$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: frB9uJ4PvwxSnvfkLe7LYvxNKJy+AI9XHsOjWEIa4i8= Subject key identifier: 27:C0:DF:A0:CD:C8:29:F2:C9:03:69:FD:68:6F:1C:10:AA:33:1E:BF Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 5636AC52E69A00277263EBE58B6FE61FFB57848A Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:17 +0000 ROA not before: Sun 03 May 2026 02:59:17 +0000 ROA not after: Sun 02 May 2027 03:04:17 +0000 asID: 133798 IP address blocks: 2402:5680:9a40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:36:ac:52:e6:9a:00:27:72:63:eb:e5:8b:6f:e6:1f:fb:57:84:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:17 2026 GMT Not After : May 2 03:04:17 2027 GMT Subject: CN=27C0DFA0CDC829F2C90369FD686F1C10AA331EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d3:b0:56:28:46:be:3d:f3:9b:f4:e0:f2:8d: 41:95:d1:f0:ca:44:a1:79:03:f7:0b:88:73:59:d1: 12:77:35:3a:10:4c:65:16:99:b3:09:33:f1:e2:65: 05:7b:4e:be:fb:89:ec:f5:6a:0d:9e:be:8a:dc:4a: e7:d9:96:d4:52:a2:38:99:ee:50:56:90:90:53:41: 1e:29:28:05:26:05:22:85:20:17:f0:4a:35:d0:a4: 53:26:4b:7a:d6:cf:b7:3a:4b:71:ba:90:b8:93:62: 9c:f8:fd:4a:02:f3:63:ed:b7:1f:1d:4e:26:7d:e6: 55:d0:8a:e0:f5:02:49:02:6f:0d:0d:ff:3f:d4:e1: b2:f4:f7:1a:3d:ce:58:73:31:24:92:27:d3:9a:2a: 5b:89:a5:92:8c:7d:94:5e:db:b4:82:a0:85:32:c9: 7f:1c:ff:26:1e:36:d6:c4:e1:76:cd:90:ce:47:41: e2:6b:9c:d5:7c:91:f0:d7:ee:0c:ee:4a:f4:e9:a0: db:88:87:18:72:97:18:62:3f:10:2b:67:58:8c:51: 8f:29:7c:cc:84:31:51:e2:c3:5f:1f:bc:4e:f1:79: 3f:29:c2:87:45:03:04:19:e6:69:2d:78:6c:6f:8a: 8c:06:f5:a0:02:22:49:be:14:d2:4f:87:4f:bc:bd: 34:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C0:DF:A0:CD:C8:29:F2:C9:03:69:FD:68:6F:1C:10:AA:33:1E:BF X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9a40::/44 Signature Algorithm: sha256WithRSAEncryption 6b:47:9c:ac:67:80:c3:46:f7:4c:af:4e:e6:93:38:dc:ef:c0: 40:f7:aa:b6:74:64:c1:8f:00:0b:7d:2f:48:40:a3:ba:93:74: 02:e9:b7:6e:bd:ff:7f:36:88:1f:ad:e3:4b:22:a6:c3:7b:ca: 29:21:76:6a:1d:27:84:bc:72:4e:92:0b:1d:3f:e5:70:0e:2c: ac:82:bd:fb:4e:09:c1:bd:a9:a5:cb:fe:be:3e:c8:25:cf:fd: 4a:2c:4d:33:51:67:dc:fa:86:eb:5b:0a:1c:b7:70:02:1a:59: 67:1c:21:47:4a:f8:de:ca:65:66:ee:e3:9e:a4:f6:34:49:25: 47:0d:b2:68:c3:b5:a6:7d:3d:50:48:ee:c9:68:85:15:37:8d: 13:6e:af:06:c5:0b:2a:a9:2a:b1:3c:c7:20:e4:d0:07:0d:e1: fd:fb:83:ad:2b:21:e7:09:0c:99:f5:e6:67:65:3e:22:e0:ee: 21:a8:c3:5f:65:1c:bd:48:60:b6:50:9f:6f:0a:1b:33:ea:72: 13:89:18:b4:2c:4e:91:37:d0:d1:e4:ee:99:ea:f9:9f:64:c5: da:55:c6:35:b2:ef:49:e3:53:a3:74:1e:5e:71:a2:b3:ff:1f: 1b:b6:82:5c:0a:65:82:da:63:c1:ec:67:1c:ab:1e:2d:b2:fd: c4:86:5d:40 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUVjasUuaaACdyY+vli2/mH/tXhIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MTdaFw0yNzA1MDIwMzA0MTdaMDMxMTAvBgNV BAMTKDI3QzBERkEwQ0RDODI5RjJDOTAzNjlGRDY4NkYxQzEwQUEzMzFFQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy07BWKEa+PfOb9ODyjUGV0fDK RKF5A/cLiHNZ0RJ3NToQTGUWmbMJM/HiZQV7Tr77iez1ag2evorcSufZltRSojiZ 7lBWkJBTQR4pKAUmBSKFIBfwSjXQpFMmS3rWz7c6S3G6kLiTYpz4/UoC82Pttx8d TiZ95lXQiuD1AkkCbw0N/z/U4bL09xo9zlhzMSSSJ9OaKluJpZKMfZRe27SCoIUy yX8c/yYeNtbE4XbNkM5HQeJrnNV8kfDX7gzuSvTpoNuIhxhylxhiPxArZ1iMUY8p fMyEMVHiw18fvE7xeT8pwodFAwQZ5mkteGxviowG9aACIkm+FNJPh0+8vTSbAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUJ8DfoM3IKfLJA2n9aG8cEKozHr8wHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzk2MTM0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmkAwDQYJKoZIhvcNAQELBQADggEBAGtHnKxngMNG90yvTuaTONzvwED3qrZ0 ZMGPAAt9L0hAo7qTdALpt269/382iB+t40sipsN7yikhdmodJ4S8ck6SCx0/5XAO LKyCvftOCcG9qaXL/r4+yCXP/UosTTNRZ9z6hutbChy3cAIaWWccIUdK+N7KZWbu 456k9jRJJUcNsmjDtaZ9PVBI7slohRU3jRNurwbFCyqpKrE8xyDk0AcN4f37g60r IecJDJn15mdlPiLg7iGow19lHL1IYLZQn28KGzPqchOJGLQsTpE30NHk7pnq+Z9k xdpVxjWy70njU6N0Hl5xorP/Hxu2glwKZYLaY8HsZxyrHi2y/cSGXUA= -----END CERTIFICATE-----Generated at Wed May 13 13:34:29 2026 by rpki-client