$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a3a2f33322d3332203d3e20313336303739.roa File: 323430353a326363303a3a2f33322d3332203d3e20313336303739.roa (raw, json) Hash identifier: GjrYL8GtEeE9lp0HSHCaLlwAAKogLsDWrpkYpLE2hlY= Subject key identifier: BF:24:F9:8A:2C:1F:B3:80:3F:D5:0D:12:F1:BB:72:62:E4:AF:B5:45 Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 6AB5312FEEA2E36C6800C2BB1DB03992C171868C Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a3a2f33322d3332203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:08 +0000 ROA not before: Sun 03 May 2026 02:46:08 +0000 ROA not after: Sun 02 May 2027 02:51:08 +0000 asID: 136079 IP address blocks: 2405:2cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b5:31:2f:ee:a2:e3:6c:68:00:c2:bb:1d:b0:39:92:c1:71:86:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:08 2026 GMT Not After : May 2 02:51:08 2027 GMT Subject: CN=BF24F98A2C1FB3803FD50D12F1BB7262E4AFB545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:56:c3:b7:a3:a3:8e:f9:13:d0:3a:fd:8b:3a: 12:11:3e:bf:7b:17:65:98:95:2a:fb:b3:b2:c3:7c: f9:9d:81:d6:76:6a:5b:02:1d:93:cc:85:30:1d:e7: 24:57:55:f8:1a:a5:bc:55:13:83:bb:87:7d:25:b9: cd:cc:75:db:40:96:22:79:7d:15:10:94:20:8c:0b: 93:2c:b6:71:a8:07:f8:47:67:76:d6:43:5e:64:d5: ed:9c:b6:c6:6f:d5:5e:df:6d:0b:65:32:f3:a8:2d: a9:d1:3a:19:d8:4f:8e:7d:a3:71:7a:1e:1c:a8:00: 67:a2:fe:a0:20:b1:80:92:1b:0f:3f:59:ed:b5:63: 98:86:37:a7:ef:7f:83:52:de:2b:84:62:28:80:f2: c5:fe:6a:18:0c:b2:a3:a9:04:45:63:6f:4d:a3:87: 2a:2b:03:4b:91:ce:d2:c1:96:8b:d6:c6:5e:db:cc: b9:73:c5:85:31:52:18:54:8a:84:9b:99:6f:ab:c7: c2:4b:d4:c7:d2:7e:40:b8:e7:f1:b0:f5:9f:01:4a: 41:d5:e3:78:95:8b:30:b5:4f:70:30:a7:ba:39:d1: 7b:59:28:0a:ce:f7:9d:cb:5d:14:50:8e:18:fe:ca: d7:16:fa:e5:f9:00:fa:19:49:94:b4:a4:4b:8e:fd: 08:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:24:F9:8A:2C:1F:B3:80:3F:D5:0D:12:F1:BB:72:62:E4:AF:B5:45 X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a3a2f33322d3332203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption af:37:1c:41:76:02:66:d9:b9:b5:72:97:34:3a:6d:af:d2:49: f1:f3:c7:67:2f:88:5c:e6:7c:23:46:ad:1d:3a:33:6f:00:f3: f6:00:9d:e1:67:52:1e:53:a8:8a:d3:60:46:d3:a4:0f:9e:78: 8e:6b:0e:e4:47:53:59:c4:ef:d7:30:51:74:a5:6e:ce:84:0a: c1:29:98:ab:ad:a6:54:9b:57:2f:7a:a8:ed:60:65:79:58:70: 40:a4:bb:d1:53:ea:8b:b7:e9:f7:b9:f4:0e:d5:5d:e8:e9:51: de:f6:1c:1b:95:ce:59:6a:2c:37:26:70:d7:85:d4:6b:ab:8b: a7:91:30:91:e3:6e:a0:4b:e6:99:6d:33:46:7b:eb:a0:ca:41: 7e:ed:9d:76:87:f1:e9:8d:6a:b1:c8:3f:b7:4b:de:a3:45:3d: 69:1b:3e:cb:ae:64:5e:22:ae:f0:5b:24:9a:82:18:72:c9:68: c2:cc:d6:29:14:4b:00:f4:97:46:04:a6:d0:0c:59:c3:b5:a8: 7b:d9:97:29:a9:2c:5c:65:ba:7a:b0:dc:d4:54:fd:d0:48:14: 20:c1:99:d4:0a:9b:1c:f8:1f:20:9c:99:8e:88:28:ef:87:e0: 92:1f:9c:79:2f:ee:c8:ab:f2:6b:65:45:93:6b:46:2a:94:5a: 57:d8:cf:e8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUarUxL+6i42xoAMK7HbA5ksFxhowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MDhaFw0yNzA1MDIwMjUxMDhaMDMxMTAvBgNV BAMTKEJGMjRGOThBMkMxRkIzODAzRkQ1MEQxMkYxQkI3MjYyRTRBRkI1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLVsO3o6OO+RPQOv2LOhIRPr97 F2WYlSr7s7LDfPmdgdZ2alsCHZPMhTAd5yRXVfgapbxVE4O7h30luc3MddtAliJ5 fRUQlCCMC5MstnGoB/hHZ3bWQ15k1e2ctsZv1V7fbQtlMvOoLanROhnYT459o3F6 HhyoAGei/qAgsYCSGw8/We21Y5iGN6fvf4NS3iuEYiiA8sX+ahgMsqOpBEVjb02j hyorA0uRztLBlovWxl7bzLlzxYUxUhhUioSbmW+rx8JL1MfSfkC45/Gw9Z8BSkHV 43iVizC1T3Awp7o50XtZKArO953LXRRQjhj+ytcW+uX5APoZSZS0pEuO/QgjAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvyT5iiwfs4A/1Q0S8btyYuSvtUUwHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFLMAwDQYJKoZI hvcNAQELBQADggEBAK83HEF2AmbZubVylzQ6ba/SSfHzx2cviFzmfCNGrR06M28A 8/YAneFnUh5TqIrTYEbTpA+eeI5rDuRHU1nE79cwUXSlbs6ECsEpmKutplSbVy96 qO1gZXlYcECku9FT6ou36fe59A7VXejpUd72HBuVzllqLDcmcNeF1Guri6eRMJHj bqBL5pltM0Z766DKQX7tnXaH8emNarHIP7dL3qNFPWkbPsuuZF4irvBbJJqCGHLJ aMLM1ikUSwD0l0YEptAMWcO1qHvZlympLFxlunqw3NRU/dBIFCDBmdQKmxz4HyCc mY6IKO+H4JIfnHkv7sir8mtlRZNrRiqUWlfYz+g= -----END CERTIFICATE-----Generated at Wed May 13 13:26:56 2026 by rpki-client