$ rpki-client -vvf rpki-rsync.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa File: 323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa (raw, json) Hash identifier: JIfbv3OHacG6R+1g4gHR9cdYMCMZDKnTMmU8hqOoUAk= Subject key identifier: 72:F4:68:4C:30:4B:93:14:0F:65:B2:68:CB:55:B1:14:15:53:3F:10 Certificate issuer: /CN=92851265D2097C47E507D8C51B1077D0979AF464 Certificate serial: 152334C5A9529568481D5AA74E620430109C9C47 Authority key identifier: 92:85:12:65:D2:09:7C:47:E5:07:D8:C5:1B:10:77:D0:97:9A:F4:64 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/92851265D2097C47E507D8C51B1077D0979AF464.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa Signing time: Sun 03 May 2026 02:59:03 +0000 ROA not before: Sun 03 May 2026 02:54:03 +0000 ROA not after: Sun 02 May 2027 02:59:03 +0000 asID: 63501 IP address blocks: 2403:fc80:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/92851265D2097C47E507D8C51B1077D0979AF464.crl rsync://rpki-rsync.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/92851265D2097C47E507D8C51B1077D0979AF464.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/92851265D2097C47E507D8C51B1077D0979AF464.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:23:34:c5:a9:52:95:68:48:1d:5a:a7:4e:62:04:30:10:9c:9c:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92851265D2097C47E507D8C51B1077D0979AF464 Validity Not Before: May 3 02:54:03 2026 GMT Not After : May 2 02:59:03 2027 GMT Subject: CN=72F4684C304B93140F65B268CB55B11415533F10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:4a:ae:dd:81:58:ba:a3:a4:0e:e8:bc:cf: 2c:d9:e5:67:82:7a:58:54:ef:dc:fc:80:a3:00:4d: d2:ea:61:77:0f:03:90:4e:09:f8:d6:fa:b5:06:b0: 36:12:b5:f5:38:ef:74:fc:73:b3:97:68:a2:42:7c: d3:92:f9:19:86:15:46:27:a2:8d:3d:3e:c4:66:8f: 93:e2:bd:6d:d3:cb:c2:2f:79:59:22:e9:a9:88:97: 94:65:20:1c:85:5a:ac:e5:93:17:f9:c0:93:f0:25: 6c:9e:58:aa:31:d8:58:df:7c:55:48:22:48:d2:9e: 1c:50:7a:c3:0d:ad:37:1c:d2:a4:69:05:db:00:0c: 64:b6:6a:8a:94:82:7e:c1:06:f1:b7:5f:ef:5a:c0: f3:37:b6:c9:5e:91:d8:2a:0b:40:38:87:86:11:fc: ed:eb:58:e2:5a:39:b3:02:8a:be:a4:45:6f:15:55: 3c:46:50:ec:5c:e3:39:73:54:20:3c:e3:94:c3:de: 42:8f:65:74:a3:b8:91:46:6a:61:92:91:f8:f8:c5: 71:d4:50:31:b4:e5:e8:38:59:42:67:42:42:f1:8e: 8e:de:6b:fd:ac:05:fe:d5:74:74:a8:f2:2d:73:17: c9:02:95:70:75:47:28:a5:cc:57:f1:c0:5f:2f:2c: f0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F4:68:4C:30:4B:93:14:0F:65:B2:68:CB:55:B1:14:15:53:3F:10 X509v3 Authority Key Identifier: keyid:92:85:12:65:D2:09:7C:47:E5:07:D8:C5:1B:10:77:D0:97:9A:F4:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/92851265D2097C47E507D8C51B1077D0979AF464.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/92851265D2097C47E507D8C51B1077D0979AF464.