$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a643a3a2f34382d3438203d3e20313332363437.roa File: 323430323a656538303a643a3a2f34382d3438203d3e20313332363437.roa (raw, json) Hash identifier: Sm4mr8PZqNPV9oAJvZYba4Nbo01h5qyGSwF7hDwYhaE= Subject key identifier: 02:8E:86:6B:23:92:6F:67:9D:91:91:7A:05:16:E5:84:A6:F5:66:2A Certificate issuer: /CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Certificate serial: 6795290BAC360243837F1CE63DAAB9A4EDCD23CB Authority key identifier: BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a643a3a2f34382d3438203d3e20313332363437.roa Signing time: Sun 03 May 2026 02:56:58 +0000 ROA not before: Sun 03 May 2026 02:51:58 +0000 ROA not after: Sun 02 May 2027 02:56:58 +0000 asID: 132647 IP address blocks: 2402:ee80:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:95:29:0b:ac:36:02:43:83:7f:1c:e6:3d:aa:b9:a4:ed:cd:23:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB576835ED8A46E30FB8DDF566ABC47765537EB6 Validity Not Before: May 3 02:51:58 2026 GMT Not After : May 2 02:56:58 2027 GMT Subject: CN=028E866B23926F679D91917A0516E584A6F5662A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:6a:f3:90:90:e4:e6:66:80:54:30:ae:02: bb:6b:2d:a8:26:92:dc:4a:69:d0:38:6b:0a:ae:56: 54:80:10:b5:b8:92:b2:4f:2e:81:ba:0d:27:e4:7d: 33:21:e9:e3:6d:46:54:5a:08:f7:b2:c1:65:31:aa: dd:b5:83:52:e1:f1:ce:04:f3:40:dc:35:14:7b:90: e3:c1:f7:30:96:78:36:60:9e:a4:d1:24:d6:9b:d3: f5:48:61:3a:bc:d5:90:c1:39:92:f5:56:e5:54:42: f5:d5:58:1d:2a:84:a8:da:d5:48:20:a9:17:ec:ab: c4:00:52:51:b0:fa:27:ec:20:da:f1:ff:b8:43:c4: 7c:02:52:9d:ce:2c:0e:f8:78:7b:d7:20:b1:de:22: 2b:43:49:19:d4:7f:16:80:37:48:11:43:99:cc:7a: 4d:8b:07:1a:c7:98:29:9d:54:5b:5b:6f:82:76:22: e8:85:dd:6f:05:40:2b:24:11:5c:ef:28:55:a2:9a: b8:3c:72:36:07:eb:e2:e7:da:88:33:27:6d:61:46: 50:5f:f7:17:8a:5a:2e:46:53:d0:20:3c:6a:5b:0c: 90:32:dd:2c:47:ff:d4:26:4a:ff:bc:2a:d5:2f:9e: 87:2a:b0:03:11:78:44:62:eb:ac:04:a1:9a:30:63: 30:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8E:86:6B:23:92:6F:67:9D:91:91:7A:05:16:E5:84:A6:F5:66:2A X509v3 Authority Key Identifier: keyid:BB:57:68:35:ED:8A:46:E3:0F:B8:DD:F5:66:AB:C4:77:65:53:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/BB576835ED8A46E30FB8DDF566ABC47765537EB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB576835ED8A46E30FB8DDF566ABC47765537EB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/323430323a656538303a643a3a2f34382d3438203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ee80:d::/48 Signature Algorithm: sha256WithRSAEncryption 