$ rpki-client -vvf rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: CDqwQvpj2ozY9XjwCM4d2mWxgcjYXRBe6RHvpl/KZJw= Subject key identifier: 46:98:43:98:4B:52:DB:AC:D3:97:54:1D:6E:C7:8C:21:87:D0:00:34 Certificate issuer: /CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Certificate serial: 0D79D76C992B449B3E21BAC61DFD91E1A1DE133B Authority key identifier: 15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sun 03 May 2026 03:04:23 +0000 ROA not before: Sun 03 May 2026 02:59:23 +0000 ROA not after: Sun 02 May 2027 03:04:23 +0000 asID: 133798 IP address blocks: 2402:5680:9b30::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:79:d7:6c:99:2b:44:9b:3e:21:ba:c6:1d:fd:91:e1:a1:de:13:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15FBEACFAED3F9F332597338F402C8726321A5C0 Validity Not Before: May 3 02:59:23 2026 GMT Not After : May 2 03:04:23 2027 GMT Subject: CN=469843984B52DBACD397541D6EC78C2187D00034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b8:62:6d:8a:02:80:cf:01:29:bf:a8:20:13: 5c:12:47:b9:30:1c:84:0e:b9:c6:57:2f:1a:99:ce: ff:46:7a:a8:f7:bc:53:d4:a6:69:e8:3c:0f:69:c8: 06:08:9b:d7:22:ba:73:5c:a4:9d:8d:3f:6e:ee:77: 49:fd:8d:a9:0f:90:a5:e3:46:c9:8e:08:2a:01:e5: 52:00:51:06:9b:36:a4:f9:e2:1a:46:fd:a0:aa:4f: e2:e9:53:5c:8e:ca:f2:42:00:9a:7e:a1:e7:bc:01: 34:c8:cb:52:52:62:24:a0:24:dc:c7:ba:1a:13:bf: 97:ab:3e:0c:8a:b9:de:7d:17:29:53:57:9f:8e:f0: 8c:cd:b7:1c:95:f2:f6:ad:0e:15:5a:65:d1:ba:1f: 00:18:db:cc:fc:e0:2f:c0:a2:53:dc:2f:be:81:92: 76:a2:5a:45:52:04:5c:1c:4c:6e:1c:c1:b6:63:48: 33:d8:e8:01:88:00:29:7c:71:d8:22:60:d0:cc:7b: 89:24:e2:e9:87:03:27:ca:e0:6e:d5:60:8e:03:eb: 33:fb:1e:77:f5:5d:62:89:21:0b:2e:27:69:72:88: 1e:1f:4f:15:a5:44:ea:a4:49:cc:02:a0:ea:31:c4: 9c:fd:33:08:19:e7:69:d4:c0:cb:9a:ed:66:df:6d: b6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:98:43:98:4B:52:DB:AC:D3:97:54:1D:6E:C7:8C:21:87:D0:00:34 X509v3 Authority Key Identifier: keyid:15:FB:EA:CF:AE:D3:F9:F3:32:59:73:38:F4:02:C8:72:63:21:A5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/15FBEACFAED3F9F332597338F402C8726321A5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/15FBEACFAED3F9F332597338F402C8726321A5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396233303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9b30::/44 Signature Algorithm: sha256WithRSAEncryption 18:6e:47:3e:17:c4:bc:6d:2c:71:0b:84:0d:3e:7d:f8:6d:aa: 54:77:25:a8:32:44:b1:a4:61:70:76:ee:24:bd:1a:66:a0:1b: 10:95:06:f6:61:8e:32:44:1e:62:df:dd:b0:46:d4:2e:38:40: ff:59:b7:cd:0e:74:40:5a:44:f4:8d:b0:1c:9e:c9:3b:e2:74: 60:34:fd:04:d0:b5:bf:7b:48:a2:a1:ea:80:2c:98:44:b4:6d: 25:40:ba:6a:a5:cb:23:6a:25:4c:3e:f4:6c:c6:a2:b5:ca:8d: 48:c5:be:31:11:d7:08:20:f5:37:27:9d:d9:79:54:65:08:14: fb:07:64:fb:62:af:31:a5:e8:2e:f7:57:ba:d1:1f:af:3a:cd: 48:2d:13:88:dc:dd:41:a7:04:05:81:79:f2:22:60:b3:07:95: f8:01:a3:53:0f:2f:72:0c:cb:df:b3:2c:00:d5:6e:91:01:26: 0a:cd:f4:00:b5:44:7b:79:07:a3:a3:fe:22:93:a3:ae:93:19: d4:97:7e:a2:b4:ef:fe:1a:42:01:8f:21:55:d3:cb:00:1d:9f: a8:be:5b:17:77:a8:f5:ac:af:af:00:56:69:60:c8:84:a7:7d: 16:ce:f6:0e:71:60:ff:b8:8c:6b:d5:33:74:07:c5:14:80:c5: 1b:b1:38:98 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDXnXbJkrRJs+IbrGHf2R4aHeEzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVGQkVBQ0ZBRUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2 MzIxQTVDMDAeFw0yNjA1MDMwMjU5MjNaFw0yNzA1MDIwMzA0MjNaMDMxMTAvBgNV BAMTKDQ2OTg0Mzk4NEI1MkRCQUNEMzk3NTQxRDZFQzc4QzIxODdEMDAwMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuuGJtigKAzwEpv6ggE1wSR7kw HIQOucZXLxqZzv9Geqj3vFPUpmnoPA9pyAYIm9ciunNcpJ2NP27ud0n9jakPkKXj RsmOCCoB5VIAUQabNqT54hpG/aCqT+LpU1yOyvJCAJp+oee8ATTIy1JSYiSgJNzH uhoTv5erPgyKud59FylTV5+O8IzNtxyV8vatDhVaZdG6HwAY28z84C/AolPcL76B knaiWkVSBFwcTG4cwbZjSDPY6AGIACl8cdgiYNDMe4kk4umHAyfK4G7VYI4D6zP7 Hnf1XWKJIQsuJ2lyiB4fTxWlROqkScwCoOoxxJz9MwgZ52nUwMua7WbfbbbjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQURphDmEtS26zTl1QdbseMIYfQADQwHwYDVR0j BBgwFoAUFfvqz67T+fMyWXM49ALIcmMhpcAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzMwM2U2YmItNzM0OS00N2FhLWE0Y2QtNTFkOGEwZTIyMmY2LzAvMTVGQkVBQ0ZB RUQzRjlGMzMyNTk3MzM4RjQwMkM4NzI2MzIxQTVDMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xNUZCRUFDRkFFRDNGOUYzMzI1OTczMzhGNDAyQzg3MjYzMjFB NUMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzk2MjMzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmzAwDQYJKoZIhvcNAQELBQADggEBABhuRz4XxLxtLHELhA0+ffhtqlR3Jagy RLGkYXB27iS9GmagGxCVBvZhjjJEHmLf3bBG1C44QP9Zt80OdEBaRPSNsByeyTvi dGA0/QTQtb97SKKh6oAsmES0bSVAumqlyyNqJUw+9GzGorXKjUjFvjER1wgg9Tcn ndl5VGUIFPsHZPtirzGl6C73V7rRH686zUgtE4jc3UGnBAWBefIiYLMHlfgBo1MP L3IMy9+zLADVbpEBJgrN9AC1RHt5B6Oj/iKTo66TGdSXfqK07/4aQgGPIVXTywAd n6i+Wxd3qPWsr68AVmlgyISnfRbO9g5xYP+4jGvVM3QHxRSAxRuxOJg= -----END CERTIFICATE-----Generated at Wed May 13 14:13:24 2026 by rpki-client