$ rpki-client -vvf rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: 2nlIoQG3hoyOGXVcA94jjH5wFjmakuKKKtaTFgTjeZw= Subject key identifier: AF:79:1F:AD:CB:E4:D8:D7:C5:D3:FF:6A:8B:D0:8B:D8:92:9A:B2:79 Certificate issuer: /CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Certificate serial: 7316E6D5B5A881BA10EAA60B84C7AC2DB5CC4FA1 Authority key identifier: 10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa Signing time: Sun 03 May 2026 02:15:57 +0000 ROA not before: Sun 03 May 2026 02:10:57 +0000 ROA not after: Sun 02 May 2027 02:15:57 +0000 asID: 38150 IP address blocks: 2402:f080:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:16:e6:d5:b5:a8:81:ba:10:ea:a6:0b:84:c7:ac:2d:b5:cc:4f:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=102CB228255AC59C06F56BF9291AABDD49CD72E1 Validity Not Before: May 3 02:10:57 2026 GMT Not After : May 2 02:15:57 2027 GMT Subject: CN=AF791FADCBE4D8D7C5D3FF6A8BD08BD8929AB279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e3:f4:b6:fa:12:6d:3e:36:36:d2:81:68:0b: 86:bf:ea:ea:47:7a:48:e4:64:67:07:e4:b8:ce:83: 68:e4:82:a9:2d:38:fd:3a:f3:86:59:f0:f2:44:4e: c0:d0:80:d4:72:ac:cd:5d:b6:c9:a4:78:82:78:33: 03:77:0b:cb:fc:81:e7:51:84:a1:70:28:86:39:29: ab:5a:c6:d9:0c:7b:40:d3:b3:5e:b9:91:46:e9:c4: e5:93:9f:67:eb:d2:40:80:32:de:36:3e:ed:64:d5: 7e:ef:20:3e:a5:47:6a:54:34:ec:d3:c4:e2:98:41: c2:ef:a8:50:da:58:d1:d5:dd:83:af:7c:50:ea:97: dc:6b:8f:9e:e7:ee:20:63:92:31:c4:ae:67:62:c5: c3:66:2b:f9:4b:a3:e4:0b:38:c2:c1:74:fd:57:cc: 41:a0:7a:01:3b:bf:5f:52:2d:66:62:46:5e:ed:9e: d6:96:05:ec:bc:69:e4:76:9a:92:8b:5f:f5:f0:59: 12:92:5b:93:26:46:f7:82:3d:83:7e:8f:6a:5f:f7: b1:6f:d2:24:d5:af:95:f8:6a:df:cf:07:b5:e7:07: de:70:59:43:b5:b1:99:94:d4:c9:6b:eb:01:cd:15: b8:6b:ed:09:bf:2d:c2:fb:9f:73:1c:2f:e6:95:f4: 67:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:79:1F:AD:CB:E4:D8:D7:C5:D3:FF:6A:8B:D0:8B:D8:92:9A:B2:79 X509v3 Authority Key Identifier: keyid:10:2C:B2:28:25:5A:C5:9C:06:F5:6B:F9:29:1A:AB:DD:49:CD:72:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/102CB228255AC59C06F56BF9291AABDD49CD72E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/102CB228255AC59C06F56BF9291AABDD49CD72E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:1::/48 Signature Algorithm: sha256WithRSAEncryption b6:f9:84:63:73:9f:90:cb:10:4f:47:08:3d:02:19:c4:0d:02: