$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: Epp4HAZE0W9I/EfSN4vso22uXIIi9KdQMgAH3xFapkU= Subject key identifier: 7F:62:F2:66:5B:80:2B:26:67:E1:BC:7B:01:68:4D:C7:AD:BC:90:1D Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 22D10771F9E6C44444CA0538F52027B8BB9156D1 Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:14 +0000 ROA not before: Sun 03 May 2026 02:46:14 +0000 ROA not after: Sun 02 May 2027 02:51:14 +0000 asID: 136079 IP address blocks: 2405:2cc0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d1:07:71:f9:e6:c4:44:44:ca:05:38:f5:20:27:b8:bb:91:56:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:14 2026 GMT Not After : May 2 02:51:14 2027 GMT Subject: CN=7F62F2665B802B2667E1BC7B01684DC7ADBC901D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fd:49:26:43:84:57:7d:6d:15:0c:36:53:b4: f2:eb:50:5b:3a:ae:89:33:2e:de:4c:54:11:53:3b: 08:10:3d:f7:f4:ef:e8:43:72:33:6c:54:2d:50:77: d0:2e:16:5b:70:41:d5:4f:63:9a:83:d6:47:b7:0d: b2:12:32:3a:a4:70:a4:67:05:d5:4b:23:44:d8:b4: 18:6c:a2:27:5a:f5:c4:6f:f7:ae:b3:12:63:a2:e3: 24:d4:bb:3d:59:1d:72:b1:db:7f:43:38:bf:86:a3: df:58:ff:47:d7:95:f5:30:8b:6f:f1:72:ca:27:d2: a8:69:23:12:10:fe:1f:ae:cf:34:ef:28:b5:94:50: 0f:1f:03:27:71:3e:fa:b7:d9:8b:17:da:ae:ec:88: b0:ed:ab:68:23:98:41:9d:13:02:b1:81:08:10:a3: 03:14:87:84:bc:2e:9a:79:cc:b9:11:62:57:4b:83: bc:bd:c7:52:c9:9f:40:93:fd:9c:dd:69:7f:68:6a: ec:f7:8e:65:43:78:d3:8b:74:4f:21:e0:3f:d1:97: dc:4f:17:76:c9:20:df:32:f9:52:0d:1d:44:55:68: c1:67:ab:c5:6e:66:f8:34:6d:c7:25:ba:d5:7f:2c: 20:95:66:c2:ca:90:49:55:da:cf:17:4b:2e:4a:9a: 8f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:62:F2:66:5B:80:2B:26:67:E1:BC:7B:01:68:4D:C7:AD:BC:90:1D X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a353a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:5::/48 Signature Algorithm: sha256WithRSAEncryption 64:2b:41:e9:e0:bb:05:65:6b:f0:ac:68:24:9c:1e:94:12:89: f3:f1:32:ed:27:40:7b:05:78:dd:59:b4:82:ac:a9:f1:f8:0a: 4a:88:8d:18:66:e2:3c:1e:93:f4:20:3f:fd:04:e4:2a:2e:32: b9:83:c5:11:0b:99:8d:4b:e7:a6:2e:bc:ca:61:37:2f:ad:62: 87:ed:cc:c6:00:dc:03:13:6c:1f:7d:e4:61:04:04:f0:24:84: 14:0c:82:7d:1d:b4:7a:91:99:12:2c:3c:1b:02:8a:03:9e:38: e1:a8:b0:65:a1:a6:a4:7f:31:b4:c4:42:4d:1a:f1:9c:0f:ea: 1f:ce:a4:9a:de:d1:c3:f3:eb:43:4c:d7:85:ef:f8:e9:09:2a: 55:3c:99:22:57:fb:e6:81:5d:0e:db:94:c9:ec:cb:16:4b:ac: 3d:c5:34:20:f5:ef:c6:cf:ca:10:3c:5e:91:2e:1a:bf:f0:70: 18:86:85:f1:98:a6:fd:9f:c8:33:e8:20:5d:e7:ae:52:f3:63: da:2b:d0:32:35:b9:e2:32:46:47:f4:06:47:01:59:eb:7b:b4: ab:53:6e:f8:55:26:e4:b4:52:e4:1c:c6:bf:41:86:a8:d5:6b: 45:14:44:07:84:54:3f:7b:ed:95:3f:9f:e8:a5:18:15:ef:9c: e0:be:80:07 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUItEHcfnmxEREygU49SAnuLuRVtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MTRaFw0yNzA1MDIwMjUxMTRaMDMxMTAvBgNV BAMTKDdGNjJGMjY2NUI4MDJCMjY2N0UxQkM3QjAxNjg0REM3QURCQzkwMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx/UkmQ4RXfW0VDDZTtPLrUFs6 rokzLt5MVBFTOwgQPff07+hDcjNsVC1Qd9AuFltwQdVPY5qD1ke3DbISMjqkcKRn BdVLI0TYtBhsoida9cRv966zEmOi4yTUuz1ZHXKx239DOL+Go99Y/0fXlfUwi2/x cson0qhpIxIQ/h+uzzTvKLWUUA8fAydxPvq32YsX2q7siLDtq2gjmEGdEwKxgQgQ owMUh4S8Lpp5zLkRYldLg7y9x1LJn0CT/ZzdaX9oauz3jmVDeNOLdE8h4D/Rl9xP F3bJIN8y+VINHURVaMFnq8VuZvg0bcclutV/LCCVZsLKkElV2s8XSy5Kmo+hAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUf2LyZluAKyZn4bx7AWhNx628kB0wHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAUw DQYJKoZIhvcNAQELBQADggEBAGQrQenguwVla/CsaCScHpQSifPxMu0nQHsFeN1Z tIKsqfH4CkqIjRhm4jwek/QgP/0E5CouMrmDxRELmY1L56YuvMphNy+tYoftzMYA 3AMTbB995GEEBPAkhBQMgn0dtHqRmRIsPBsCigOeOOGosGWhpqR/MbTEQk0a8ZwP 6h/OpJre0cPz60NM14Xv+OkJKlU8mSJX++aBXQ7blMnsyxZLrD3FNCD178bPyhA8 XpEuGr/wcBiGhfGYpv2fyDPoIF3nrlLzY9or0DI1ueIyRkf0BkcBWet7tKtTbvhV JuS0UuQcxr9BhqjVa0UURAeEVD977ZU/n+ilGBXvnOC+gAc= -----END CERTIFICATE-----Generated at Wed May 13 12:43:00 2026 by rpki-client