$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: y/aqqjfGksuEvOZ+zorfrkJj2zMM3inBREArJuslGng= Subject key identifier: 0D:9F:6E:D1:83:66:AC:71:9C:0F:29:7F:F0:84:64:6E:86:D7:0D:23 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 6CD595645FAE79EFE265A5018FED672D53E347C1 Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:05 +0000 ROA not before: Sun 03 May 2026 02:59:05 +0000 ROA not after: Sun 02 May 2027 03:04:05 +0000 asID: 133798 IP address blocks: 2402:5680:89e0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:d5:95:64:5f:ae:79:ef:e2:65:a5:01:8f:ed:67:2d:53:e3:47:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:05 2026 GMT Not After : May 2 03:04:05 2027 GMT Subject: CN=0D9F6ED18366AC719C0F297FF084646E86D70D23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d4:e6:d1:a9:be:18:a3:3b:01:65:b0:68:6c: 25:fd:e4:cd:08:e0:bb:d8:b8:e5:ba:ed:06:be:27: d8:8b:09:77:2b:79:24:3d:11:f0:d5:b6:0a:7e:9f: 1a:50:bf:52:ca:c3:25:4c:0b:7e:61:42:6b:b4:3d: dd:1b:b3:e2:e0:46:bf:00:77:4d:e2:c9:ec:8f:a9: e1:f0:02:82:90:5b:3d:d9:2b:fd:07:aa:bb:c3:cb: 09:a0:d4:4a:3a:73:a3:05:73:96:ac:0a:b9:d7:e0: fc:00:d7:bc:4d:a0:16:31:a0:53:33:6c:f0:c5:e6: ab:bb:bd:a2:bb:d0:6d:9f:26:ba:d4:9c:d0:4c:70: a8:b9:8c:43:fb:cb:8e:bc:6d:73:fd:87:a1:0e:3b: 46:a6:1e:6f:5e:cc:29:eb:b6:c8:9e:2e:e5:0b:59: ca:0f:29:f4:11:40:07:a2:00:54:fb:10:f8:ee:f0: 7c:a4:be:d6:88:32:42:21:46:81:6c:0a:31:72:4b: 14:01:f3:00:21:62:01:95:1a:8e:0c:fd:60:ba:14: 39:ab:72:32:e7:0f:b1:87:c3:7e:3a:7b:7c:70:e2: 04:00:68:ee:0a:d1:94:e3:ed:9d:69:ae:1e:84:a2: 6d:69:a0:c5:09:2d:0d:de:3d:7b:b8:2f:a1:07:0a: ff:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9F:6E:D1:83:66:AC:71:9C:0F:29:7F:F0:84:64:6E:86:D7:0D:23 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:89e0::/44 Signature Algorithm: sha256WithRSAEncryption 47:af:68:19:17:b8:e8:45:9c:89:4e:26:0a:ab:ab:a2:a9:47: 80:c6:8d:59:80:61:e7:29:5e:34:f8:2e:3f:b5:bb:23:3d:7b: d7:09:67:96:77:87:21:a4:67:37:40:28:2f:a8:2c:d5:ea:7b: 49:c0:a8:27:0f:d5:2b:6d:b2:8d:22:3c:4f:88:9e:60:11:70: e4:a5:34:41:f2:63:93:27:04:3b:0a:64:19:2a:67:4f:8a:ce: 28:2f:4a:5f:5b:00:00:96:b7:c9:70:a3:32:3d:66:61:d4:26: 6a:c6:70:c9:cc:17:86:0a:23:3b:43:96:ba:96:63:48:d7:ad: 05:51:d2:c7:1a:44:6e:16:da:96:56:a4:fa:92:03:9d:71:3b: aa:96:1e:c3:a4:3d:f5:c6:4d:4f:b5:26:6f:d8:13:69:17:e8: b9:9e:60:38:c5:84:b8:6b:1b:d9:fe:20:e6:b6:89:98:20:b4: 88:b3:a0:f2:77:4f:f6:74:8b:a0:87:e4:74:5d:94:4a:0e:f5: ff:e3:c6:16:18:5c:1b:61:e4:84:0f:b6:f1:55:db:98:02:66: 5c:7c:07:84:f1:6b:b2:7d:a0:c8:0e:d2:ba:cb:0f:28:5e:43: 0f:74:34:34:d3:91:d4:11:82:74:a5:15:c0:6f:d6:37:3d:ba: c2:6b:29:5c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUbNWVZF+uee/iZaUBj+1nLVPjR8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MDVaFw0yNzA1MDIwMzA0MDVaMDMxMTAvBgNV BAMTKDBEOUY2RUQxODM2NkFDNzE5QzBGMjk3RkYwODQ2NDZFODZENzBEMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ1ObRqb4YozsBZbBobCX95M0I 4LvYuOW67Qa+J9iLCXcreSQ9EfDVtgp+nxpQv1LKwyVMC35hQmu0Pd0bs+LgRr8A d03iyeyPqeHwAoKQWz3ZK/0HqrvDywmg1Eo6c6MFc5asCrnX4PwA17xNoBYxoFMz bPDF5qu7vaK70G2fJrrUnNBMcKi5jEP7y468bXP9h6EOO0amHm9ezCnrtsieLuUL WcoPKfQRQAeiAFT7EPju8HykvtaIMkIhRoFsCjFySxQB8wAhYgGVGo4M/WC6FDmr cjLnD7GHw346e3xw4gQAaO4K0ZTj7Z1prh6Eom1poMUJLQ3ePXu4L6EHCv/9AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUDZ9u0YNmrHGcDyl/8IRkbobXDSMwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTY1MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAieAwDQYJKoZIhvcNAQELBQADggEBAEevaBkXuOhFnIlOJgqrq6KpR4DGjVmA YecpXjT4Lj+1uyM9e9cJZ5Z3hyGkZzdAKC+oLNXqe0nAqCcP1Sttso0iPE+InmAR cOSlNEHyY5MnBDsKZBkqZ0+KzigvSl9bAACWt8lwozI9ZmHUJmrGcMnMF4YKIztD lrqWY0jXrQVR0scaRG4W2pZWpPqSA51xO6qWHsOkPfXGTU+1Jm/YE2kX6LmeYDjF hLhrG9n+IOa2iZggtIizoPJ3T/Z0i6CH5HRdlEoO9f/jxhYYXBth5IQPtvFV25gC Zlx8B4Txa7J9oMgO0rrLDyheQw90NDTTkdQRgnSlFcBv1jc9usJrKVw= -----END CERTIFICATE-----Generated at Wed May 13 12:21:27 2026 by rpki-client