$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: EWkdEnY2dBe8qN+EXEx4MirV7VvtT9JmqsDf21w/x9E= Subject key identifier: 48:3E:BD:BA:88:FA:3E:55:A8:2E:FA:5F:9B:94:62:26:95:4A:81:06 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 2DDAD3D15137EE14310C19D5BECC637D0B9AFAA4 Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:08 +0000 ROA not before: Sun 03 May 2026 02:59:08 +0000 ROA not after: Sun 02 May 2027 03:04:08 +0000 asID: 133798 IP address blocks: 2402:5680:8840::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:da:d3:d1:51:37:ee:14:31:0c:19:d5:be:cc:63:7d:0b:9a:fa:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:08 2026 GMT Not After : May 2 03:04:08 2027 GMT Subject: CN=483EBDBA88FA3E55A82EFA5F9B946226954A8106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d6:ad:a2:0c:68:cc:60:0f:6d:4a:d3:ea:7a: 31:91:2a:27:72:d4:3f:3e:36:c6:8a:01:e7:26:19: 9b:ac:65:5a:ae:c5:63:36:c9:c2:de:1b:13:46:8b: 3c:3a:99:49:77:9b:af:84:13:2a:82:22:fa:c5:e2: 1b:d6:22:19:5e:ad:8f:40:b6:15:f5:11:4b:ed:27: 48:ab:51:bc:0d:40:fe:fc:b8:00:d6:fc:6b:1e:a2: 5a:e3:33:a8:f0:80:f1:9c:13:1a:5e:97:cb:f8:37: cc:85:56:7e:84:3b:b8:4d:0d:32:b9:d1:d6:0a:8b: 4f:f3:0c:c5:c6:34:81:3a:00:65:a8:82:ff:82:c7: fd:41:f3:3e:97:36:a9:ab:0b:29:fc:f5:3b:c0:4e: c7:b7:03:32:3c:f8:3e:02:96:8a:22:55:f2:d4:34: 7e:e7:a3:ba:3b:c1:ff:3a:5c:ec:f6:43:24:5f:47: aa:09:eb:07:b4:e7:53:50:2a:9d:f5:d7:4b:4b:77: b8:56:f9:2f:78:07:1d:65:6e:6b:d0:20:77:97:13: 6c:d7:cb:39:42:b0:23:00:77:9f:59:49:d0:e1:84: 1d:1e:8f:40:58:21:c0:12:e1:c1:ad:eb:10:5b:c8: 77:b6:4c:d8:d6:68:ec:3e:58:64:6d:84:a9:9f:96: 41:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3E:BD:BA:88:FA:3E:55:A8:2E:FA:5F:9B:94:62:26:95:4A:81:06 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8840::/44 Signature Algorithm: sha256WithRSAEncryption 9a:0b:05:02:76:72:1f:5f:23:cb:50:dd:01:7a:da:50:bc:d9: 0c:a9:5f:67:b1:9b:81:c6:42:92:7a:8b:68:70:f5:0c:db:1d: 73:a1:b9:58:83:85:36:75:61:a8:88:a2:b2:e1:4a:d0:0f:f1: bb:b8:9a:e2:0b:59:cc:ca:ae:92:26:9e:22:84:24:39:be:dd: 35:33:00:f0:99:2e:36:e9:d6:5f:9a:5b:5a:3a:57:c8:3e:5d: 06:f2:01:8e:d7:7c:af:43:0e:35:be:3c:31:d0:d9:8c:9a:ec: 8e:e1:7d:50:e8:b3:fe:fa:c2:2e:18:38:1a:76:0b:dc:40:10: 11:05:35:47:31:93:1c:7b:85:90:ad:f3:be:41:a3:b2:07:55: 71:93:0e:a2:aa:31:5d:ce:1a:3a:4c:27:40:49:1e:d7:c8:ad: 97:68:46:02:bd:89:8c:8c:90:37:e2:72:53:dc:38:be:02:7c: 09:27:46:66:56:4d:49:28:1e:0b:61:f2:e3:dc:46:62:a3:a6: 33:4c:a0:ac:88:d8:d0:e8:9d:fd:d1:83:f1:ef:f9:1a:03:73: e7:7e:96:0c:ab:c6:18:1c:17:86:e9:b8:4f:52:f2:63:27:bb: 4f:dd:dd:9b:36:14:5b:f6:85:67:66:ca:2c:0e:dd:9b:e4:ec: bc:0f:93:dd -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULdrT0VE37hQxDBnVvsxjfQua+qQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MDhaFw0yNzA1MDIwMzA0MDhaMDMxMTAvBgNV BAMTKDQ4M0VCREJBODhGQTNFNTVBODJFRkE1RjlCOTQ2MjI2OTU0QTgxMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC11q2iDGjMYA9tStPqejGRKidy 1D8+NsaKAecmGZusZVquxWM2ycLeGxNGizw6mUl3m6+EEyqCIvrF4hvWIhlerY9A thX1EUvtJ0irUbwNQP78uADW/GseolrjM6jwgPGcExpel8v4N8yFVn6EO7hNDTK5 0dYKi0/zDMXGNIE6AGWogv+Cx/1B8z6XNqmrCyn89TvATse3AzI8+D4ClooiVfLU NH7no7o7wf86XOz2QyRfR6oJ6we051NQKp3110tLd7hW+S94Bx1lbmvQIHeXE2zX yzlCsCMAd59ZSdDhhB0ej0BYIcAS4cGt6xBbyHe2TNjWaOw+WGRthKmflkG/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUSD69uoj6PlWoLvpfm5RiJpVKgQYwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODM0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiEAwDQYJKoZIhvcNAQELBQADggEBAJoLBQJ2ch9fI8tQ3QF62lC82QypX2ex m4HGQpJ6i2hw9QzbHXOhuViDhTZ1YaiIorLhStAP8bu4muILWczKrpImniKEJDm+ 3TUzAPCZLjbp1l+aW1o6V8g+XQbyAY7XfK9DDjW+PDHQ2Yya7I7hfVDos/76wi4Y OBp2C9xAEBEFNUcxkxx7hZCt875Bo7IHVXGTDqKqMV3OGjpMJ0BJHtfIrZdoRgK9 iYyMkDficlPcOL4CfAknRmZWTUkoHgth8uPcRmKjpjNMoKyI2NDonf3Rg/Hv+RoD c+d+lgyrxhgcF4bpuE9S8mMnu0/d3Zs2FFv2hWdmyiwO3Zvk7LwPk90= -----END CERTIFICATE-----Generated at Wed May 13 12:43:14 2026 by rpki-client