$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa File: 323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa (raw, json) Hash identifier: sbLJ41IDFdN5IJsomNQRipWLxXGCHRyqteaWEwRsz7Q= Subject key identifier: 91:E6:67:53:85:D8:6F:F2:C6:F9:A0:FC:06:EE:BC:C0:5A:CC:DA:16 Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 2122387E494D5B632B423C96E37B4641A1E72C64 Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa Signing time: Sun 03 May 2026 03:02:34 +0000 ROA not before: Sun 03 May 2026 02:57:34 +0000 ROA not after: Sun 02 May 2027 03:02:34 +0000 asID: 58396 IP address blocks: 2400:9c80:200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:22:38:7e:49:4d:5b:63:2b:42:3c:96:e3:7b:46:41:a1:e7:2c:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:34 2026 GMT Not After : May 2 03:02:34 2027 GMT Subject: CN=91E6675385D86FF2C6F9A0FC06EEBCC05ACCDA16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:18:1d:a5:75:eb:41:54:c3:85:6d:4f:0f:40: d1:f5:d2:35:f7:2b:4b:fd:66:cb:33:54:d2:12:95: b1:04:6e:ae:8b:93:e6:9d:39:10:d8:cc:9b:84:3c: e9:01:4b:22:01:ce:21:ce:a2:ae:87:16:ca:e6:dc: 8d:6a:ff:3d:5d:c4:8f:00:85:0d:06:36:f6:2c:e4: fd:86:c8:6e:87:e1:13:63:3e:19:bc:bd:07:73:81: ad:62:ab:f0:58:fb:c0:ce:03:37:af:f1:d4:39:a1: 47:e7:00:ca:7e:7f:98:62:7c:d7:2c:70:cb:2f:4b: fc:49:29:09:1e:ce:5f:bd:06:b2:ab:92:93:e1:e3: 61:02:41:1d:45:d5:ab:85:11:09:45:fc:90:2d:32: 03:d4:e9:87:97:c8:82:c4:e1:d8:c6:bc:df:e9:9f: ed:7a:d0:92:fc:bf:a4:33:43:52:99:29:e1:9b:35: 88:15:46:90:02:b4:1d:36:13:ff:8d:75:9f:d6:bc: 5a:4b:64:7f:38:07:04:49:09:2d:cb:a2:6a:d4:fe: 59:c3:72:25:ff:1d:71:ba:c0:99:c6:79:a9:79:89: 68:52:12:18:c4:de:4a:7d:e3:94:a1:43:aa:b0:67: 43:bc:c4:43:86:fd:9e:63:3f:dd:d7:2e:bb:98:b5: e1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E6:67:53:85:D8:6F:F2:C6:F9:A0:FC:06:EE:BC:C0:5A:CC:DA:16 X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:200::/48 Signature Algorithm: sha256WithRSAEncryption 57:ab:83:8e:48:53:3e:8b:fd:c7:85:e8:cf:a8:fb:95:af:b8: 42:2c:d0:2d:64:d3:1a:c2:9f:22:d1:13:38:86:f0:7d:99:20: 89:0e:29:a8:ea:15:f0:94:11:57:24:5d:91:2b:43:3f:79:e0: 24:54:54:c9:16:d4:f0:b6:29:24:ed:d2:2a:86:3e:3d:35:19: af:17:e7:55:92:0a:a9:93:fa:f5:a6:ae:ba:10:10:1d:c4:6c: ba:27:64:31:44:bc:84:ad:e9:d9:42:60:74:5b:72:82:ef:ac: 0b:54:84:c2:1d:b8:94:9c:5f:5c:76:9c:ef:9c:44:dd:97:d8: 27:ae:8e:70:3a:2d:f4:75:16:74:e1:f8:9f:73:74:59:44:26: 94:c9:f8:88:e6:85:82:c1:2b:f4:d5:02:b6:44:93:0b:e9:d4: 21:10:6a:93:04:96:d2:02:5a:3d:09:92:7c:10:20:df:8b:b9: 2b:25:47:22:67:c2:26:5d:a0:bb:c7:62:79:14:b7:ae:c4:7b: 45:11:e4:51:43:fd:ba:25:fe:f6:e7:05:f3:1f:b3:6f:f3:0a: d0:c6:e8:c3:b6:92:0b:b1:74:ed:e5:43:ec:fd:93:42:6b:7e: 04:4f:cb:6e:cb:a7:65:82:90:e1:44:76:ab:f4:8d:9d:32:6c: 2b:cc:71:25 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUISI4fklNW2MrQjyW43tGQaHnLGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzRaFw0yNzA1MDIwMzAyMzRaMDMxMTAvBgNV BAMTKDkxRTY2NzUzODVEODZGRjJDNkY5QTBGQzA2RUVCQ0MwNUFDQ0RBMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmGB2ldetBVMOFbU8PQNH10jX3 K0v9ZsszVNISlbEEbq6Lk+adORDYzJuEPOkBSyIBziHOoq6HFsrm3I1q/z1dxI8A hQ0GNvYs5P2GyG6H4RNjPhm8vQdzga1iq/BY+8DOAzev8dQ5oUfnAMp+f5hifNcs cMsvS/xJKQkezl+9BrKrkpPh42ECQR1F1auFEQlF/JAtMgPU6YeXyILE4djGvN/p n+160JL8v6QzQ1KZKeGbNYgVRpACtB02E/+NdZ/WvFpLZH84BwRJCS3LomrU/lnD ciX/HXG6wJnGeal5iWhSEhjE3kp945ShQ6qwZ0O8xEOG/Z5jP93XLruYteGvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUkeZnU4XYb/LG+aD8Bu68wFrM2hYwHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAnIAC ADANBgkqhkiG9w0BAQsFAAOCAQEAV6uDjkhTPov9x4Xoz6j7la+4QizQLWTTGsKf ItETOIbwfZkgiQ4pqOoV8JQRVyRdkStDP3ngJFRUyRbU8LYpJO3SKoY+PTUZrxfn VZIKqZP69aauuhAQHcRsuidkMUS8hK3p2UJgdFtygu+sC1SEwh24lJxfXHac75xE 3ZfYJ66OcDot9HUWdOH4n3N0WUQmlMn4iOaFgsEr9NUCtkSTC+nUIRBqkwSW0gJa PQmSfBAg34u5KyVHImfCJl2gu8dieRS3rsR7RRHkUUP9uiX+9ucF8x+zb/MK0Mbo w7aSC7F07eVD7P2TQmt+BE/LbsunZYKQ4UR2q/SNnTJsK8xxJQ== -----END CERTIFICATE-----Generated at Wed May 13 14:25:01 2026 by rpki-client