$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a333a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a333a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: wPZVLrH//aXJLfQ84ftaIngI3Qi0dpoJEo8RZBRr33Y= Subject key identifier: 0A:EB:E7:81:F6:A5:78:E9:EA:59:68:F4:C0:5A:65:AF:08:C0:4E:C0 Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 732DDCA4788F586AA27FF1FC7E2ABC61E0997D93 Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a333a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:09 +0000 ROA not before: Sun 03 May 2026 02:46:09 +0000 ROA not after: Sun 02 May 2027 02:51:09 +0000 asID: 136079 IP address blocks: 2405:2cc0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2d:dc:a4:78:8f:58:6a:a2:7f:f1:fc:7e:2a:bc:61:e0:99:7d:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:09 2026 GMT Not After : May 2 02:51:09 2027 GMT Subject: CN=0AEBE781F6A578E9EA5968F4C05A65AF08C04EC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d9:c7:35:5c:df:7c:7b:18:fb:66:62:c7:13: 95:17:65:48:a2:44:bf:31:65:67:16:e4:ca:39:a9: 8c:cc:74:11:28:bc:5d:0d:ad:c0:d3:86:49:ed:20: 5d:02:e3:cd:d1:35:56:5d:f5:44:24:27:6b:64:3a: 81:c2:b6:26:44:52:55:02:c8:9c:9e:96:5f:1b:ab: 18:65:cf:c4:72:fc:b0:81:f1:46:0d:49:be:25:5c: 63:e4:f6:75:57:c1:04:eb:88:74:70:9b:29:03:0c: b6:64:59:94:42:91:11:de:10:fd:7d:21:92:bb:37: 39:7b:8e:4a:c3:4f:dc:c6:81:3d:b1:ff:f0:3b:6a: 1e:2b:a6:a0:37:14:6e:8d:f4:60:15:4a:34:95:06: 04:3b:e3:c9:a7:79:f3:f9:74:3f:cd:5e:e0:05:cd: ac:4f:9f:8e:0e:e8:3a:4f:77:8c:86:d3:9e:f9:e6: f2:60:46:80:e0:59:e9:de:da:b5:d2:93:9b:21:10: 7e:6d:21:02:7e:1a:8e:de:f0:1a:73:c5:5d:50:f3: 24:cb:2b:fd:33:97:e2:bc:2c:08:82:b9:af:6f:07: 68:cd:e1:a7:31:dc:f4:97:d2:02:d2:6e:d2:18:39: 09:75:43:02:9a:88:55:a7:dc:12:32:3f:a4:ce:7b: 3d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:EB:E7:81:F6:A5:78:E9:EA:59:68:F4:C0:5A:65:AF:08:C0:4E:C0 X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a333a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:3::/48 Signature Algorithm: sha256WithRSAEncryption 19:49:24:c5:d6:d2:08:b9:81:5a:4c:b9:d2:f5:5f:ed:54:94: d4:85:79:a6:eb:9d:25:4d:ed:59:e9:f7:a9:4b:7c:7a:0f:d3: f4:a5:73:a0:60:84:8a:56:e7:87:ea:ba:58:ae:2b:ad:29:a0: fa:c2:79:80:57:33:04:91:c4:c6:84:81:c9:6a:16:c2:69:5c: 06:78:f0:5c:68:04:24:f6:8a:6b:b8:f9:82:c2:fe:d1:48:24: 14:06:82:58:45:c3:52:23:c4:41:00:c7:ee:b2:68:53:a4:12: ab:17:a1:74:df:2e:70:87:8a:4a:73:32:d0:72:50:11:4f:b3: 3c:05:32:2b:6a:69:c1:25:36:a1:9e:8e:7b:e7:53:6c:11:30: 1f:ed:d8:70:38:14:71:2a:4a:95:a3:4e:c3:98:7a:9f:fa:22: 1b:8f:bd:17:8c:41:41:ca:f4:b5:67:5f:42:5e:85:a5:12:09: 46:b9:ac:8e:bf:b6:91:e0:86:32:82:3a:26:54:6f:11:f4:ce: 61:9f:53:62:80:32:7a:ad:36:1a:e2:2f:2c:cc:74:e5:05:c9: 7a:4a:c2:56:e8:bb:d3:a0:9f:cd:5a:28:e7:30:ea:00:d8:f1: 53:4a:be:72:c7:53:1e:ed:89:90:e5:10:be:b0:be:ab:50:5f: de:95:74:4b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUcy3cpHiPWGqif/H8fiq8YeCZfZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MDlaFw0yNzA1MDIwMjUxMDlaMDMxMTAvBgNV BAMTKDBBRUJFNzgxRjZBNTc4RTlFQTU5NjhGNEMwNUE2NUFGMDhDMDRFQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq2cc1XN98exj7ZmLHE5UXZUii RL8xZWcW5Mo5qYzMdBEovF0NrcDThkntIF0C483RNVZd9UQkJ2tkOoHCtiZEUlUC yJyell8bqxhlz8Ry/LCB8UYNSb4lXGPk9nVXwQTriHRwmykDDLZkWZRCkRHeEP19 IZK7Nzl7jkrDT9zGgT2x//A7ah4rpqA3FG6N9GAVSjSVBgQ748mnefP5dD/NXuAF zaxPn44O6DpPd4yG05755vJgRoDgWene2rXSk5shEH5tIQJ+Go7e8BpzxV1Q8yTL K/0zl+K8LAiCua9vB2jN4acx3PSX0gLSbtIYOQl1QwKaiFWn3BIyP6TOez1NAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCuvngfaleOnqWWj0wFplrwjATsAwHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAMw DQYJKoZIhvcNAQELBQADggEBABlJJMXW0gi5gVpMudL1X+1UlNSFeabrnSVN7Vnp 96lLfHoP0/Slc6BghIpW54fquliuK60poPrCeYBXMwSRxMaEgclqFsJpXAZ48Fxo BCT2imu4+YLC/tFIJBQGglhFw1IjxEEAx+6yaFOkEqsXoXTfLnCHikpzMtByUBFP szwFMitqacElNqGejnvnU2wRMB/t2HA4FHEqSpWjTsOYep/6IhuPvReMQUHK9LVn X0JehaUSCUa5rI6/tpHghjKCOiZUbxH0zmGfU2KAMnqtNhriLyzMdOUFyXpKwlbo u9Ogn81aKOcw6gDY8VNKvnLHUx7tiZDlEL6wvqtQX96VdEs= -----END CERTIFICATE-----Generated at Wed May 13 13:08:01 2026 by rpki-client