$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386631303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a386631303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: wQVMpNxMTiMMKD4tBgoIu8o1JLSmfJVhQ46oYr6UKg8= Subject key identifier: 51:BD:C0:69:22:ED:0E:41:70:EB:09:27:CB:32:9B:25:41:B3:45:F4 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 5272BB57F0E658EA421E911A9E372D88BAF968AA Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386631303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:20 +0000 ROA not before: Sun 03 May 2026 02:59:20 +0000 ROA not after: Sun 02 May 2027 03:04:20 +0000 asID: 133798 IP address blocks: 2402:5680:8f10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:72:bb:57:f0:e6:58:ea:42:1e:91:1a:9e:37:2d:88:ba:f9:68:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:20 2026 GMT Not After : May 2 03:04:20 2027 GMT Subject: CN=51BDC06922ED0E4170EB0927CB329B2541B345F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:12:cd:b3:0a:44:c7:ce:bb:40:0c:25:9f:83: b5:4d:7a:e6:fa:9e:74:e1:54:9d:19:65:a6:3a:34: 61:1a:c4:fd:52:77:87:9d:89:1f:78:dd:e0:29:ae: ea:2d:d1:c6:1a:c3:de:6c:10:4f:db:b1:33:26:1d: b7:35:e3:d2:0f:c9:61:89:d3:c2:8e:83:2c:18:2a: 86:b2:32:4f:3c:31:9d:b7:3d:09:f7:28:96:b8:64: 5b:4f:9d:f5:7e:f9:25:f1:3e:40:06:1d:f8:ce:51: 7d:f0:ad:9e:ba:95:60:3d:17:a2:8e:fa:8a:ca:64: b7:8e:fc:6a:2e:ec:b6:00:60:2e:bc:81:dc:73:89: 3d:b8:7c:77:69:0f:b3:b1:9d:ed:90:6a:f2:e8:9e: 17:84:e3:37:90:65:2f:55:ac:2a:13:15:cb:d6:02: 54:ee:7b:d9:1a:ed:00:c6:0c:8b:c6:7e:71:6a:d5: ca:db:79:76:70:27:ce:1b:d9:2e:40:ac:0a:7b:eb: b0:4b:b7:b1:d1:6c:6e:7c:83:4a:5f:8f:e8:94:c6: 7c:23:fd:17:06:3b:1f:6a:1a:48:a5:63:b3:a4:d7: 8a:ec:22:37:a7:c0:31:59:a1:4e:b0:18:86:2d:a3: 0c:fa:08:0d:6f:f0:d8:e7:a1:cf:5c:5d:ba:52:21: 03:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BD:C0:69:22:ED:0E:41:70:EB:09:27:CB:32:9B:25:41:B3:45:F4 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386631303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8f10::/44 Signature Algorithm: sha256WithRSAEncryption a2:00:1c:ba:06:55:60:d0:c8:ad:59:29:72:92:2f:87:1c:87: eb:dc:bb:70:b3:fa:96:02:e9:4c:a2:0d:0c:b0:58:0b:9e:4f: 6e:f0:ce:40:6b:0b:26:2a:48:1e:bf:91:f9:5a:c3:3c:2f:bf: 20:9c:1d:36:fc:6e:85:85:64:7c:76:03:e1:3c:3a:14:86:2a: b6:51:8a:1f:f1:d5:ee:bb:fc:c6:37:15:a1:ba:76:39:b5:65: b9:3b:7c:a0:c7:46:0e:41:02:92:d6:91:4d:31:5d:e3:de:f4: 79:59:bc:a3:b1:3f:6c:5a:5f:8d:8b:91:68:d7:c1:61:8c:54: 8c:81:42:f7:77:2a:a2:04:3c:e8:12:fe:09:9c:5a:fe:2e:0b: 07:48:49:13:14:93:2e:b2:87:90:d2:99:19:a8:69:68:88:4e: 46:b8:39:fe:f7:a0:16:50:18:84:8a:df:16:9a:61:32:6e:b9: 7f:b0:c2:17:d7:ca:e1:ae:f6:55:0c:80:ec:47:71:4a:67:db: ae:f8:02:b1:b6:67:77:a1:c7:e2:ec:d2:2a:dc:a9:c9:ee:21: 17:ea:88:19:93:59:5b:bd:72:c7:c2:69:58:17:f9:a2:1b:35: 76:d6:05:45:ff:ed:f4:9e:af:96:fa:ce:68:69:60:6c:e8:f1: a0:6f:05:26 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUnK7V/DmWOpCHpEanjctiLr5aKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MjBaFw0yNzA1MDIwMzA0MjBaMDMxMTAvBgNV BAMTKDUxQkRDMDY5MjJFRDBFNDE3MEVCMDkyN0NCMzI5QjI1NDFCMzQ1RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJEs2zCkTHzrtADCWfg7VNeub6 nnThVJ0ZZaY6NGEaxP1Sd4ediR943eApruot0cYaw95sEE/bsTMmHbc149IPyWGJ 08KOgywYKoayMk88MZ23PQn3KJa4ZFtPnfV++SXxPkAGHfjOUX3wrZ66lWA9F6KO +orKZLeO/Gou7LYAYC68gdxziT24fHdpD7Oxne2QavLonheE4zeQZS9VrCoTFcvW AlTue9ka7QDGDIvGfnFq1crbeXZwJ84b2S5ArAp767BLt7HRbG58g0pfj+iUxnwj /RcGOx9qGkilY7Ok14rsIjenwDFZoU6wGIYtowz6CA1v8Njnoc9cXbpSIQOzAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUUb3AaSLtDkFw6wknyzKbJUGzRfQwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzg2NjMxMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAjxAwDQYJKoZIhvcNAQELBQADggEBAKIAHLoGVWDQyK1ZKXKSL4cch+vcu3Cz +pYC6UyiDQywWAueT27wzkBrCyYqSB6/kflawzwvvyCcHTb8boWFZHx2A+E8OhSG KrZRih/x1e67/MY3FaG6djm1Zbk7fKDHRg5BApLWkU0xXePe9HlZvKOxP2xaX42L kWjXwWGMVIyBQvd3KqIEPOgS/gmcWv4uCwdISRMUky6yh5DSmRmoaWiITka4Of73 oBZQGISK3xaaYTJuuX+wwhfXyuGu9lUMgOxHcUpn2674ArG2Z3ehx+Ls0ircqcnu IRfqiBmTWVu9csfCaVgX+aIbNXbWBUX/7fSer5b6zmhpYGzo8aBvBSY= -----END CERTIFICATE-----Generated at Wed May 13 12:46:27 2026 by rpki-client