68:f5:31:95:30:df:8f:81:71:1c:8f:3e:4e:77:5a:51:0e:bc: 97:3a:45:94:4e:3e:01:8d:6b:67:52:6e:ed:4d:cf:50:f9:3e: 63:e9:66:0f:5b:4c:9c:37:24:c7:ad:a7:39:88:63:77:19:35: 60:26:79:2a:92:2c:23:02:93:98:e4:ac:55:67:ff:34:09:87: 76:8d:f2:d5:0b:27:e1:e4:4c:43:82:25:d6:9a:20:b7:1a:34: f6:1d:95:00:d2:84:16:22:7a:7b:01:a3:d8:7a:b7:13:f7:7c: b2:ad:1c:7a:b1:1d:e1:8c:2e:de:b8:7c:59:57:97:12:08:e9: d3:12:8a:d0:64:0f:e0:b8:82:b8:27:0d:eb:20:ca:60:38:53: 60:e9:44:e4:6c:ed:03:6e:67:a5:37:ac:0b:f7:34:e1:32:5f: 06:6b:47:6c:68:57:8c:e8:b1:e3:ca:16:c2:5d:1e:95:1c:c8: c4:83:bd:5b:3b:54:7c:41:3b:11:73:d4:ee:64:8e:af:e7:90: b5:c0:f9:70:92:e6:ea:ac:a0:c7:37:af:4e:09:6e:ce:36:88: dd:92:23:c1:3e:74:dc:60:62:85:a0:8b:83:29:74:ed:3d:69: d7:0f:ff:63:79:84:44:77:bd:fa:4f:53:cc:e5:9e:3c:c3:81: 31:95:3b:18 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZ5UpC6w2AkODfxzmPaq5pO3NI8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1NzY4MzVFRDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2 NTUzN0VCNjAeFw0yNjA1MDMwMjUxNThaFw0yNzA1MDIwMjU2NThaMDMxMTAvBgNV BAMTKDAyOEU4NjZCMjM5MjZGNjc5RDkxOTE3QTA1MTZFNTg0QTZGNTY2MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0q2rzkJDk5maAVDCuArtrLagm ktxKadA4awquVlSAELW4krJPLoG6DSfkfTMh6eNtRlRaCPeywWUxqt21g1Lh8c4E 80DcNRR7kOPB9zCWeDZgnqTRJNab0/VIYTq81ZDBOZL1VuVUQvXVWB0qhKja1Ugg qRfsq8QAUlGw+ifsINrx/7hDxHwCUp3OLA74eHvXILHeIitDSRnUfxaAN0gRQ5nM ek2LBxrHmCmdVFtbb4J2IuiF3W8FQCskEVzvKFWimrg8cjYH6+Ln2ogzJ21hRlBf 9xeKWi5GU9AgPGpbDJAy3SxH/9QmSv+8KtUvnocqsAMReERi66wEoZowYzCjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUAo6GayOSb2edkZF6BRblhKb1ZiowHwYDVR0j BBgwFoAUu1doNe2KRuMPuN31ZqvEd2VTfrYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY2MTdkOGMtZDE1NC00NjFlLWJjY2EtYjY2ZDI2N2NmZmM3LzAvQkI1NzY4MzVF RDhBNDZFMzBGQjhEREY1NjZBQkM0Nzc2NTUzN0VCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjU3NjgzNUVEOEE0NkUzMEZCOERERjU2NkFCQzQ3NzY1NTM3 RUI2LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzMyMzQzMDMyM2E2NTY1MzgzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzIzNjM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAu6AAA0w DQYJKoZIhvcNAQELBQADggEBAGj1MZUw34+BcRyPPk53WlEOvJc6RZROPgGNa2dS bu1Nz1D5PmPpZg9bTJw3JMetpzmIY3cZNWAmeSqSLCMCk5jkrFVn/zQJh3aN8tUL J+HkTEOCJdaaILcaNPYdlQDShBYiensBo9h6txP3fLKtHHqxHeGMLt64fFlXlxII 6dMSitBkD+C4grgnDesgymA4U2DpRORs7QNuZ6U3rAv3NOEyXwZrR2xoV4zosePK FsJdHpUcyMSDvVs7VHxBOxFz1O5kjq/nkLXA+XCS5uqsoMc3r04Jbs42iN2SI8E+ dNxgYoWgi4MpdO09adcP/2N5hER3vfpPU8zlnjzDgTGVOxg= -----END CERTIFICATE-----Generated at Wed May 13 05:55:21 2026 by rpki-client