$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: 8qbIjl9zr4ylqDb4nGMqZgAdI9S2G61h5D7139k9paI= Subject key identifier: B8:54:C6:3A:CB:44:CC:15:C4:C9:1B:84:71:21:92:54:F8:8C:8F:F1 Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 054B822A089C33BE6CA87450A9B6C341C58483F6 Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:10 +0000 ROA not before: Sun 03 May 2026 02:46:10 +0000 ROA not after: Sun 02 May 2027 02:51:10 +0000 asID: 136079 IP address blocks: 2405:2cc0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:4b:82:2a:08:9c:33:be:6c:a8:74:50:a9:b6:c3:41:c5:84:83:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:10 2026 GMT Not After : May 2 02:51:10 2027 GMT Subject: CN=B854C63ACB44CC15C4C91B8471219254F88C8FF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d8:61:28:ce:10:17:79:c8:f8:ff:f9:a4:0b: f2:0a:12:d8:96:93:39:0c:94:6a:18:be:f3:14:14: af:82:e9:ee:67:ca:66:fa:87:f6:1d:1e:36:2e:4b: 5e:4c:92:3f:77:75:44:31:e6:65:2c:50:bf:81:db: 45:d6:e5:86:33:92:5c:2a:36:47:e5:68:c1:5c:95: f4:3d:bc:80:9f:e1:34:11:de:cd:74:68:8b:09:00: 01:7b:79:95:b9:80:64:c5:2b:04:eb:a5:1d:0d:cc: 67:8e:f0:db:90:16:a5:63:9f:33:2f:71:28:5d:34: f6:fc:a1:76:83:45:89:82:be:45:ef:a5:6b:d0:c9: 9a:7e:7e:40:ab:5e:ea:99:55:4e:96:b1:5f:76:61: f7:f6:fb:91:65:ad:26:2c:20:45:7a:81:12:e8:19: 2e:fc:ff:fe:31:d0:e9:89:8a:43:fb:27:ae:af:91: 50:be:1e:ce:2d:f2:cc:54:24:2a:6f:f6:6f:d1:8c: 12:81:93:20:e1:74:0e:e0:80:e5:d4:c1:b1:a7:e4: 1f:d3:25:dc:6c:32:29:f3:20:ed:e0:a2:c1:c9:87: 07:89:28:51:d4:ec:04:b7:2c:47:66:69:a7:45:ca: 81:93:2c:a3:1e:c4:3c:f1:3b:e2:a2:a6:55:15:94: c1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:54:C6:3A:CB:44:CC:15:C4:C9:1B:84:71:21:92:54:F8:8C:8F:F1 X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:9::/48 Signature Algorithm: sha256WithRSAEncryption 8b:cd:63:8c:66:9a:1e:c1:24:7f:9f:57:77:93:f9:18:07:58: 4e:ce:af:d2:06:f4:61:4f:e6:36:12:46:f3:94:b6:36:94:1f: f8:1a:af:bd:ba:d1:5d:ff:82:4a:76:ea:bb:72:6e:56:f9:5e: 5a:77:d4:02:17:be:c6:c2:02:87:52:5b:b6:11:8b:cb:02:d5: 73:28:4b:0d:aa:b8:02:ef:29:67:1e:b5:df:d8:37:77:89:2c: b4:92:04:18:90:2a:4b:dd:fb:41:09:5b:19:8c:c9:37:17:29: 50:bc:2f:24:52:5e:4c:70:42:25:86:ff:e3:79:1b:ff:2c:e2: 5e:bf:34:3b:19:fe:3a:fd:ae:80:6e:eb:91:9f:83:55:09:8c: c0:44:7c:75:4d:cc:ed:00:38:32:d5:d2:e1:85:80:16:99:68: 56:2c:ed:90:a2:ed:00:fa:6b:18:2e:a5:e5:02:5a:e4:2d:c9: df:05:b7:cc:f5:af:6a:23:78:f8:7a:bb:96:4c:9b:54:8e:84: b4:ce:80:ea:02:f5:d7:62:4b:f2:42:26:98:13:30:de:de:13: ba:2b:37:0c:db:b7:83:68:68:88:c2:4a:f0:ed:92:e4:a2:a0: b4:06:f2:7e:ae:25:2a:64:ae:5a:ed:36:3a:87:ca:ed:8f:45: f6:56:32:1d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBUuCKgicM75sqHRQqbbDQcWEg/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MTBaFw0yNzA1MDIwMjUxMTBaMDMxMTAvBgNV BAMTKEI4NTRDNjNBQ0I0NENDMTVDNEM5MUI4NDcxMjE5MjU0Rjg4QzhGRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs2GEozhAXecj4//mkC/IKEtiW kzkMlGoYvvMUFK+C6e5nymb6h/YdHjYuS15Mkj93dUQx5mUsUL+B20XW5YYzklwq NkflaMFclfQ9vICf4TQR3s10aIsJAAF7eZW5gGTFKwTrpR0NzGeO8NuQFqVjnzMv cShdNPb8oXaDRYmCvkXvpWvQyZp+fkCrXuqZVU6WsV92Yff2+5FlrSYsIEV6gRLo GS78//4x0OmJikP7J66vkVC+Hs4t8sxUJCpv9m/RjBKBkyDhdA7ggOXUwbGn5B/T JdxsMinzIO3gosHJhweJKFHU7AS3LEdmaadFyoGTLKMexDzxO+KiplUVlMFhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuFTGOstEzBXEyRuEcSGSVPiMj/EwHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAkw DQYJKoZIhvcNAQELBQADggEBAIvNY4xmmh7BJH+fV3eT+RgHWE7Or9IG9GFP5jYS RvOUtjaUH/gar7260V3/gkp26rtyblb5Xlp31AIXvsbCAodSW7YRi8sC1XMoSw2q uALvKWcetd/YN3eJLLSSBBiQKkvd+0EJWxmMyTcXKVC8LyRSXkxwQiWG/+N5G/8s 4l6/NDsZ/jr9roBu65Gfg1UJjMBEfHVNzO0AODLV0uGFgBaZaFYs7ZCi7QD6axgu peUCWuQtyd8Ft8z1r2ojePh6u5ZMm1SOhLTOgOoC9ddiS/JCJpgTMN7eE7orNwzb t4NoaIjCSvDtkuSioLQG8n6uJSpkrlrtNjqHyu2PRfZWMh0= -----END CERTIFICATE-----Generated at Wed May 13 13:05:35 2026 by rpki-client