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fc80:8000::/33 Signature Algorithm: sha256WithRSAEncryption 59:48:13:2c:aa:4f:9e:9d:28:76:e8:43:39:9a:07:ef:e4:da: b8:ee:3d:89:4d:98:46:17:ad:e0:2c:af:38:60:47:e3:a2:14: 22:06:31:c1:6a:be:9a:48:4d:ce:6f:15:c1:1e:79:49:2f:bf: 01:6f:a5:28:21:3c:01:da:a3:35:e4:71:eb:e0:d9:a5:4f:9d: f5:bf:87:e1:01:db:48:4d:2c:81:0f:d8:b0:42:dd:5c:6c:f0: 2c:87:ec:a7:3a:f9:f3:37:c7:b5:f8:bf:f5:72:a6:a4:1b:3a: 1a:3c:d4:8b:3c:7f:a2:6d:bf:18:66:27:cf:87:9d:9c:2f:52: fe:d2:b2:6f:2a:77:ca:20:58:4f:35:76:74:41:35:3b:aa:5a: 97:9e:b7:33:3b:71:48:13:8c:59:72:bc:f4:2f:4f:c2:47:c4: a3:4a:30:a8:a9:a3:ef:c5:f4:f0:5b:f5:76:c4:e4:e9:fb:d1: 37:c5:e2:65:0b:fb:45:6c:c9:e1:3c:d4:68:1b:63:dc:8b:ae: 05:94:67:63:5c:41:e7:ba:3c:cc:2f:f8:88:e0:84:9e:31:93: f0:8d:67:32:40:c7:8f:4c:33:22:82:a5:2d:e3:d0:91:e2:9e: a9:86:b7:cb:75:07:5b:32:10:23:94:6e:fa:e1:95:91:31:27: 86:08:02:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFSM0xalSlWhIHVqnTmIEMBCcnEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI4NTEyNjVEMjA5N0M0N0U1MDdEOEM1MUIxMDc3RDA5 NzlBRjQ2NDAeFw0yNjA1MDMwMjU0MDNaFw0yNzA1MDIwMjU5MDNaMDMxMTAvBgNV BAMTKDcyRjQ2ODRDMzA0QjkzMTQwRjY1QjI2OENCNTVCMTE0MTU1MzNGMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvjEqu3YFYuqOkDui8zyzZ5WeC elhU79z8gKMATdLqYXcPA5BOCfjW+rUGsDYStfU473T8c7OXaKJCfNOS+RmGFUYn oo09PsRmj5PivW3Ty8IveVki6amIl5RlIByFWqzlkxf5wJPwJWyeWKox2FjffFVI IkjSnhxQesMNrTcc0qRpBdsADGS2aoqUgn7BBvG3X+9awPM3tslekdgqC0A4h4YR /O3rWOJaObMCir6kRW8VVTxGUOxc4zlzVCA845TD3kKPZXSjuJFGamGSkfj4xXHU UDG05eg4WUJnQkLxjo7ea/2sBf7VdHSo8i1zF8kClXB1RyilzFfxwF8vLPAvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcvRoTDBLkxQPZbJoy1WxFBVTPxAwHwYDVR0j BBgwFoAUkoUSZdIJfEflB9jFGxB30Jea9GQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWQ5MThiMTUtZTYzZS00YjM4LWEwNWMtNjUwZmI0OWYwNTk0LzAvOTI4NTEyNjVE MjA5N0M0N0U1MDdEOEM1MUIxMDc3RDA5NzlBRjQ2NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85Mjg1MTI2NUQyMDk3QzQ3RTUwN0Q4QzUxQjEwNzdEMDk3OUFG NDY0LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzMyMzQzMDMzM2E2NjYzMzgzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzNjMzMzUzMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHJAP8 gIAwDQYJKoZIhvcNAQELBQADggEBAFlIEyyqT56dKHboQzmaB+/k2rjuPYlNmEYX reAsrzhgR+OiFCIGMcFqvppITc5vFcEeeUkvvwFvpSghPAHaozXkcevg2aVPnfW/ h+EB20hNLIEP2LBC3Vxs8CyH7Kc6+fM3x7X4v/VypqQbOho81Is8f6JtvxhmJ8+H nZwvUv7Ssm8qd8ogWE81dnRBNTuqWpeetzM7cUgTjFlyvPQvT8JHxKNKMKipo+/F 9PBb9XbE5On70TfF4mUL+0VsyeE81GgbY9yLrgWUZ2NcQee6PMwv+IjghJ4xk/CN ZzJAx49MMyKCpS3j0JHinqmGt8t1B1syECOUbvrhlZExJ4YIAq0= -----END CERTIFICATE-----Generated at Wed May 13 10:10:35 2026 by rpki-client