$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383863303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383863303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: mgq+CG191UbZcat10VyvgV43JjVNMR03vuVEERn8uC8= Subject key identifier: 7D:C2:CA:F6:AF:B2:9B:DE:B5:C6:EE:80:54:5E:E4:2A:A8:BD:C3:C3 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 3DCBFB2B3730316E5617B00C8B2B9DC03205173A Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383863303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:30 +0000 ROA not before: Sun 03 May 2026 02:59:30 +0000 ROA not after: Sun 02 May 2027 03:04:30 +0000 asID: 133798 IP address blocks: 2402:5680:88c0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:cb:fb:2b:37:30:31:6e:56:17:b0:0c:8b:2b:9d:c0:32:05:17:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:30 2026 GMT Not After : May 2 03:04:30 2027 GMT Subject: CN=7DC2CAF6AFB29BDEB5C6EE80545EE42AA8BDC3C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a7:fc:52:a9:60:07:2d:18:5d:86:de:68:ce: b6:59:e4:06:d9:1b:28:31:2b:c2:65:59:e9:01:84: de:5e:5d:5c:9f:73:d6:e1:4a:56:e4:69:df:29:ee: d0:e6:ad:03:1e:df:d9:26:e6:a4:fa:6c:58:1b:e8: 13:06:3f:a9:c4:a9:c1:0a:36:8b:2c:f2:34:e0:9c: c2:bd:f3:47:41:36:06:e4:33:ff:3b:5d:a1:3c:0c: fc:af:73:74:eb:6b:09:bd:fc:59:47:28:83:dd:43: b6:a2:95:e7:16:39:38:8e:fe:92:c4:cb:d0:2b:ed: 86:01:37:69:e5:93:7c:a6:43:b9:66:64:72:d1:db: 19:66:c4:39:44:ba:66:85:33:6e:b1:d3:d9:eb:34: ee:98:c0:4a:0e:fb:9b:11:6e:fa:2d:ef:88:27:87: 37:e5:3d:ba:1e:2b:d8:4f:f6:5f:65:a2:b1:9f:7e: bb:1a:08:6a:af:18:c1:32:e0:3c:44:84:53:6a:e7: 79:70:d9:fb:22:e4:00:b9:68:48:56:39:0e:c0:5c: b9:bd:a1:f7:2e:16:d2:67:0d:f1:b9:04:db:16:48: 35:3d:09:5f:cf:94:c3:ef:5a:f4:22:1a:3f:1d:a7: b0:48:9d:a0:3b:a5:17:bb:c5:51:f8:73:74:5d:8b: 71:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C2:CA:F6:AF:B2:9B:DE:B5:C6:EE:80:54:5E:E4:2A:A8:BD:C3:C3 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383863303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:88c0::/44 Signature Algorithm: sha256WithRSAEncryption 28:4a:fe:38:ac:04:13:e7:cf:01:29:c6:ee:f4:78:33:07:87: c5:52:78:fc:d0:77:c1:39:df:74:9e:27:33:7f:e7:19:cd:20: b4:10:d6:44:f6:59:96:6e:a5:5d:9b:7f:e5:86:75:56:9e:13: 4d:08:d2:50:dc:ec:4c:4d:d5:91:4e:12:11:d8:c0:05:2d:ba: d5:a7:66:3e:01:01:4c:ae:6a:70:1f:59:d0:c8:73:61:65:2a: 53:42:25:e9:f4:3b:14:35:6f:25:7b:90:35:63:c0:09:68:04: 15:a3:94:0d:00:32:14:67:2c:36:50:f8:3d:45:d0:97:05:8f: f7:3f:11:32:52:4e:19:8f:d0:5a:2b:7b:5c:13:f1:b5:0f:73: ff:53:a5:10:a2:73:66:08:61:a6:61:fa:ed:e3:e5:38:51:95: e9:16:e9:32:1d:15:45:fc:93:37:1e:da:6d:89:65:74:e0:ef: 46:4a:83:53:21:16:88:36:2e:0e:dc:81:c0:c6:44:b5:41:25: 3b:7e:c1:f8:2a:df:5d:7a:b2:95:91:35:61:21:c9:62:9e:39: da:ee:30:16:bd:b1:b1:64:7b:6c:cc:e0:4a:43:4b:3f:5a:b6: 2a:83:3d:4a:54:8b:c4:62:9b:86:78:7c:3b:85:1e:06:b6:da: cb:83:87:b3 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPcv7KzcwMW5WF7AMiyudwDIFFzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MzBaFw0yNzA1MDIwMzA0MzBaMDMxMTAvBgNV BAMTKDdEQzJDQUY2QUZCMjlCREVCNUM2RUU4MDU0NUVFNDJBQThCREMzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrp/xSqWAHLRhdht5ozrZZ5AbZ GygxK8JlWekBhN5eXVyfc9bhSlbkad8p7tDmrQMe39km5qT6bFgb6BMGP6nEqcEK Noss8jTgnMK980dBNgbkM/87XaE8DPyvc3Trawm9/FlHKIPdQ7ailecWOTiO/pLE y9Ar7YYBN2nlk3ymQ7lmZHLR2xlmxDlEumaFM26x09nrNO6YwEoO+5sRbvot74gn hzflPboeK9hP9l9lorGffrsaCGqvGMEy4DxEhFNq53lw2fsi5AC5aEhWOQ7AXLm9 ofcuFtJnDfG5BNsWSDU9CV/PlMPvWvQiGj8dp7BInaA7pRe7xVH4c3Rdi3GZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUfcLK9q+ym961xu6AVF7kKqi9w8MwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiMAwDQYJKoZIhvcNAQELBQADggEBAChK/jisBBPnzwEpxu70eDMHh8VSePzQ d8E533SeJzN/5xnNILQQ1kT2WZZupV2bf+WGdVaeE00I0lDc7ExN1ZFOEhHYwAUt utWnZj4BAUyuanAfWdDIc2FlKlNCJen0OxQ1byV7kDVjwAloBBWjlA0AMhRnLDZQ +D1F0JcFj/c/ETJSThmP0Fore1wT8bUPc/9TpRCic2YIYaZh+u3j5ThRlekW6TId FUX8kzce2m2JZXTg70ZKg1MhFog2Lg7cgcDGRLVBJTt+wfgq3116spWRNWEhyWKe OdruMBa9sbFke2zM4EpDSz9atiqDPUpUi8Rim4Z4fDuFHga22suDh7M= -----END CERTIFICATE-----Generated at Wed May 13 13:30:15 2026 by rpki-client