$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa File: 323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa (raw, json) Hash identifier: tjiI+qv5K6jVgsJD0bWk0XAJK3Ch0HFCGyxU2fDhIKk= Subject key identifier: 43:95:FD:4D:C9:1A:72:97:F5:8A:B0:88:AF:7F:1B:96:AC:E2:F0:D5 Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 68B8069513373C16B87FD8965C2F963A6204DED2 Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa Signing time: Sun 03 May 2026 03:02:36 +0000 ROA not before: Sun 03 May 2026 02:57:36 +0000 ROA not after: Sun 02 May 2027 03:02:36 +0000 asID: 58401 IP address blocks: 2400:9c80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:b8:06:95:13:37:3c:16:b8:7f:d8:96:5c:2f:96:3a:62:04:de:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:36 2026 GMT Not After : May 2 03:02:36 2027 GMT Subject: CN=4395FD4DC91A7297F58AB088AF7F1B96ACE2F0D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:7b:2f:5f:15:ed:de:c4:d4:5e:da:ef:a1: b6:92:78:f3:43:4c:40:a0:06:e7:40:38:4b:3c:46: 3f:20:5d:f0:ee:c2:28:5e:67:6e:2a:97:f1:02:86: 69:5f:0d:f5:2b:04:bd:2a:c4:d1:71:72:b2:26:88: 72:bb:ea:0b:25:e2:cc:80:c5:9a:95:b1:3e:96:e8: 56:c4:2f:55:1d:bb:2d:db:5e:30:9d:1a:8c:e5:70: 37:8b:69:3a:87:ac:19:0b:f2:dc:af:64:f5:52:0a: 6d:8b:06:b1:e6:f6:31:32:78:c2:06:f4:25:e7:14: 96:ce:b1:7a:86:15:85:9a:70:e7:cf:8d:5b:e8:9a: d7:e4:72:cd:0a:1b:80:7e:18:f5:8d:95:ed:0c:54: 03:65:bc:23:4b:b4:59:bc:56:89:2f:b4:07:a8:46: 47:47:a7:33:2b:43:c9:04:ee:2d:e7:47:f3:b4:53: 77:bc:0c:6f:5b:ac:ec:bf:08:e6:1b:a5:8e:e9:00: c8:76:d6:33:4f:41:b6:93:c5:1b:1c:bb:b8:ed:db: 93:df:fb:1e:84:56:63:f7:d3:7c:b9:46:29:cb:d5: a4:92:c7:f4:e2:6c:6b:21:64:a4:80:1f:7a:38:f7: ac:8d:d5:cc:a1:6c:d3:51:3f:0f:81:40:b1:63:f0: fe:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:95:FD:4D:C9:1A:72:97:F5:8A:B0:88:AF:7F:1B:96:AC:E2:F0:D5 X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:1::/48 Signature Algorithm: sha256WithRSAEncryption 67:40:46:d4:5d:89:40:fa:c6:26:56:06:a6:1e:bc:42:8a:22: e6:bf:bb:e8:3c:ff:04:55:97:39:62:a8:db:ab:4c:47:91:ff: f4:f4:03:c6:87:9f:1e:51:09:a6:b7:60:11:fa:d1:8d:39:1c: cd:06:a9:19:e3:4f:54:79:ee:65:7a:30:c5:b1:a6:d6:e0:cb: 1f:a6:29:f0:58:b8:1a:6f:c2:80:b4:f8:8f:1f:3d:f8:60:16: 33:c2:d0:fb:ae:a7:e3:73:c2:d9:ae:12:a2:c2:d3:0c:ef:35: 22:dc:43:e6:3e:22:6d:91:48:c6:5b:fd:a1:59:f1:84:2b:76: 8c:ea:dc:de:4d:61:15:9f:11:22:c1:02:1d:e3:0b:9c:5f:97: cf:6a:6d:86:c4:d6:e1:e1:90:da:15:2f:04:5e:31:73:29:4e: e2:40:43:86:5d:14:bf:26:4d:cf:af:17:47:8a:e2:de:97:c9: 92:21:02:21:a8:25:a0:6b:cc:3f:58:b0:84:ad:dd:b5:de:93: 12:a7:b1:89:44:9b:b7:02:c2:a6:66:9c:c4:18:90:d9:d1:41: 5f:82:f6:8d:ec:18:4d:80:71:d3:31:4d:c5:80:a1:5a:24:97: d5:c4:d4:1b:c0:76:dd:f9:80:b1:89:6b:fa:7a:e6:e0:19:aa: fc:ec:7c:89 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUaLgGlRM3PBa4f9iWXC+WOmIE3tIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzZaFw0yNzA1MDIwMzAyMzZaMDMxMTAvBgNV BAMTKDQzOTVGRDREQzkxQTcyOTdGNThBQjA4OEFGN0YxQjk2QUNFMkYwRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6d3svXxXt3sTUXtrvobaSePND TECgBudAOEs8Rj8gXfDuwiheZ24ql/EChmlfDfUrBL0qxNFxcrImiHK76gsl4syA xZqVsT6W6FbEL1Uduy3bXjCdGozlcDeLaTqHrBkL8tyvZPVSCm2LBrHm9jEyeMIG 9CXnFJbOsXqGFYWacOfPjVvomtfkcs0KG4B+GPWNle0MVANlvCNLtFm8VokvtAeo RkdHpzMrQ8kE7i3nR/O0U3e8DG9brOy/COYbpY7pAMh21jNPQbaTxRscu7jt25Pf +x6EVmP303y5RinL1aSSx/TibGshZKSAH3o496yN1cyhbNNRPw+BQLFj8P7dAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUQ5X9Tckacpf1irCIr38blqzi8NUwHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzQzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJACcgAABMA0G CSqGSIb3DQEBCwUAA4IBAQBnQEbUXYlA+sYmVgamHrxCiiLmv7voPP8EVZc5Yqjb q0xHkf/09APGh58eUQmmt2AR+tGNORzNBqkZ409Uee5lejDFsabW4MsfpinwWLga b8KAtPiPHz34YBYzwtD7rqfjc8LZrhKiwtMM7zUi3EPmPiJtkUjGW/2hWfGEK3aM 6tzeTWEVnxEiwQId4wucX5fPam2GxNbh4ZDaFS8EXjFzKU7iQEOGXRS/Jk3PrxdH iuLel8mSIQIhqCWga8w/WLCErd213pMSp7GJRJu3AsKmZpzEGJDZ0UFfgvaN7BhN gHHTMU3FgKFaJJfVxNQbwHbd+YCxiWv6eubgGar87HyJ -----END CERTIFICATE-----Generated at Wed May 13 13:03:42 2026 by rpki-client