$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393163303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393163303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: pU2PdTtxryeVyFXoW2RayAQu4HnKH/5WiFHAG8GI4cs= Subject key identifier: 2D:FB:C1:2C:53:75:5C:D1:2A:1C:B8:33:54:F5:1E:73:E9:35:55:A0 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 106D2E9725F1195467864BD104456329F40D200D Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393163303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:31 +0000 ROA not before: Sun 03 May 2026 02:59:31 +0000 ROA not after: Sun 02 May 2027 03:04:31 +0000 asID: 133798 IP address blocks: 2402:5680:91c0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:6d:2e:97:25:f1:19:54:67:86:4b:d1:04:45:63:29:f4:0d:20:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:31 2026 GMT Not After : May 2 03:04:31 2027 GMT Subject: CN=2DFBC12C53755CD12A1CB83354F51E73E93555A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:dc:e9:2f:c3:c9:a0:93:2c:84:b3:2e:b3: 7a:08:b2:f1:58:6d:28:2c:bd:5f:2d:5c:87:0d:db: 33:ba:e1:27:70:e6:ee:c5:f6:0c:60:ab:72:6b:b1: 74:4a:8c:ee:90:53:d1:f7:d9:c7:d6:09:60:1e:36: a3:99:95:90:19:9e:ec:ae:23:82:14:ed:9c:1e:28: 7f:9c:fa:f5:c8:a4:52:bd:2f:34:05:40:e3:b6:54: e4:68:29:19:3b:6a:cd:d2:5a:45:e5:b7:e6:de:5c: 15:91:06:09:60:fb:04:b0:fe:b4:d6:7b:aa:5a:60: e3:cc:e5:5c:c1:af:78:b3:4b:25:bb:3d:4b:05:a8: fe:2e:57:89:4b:ca:67:e0:da:d0:da:6e:b2:9e:9b: 03:c3:06:05:69:58:bc:21:35:8b:90:37:57:d1:f8: e2:f3:57:ba:4c:dc:a7:67:4d:69:d9:37:61:81:74: a3:36:f7:e0:fc:98:32:3f:65:dd:71:41:ba:41:7c: 7d:60:4a:56:72:5d:de:a3:ab:6c:1a:84:97:39:d3: 31:7c:69:fe:47:97:34:66:3a:b1:f6:f7:d7:fa:e6: b1:16:de:e1:0f:8a:b4:b8:97:9b:f9:d5:cb:05:f0: a5:02:dd:96:65:02:2b:75:68:e7:d7:d4:b9:5a:b9: 8b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FB:C1:2C:53:75:5C:D1:2A:1C:B8:33:54:F5:1E:73:E9:35:55:A0 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393163303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:91c0::/44 Signature Algorithm: sha256WithRSAEncryption b2:5a:d6:72:61:c3:0d:9e:b9:c3:8b:0b:f3:8c:90:76:3d:15: a8:ba:14:d9:66:c3:66:83:06:fc:33:d0:6e:a5:26:d6:e3:c8: 05:55:af:84:bc:f2:93:f6:4c:85:5c:8f:7f:a9:ad:5a:47:76: a1:1d:f7:d7:9c:38:7c:83:17:87:d7:a8:fe:8e:b9:be:f1:f0: 49:f4:b7:89:e5:01:14:fb:43:b8:9e:af:07:fd:25:3a:3c:2a: d3:cf:04:5c:84:65:23:be:95:03:59:aa:1f:5a:0a:5e:1d:c0: eb:60:23:c7:0b:ef:8b:60:16:88:65:15:d4:97:cb:af:aa:58: fb:ca:56:eb:a4:14:b1:89:28:bc:83:d9:c0:35:1b:e5:74:5d: b8:de:73:74:0f:5c:ad:5f:96:c5:48:1a:a6:b4:c9:8a:0b:f1: ae:db:b6:97:a3:78:9a:7c:b1:7b:5f:88:b7:c8:39:15:e1:44: 4d:cf:69:a9:c0:b6:9f:da:5b:1d:2f:cd:2f:57:1a:23:17:a5: 1e:6f:42:13:80:6c:f0:c4:0a:85:e4:1e:43:f0:cf:39:30:29: 72:17:47:4e:e8:ec:00:30:2a:05:10:f6:75:48:b4:3b:be:9e: 04:c7:5f:55:04:e7:50:c1:bc:dd:ad:d8:82:5f:f8:3e:d8:7b: 77:2a:7b:6b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEG0ulyXxGVRnhkvRBEVjKfQNIA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MzFaFw0yNzA1MDIwMzA0MzFaMDMxMTAvBgNV BAMTKDJERkJDMTJDNTM3NTVDRDEyQTFDQjgzMzU0RjUxRTczRTkzNTU1QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC159zpL8PJoJMshLMus3oIsvFY bSgsvV8tXIcN2zO64Sdw5u7F9gxgq3JrsXRKjO6QU9H32cfWCWAeNqOZlZAZnuyu I4IU7ZweKH+c+vXIpFK9LzQFQOO2VORoKRk7as3SWkXlt+beXBWRBglg+wSw/rTW e6paYOPM5VzBr3izSyW7PUsFqP4uV4lLymfg2tDabrKemwPDBgVpWLwhNYuQN1fR +OLzV7pM3KdnTWnZN2GBdKM29+D8mDI/Zd1xQbpBfH1gSlZyXd6jq2wahJc50zF8 af5HlzRmOrH299f65rEW3uEPirS4l5v51csF8KUC3ZZlAit1aOfX1LlauYtVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQULfvBLFN1XNEqHLgzVPUec+k1VaAwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzMTYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAkcAwDQYJKoZIhvcNAQELBQADggEBALJa1nJhww2eucOLC/OMkHY9Fai6FNlm w2aDBvwz0G6lJtbjyAVVr4S88pP2TIVcj3+prVpHdqEd99ecOHyDF4fXqP6Oub7x 8En0t4nlART7Q7ierwf9JTo8KtPPBFyEZSO+lQNZqh9aCl4dwOtgI8cL74tgFohl FdSXy6+qWPvKVuukFLGJKLyD2cA1G+V0Xbjec3QPXK1flsVIGqa0yYoL8a7btpej eJp8sXtfiLfIORXhRE3PaanAtp/aWx0vzS9XGiMXpR5vQhOAbPDECoXkHkPwzzkw KXIXR07o7AAwKgUQ9nVItDu+ngTHX1UE51DBvN2t2IJf+D7Ye3cqe2s= -----END CERTIFICATE-----Generated at Wed May 13 14:46:58 2026 by rpki-client