$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383731303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383731303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: Pg/YffKK27mWUqG1SeH6cewcOx63X/FRBhhn3WY8mMo= Subject key identifier: 2E:09:7B:FF:72:35:42:6B:B3:D9:80:C1:6C:F3:62:5F:C4:3C:14:50 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 6B75CF36575C1D30FC18E38031CA32AE870CD0F7 Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383731303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:20 +0000 ROA not before: Sun 03 May 2026 02:59:20 +0000 ROA not after: Sun 02 May 2027 03:04:20 +0000 asID: 133798 IP address blocks: 2402:5680:8710::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:75:cf:36:57:5c:1d:30:fc:18:e3:80:31:ca:32:ae:87:0c:d0:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:20 2026 GMT Not After : May 2 03:04:20 2027 GMT Subject: CN=2E097BFF7235426BB3D980C16CF3625FC43C1450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:97:8d:c8:e4:f4:dd:59:d1:46:bb:3f:ff:f6: 34:6e:bf:e8:d9:c8:b0:eb:e8:41:1f:20:42:f0:55: db:fc:7c:4c:91:31:00:ea:a6:2c:d8:c7:6a:41:a9: 69:49:5f:e0:76:40:7b:b5:ba:12:0a:f9:93:55:d0: aa:0a:5e:99:c8:27:f4:b0:56:85:df:f8:05:26:10: 47:fb:dd:f3:41:07:e5:5e:93:c8:18:2f:da:c8:ec: a5:69:f5:1c:6d:5f:98:bf:ab:04:3c:bc:db:81:63: 4d:03:46:7b:3a:b1:59:4a:0b:9b:af:60:1a:ff:66: 85:c6:65:12:7f:bc:bd:c1:f2:5c:4e:d9:68:09:37: d4:5a:96:a8:56:f5:f3:5b:82:29:6b:35:cf:87:9f: 12:3d:72:35:c5:e0:3d:65:6f:c6:20:31:a0:f1:1e: f1:39:e8:40:8e:60:0c:35:78:7a:b1:ea:b7:a5:10: 84:93:d8:24:b9:ae:5f:d0:05:40:0a:6c:2a:3e:cc: e3:51:72:8e:ad:a0:a2:78:aa:53:02:8b:00:16:71: 74:55:70:37:9e:15:d1:19:18:e3:50:44:7c:3f:61: 00:c1:b6:ef:58:99:d4:10:cb:18:5a:f6:4a:ea:67: 1a:52:65:e9:70:a1:89:6d:4d:6e:04:57:7a:73:e5: c1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:09:7B:FF:72:35:42:6B:B3:D9:80:C1:6C:F3:62:5F:C4:3C:14:50 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383731303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8710::/44 Signature Algorithm: sha256WithRSAEncryption 6e:24:17:65:b8:2c:38:47:04:b3:bb:34:6a:e5:36:0d:0c:1b: a8:34:42:e5:aa:9e:2b:c8:4e:14:48:34:e8:85:88:5e:93:49: 75:e8:ea:71:bd:8f:bd:fc:40:02:27:5f:23:eb:66:a9:eb:0d: 25:db:98:2a:3b:92:3a:3a:43:af:8e:e2:5c:52:61:2d:e8:34: c0:2e:91:81:38:56:9a:5d:25:26:52:69:79:3d:a8:46:49:ce: 61:a4:ba:63:84:a2:6e:4b:a7:a8:0c:fe:3e:2d:ca:24:c1:3b: ab:72:be:25:60:cf:5b:d0:ff:8c:e6:90:fc:21:81:f0:18:a0: 3c:21:13:eb:88:d5:37:7b:68:0d:8d:9e:5d:47:9b:c2:dd:16: e3:d9:3b:24:bb:14:c5:e2:94:7d:e8:be:a0:0a:30:c7:7e:d9: a0:46:5a:16:87:8e:b4:eb:f4:73:dc:35:89:35:a8:47:28:ec: 40:4c:68:92:34:7f:27:f6:af:d4:82:a2:ba:40:80:c1:3f:22: b8:dc:b2:e2:a2:7d:40:f2:40:0f:e9:37:fc:22:9b:54:ec:f8: c8:db:8f:cd:83:b5:ee:36:0c:51:af:86:ac:a4:63:28:c4:06: 60:f1:e4:b6:9c:f1:8f:72:4d:28:aa:5e:93:34:88:92:57:9e: 7a:70:7c:cb -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUa3XPNldcHTD8GOOAMcoyrocM0PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MjBaFw0yNzA1MDIwMzA0MjBaMDMxMTAvBgNV BAMTKDJFMDk3QkZGNzIzNTQyNkJCM0Q5ODBDMTZDRjM2MjVGQzQzQzE0NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbl43I5PTdWdFGuz//9jRuv+jZ yLDr6EEfIELwVdv8fEyRMQDqpizYx2pBqWlJX+B2QHu1uhIK+ZNV0KoKXpnIJ/Sw VoXf+AUmEEf73fNBB+Vek8gYL9rI7KVp9RxtX5i/qwQ8vNuBY00DRns6sVlKC5uv YBr/ZoXGZRJ/vL3B8lxO2WgJN9RalqhW9fNbgilrNc+HnxI9cjXF4D1lb8YgMaDx HvE56ECOYAw1eHqx6relEIST2CS5rl/QBUAKbCo+zONRco6toKJ4qlMCiwAWcXRV cDeeFdEZGONQRHw/YQDBtu9YmdQQyxha9krqZxpSZelwoYltTW4EV3pz5cFLAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQULgl7/3I1Qmuz2YDBbPNiX8Q8FFAwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzNzMxMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAhxAwDQYJKoZIhvcNAQELBQADggEBAG4kF2W4LDhHBLO7NGrlNg0MG6g0QuWq nivIThRINOiFiF6TSXXo6nG9j738QAInXyPrZqnrDSXbmCo7kjo6Q6+O4lxSYS3o NMAukYE4VppdJSZSaXk9qEZJzmGkumOEom5Lp6gM/j4tyiTBO6tyviVgz1vQ/4zm kPwhgfAYoDwhE+uI1Td7aA2Nnl1Hm8LdFuPZOyS7FMXilH3ovqAKMMd+2aBGWhaH jrTr9HPcNYk1qEco7EBMaJI0fyf2r9SCorpAgME/IrjcsuKifUDyQA/pN/wim1Ts +Mjbj82Dte42DFGvhqykYyjEBmDx5Lac8Y9yTSiqXpM0iJJXnnpwfMs= -----END CERTIFICATE-----Generated at Wed May 13 12:51:42 2026 by rpki-client