$ rpki-client -vvf rpki-rsync.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/323430323a613630303a3a2f33322d3332203d3e203137393936.roa File: 323430323a613630303a3a2f33322d3332203d3e203137393936.roa (raw, json) Hash identifier: 2gHk2oUIT4Gk+e3++M+jW/aDrug2C3STNX8iSp7wW4c= Subject key identifier: E4:B1:F9:0E:74:CE:4C:DD:47:4E:8D:5B:9C:93:61:7D:FC:04:02:08 Certificate issuer: /CN=BBEB72278FFF2BE285B07868FEF5FEAA0354E872 Certificate serial: 03854F2CA519E3F82F62BB9C4221D7E5C0FB3A8C Authority key identifier: BB:EB:72:27:8F:FF:2B:E2:85:B0:78:68:FE:F5:FE:AA:03:54:E8:72 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BBEB72278FFF2BE285B07868FEF5FEAA0354E872.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/323430323a613630303a3a2f33322d3332203d3e203137393936.roa Signing time: Sun 03 May 2026 03:04:43 +0000 ROA not before: Sun 03 May 2026 02:59:43 +0000 ROA not after: Sun 02 May 2027 03:04:43 +0000 asID: 17996 IP address blocks: 2402:a600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/BBEB72278FFF2BE285B07868FEF5FEAA0354E872.crl rsync://rpki-rsync.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/BBEB72278FFF2BE285B07868FEF5FEAA0354E872.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BBEB72278FFF2BE285B07868FEF5FEAA0354E872.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:85:4f:2c:a5:19:e3:f8:2f:62:bb:9c:42:21:d7:e5:c0:fb:3a:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBEB72278FFF2BE285B07868FEF5FEAA0354E872 Validity Not Before: May 3 02:59:43 2026 GMT Not After : May 2 03:04:43 2027 GMT Subject: CN=E4B1F90E74CE4CDD474E8D5B9C93617DFC040208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:ca:f2:d8:a9:c7:d2:18:27:39:b8:0e:e1: 72:d5:b8:79:bf:3e:92:b5:1c:e1:67:af:28:34:5c: 8c:a0:24:73:c8:f1:66:46:4a:1f:60:6b:59:41:e9: 4f:aa:8f:24:40:3d:b2:eb:4b:03:2c:8b:ce:62:65: 68:2f:b3:5c:07:29:47:bb:85:1f:a4:01:ab:7a:f3: 14:7d:9f:0a:b6:d0:7d:cf:30:47:e6:cd:39:aa:dd: 89:50:14:f5:23:ab:43:a8:4f:c1:a7:90:96:92:d5: 67:7e:42:66:22:9b:cc:a9:91:bd:22:04:85:c7:97: a5:e5:4d:cb:11:6f:2a:33:1d:bf:b6:04:14:08:f7: ec:d8:d6:f2:ff:e2:f4:c0:3a:b7:26:61:5b:c6:43: a3:4e:37:98:40:cd:ee:ad:11:35:0c:16:b8:4b:9e: 2e:2f:9b:ff:fd:98:58:3e:40:78:88:50:11:72:e2: 06:b3:74:86:7c:99:82:27:2f:4a:47:d0:84:29:07: d3:61:b5:ef:21:84:a1:8f:1e:d1:aa:9f:dd:7e:fa: 51:ad:4b:76:e8:0c:f2:c6:98:70:88:81:e2:05:f7: 74:c6:99:81:5f:e7:af:a4:b0:c9:3d:61:13:43:4c: 99:7a:29:75:59:3b:b6:63:b8:5d:cf:8c:43:49:c2: 74:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B1:F9:0E:74:CE:4C:DD:47:4E:8D:5B:9C:93:61:7D:FC:04:02:08 X509v3 Authority Key Identifier: keyid:BB:EB:72:27:8F:FF:2B:E2:85:B0:78:68:FE:F5:FE:AA:03:54:E8:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/BBEB72278FFF2BE285B07868FEF5FEAA0354E872.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BBEB72278FFF2BE285B07868FEF5FEAA0354E872.