$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383735303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383735303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: Mcf67r4QqWB+kHBzh6UZUwcAir4HrdAQf0eTHkPDdTI= Subject key identifier: 33:75:96:58:AA:B6:6E:E2:A8:6B:D1:E5:98:BF:9B:51:3C:75:47:69 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 3F5EF76AFBBFAF3901555F2008CE5FFB1C7A7846 Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383735303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:12 +0000 ROA not before: Sun 03 May 2026 02:59:12 +0000 ROA not after: Sun 02 May 2027 03:04:12 +0000 asID: 133798 IP address blocks: 2402:5680:8750::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:5e:f7:6a:fb:bf:af:39:01:55:5f:20:08:ce:5f:fb:1c:7a:78:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:12 2026 GMT Not After : May 2 03:04:12 2027 GMT Subject: CN=33759658AAB66EE2A86BD1E598BF9B513C754769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8a:63:d6:48:eb:35:be:0c:64:9e:ed:d4:dc: 26:bb:a0:e9:56:3b:2c:c1:0e:d6:b4:4f:71:bc:0e: a2:8c:59:d7:2f:67:cc:38:ee:88:1e:4c:e7:68:4c: 2c:58:a3:9c:02:cb:f6:f2:45:6f:14:f2:ce:3a:71: 45:ee:76:77:f9:03:b9:18:2f:37:85:bd:a6:a6:2f: 2a:11:5e:df:ac:7c:7d:b5:dd:a6:27:30:b4:0a:5d: 1f:fe:04:95:ae:5a:86:01:f4:34:76:c9:87:c1:2d: 1d:9b:ed:3b:2f:2b:d6:05:d3:d2:39:b9:1b:53:a2: 4b:bc:84:94:76:9d:56:59:6c:22:f2:42:7f:b7:99: 1f:6d:84:d8:37:13:71:f2:69:18:c1:64:9b:37:83: 93:c3:dd:07:82:e7:db:8e:6f:f3:f3:c8:94:f7:b6: 8d:e4:95:c2:83:11:8f:12:66:30:1a:e0:6d:af:4d: 43:19:43:f0:72:ca:85:2a:ad:40:11:2b:c8:07:df: 14:8f:2f:b8:83:62:bb:8a:ea:72:8d:99:ae:8a:82: e5:fd:0a:a7:55:66:33:6d:0d:52:3e:4b:dd:a9:90: 72:b9:54:3f:2b:ad:c3:ea:2b:40:63:24:83:19:88: 0e:47:09:8d:6c:c5:14:b3:39:51:e3:29:5a:62:08: 84:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:75:96:58:AA:B6:6E:E2:A8:6B:D1:E5:98:BF:9B:51:3C:75:47:69 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383735303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8750::/44 Signature Algorithm: sha256WithRSAEncryption 40:89:b5:e5:f7:25:e3:af:58:bb:f4:c0:7e:69:e7:76:d8:6d: fc:78:d2:60:27:75:49:e6:9f:82:36:28:c6:1e:20:41:55:3f: 7d:55:b4:67:e9:be:b5:d3:84:e1:c6:0d:7b:93:66:89:d3:0d: 4a:dd:89:27:90:23:68:12:b4:8e:c7:7a:3f:c3:37:2a:af:b8: e1:f8:d5:1b:83:d2:dc:f5:81:22:4c:9d:8b:5f:db:a7:9a:d6: fa:d3:09:4b:85:a2:8e:ca:96:fa:83:11:3a:ea:06:f9:12:a1: 8a:d6:4d:5d:ad:db:9a:f8:26:5e:1b:08:cc:89:7d:59:c2:20: c8:e0:8f:e2:ce:2d:f9:da:e6:69:53:d8:91:3a:47:df:e4:67: 61:90:3c:75:dc:1c:cf:78:83:6d:99:2d:74:4e:44:e1:d3:ec: 9b:d9:76:42:fa:ad:7e:63:8b:4e:b9:ec:95:08:ae:3a:10:00: fe:93:a0:8e:98:40:d7:57:e8:95:59:92:07:b1:20:80:04:c7: 93:9a:ab:bd:b1:87:07:55:24:19:5b:44:d5:05:a1:c0:91:6c: 07:8b:6c:1c:44:ac:fb:4e:e0:c4:77:2d:dc:37:e2:af:83:4a: c4:d4:44:bd:09:e8:c9:0c:dc:63:8c:b7:2e:5f:83:4e:cb:30: ff:ae:b2:7c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUP173avu/rzkBVV8gCM5f+xx6eEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MTJaFw0yNzA1MDIwMzA0MTJaMDMxMTAvBgNV BAMTKDMzNzU5NjU4QUFCNjZFRTJBODZCRDFFNTk4QkY5QjUxM0M3NTQ3NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbimPWSOs1vgxknu3U3Ca7oOlW OyzBDta0T3G8DqKMWdcvZ8w47ogeTOdoTCxYo5wCy/byRW8U8s46cUXudnf5A7kY LzeFvaamLyoRXt+sfH213aYnMLQKXR/+BJWuWoYB9DR2yYfBLR2b7TsvK9YF09I5 uRtToku8hJR2nVZZbCLyQn+3mR9thNg3E3HyaRjBZJs3g5PD3QeC59uOb/PzyJT3 to3klcKDEY8SZjAa4G2vTUMZQ/ByyoUqrUARK8gH3xSPL7iDYruK6nKNma6KguX9 CqdVZjNtDVI+S92pkHK5VD8rrcPqK0BjJIMZiA5HCY1sxRSzOVHjKVpiCIRTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUM3WWWKq2buKoa9HlmL+bUTx1R2kwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzNzM1MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAh1AwDQYJKoZIhvcNAQELBQADggEBAECJteX3JeOvWLv0wH5p53bYbfx40mAn dUnmn4I2KMYeIEFVP31VtGfpvrXThOHGDXuTZonTDUrdiSeQI2gStI7Hej/DNyqv uOH41RuD0tz1gSJMnYtf26ea1vrTCUuFoo7KlvqDETrqBvkSoYrWTV2t25r4Jl4b CMyJfVnCIMjgj+LOLfna5mlT2JE6R9/kZ2GQPHXcHM94g22ZLXROROHT7JvZdkL6 rX5ji0657JUIrjoQAP6ToI6YQNdX6JVZkgexIIAEx5Oaq72xhwdVJBlbRNUFocCR bAeLbBxErPtO4MR3Ldw34q+DSsTURL0J6MkM3GOMty5fg07LMP+usnw= -----END CERTIFICATE-----Generated at Wed May 13 12:08:24 2026 by rpki-client