$ rpki-client -vvf rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa File: 323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa (raw, json) Hash identifier: ofLAcZqnlKOmXqsmeIfCr72lWZy9ZeTWZkof0/9RVb8= Subject key identifier: 83:35:D3:23:10:EE:22:43:A9:2C:9C:6F:C2:35:13:04:75:4B:B8:CE Certificate issuer: /CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Certificate serial: 47CD39A507CF239093B093504D974445F709600E Authority key identifier: B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa Signing time: Sun 03 May 2026 03:02:37 +0000 ROA not before: Sun 03 May 2026 02:57:37 +0000 ROA not after: Sun 02 May 2027 03:02:37 +0000 asID: 58396 IP address blocks: 2400:9c80:88::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:cd:39:a5:07:cf:23:90:93:b0:93:50:4d:97:44:45:f7:09:60:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B87AC5C104D51A16D1FED6AABA40D5F336C76E32 Validity Not Before: May 3 02:57:37 2026 GMT Not After : May 2 03:02:37 2027 GMT Subject: CN=8335D32310EE2243A92C9C6FC2351304754BB8CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:09:aa:c3:ad:be:dc:d4:02:87:ed:48:df:35: 1f:6f:61:c2:69:aa:f2:0e:83:78:60:35:b6:c2:e9: f9:56:81:03:aa:ec:8b:e1:a4:ab:79:a5:8a:1d:98: 37:3c:52:d6:c6:30:0c:4f:52:eb:d5:13:f8:5c:5f: 37:f9:d9:f4:cb:c6:ec:4f:bf:87:4d:69:40:de:1a: b3:c7:6d:26:2c:4e:8e:d2:86:84:f9:00:86:37:bd: 29:33:dd:8a:c6:db:58:b1:ed:f0:81:c5:29:80:6c: 90:0f:72:43:7f:4c:15:1a:30:83:96:3a:07:d3:28: 6b:51:bf:64:fb:90:f3:71:ca:6a:fe:10:3d:33:0f: ee:f0:10:b4:1a:7a:1b:9d:02:f3:91:c8:29:f9:8b: fa:76:f1:b1:4d:71:15:38:bb:5d:14:f0:3f:d0:b6: 53:0d:39:87:37:a0:7f:77:cf:07:2f:c9:dc:ee:5f: 7e:3f:41:3d:19:6e:92:79:22:57:e4:cf:11:3b:a3: a0:07:3d:b5:b3:77:dc:ce:a1:99:b7:cd:23:0c:46: b8:e5:45:ea:5b:f6:03:a8:5c:09:a1:3b:d4:0c:5b: 68:5d:15:35:27:ed:a2:d0:ce:bb:4a:01:38:86:3c: e5:17:da:61:13:7e:83:a8:19:9a:54:a2:17:1d:e2: cd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:35:D3:23:10:EE:22:43:A9:2C:9C:6F:C2:35:13:04:75:4B:B8:CE X509v3 Authority Key Identifier: keyid:B8:7A:C5:C1:04:D5:1A:16:D1:FE:D6:AA:BA:40:D5:F3:36:C7:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B87AC5C104D51A16D1FED6AABA40D5F336C76E32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:88::/48 Signature Algorithm: sha256WithRSAEncryption 32:c3:ff:2c:e4:f8:c9:f3:ba:3b:9e:3f:39:2f:9b:25:36:65: 4f:01:20:b8:9a:c1:d9:84:16:da:20:5e:33:1f:c8:33:16:7d: 64:17:d0:c8:5b:d9:03:2c:91:89:41:7c:73:0d:17:1a:55:b9: 4a:78:86:6f:d3:bc:92:18:a6:8c:63:d6:0d:7f:7b:42:50:8b: ce:87:61:98:af:54:1e:c8:b1:a5:be:26:66:d2:02:bb:52:c1: 35:28:af:73:1f:f2:13:b6:44:ea:63:9c:e3:97:1f:a5:29:e4: 2d:08:f5:9d:64:90:49:ca:0c:3f:63:ff:72:25:c1:e5:56:f4: 5c:98:9d:9e:cc:39:e6:f2:8b:45:01:79:2b:1b:2c:3c:44:74: 0f:37:25:3e:cd:e2:76:08:5f:3e:83:e9:9a:06:bd:f8:a0:65: 2f:46:36:33:5c:26:69:aa:97:db:3c:78:3c:03:26:ca:e4:d1: cf:a8:b5:8f:d0:0e:0f:3a:02:fd:17:2a:0c:e1:e6:b7:00:85: c4:ec:73:ba:88:52:ac:ff:26:55:f7:0f:44:65:84:33:48:80: 08:42:6b:22:48:b4:85:be:6f:0c:04:e0:ac:9f:be:19:0d:fa: 56:40:cf:26:d6:e8:ab:a7:27:e4:f1:b8:2f:be:75:76:83:73: c4:c5:57:a7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUR805pQfPI5CTsJNQTZdERfcJYA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3QUM1QzEwNEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMz NkM3NkUzMjAeFw0yNjA1MDMwMjU3MzdaFw0yNzA1MDIwMzAyMzdaMDMxMTAvBgNV BAMTKDgzMzVEMzIzMTBFRTIyNDNBOTJDOUM2RkMyMzUxMzA0NzU0QkI4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFCarDrb7c1AKH7UjfNR9vYcJp qvIOg3hgNbbC6flWgQOq7IvhpKt5pYodmDc8UtbGMAxPUuvVE/hcXzf52fTLxuxP v4dNaUDeGrPHbSYsTo7ShoT5AIY3vSkz3YrG21ix7fCBxSmAbJAPckN/TBUaMIOW OgfTKGtRv2T7kPNxymr+ED0zD+7wELQaehudAvORyCn5i/p28bFNcRU4u10U8D/Q tlMNOYc3oH93zwcvydzuX34/QT0ZbpJ5IlfkzxE7o6AHPbWzd9zOoZm3zSMMRrjl Repb9gOoXAmhO9QMW2hdFTUn7aLQzrtKATiGPOUX2mETfoOoGZpUohcd4s0FAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUgzXTIxDuIkOpLJxvwjUTBHVLuM4wHwYDVR0j BBgwFoAUuHrFwQTVGhbR/taqukDV8zbHbjIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmQ1YzQ3MTUtMjgyZS00NTdmLWI4OWUtMDQxYmY5MTEwYWY4LzAvQjg3QUM1QzEw NEQ1MUExNkQxRkVENkFBQkE0MEQ1RjMzNkM3NkUzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CODdBQzVDMTA0RDUxQTE2RDFGRUQ2QUFCQTQwRDVGMzM2Qzc2 RTMyLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzgzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAJyAAIgw DQYJKoZIhvcNAQELBQADggEBADLD/yzk+MnzujuePzkvmyU2ZU8BILiawdmEFtog XjMfyDMWfWQX0Mhb2QMskYlBfHMNFxpVuUp4hm/TvJIYpoxj1g1/e0JQi86HYZiv VB7IsaW+JmbSArtSwTUor3Mf8hO2ROpjnOOXH6Up5C0I9Z1kkEnKDD9j/3IlweVW 9FyYnZ7MOebyi0UBeSsbLDxEdA83JT7N4nYIXz6D6ZoGvfigZS9GNjNcJmmql9s8 eDwDJsrk0c+otY/QDg86Av0XKgzh5rcAhcTsc7qIUqz/JlX3D0RlhDNIgAhCayJI tIW+bwwE4KyfvhkN+lZAzybW6KunJ+TxuC++dXaDc8TFV6c= -----END CERTIFICATE-----Generated at Wed May 13 13:25:19 2026 by rpki-client