$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: qzb7Bo6deR1N6q5IRoWBFGvKs3rfmyZwKAyj7XUQE7w= Subject key identifier: 2A:BC:B4:97:99:08:12:36:99:A4:7F:47:F3:DC:87:7E:65:58:DD:1E Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 323983788FF8AD6130CD84D4F67F3D6BEA4EC3E0 Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:10 +0000 ROA not before: Sun 03 May 2026 02:46:10 +0000 ROA not after: Sun 02 May 2027 02:51:10 +0000 asID: 136079 IP address blocks: 2405:2cc0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:39:83:78:8f:f8:ad:61:30:cd:84:d4:f6:7f:3d:6b:ea:4e:c3:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:10 2026 GMT Not After : May 2 02:51:10 2027 GMT Subject: CN=2ABCB4979908123699A47F47F3DC877E6558DD1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:a0:5a:2c:69:cc:9c:98:fb:af:49:b6:98: 30:18:c2:61:fa:a8:d2:04:c4:9a:80:74:1e:ab:e9: 3d:3b:d3:7a:52:11:1d:aa:95:51:97:8c:2d:2f:35: a7:4e:ee:4b:33:7b:22:c9:27:a7:c6:fb:e0:90:37: 82:35:4e:40:30:d7:8a:9d:9e:2d:15:a2:28:0f:0c: bb:e2:2c:a6:2f:18:99:39:4b:36:44:25:53:ed:79: 2a:f6:79:ab:cc:3c:46:4d:c3:62:2b:a0:73:59:a7: 73:86:cc:08:3a:80:74:65:6f:22:92:bd:05:55:86: 5d:a9:2e:fe:22:d4:6b:bb:aa:d4:a9:69:15:04:47: 02:64:06:95:d3:8f:b1:6a:54:e3:0d:46:a8:11:4e: f7:00:06:39:98:2e:92:d0:5c:97:ce:62:ef:b7:4f: d2:e3:13:4a:cf:5b:5c:ed:5f:a4:23:f2:f4:61:2a: 9c:9a:12:28:7d:29:ac:55:66:09:a3:99:da:80:cb: 33:5a:d7:dd:5d:51:99:01:d2:f9:e3:cf:f0:72:7a: df:4b:ab:5f:94:6e:79:58:82:7d:54:8d:88:de:38: a9:52:79:c8:6a:f9:62:ba:63:07:bc:e7:b5:5f:f5: 15:af:6b:a1:d1:80:9c:90:62:ca:0d:e9:29:60:1d: ba:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BC:B4:97:99:08:12:36:99:A4:7F:47:F3:DC:87:7E:65:58:DD:1E X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a613a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:a::/48 Signature Algorithm: sha256WithRSAEncryption 77:5d:a4:ff:0a:bc:3a:43:15:d0:bf:2c:5d:af:9b:1b:53:da: 91:fd:61:fb:1f:00:0f:2a:91:b3:ff:ea:01:e9:9c:ff:d4:39: 56:05:73:56:2f:cf:90:c3:82:43:8d:17:5b:ca:20:e3:fc:3b: 8b:77:4d:4f:e3:50:cd:eb:60:db:90:9e:7c:c0:66:33:5b:8f: 87:4c:0d:4b:c8:aa:e0:a9:ab:67:72:87:99:59:88:21:f3:0f: 7e:e5:51:cb:4e:26:df:d5:52:b6:7b:4d:78:86:47:c8:b7:64: 21:bb:76:a7:64:0d:50:8b:1c:d9:79:73:af:d3:02:8e:6b:8d: 91:4b:0f:67:01:18:e8:82:cb:db:71:92:1a:15:eb:51:fc:7b: dc:f3:06:a6:a7:7c:c6:93:a3:72:da:51:2c:21:ef:fe:5a:9b: 41:3c:97:86:6d:e3:29:82:76:40:8d:e1:db:cf:c4:18:e9:f7: c1:81:51:c3:f5:d0:ac:33:a7:f9:6e:ea:20:e7:c5:55:ce:42: 29:de:99:56:0a:28:4b:5c:08:55:47:03:d9:ed:3f:d1:26:df: 1d:d4:30:f9:c5:92:19:72:4c:2e:9e:9b:bb:27:38:71:03:d8: 7f:e4:42:03:cb:e0:94:a7:a5:2d:b4:81:74:2c:ab:b9:d8:18: 5e:ef:c8:bb -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMjmDeI/4rWEwzYTU9n89a+pOw+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MTBaFw0yNzA1MDIwMjUxMTBaMDMxMTAvBgNV BAMTKDJBQkNCNDk3OTkwODEyMzY5OUE0N0Y0N0YzREM4NzdFNjU1OEREMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrlKBaLGnMnJj7r0m2mDAYwmH6 qNIExJqAdB6r6T0703pSER2qlVGXjC0vNadO7kszeyLJJ6fG++CQN4I1TkAw14qd ni0VoigPDLviLKYvGJk5SzZEJVPteSr2eavMPEZNw2IroHNZp3OGzAg6gHRlbyKS vQVVhl2pLv4i1Gu7qtSpaRUERwJkBpXTj7FqVOMNRqgRTvcABjmYLpLQXJfOYu+3 T9LjE0rPW1ztX6Qj8vRhKpyaEih9KaxVZgmjmdqAyzNa191dUZkB0vnjz/Byet9L q1+UbnlYgn1UjYjeOKlSechq+WK6Ywe857Vf9RWva6HRgJyQYsoN6SlgHbpHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKry0l5kIEjaZpH9H89yHfmVY3R4wHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAow DQYJKoZIhvcNAQELBQADggEBAHddpP8KvDpDFdC/LF2vmxtT2pH9YfsfAA8qkbP/ 6gHpnP/UOVYFc1Yvz5DDgkONF1vKIOP8O4t3TU/jUM3rYNuQnnzAZjNbj4dMDUvI quCpq2dyh5lZiCHzD37lUctOJt/VUrZ7TXiGR8i3ZCG7dqdkDVCLHNl5c6/TAo5r jZFLD2cBGOiCy9txkhoV61H8e9zzBqanfMaTo3LaUSwh7/5am0E8l4Zt4ymCdkCN 4dvPxBjp98GBUcP10Kwzp/lu6iDnxVXOQinemVYKKEtcCFVHA9ntP9Em3x3UMPnF khlyTC6em7snOHED2H/kQgPL4JSnpS20gXQsq7nYGF7vyLs= -----END CERTIFICATE-----Generated at Wed May 13 12:42:50 2026 by rpki-client