$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a623a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a623a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: atskKnHk5T0oqegQKA+HINuV5pfMQiIduF8R7Q4ZG+c= Subject key identifier: B3:28:25:4F:1C:11:2B:60:40:E8:84:C7:A9:B7:66:1A:9C:3E:2F:BE Certificate issuer: /CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Certificate serial: 3D2CCBF58CCD123DB1C95508F7993B898FA1FF72 Authority key identifier: BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a623a3a2f34382d3438203d3e20313332363437.roa Signing time: Sun 03 May 2026 02:56:58 +0000 ROA not before: Sun 03 May 2026 02:51:58 +0000 ROA not after: Sun 02 May 2027 02:56:58 +0000 asID: 132647 IP address blocks: 2402:ee80:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:2c:cb:f5:8c:cd:12:3d:b1:c9:55:08:f7:99:3b:89:8f:a1:ff:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Validity Not Before: May 3 02:51:58 2026 GMT Not After : May 2 02:56:58 2027 GMT Subject: CN=B328254F1C112B6040E884C7A9B7661A9C3E2FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d9:36:89:8c:21:a5:c8:26:78:7a:ef:d2:d1: 68:03:32:86:ff:50:ba:4f:05:17:34:80:36:ce:d2: 0f:f8:f9:c7:c8:7d:da:da:63:26:ae:55:f5:ce:6f: 1e:77:88:a3:42:72:68:c9:77:a2:64:fe:2d:20:83: fd:ba:62:8a:45:32:e3:c1:b2:b2:5f:e9:9f:9a:bf: a8:89:8b:1e:6d:d3:6f:a4:07:45:ac:b0:f8:88:9c: c4:03:20:1d:fd:f4:0c:6d:74:8e:37:c3:a6:47:13: db:cd:2d:7e:d8:79:7d:27:61:76:9b:8e:d8:18:d5: f3:fc:91:1e:95:2f:87:32:b4:b9:30:2c:d9:38:35: 97:28:2d:a8:69:b9:f4:2c:58:2d:ec:42:f3:c6:75: f3:fc:66:68:44:5b:37:34:87:85:a5:64:49:db:d1: 6e:1f:04:39:2b:b7:ad:a9:c1:3a:e9:10:cf:91:51: 93:8c:29:ab:ed:0f:a9:a4:20:b2:56:19:11:f2:17: fc:38:bc:5c:ff:1d:8a:31:d3:c1:ce:5f:54:ee:9b: cf:8b:8f:2c:0d:4d:28:22:a3:3e:b0:4d:00:7e:97: dd:6f:cc:c9:8b:e9:39:2d:8a:04:be:7f:3d:60:6b: 98:94:56:9a:0b:df:00:e8:26:58:13:30:48:01:ea: 34:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:28:25:4F:1C:11:2B:60:40:E8:84:C7:A9:B7:66:1A:9C:3E:2F:BE X509v3 Authority Key Identifier: keyid:BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a623a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80:b::/48 Signature Algorithm: sha256WithRSAEncryption 5e:33:62:25:f6:c2:f4:0f:c4:b5:21:45:b4:f8:01:2c:b6:7d: e3:4d:bb:f3:e3:1f:3d:25:d8:04:4a:52:23:36:73:af:9b:21: 1c:9b:15:46:d9:98:2e:1e:a2:90:58:ec:52:ac:c7:57:83:94: 10:60:b2:15:98:15:70:9e:0d:bc:24:bf:97:2d:fc:c4:11:e6: 47:0a:0f:93:87:b9:42:fe:93:e0:cd:07:d2:c5:a9:8e:44:52: d5:e6:00:e5:06:9f:54:71:c9:7b:76:35:9e:91:65:de:d1:70: ad:df:7e:6a:d8:18:48:8d:7b:de:98:d4:b9:5a:b1:bf:41:5a: 26:78:8c:22:c4:e8:7c:20:10:ea:35:78:c4:77:69:d7:ee:07: 4b:0c:ea:62:04:9e:6a:3b:54:24:53:f2:e5:4c:d1:23:94:59: 12:35:e2:78:21:e5:cf:9d:5f:8d:a9:c5:70:c9:dd:89:39:d3: 0f:b9:af:b9:cb:ac:bb:9e:fe:54:eb:ab:44:1a:97:d6:39:4a: f2:1f:01:6e:ad:46:67:53:ef:aa:b3:f1:22:22:10:58:a6:a5: 0d:7a:c7:4f:18:45:e0:30:dc:35:c1:ac:8a:fc:a4:10:ab:0a: 12:90:46:ed:91:d9:20:c2:a2:5d:1f:6f:dd:56:a8:57:a2:fd: a3:bc:35:a7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPSzL9YzNEj2xyVUI95k7iY+h/3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1NzY4MzVFRDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2 NTUzN0VCNjAeFw0yNjA1MDMwMjUxNThaFw0yNzA1MDIwMjU2NThaMDMxMTAvBgNV BAMTKEIzMjgyNTRGMUMxMTJCNjA0MEU4ODRDN0E5Qjc2NjFBOUMzRTJGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl2TaJjCGlyCZ4eu/S0WgDMob/ ULpPBRc0gDbO0g/4+cfIfdraYyauVfXObx53iKNCcmjJd6Jk/i0gg/26YopFMuPB srJf6Z+av6iJix5t02+kB0WssPiInMQDIB399AxtdI43w6ZHE9vNLX7YeX0nYXab jtgY1fP8kR6VL4cytLkwLNk4NZcoLahpufQsWC3sQvPGdfP8ZmhEWzc0h4WlZEnb 0W4fBDkrt62pwTrpEM+RUZOMKavtD6mkILJWGRHyF/w4vFz/HYox08HOX1Tum8+L jywNTSgioz6wTQB+l91vzMmL6TktigS+fz1ga5iUVpoL3wDoJlgTMEgB6jTNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsyglTxwRK2BA6ITHqbdmGpw+L74wHwYDVR0j BBgwFoAUu1doNe2KRuMPuN31ZqvEd2VTfrYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2MTdkOGMtZDE1NC00NjFlLWJjY2EtYjY2ZDI2N2NmZmM3LzAvQkI1NzY4MzVF RDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2NTUzN0VCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjU3NjgzNUVEOEE0NkUzMEZCOERERjU2NkFCQzQ3NzY1NTM3 RUI2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMyMzQzMDMyM2E2NTY1MzgzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzIzNjM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAu6AAAsw DQYJKoZIhvcNAQELBQADggEBAF4zYiX2wvQPxLUhRbT4ASy2feNNu/PjHz0l2ARK UiM2c6+bIRybFUbZmC4eopBY7FKsx1eDlBBgshWYFXCeDbwkv5ct/MQR5kcKD5OH uUL+k+DNB9LFqY5EUtXmAOUGn1RxyXt2NZ6RZd7RcK3ffmrYGEiNe96Y1Llasb9B WiZ4jCLE6HwgEOo1eMR3adfuB0sM6mIEnmo7VCRT8uVM0SOUWRI14ngh5c+dX42p xXDJ3Yk50w+5r7nLrLue/lTrq0Qal9Y5SvIfAW6tRmdT76qz8SIiEFimpQ16x08Y ReAw3DXBrIr8pBCrChKQRu2R2SDCol0fb91WqFei/aO8Nac= -----END CERTIFICATE-----Generated at Wed May 13 04:50:51 2026 by rpki-client