$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386565303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a386565303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: bQ2PzRgYgo3MiypaMMOaQrAkMTl9JQney06NLix2L7M= Subject key identifier: 2B:AD:BB:8A:59:CE:AA:82:0C:91:F8:89:0F:AB:5E:9D:B4:CB:FE:95 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 325FF4F204FAF1D9251DB4286759C606CCCC9816 Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386565303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:29 +0000 ROA not before: Sun 03 May 2026 02:59:29 +0000 ROA not after: Sun 02 May 2027 03:04:29 +0000 asID: 133798 IP address blocks: 2402:5680:8ee0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:5f:f4:f2:04:fa:f1:d9:25:1d:b4:28:67:59:c6:06:cc:cc:98:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:29 2026 GMT Not After : May 2 03:04:29 2027 GMT Subject: CN=2BADBB8A59CEAA820C91F8890FAB5E9DB4CBFE95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7c:ea:52:90:d5:d7:85:94:3f:8b:a4:35:49: 38:d1:51:76:49:ec:b2:78:99:20:9a:38:57:42:54: a1:3e:f7:90:c8:73:ac:c2:5e:46:d3:0b:0c:69:6f: 65:15:18:87:5c:8a:9c:46:11:81:3e:fc:8c:49:d6: 18:91:f8:78:45:f2:74:25:ef:41:1a:37:a0:b6:f1: f5:e3:cd:8a:56:25:bd:27:da:58:21:54:68:e7:6f: 48:97:1e:e4:80:a1:9b:10:70:a8:36:80:d9:73:03: 9a:87:ea:fe:62:1b:8d:99:a7:ff:8f:f6:ef:a4:d3: b3:d4:ff:cb:0f:77:a6:f7:c3:6f:3c:83:c8:d4:d2: 55:f8:85:1c:83:47:cf:75:2e:b9:6b:8b:76:13:8c: 91:95:f7:40:31:75:a2:45:67:a7:57:e8:d4:eb:f0: 46:15:ab:0d:24:19:eb:94:89:7f:dd:2e:6e:cc:10: ef:ba:18:3e:d6:28:0b:66:4f:3e:7e:97:f5:52:41: 9a:e0:6f:27:28:41:b4:e2:26:fe:cc:c1:3a:53:b1: d0:43:d1:25:90:ee:ba:b8:ab:16:31:7c:c8:2d:02: 6c:0c:8d:0d:4b:3a:1e:da:f1:52:a2:c9:5e:9e:72: 39:a0:4e:52:24:93:33:86:a1:28:c0:36:0d:e5:85: 40:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AD:BB:8A:59:CE:AA:82:0C:91:F8:89:0F:AB:5E:9D:B4:CB:FE:95 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386565303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8ee0::/44 Signature Algorithm: sha256WithRSAEncryption 98:63:ef:d9:ca:b0:12:8f:76:6d:a1:0c:74:43:d3:c4:32:79: 50:c2:bd:35:c6:9f:c0:09:88:c5:36:d3:6c:67:4a:f4:77:ac: d0:a4:8f:65:5a:87:89:bc:d6:bd:88:7a:2e:9c:1b:b7:b6:7a: d7:9d:b9:60:23:f2:48:5d:3f:8e:ee:d9:41:96:3f:4e:68:87: f2:50:ee:ed:a7:e4:f4:6a:40:19:97:3a:49:95:6d:6f:b0:36: 90:cc:65:5e:e9:52:d1:8a:e8:35:cc:a9:19:41:76:0f:34:22: 9b:33:85:f6:39:c2:02:9a:00:71:2f:78:f0:e6:2a:32:34:4d: 38:41:d0:25:80:c6:fd:d3:22:58:09:b5:65:45:bb:ec:57:51: ba:d0:7b:86:3c:83:c2:44:0c:e9:9d:fa:a8:d4:f4:e6:35:67: 3e:ad:b1:d3:d8:1a:6b:ba:25:29:5b:46:76:f4:4d:37:b7:9a: 31:db:f5:14:86:2b:35:1c:b8:74:30:49:83:aa:46:cb:a5:db: 9f:55:55:06:13:a9:b6:6d:09:60:4a:5a:10:c7:aa:40:7c:96: 81:39:aa:3c:f6:e1:a8:e0:19:d2:02:26:f4:a3:c9:32:67:f5: 6d:42:d0:59:86:3e:b0:17:65:d1:c6:0f:a8:7c:be:a8:55:78: 63:69:27:e0 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUMl/08gT68dklHbQoZ1nGBszMmBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MjlaFw0yNzA1MDIwMzA0MjlaMDMxMTAvBgNV BAMTKDJCQURCQjhBNTlDRUFBODIwQzkxRjg4OTBGQUI1RTlEQjRDQkZFOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpfOpSkNXXhZQ/i6Q1STjRUXZJ 7LJ4mSCaOFdCVKE+95DIc6zCXkbTCwxpb2UVGIdcipxGEYE+/IxJ1hiR+HhF8nQl 70EaN6C28fXjzYpWJb0n2lghVGjnb0iXHuSAoZsQcKg2gNlzA5qH6v5iG42Zp/+P 9u+k07PU/8sPd6b3w288g8jU0lX4hRyDR891Lrlri3YTjJGV90AxdaJFZ6dX6NTr 8EYVqw0kGeuUiX/dLm7MEO+6GD7WKAtmTz5+l/VSQZrgbycoQbTiJv7MwTpTsdBD 0SWQ7rq4qxYxfMgtAmwMjQ1LOh7a8VKiyV6ecjmgTlIkkzOGoSjANg3lhUDNAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUK627ilnOqoIMkfiJD6tenbTL/pUwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzg2NTY1MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAjuAwDQYJKoZIhvcNAQELBQADggEBAJhj79nKsBKPdm2hDHRD08QyeVDCvTXG n8AJiMU202xnSvR3rNCkj2Vah4m81r2Iei6cG7e2eteduWAj8khdP47u2UGWP05o h/JQ7u2n5PRqQBmXOkmVbW+wNpDMZV7pUtGK6DXMqRlBdg80IpszhfY5wgKaAHEv ePDmKjI0TThB0CWAxv3TIlgJtWVFu+xXUbrQe4Y8g8JEDOmd+qjU9OY1Zz6tsdPY Gmu6JSlbRnb0TTe3mjHb9RSGKzUcuHQwSYOqRsul259VVQYTqbZtCWBKWhDHqkB8 loE5qjz24ajgGdICJvSjyTJn9W1C0FmGPrAXZdHGD6h8vqhVeGNpJ+A= -----END CERTIFICATE-----Generated at Wed May 13 11:49:21 2026 by rpki-client