$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: bWBOXIi+qMyhERWckjNOZDgbVjfCWENXiEQp7DwaW7U= Subject key identifier: 89:C2:B6:B1:67:86:18:71:6F:E0:07:70:8C:1F:05:47:CC:E1:62:16 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 1DAEFA2432A03C25716245F0FA0970F5B9076D06 Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:06 +0000 ROA not before: Sun 03 May 2026 02:59:06 +0000 ROA not after: Sun 02 May 2027 03:04:06 +0000 asID: 133798 IP address blocks: 2402:5680:9320::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ae:fa:24:32:a0:3c:25:71:62:45:f0:fa:09:70:f5:b9:07:6d:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:06 2026 GMT Not After : May 2 03:04:06 2027 GMT Subject: CN=89C2B6B1678618716FE007708C1F0547CCE16216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:18:1b:29:cc:d1:76:b7:bc:00:35:17:61: bd:30:03:8a:01:c3:2d:0a:f9:83:15:3e:78:1a:a7: 1a:ce:96:54:92:87:36:16:c7:73:66:5f:2d:79:8f: 9b:8c:5a:16:47:46:34:ef:c4:c5:8d:6c:5b:73:34: 7c:fb:b4:97:45:b4:34:46:46:e5:33:f2:37:90:7f: 91:dd:b3:c4:7a:a0:77:75:aa:c9:64:21:44:0f:c2: 73:df:34:83:56:ac:90:aa:56:25:ae:26:72:46:bb: f9:fa:06:45:e2:44:32:e4:57:2b:23:4f:1d:5e:1c: 56:7e:4c:e8:3a:af:98:84:64:79:c8:bd:2f:72:9f: 21:b7:5e:f3:e7:eb:e5:0e:b6:b0:ac:29:b0:ea:b7: 87:bf:b3:5f:d3:d5:ac:fe:79:fc:ca:1f:7c:da:e4: 11:eb:2f:49:ad:63:78:94:09:45:93:38:76:b2:67: 5e:6f:bb:ee:39:ba:a0:9e:b5:ee:77:fa:1e:07:fe: 95:ee:c3:fb:fc:e4:43:71:e4:b4:71:45:ae:b7:ad: 59:1a:ae:37:f3:b9:4e:21:4a:e9:1d:84:0a:e8:19: a4:7c:15:67:05:e5:59:3c:e2:7a:c2:a8:3d:23:dc: 6a:a1:e9:65:5f:b0:5f:9b:8d:9b:7c:c2:3c:a7:35: f3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C2:B6:B1:67:86:18:71:6F:E0:07:70:8C:1F:05:47:CC:E1:62:16 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9320::/44 Signature Algorithm: sha256WithRSAEncryption b9:1c:d8:c2:1b:4b:d4:67:72:6c:0a:74:3a:2a:8d:11:4a:3d: 7f:00:a7:cd:0a:5e:d6:b7:5d:6d:db:a8:b8:7b:0b:57:dd:56: 80:0c:9a:82:3c:80:8c:e3:6b:09:32:ab:99:35:ef:d8:fe:8f: 2a:da:e5:a9:fc:a3:68:c6:b7:78:02:59:4f:dc:d8:7f:91:8e: 69:8d:1c:e7:4a:ad:ab:be:09:70:ec:5b:18:17:06:a6:f4:50: 62:60:a3:74:80:56:04:65:55:32:b5:6c:41:30:89:d1:ff:a2: 08:26:b7:fd:4c:e3:a5:40:1b:c9:20:34:88:07:fd:8f:6d:b4: 5a:fd:7a:2e:02:da:10:c1:18:5b:9d:21:f2:e3:59:ca:06:ae: 72:d7:a9:ff:aa:1f:48:e0:17:b7:f4:96:9e:02:26:dd:6a:ac: d8:8c:83:d5:1b:e2:da:aa:31:91:e3:c4:6e:b3:ad:f4:09:a8: 5a:f9:48:e5:d2:3c:42:42:05:25:e6:16:b5:ae:32:7d:73:f8: b5:a4:78:57:1d:38:4d:de:f9:3c:84:e8:87:fc:8d:ae:71:cb: 91:99:c7:e8:00:58:3b:d9:90:08:53:aa:e6:9f:33:ba:38:88: a9:16:e0:d6:00:52:93:0a:0b:65:5c:57:0d:29:e3:27:8f:df: 74:32:e4:ae -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUHa76JDKgPCVxYkXw+glw9bkHbQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MDZaFw0yNzA1MDIwMzA0MDZaMDMxMTAvBgNV BAMTKDg5QzJCNkIxNjc4NjE4NzE2RkUwMDc3MDhDMUYwNTQ3Q0NFMTYyMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGiRgbKczRdre8ADUXYb0wA4oB wy0K+YMVPngapxrOllSShzYWx3NmXy15j5uMWhZHRjTvxMWNbFtzNHz7tJdFtDRG RuUz8jeQf5Hds8R6oHd1qslkIUQPwnPfNINWrJCqViWuJnJGu/n6BkXiRDLkVysj Tx1eHFZ+TOg6r5iEZHnIvS9ynyG3XvPn6+UOtrCsKbDqt4e/s1/T1az+efzKH3za 5BHrL0mtY3iUCUWTOHayZ15vu+45uqCete53+h4H/pXuw/v85ENx5LRxRa63rVka rjfzuU4hSukdhAroGaR8FWcF5Vk84nrCqD0j3Gqh6WVfsF+bjZt8wjynNfPLAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUicK2sWeGGHFv4AdwjB8FR8zhYhYwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzMzMyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAkyAwDQYJKoZIhvcNAQELBQADggEBALkc2MIbS9RncmwKdDoqjRFKPX8Ap80K Xta3XW3bqLh7C1fdVoAMmoI8gIzjawkyq5k179j+jyra5an8o2jGt3gCWU/c2H+R jmmNHOdKrau+CXDsWxgXBqb0UGJgo3SAVgRlVTK1bEEwidH/oggmt/1M46VAG8kg NIgH/Y9ttFr9ei4C2hDBGFudIfLjWcoGrnLXqf+qH0jgF7f0lp4CJt1qrNiMg9Ub 4tqqMZHjxG6zrfQJqFr5SOXSPEJCBSXmFrWuMn1z+LWkeFcdOE3e+TyE6If8ja5x y5GZx+gAWDvZkAhTquafM7o4iKkW4NYAUpMKC2VcVw0p4yeP33Qy5K4= -----END CERTIFICATE-----Generated at Wed May 13 14:33:16 2026 by rpki-client