq hkiG9w0BAQsFAAOCAQEADUwApm6JCiTUOX2KTYxhd17KaDzeKSj5g+4XbXlozGV6 yd2NxOPR2TOyQYlrDnaV6Sum7ArNPKrL1yjv53a7MAC+J40wkPsCr/PEoeyZZ21M 2Nz5nHLJSo5L5SbGukRdUefC4WRCnVpqMT8VjDZyE9SEzVnNoMRXy1EQc4qCcj8C cbl9z0y3yeJqVOvPB0V8eyMbeyq2oxeeaj6gw4bmjfRynZIsPpznWFIUvj04gSSu o0FD287bItbKCDsEEt9VPNlnIR5tgpn8LAG4Pjzmszud76DQGzvrons83Id+5y45 i4IS8zio5UBAsDby7fNbNnhqHT2wgUyc7qi+7Gjr0g== -----END CERTIFICATE-----Generated at Wed May 13 04:53:53 2026 by rpki-client