$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: DIiDAYxawgYnEH3zecu4aTkx8vuh6itbIN09fv6cnWA= Subject key identifier: 5B:8A:A1:B2:DB:48:5B:B4:C1:83:21:79:E6:42:71:1C:03:4A:88:FD Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 196701222757F88724E875D7F0D9D26C8E61B6CB Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:11 +0000 ROA not before: Sun 03 May 2026 02:46:11 +0000 ROA not after: Sun 02 May 2027 02:51:11 +0000 asID: 136079 IP address blocks: 2405:2cc0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:67:01:22:27:57:f8:87:24:e8:75:d7:f0:d9:d2:6c:8e:61:b6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:11 2026 GMT Not After : May 2 02:51:11 2027 GMT Subject: CN=5B8AA1B2DB485BB4C1832179E642711C034A88FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:02:75:45:4d:b9:14:fb:16:3a:40:ef:2d:47: 6c:9b:23:92:f9:30:80:f9:48:f9:64:08:1c:1f:f3: a2:08:f0:dc:92:7a:b2:18:58:9f:04:78:74:94:cf: b1:1d:9d:f5:a4:7a:2e:99:31:1c:cf:9f:98:4b:72: 94:e9:c2:ac:a4:94:4e:2b:83:bb:3b:08:50:53:fc: 8d:13:0b:a4:50:a8:04:91:95:c7:ac:ae:b3:d7:f5: 72:00:61:3c:72:2d:d9:5a:08:49:f1:bf:97:eb:aa: 9e:70:60:92:c3:fa:49:32:22:2e:40:de:73:42:8b: 10:d0:c4:68:2b:e0:a4:66:fa:22:ba:c2:d6:a8:a1: 6e:fa:d7:7f:c5:be:00:3b:03:13:03:31:49:21:74: 4b:e7:39:b9:8c:77:ac:a3:e1:a4:ac:c7:ae:c9:4b: bf:82:cc:1a:b1:53:11:bf:d3:14:55:8b:eb:79:05: 62:5d:12:7a:65:6e:b9:46:02:db:75:89:dd:e0:f7: 35:23:1b:70:e1:71:47:83:7a:1a:26:29:b2:94:0f: dd:42:2d:d7:47:aa:90:26:49:52:b1:4d:a8:c7:d7: 10:9f:e0:68:d9:5d:7a:70:53:b2:4d:37:a7:7c:65: 48:ba:c7:30:4f:16:31:79:d0:12:f9:9f:11:be:fc: e6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8A:A1:B2:DB:48:5B:B4:C1:83:21:79:E6:42:71:1C:03:4A:88:FD X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:7::/48 Signature Algorithm: sha256WithRSAEncryption 51:2f:96:cd:77:70:d6:f6:a9:b5:55:7a:59:46:55:03:05:f3: 2f:f9:15:b0:65:f6:79:c7:a2:d9:2e:61:fc:fc:2c:21:c5:a5: 5d:86:aa:ad:58:38:ed:71:02:f8:e0:c2:99:73:6b:5a:01:28: a3:94:19:7b:2a:7b:67:d4:15:1c:e5:4a:d4:d2:42:3d:e3:ed: 67:8f:ec:3e:d8:da:ca:45:24:a5:f0:14:05:26:fe:cd:64:af: f8:73:b9:cb:1a:ed:39:76:fc:84:4c:a4:0c:bb:9d:fd:1c:f4: 87:94:21:94:56:f4:09:0d:3f:16:b9:28:66:78:73:4a:2b:3a: 7e:f5:24:05:69:ad:32:6a:d4:d1:4f:f1:17:a7:84:db:bf:30: 20:d3:e3:12:9b:bf:eb:64:16:3f:33:bf:bf:eb:73:fd:a4:6d: de:c6:07:79:c7:ba:cd:40:ee:f5:26:56:cf:e7:fa:f4:6e:c2: bc:db:df:0e:c9:f6:db:d0:37:b9:2d:f2:59:1e:7c:be:be:2f: bc:a0:15:1b:bc:f2:90:fc:02:c8:f7:b5:b0:1a:28:c3:02:fa: 53:7b:e3:ff:cf:1f:e1:5f:4a:4c:7a:49:46:06:d6:5b:3e:1f: e9:4c:22:47:39:99:0d:80:61:35:26:81:a2:10:fd:cd:a8:33: df:dc:46:e5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGWcBIidX+Ick6HXX8NnSbI5htsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MTFaFw0yNzA1MDIwMjUxMTFaMDMxMTAvBgNV BAMTKDVCOEFBMUIyREI0ODVCQjRDMTgzMjE3OUU2NDI3MTFDMDM0QTg4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaAnVFTbkU+xY6QO8tR2ybI5L5 MID5SPlkCBwf86II8NySerIYWJ8EeHSUz7EdnfWkei6ZMRzPn5hLcpTpwqyklE4r g7s7CFBT/I0TC6RQqASRlcesrrPX9XIAYTxyLdlaCEnxv5frqp5wYJLD+kkyIi5A 3nNCixDQxGgr4KRm+iK6wtaooW7613/FvgA7AxMDMUkhdEvnObmMd6yj4aSsx67J S7+CzBqxUxG/0xRVi+t5BWJdEnplbrlGAtt1id3g9zUjG3DhcUeDehomKbKUD91C LddHqpAmSVKxTajH1xCf4GjZXXpwU7JNN6d8ZUi6xzBPFjF50BL5nxG+/OazAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUW4qhsttIW7TBgyF55kJxHANKiP0wHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAcw DQYJKoZIhvcNAQELBQADggEBAFEvls13cNb2qbVVellGVQMF8y/5FbBl9nnHotku Yfz8LCHFpV2Gqq1YOO1xAvjgwplza1oBKKOUGXsqe2fUFRzlStTSQj3j7WeP7D7Y 2spFJKXwFAUm/s1kr/hzucsa7Tl2/IRMpAy7nf0c9IeUIZRW9AkNPxa5KGZ4c0or On71JAVprTJq1NFP8RenhNu/MCDT4xKbv+tkFj8zv7/rc/2kbd7GB3nHus1A7vUm Vs/n+vRuwrzb3w7J9tvQN7kt8lkefL6+L7ygFRu88pD8Asj3tbAaKMMC+lN74//P H+FfSkx6SUYG1ls+H+lMIkc5mQ2AYTUmgaIQ/c2oM9/cRuU= -----END CERTIFICATE-----Generated at Wed May 13 13:34:45 2026 by rpki-client