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/323430323a613630303a3a2f33322d3332203d3e203137393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a600::/32 Signature Algorithm: sha256WithRSAEncryption 05:4f:02:a8:9f:94:94:17:04:1d:b7:d5:e1:d7:d1:9b:55:46: 44:93:5c:b7:52:30:37:5d:bf:56:24:93:2f:24:63:06:20:6a: 9e:68:c8:17:01:c7:3f:8d:a9:df:02:c5:81:3d:c9:08:e1:83: 7c:4f:3d:80:24:48:6f:e8:5e:0e:e0:74:31:fe:9d:1d:00:4d: 4f:ce:50:3d:e5:c5:dd:b8:62:0d:ed:e2:5e:bd:c2:4f:38:e9: 3a:c3:57:64:69:82:70:5a:ee:9a:9c:e1:1a:43:fc:77:94:09: aa:e3:e7:57:a4:4f:30:b6:18:10:41:9a:95:04:2e:a8:a9:a1: 01:ea:ce:9a:ce:f8:ec:0a:15:6c:b6:5f:b3:48:7a:e0:77:90: bc:cd:20:d8:55:f8:0e:1e:1c:71:73:d5:b7:bd:96:af:d3:f4: 84:67:a5:0a:0e:be:3c:b3:ad:22:ac:20:7c:0b:7b:a8:5b:d4: 79:ea:6f:88:c7:50:1a:35:df:84:18:2a:2d:a9:c5:fd:49:d1: 50:c5:69:d0:ef:41:ac:6b:ce:0f:9e:2d:e3:4b:03:e0:c0:80: b1:2f:8a:9f:44:15:db:19:98:96:60:c2:0e:71:e4:0e:36:76: 60:a5:16:0a:33:32:fb:05:a3:84:1d:f7:66:37:fa:0b:50:8f: cd:3e:75:18 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUA4VPLKUZ4/gvYrucQiHX5cD7OowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkJFQjcyMjc4RkZGMkJFMjg1QjA3ODY4RkVGNUZFQUEw MzU0RTg3MjAeFw0yNjA1MDMwMjU5NDNaFw0yNzA1MDIwMzA0NDNaMDMxMTAvBgNV BAMTKEU0QjFGOTBFNzRDRTRDREQ0NzRFOEQ1QjlDOTM2MTdERkMwNDAyMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDFcry2KnH0hgnObgO4XLVuHm/ PpK1HOFnryg0XIygJHPI8WZGSh9ga1lB6U+qjyRAPbLrSwMsi85iZWgvs1wHKUe7 hR+kAat68xR9nwq20H3PMEfmzTmq3YlQFPUjq0OoT8GnkJaS1Wd+QmYim8ypkb0i BIXHl6XlTcsRbyozHb+2BBQI9+zY1vL/4vTAOrcmYVvGQ6NON5hAze6tETUMFrhL ni4vm//9mFg+QHiIUBFy4gazdIZ8mYInL0pH0IQpB9Nhte8hhKGPHtGqn91++lGt S3boDPLGmHCIgeIF93TGmYFf56+ksMk9YRNDTJl6KXVZO7ZjuF3PjENJwnSfAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU5LH5DnTOTN1HTo1bnJNhffwEAggwHwYDVR0j BBgwFoAUu+tyJ4//K+KFsHho/vX+qgNU6HIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzNkMmYyZjgtMzUxMi00M2U1LWJlMTctYjExYjU4Zjk2MDgzLzAvQkJFQjcyMjc4 RkZGMkJFMjg1QjA3ODY4RkVGNUZFQUEwMzU0RTg3Mi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQkVCNzIyNzhGRkYyQkUyODVCMDc4NjhGRUY1RkVBQTAzNTRF ODcyLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzZDJmMmY4LTM1MTItNDNlNS1i ZTE3LWIxMWI1OGY5NjA4My8wLzMyMzQzMDMyM2E2MTM2MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzczOTM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqYAMA0GCSqGSIb3 DQEBCwUAA4IBAQAFTwKon5SUFwQdt9Xh19GbVUZEk1y3UjA3Xb9WJJMvJGMGIGqe aMgXAcc/janfAsWBPckI4YN8Tz2AJEhv6F4O4HQx/p0dAE1PzlA95cXduGIN7eJe vcJPOOk6w1dkaYJwWu6anOEaQ/x3lAmq4+dXpE8wthgQQZqVBC6oqaEB6s6azvjs ChVstl+zSHrgd5C8zSDYVfgOHhxxc9W3vZav0/SEZ6UKDr48s60irCB8C3uoW9R5 6m+Ix1AaNd+EGCotqcX9SdFQxWnQ70Gsa84Pni3jSwPgwICxL4qfRBXbGZiWYMIO ceQONnZgpRYKMzL7BaOEHfdmN/oLUI/NPnUY -----END CERTIFICATE-----Generated at Wed May 13 11:46:04 2026 by rpki-client