$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: c8Wu4gguWuW01scw1VmhS5njYR/LD3UEGKXOdAsPYh0= Subject key identifier: B8:80:89:8B:8E:99:32:F3:3E:41:67:BA:57:0D:E5:E3:70:23:BC:9A Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 031B78CF9C620BAF1354FB84CC8062FFB254B34D Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:11 +0000 ROA not before: Sun 03 May 2026 02:46:11 +0000 ROA not after: Sun 02 May 2027 02:51:11 +0000 asID: 136079 IP address blocks: 2405:2cc0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:1b:78:cf:9c:62:0b:af:13:54:fb:84:cc:80:62:ff:b2:54:b3:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:11 2026 GMT Not After : May 2 02:51:11 2027 GMT Subject: CN=B880898B8E9932F33E4167BA570DE5E37023BC9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:2a:60:94:88:45:dd:b4:c1:ef:90:2b:02: 7d:9e:7b:45:5f:9b:fd:20:94:00:09:05:a6:df:8b: 1b:58:8f:42:88:ca:24:a3:ea:eb:4c:33:b3:dd:88: c7:3d:cb:85:61:4c:83:50:64:cf:f4:f1:32:2d:51: 33:8e:92:77:92:00:24:bd:f2:19:a5:75:3e:c5:d7: a2:31:0b:6d:2e:85:b2:c3:9c:91:01:11:0f:0f:9f: db:ed:92:79:53:be:39:3b:89:da:97:a2:f2:99:54: be:52:79:12:f6:2d:1f:fc:e9:b0:d6:7a:b2:0c:25: c8:5b:4d:8f:f1:e4:03:a8:68:c4:a2:29:bd:15:79: cf:69:77:27:c9:b9:7f:f9:8f:cb:a1:5b:5c:f0:98: 36:1b:3f:2e:7a:29:5a:c9:93:02:e0:a4:b5:5b:13: 21:20:dd:3f:5e:74:bb:98:af:cf:59:e3:a4:a6:ab: c2:f1:dc:42:22:08:10:f1:5e:9d:c4:b4:93:c3:fe: ff:01:20:99:43:12:68:da:e2:72:73:d6:64:46:38: 85:06:e6:58:bc:6e:ba:0a:55:82:25:5d:d8:44:de: e5:99:dc:78:a4:e2:6d:16:57:69:18:e3:51:f0:87: c1:6f:72:a2:e5:bd:54:10:5e:7e:74:f4:1c:62:84: 85:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:80:89:8B:8E:99:32:F3:3E:41:67:BA:57:0D:E5:E3:70:23:BC:9A X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a343a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:4::/48 Signature Algorithm: sha256WithRSAEncryption 1d:d9:3c:e3:58:fe:e2:60:ef:16:c1:2c:eb:ad:92:0c:87:a2: 62:89:0b:b0:18:e0:55:a9:9b:43:f0:55:13:90:6e:e4:75:9f: 35:15:44:b4:dd:3e:56:25:73:61:e7:18:17:6e:61:e6:24:53: 6a:10:ff:b7:17:61:5a:28:ab:fd:2d:b7:57:ea:61:ba:98:3d: fb:d3:23:9a:a9:f8:35:af:db:b6:8c:a4:6d:78:fa:b0:f9:b4: e4:69:9a:af:de:23:45:f6:88:db:43:fe:2c:9e:2f:b4:48:77: db:53:dc:32:43:82:15:a0:1f:84:be:f3:1a:4f:2a:2a:97:d6: 5b:0d:5d:e4:ad:2b:dc:30:76:a9:50:9b:82:bc:e8:47:be:90: 8a:a6:84:6c:c5:6a:4a:7f:08:20:54:36:bf:93:02:ed:89:c2: 34:0b:09:ed:a6:ee:0e:e0:ce:0d:98:6a:94:ab:31:93:61:0b: 90:65:c4:ba:ae:46:a5:13:0e:0e:5f:40:a0:2c:fb:e0:69:70: 8f:b1:2b:b8:93:a9:3c:6d:e9:ae:4c:a5:d0:76:ab:ad:c1:f6: c7:9a:d9:e2:e5:e9:71:91:a9:a9:44:98:74:96:be:2b:bb:08: 16:92:a2:a4:dc:fd:b0:71:f7:75:28:53:c4:37:05:77:56:94: 96:c7:f5:da -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAxt4z5xiC68TVPuEzIBi/7JUs00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MTFaFw0yNzA1MDIwMjUxMTFaMDMxMTAvBgNV BAMTKEI4ODA4OThCOEU5OTMyRjMzRTQxNjdCQTU3MERFNUUzNzAyM0JDOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0yypglIhF3bTB75ArAn2ee0Vf m/0glAAJBabfixtYj0KIyiSj6utMM7PdiMc9y4VhTINQZM/08TItUTOOkneSACS9 8hmldT7F16IxC20uhbLDnJEBEQ8Pn9vtknlTvjk7idqXovKZVL5SeRL2LR/86bDW erIMJchbTY/x5AOoaMSiKb0Vec9pdyfJuX/5j8uhW1zwmDYbPy56KVrJkwLgpLVb EyEg3T9edLuYr89Z46Smq8Lx3EIiCBDxXp3EtJPD/v8BIJlDEmja4nJz1mRGOIUG 5li8broKVYIlXdhE3uWZ3Hik4m0WV2kY41Hwh8FvcqLlvVQQXn509BxihIVnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuICJi46ZMvM+QWe6Vw3l43AjvJowHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAQw DQYJKoZIhvcNAQELBQADggEBAB3ZPONY/uJg7xbBLOutkgyHomKJC7AY4FWpm0Pw VROQbuR1nzUVRLTdPlYlc2HnGBduYeYkU2oQ/7cXYVooq/0tt1fqYbqYPfvTI5qp +DWv27aMpG14+rD5tORpmq/eI0X2iNtD/iyeL7RId9tT3DJDghWgH4S+8xpPKiqX 1lsNXeStK9wwdqlQm4K86Ee+kIqmhGzFakp/CCBUNr+TAu2JwjQLCe2m7g7gzg2Y apSrMZNhC5BlxLquRqUTDg5fQKAs++BpcI+xK7iTqTxt6a5MpdB2q63B9sea2eLl 6XGRqalEmHSWviu7CBaSoqTc/bBx93UoU8Q3BXdWlJbH9do= -----END CERTIFICATE-----Generated at Wed May 13 12:50:57 2026 by rpki-client