$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: 56ijIHqqSk8c3H2LMkosuLNrhIdcVODmDTdn5RdBAs8= Subject key identifier: 32:3A:1B:20:7E:19:9B:CC:D2:BB:0B:99:52:F7:EC:C5:7D:03:8C:F5 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 4AA7C7DF901207DF8727D4D052DE898F58EA1C35 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:54 +0000 ROA not before: Sun 03 May 2026 02:07:54 +0000 ROA not after: Sun 02 May 2027 02:12:54 +0000 asID: 137330 IP address blocks: 2402:aa40:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a7:c7:df:90:12:07:df:87:27:d4:d0:52:de:89:8f:58:ea:1c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:54 2026 GMT Not After : May 2 02:12:54 2027 GMT Subject: CN=323A1B207E199BCCD2BB0B9952F7ECC57D038CF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:b5:85:45:7f:a2:06:d7:95:9d:8c:af:9d:33: 50:04:8f:aa:bc:7f:b0:aa:f0:cf:3b:17:e5:75:60: 45:34:cf:af:b6:7c:9b:39:1e:65:e1:97:00:4b:8c: 90:15:48:3e:f4:0e:a1:f9:94:bc:3b:b8:1d:98:37: 61:13:d6:f2:08:b7:e0:56:bb:06:d5:6d:bb:08:ff: 3e:6a:ff:3a:6b:71:5f:2f:82:68:78:96:3b:aa:be: f8:f1:ce:28:b6:5b:7b:e6:7e:47:e6:f8:07:aa:b0: 5f:b1:26:c8:e0:34:da:b7:17:5f:68:fc:13:e2:ce: 5d:7e:98:f5:a8:6f:9f:65:82:a3:75:f6:f6:c1:f3: 03:05:13:66:55:08:9e:1a:89:25:b6:c4:e8:5d:5e: 8e:b7:77:1e:c6:73:e3:b8:a5:b1:c1:49:30:38:1c: f8:4f:9f:a3:4f:fd:34:7e:6f:fa:e6:b4:29:98:ef: ab:9f:98:2c:6d:c8:b7:c7:37:a0:ee:9f:fe:e9:6f: 8f:a9:16:4e:43:67:47:6a:da:ef:15:69:68:15:28: e2:fa:b9:56:cb:a1:84:51:93:89:86:42:57:bc:83: c5:9e:c0:c5:da:a7:e6:ed:c6:d7:13:16:62:c2:ae: a5:6e:23:60:a6:9a:7a:49:7c:07:b7:90:e7:3e:55: 7e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3A:1B:20:7E:19:9B:CC:D2:BB:0B:99:52:F7:EC:C5:7D:03:8C:F5 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:11::/48 Signature Algorithm: sha256WithRSAEncryption 0d:b4:38:b3:f0:82:fa:a4:3c:68:fc:d0:d7:6a:92:8f:c5:f6: 88:01:96:c4:c0:15:87:74:1c:52:75:be:49:fa:3c:60:f2:f3: 96:e9:ce:a3:3f:0b:1a:80:b8:1e:49:0b:ce:68:23:f2:7c:50: ef:33:1f:c1:29:3d:77:2a:47:b0:2e:3f:66:ac:08:72:2c:6a: 5a:91:21:cc:60:fc:0c:85:ab:9b:ac:6a:d0:c2:4f:29:95:78: 1f:4d:02:8d:25:85:44:7a:6c:36:ed:00:38:2c:55:95:72:6f: 7c:7f:51:df:fa:60:ab:20:cd:45:48:39:3b:f3:c8:78:24:27: 88:42:d5:0b:7a:21:f3:e7:75:33:a2:78:b6:44:21:f5:e0:17: f7:cc:15:26:8a:5e:e0:e5:e6:e4:03:83:2c:3e:a4:a3:e8:b4: 79:11:71:5f:59:08:11:45:4a:72:f3:82:e9:69:72:94:93:ef: 4e:a5:c8:f5:1c:90:13:51:99:4a:ec:4c:8a:62:28:2b:a1:8a: 86:5c:d9:3e:41:9c:d3:95:b4:2f:23:bc:ef:86:f1:0a:00:02: 4a:4f:4c:e6:77:65:0d:2c:57:83:61:d7:42:96:b2:57:ba:fe: f1:8f:d0:fc:5e:69:28:cf:0a:4b:3a:67:4a:78:58:c9:ac:19: ea:c9:f2:09 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSqfH35ASB9+HJ9TQUt6Jj1jqHDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTRaFw0yNzA1MDIwMjEyNTRaMDMxMTAvBgNV BAMTKDMyM0ExQjIwN0UxOTlCQ0NEMkJCMEI5OTUyRjdFQ0M1N0QwMzhDRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCItYVFf6IG15WdjK+dM1AEj6q8 f7Cq8M87F+V1YEU0z6+2fJs5HmXhlwBLjJAVSD70DqH5lLw7uB2YN2ET1vIIt+BW uwbVbbsI/z5q/zprcV8vgmh4ljuqvvjxzii2W3vmfkfm+AeqsF+xJsjgNNq3F19o /BPizl1+mPWob59lgqN19vbB8wMFE2ZVCJ4aiSW2xOhdXo63dx7Gc+O4pbHBSTA4 HPhPn6NP/TR+b/rmtCmY76ufmCxtyLfHN6Dun/7pb4+pFk5DZ0dq2u8VaWgVKOL6 uVbLoYRRk4mGQle8g8WewMXap+btxtcTFmLCrqVuI2CmmnpJfAe3kOc+VX67AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUMjobIH4Zm8zSuwuZUvfsxX0DjPUwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA ETANBgkqhkiG9w0BAQsFAAOCAQEADbQ4s/CC+qQ8aPzQ12qSj8X2iAGWxMAVh3Qc UnW+Sfo8YPLzlunOoz8LGoC4HkkLzmgj8nxQ7zMfwSk9dypHsC4/ZqwIcixqWpEh zGD8DIWrm6xq0MJPKZV4H00CjSWFRHpsNu0AOCxVlXJvfH9R3/pgqyDNRUg5O/PI eCQniELVC3oh8+d1M6J4tkQh9eAX98wVJope4OXm5AODLD6ko+i0eRFxX1kIEUVK cvOC6WlylJPvTqXI9RyQE1GZSuxMimIoK6GKhlzZPkGc05W0LyO874bxCgACSk9M 5ndlDSxXg2HXQpayV7r+8Y/Q/F5pKM8KSzpnSnhYyawZ6snyCQ== -----END CERTIFICATE-----Generated at Wed May 13 14:11:08 2026 by rpki-client