$ rpki-client -vvf rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a623a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a623a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: XsexSvb1l3rPkBKSGRPEjdjeUVqotRrEodOLIq5SCmw= Subject key identifier: C2:84:03:9A:42:2C:E5:F7:BC:FC:53:E3:23:34:75:03:C3:39:DC:77 Certificate issuer: /CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Certificate serial: 5A36F903091BE4170D86899A1A9778877A447BF9 Authority key identifier: 15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a623a3a2f34382d3438203d3e20313336303739.roa Signing time: Sun 03 May 2026 02:51:12 +0000 ROA not before: Sun 03 May 2026 02:46:12 +0000 ROA not after: Sun 02 May 2027 02:51:12 +0000 asID: 136079 IP address blocks: 2405:2cc0:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:36:f9:03:09:1b:e4:17:0d:86:89:9a:1a:97:78:87:7a:44:7b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=152D7DF6753FDF6809AF8EEC4158A0787450959B Validity Not Before: May 3 02:46:12 2026 GMT Not After : May 2 02:51:12 2027 GMT Subject: CN=C284039A422CE5F7BCFC53E323347503C339DC77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:54:0c:75:1f:95:89:db:e8:a4:dc:6a:ae:d8: 32:fd:23:9e:ea:88:35:bc:22:28:ee:59:d2:82:b9: d8:e4:b6:39:90:11:59:bc:a7:70:14:f2:1f:65:8e: da:53:5f:b9:c7:a8:ed:c5:a3:ab:84:08:4a:96:2a: 00:cd:4a:01:1a:79:08:b0:c5:70:74:6a:e4:a1:47: a0:27:3b:29:95:73:81:9e:06:38:c9:f1:1d:5a:7a: f6:f4:f3:18:4f:e5:eb:25:4c:e9:b3:8c:b0:58:e2: 00:5e:99:e4:ab:04:e8:a0:ec:f2:e9:59:e8:63:20: bc:4c:34:44:73:c1:d9:b7:2f:ef:d0:10:49:29:eb: 20:33:10:e8:6f:32:b2:0b:1c:e2:11:83:79:bb:e0: 74:86:db:32:18:bb:43:89:a7:1e:22:8a:42:1e:eb: e8:bd:7c:db:3c:de:e4:98:43:fb:2b:6c:23:4d:e4: f1:4c:2c:c7:fc:bb:53:73:4a:3c:a4:2b:d4:78:02: ee:15:f2:0c:19:c6:c0:5b:95:02:f1:16:07:3b:32: 2b:6f:bd:a1:6e:38:a8:7c:b1:0b:d9:16:55:4a:bd: 53:9f:0e:a4:29:f1:ad:5a:81:ca:ae:3a:7b:24:9b: 33:48:dc:4f:36:f2:b6:27:f3:08:8e:92:6b:10:5a: 0a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:84:03:9A:42:2C:E5:F7:BC:FC:53:E3:23:34:75:03:C3:39:DC:77 X509v3 Authority Key Identifier: keyid:15:2D:7D:F6:75:3F:DF:68:09:AF:8E:EC:41:58:A0:78:74:50:95:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/152D7DF6753FDF6809AF8EEC4158A0787450959B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/152D7DF6753FDF6809AF8EEC4158A0787450959B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a623a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:b::/48 