d5:e1:51:a8:75:a4:63:76:d1:36:75:02:bf:1d:11:5c:dc:d5: b9:3f:dd:e3:04:98:b6:92:75:9d:30:0c:6d:14:8e:06:eb:55: 6a:71:3f:94:99:5a:68:36:5b:b7:47:6b:b4:f1:89:46:d8:60: 3a:12:1b:2a:70:a4:e3:7c:ca:43:dc:95:94:1a:09:06:15:84: 75:2b:ba:8e:fe:1c:63:31:9d:9c:81:71:70:d3:c9:45:2f:76: 38:e8:73:0d:05:22:84:34:64:c9:43:74:a9:f0:1d:8b:28:04: 68:c5:1e:15:7a:c3:dc:ec:b4:61:8b:b5:4d:43:ab:36:d9:bf: 8f:ce:8f:3f:10:13:d3:09:89:fa:ca:00:a0:53:05:e3:1e:e2: 9a:ac:6e:5c:d0:64:dc:19:62:a0:b1:e3:1a:1c:cd:d5:45:b3: e3:b7:4d:4b:e6:81:77:25:90:7a:5d:13:2a:a0:71:9c:b8:18: 6d:c9:cb:30:ce:3c:34:81:f5:ce:3b:83:19:83:78:86:08:7e: 97:0f:ce:a3:53:db:b4:2a:ad:cf:bf:97:e1:b5:ae:51:3b:f0: 7e:43:d2:a4:33:33:62:b6:72:0c:b4:12:d6:0b:b9:22:27:8a: 4a:76:f7:b2 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcxbm1bWogboQ6qYLhMesLbXMT6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTAyQ0IyMjgyNTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0 OUNENzJFMTAeFw0yNjA1MDMwMjEwNTdaFw0yNzA1MDIwMjE1NTdaMDMxMTAvBgNV BAMTKEFGNzkxRkFEQ0JFNEQ4RDdDNUQzRkY2QThCRDA4QkQ4OTI5QUIyNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD4/S2+hJtPjY20oFoC4a/6upH ekjkZGcH5LjOg2jkgqktOP0684ZZ8PJETsDQgNRyrM1dtsmkeIJ4MwN3C8v8gedR hKFwKIY5KataxtkMe0DTs165kUbpxOWTn2fr0kCAMt42Pu1k1X7vID6lR2pUNOzT xOKYQcLvqFDaWNHV3YOvfFDql9xrj57n7iBjkjHErmdixcNmK/lLo+QLOMLBdP1X zEGgegE7v19SLWZiRl7tntaWBey8aeR2mpKLX/XwWRKSW5MmRveCPYN+j2pf97Fv 0iTVr5X4at/PB7XnB95wWUO1sZmU1Mlr6wHNFbhr7Qm/LcL7n3McL+aV9GflAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUr3kfrcvk2NfF0/9qi9CL2JKasnkwHwYDVR0j BBgwFoAUECyyKCVaxZwG9Wv5KRqr3UnNcuEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTdlNjViNjctOTA1Yy00MDNjLThjNzktMjMxNTY1OTY2OGFhLzAvMTAyQ0IyMjgy NTVBQzU5QzA2RjU2QkY5MjkxQUFCREQ0OUNENzJFMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xMDJDQjIyODI1NUFDNTlDMDZGNTZCRjkyOTFBQUJERDQ5Q0Q3 MkUxLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAABMA0G CSqGSIb3DQEBCwUAA4IBAQC2+YRjc5+QyxBPRwg9AhnEDQLV4VGodaRjdtE2dQK/ HRFc3NW5P93jBJi2knWdMAxtFI4G61VqcT+UmVpoNlu3R2u08YlG2GA6EhsqcKTj fMpD3JWUGgkGFYR1K7qO/hxjMZ2cgXFw08lFL3Y46HMNBSKENGTJQ3Sp8B2LKARo xR4VesPc7LRhi7VNQ6s22b+Pzo8/EBPTCYn6ygCgUwXjHuKarG5c0GTcGWKgseMa HM3VRbPjt01L5oF3JZB6XRMqoHGcuBhtycswzjw0gfXOO4MZg3iGCH6XD86jU9u0 Kq3Pv5fhta5RO/B+Q9KkMzNitnIMtBLWC7kiJ4pKdvey -----END CERTIFICATE-----Generated at Wed May 13 13:04:31 2026 by rpki-client