Signature Algorithm: sha256WithRSAEncryption 03:d6:9a:92:09:9e:ca:ec:cd:ff:b2:0a:6d:c9:c0:fb:b3:5a: a2:01:54:7b:76:dd:7b:40:be:c0:a9:11:9f:d7:11:15:98:a1: 18:7c:5c:7b:a6:69:08:79:b5:5b:6d:e4:fb:a7:0e:0d:4d:e5: 0e:78:ce:04:fb:a3:36:f6:91:2b:0f:a4:4e:62:48:d7:e5:28: a6:9a:7a:cd:03:cb:f8:7e:47:ad:23:5a:60:a1:40:10:f2:51: 54:43:23:f7:2d:50:b3:1e:26:5a:48:51:a4:cc:f7:9c:fd:1a: f0:6d:93:a6:d3:1b:eb:57:12:15:5c:a4:49:24:c7:03:ee:cf: 36:86:33:7e:2f:4f:1a:d0:ac:5e:94:79:ea:03:04:6e:76:3b: 87:a1:34:1e:58:6b:78:bd:0a:ed:59:b7:d9:31:b6:10:54:ce: 1d:67:ec:da:47:d5:ba:2a:30:5a:ef:9f:bf:65:4b:c0:0a:48: 2c:de:4d:40:9b:63:bf:c5:23:10:aa:06:6f:92:c8:1f:91:a2: 11:48:ba:3e:81:83:13:57:c0:02:58:5f:0f:37:d4:12:67:a9: 3f:ce:46:cb:aa:c1:85:35:d2:81:a9:53:5e:3f:2b:9c:0e:8b: 6e:51:03:49:0d:de:ef:dd:84:c9:ff:71:fd:f9:0b:27:aa:d8: 38:71:c1:fc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWjb5Awkb5BcNhomaGpd4h3pEe/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUyRDdERjY3NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3 NDUwOTU5QjAeFw0yNjA1MDMwMjQ2MTJaFw0yNzA1MDIwMjUxMTJaMDMxMTAvBgNV BAMTKEMyODQwMzlBNDIyQ0U1RjdCQ0ZDNTNFMzIzMzQ3NTAzQzMzOURDNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgVAx1H5WJ2+ik3Gqu2DL9I57q iDW8IijuWdKCudjktjmQEVm8p3AU8h9ljtpTX7nHqO3Fo6uECEqWKgDNSgEaeQiw xXB0auShR6AnOymVc4GeBjjJ8R1aevb08xhP5eslTOmzjLBY4gBemeSrBOig7PLp WehjILxMNERzwdm3L+/QEEkp6yAzEOhvMrILHOIRg3m74HSG2zIYu0OJpx4iikIe 6+i9fNs83uSYQ/srbCNN5PFMLMf8u1NzSjykK9R4Au4V8gwZxsBblQLxFgc7Mitv vaFuOKh8sQvZFlVKvVOfDqQp8a1agcquOnskmzNI3E828rYn8wiOkmsQWgpTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUwoQDmkIs5fe8/FPjIzR1A8M53HcwHwYDVR0j BBgwFoAUFS199nU/32gJr47sQVigeHRQlZswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGU2OTNiODktNDU5Ny00MGI1LTkyYjAtYjI5OWZhNzY5YWZhLzAvMTUyRDdERjY3 NTNGREY2ODA5QUY4RUVDNDE1OEEwNzg3NDUwOTU5Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNTJEN0RGNjc1M0ZERjY4MDlBRjhFRUM0MTU4QTA3ODc0NTA5 NTlCLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAsw DQYJKoZIhvcNAQELBQADggEBAAPWmpIJnsrszf+yCm3JwPuzWqIBVHt23XtAvsCp EZ/XERWYoRh8XHumaQh5tVtt5PunDg1N5Q54zgT7ozb2kSsPpE5iSNflKKaaes0D y/h+R60jWmChQBDyUVRDI/ctULMeJlpIUaTM95z9GvBtk6bTG+tXEhVcpEkkxwPu zzaGM34vTxrQrF6UeeoDBG52O4ehNB5Ya3i9Cu1Zt9kxthBUzh1n7NpH1boqMFrv n79lS8AKSCzeTUCbY7/FIxCqBm+SyB+RohFIuj6BgxNXwAJYXw831BJnqT/ORsuq wYU10oGpU14/K5wOi25RA0kN3u/dhMn/cf35Cyeq2Dhxwfw= -----END CERTIFICATE-----Generated at Wed May 13 11:55:20 2026 by rpki-client