$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: BtxyQFIMeQoYghqIIfr/UnzQN/CuXgQAOmeT+u78ExM= Subject key identifier: 3F:F8:E8:F3:C9:FB:34:A0:9B:AF:FF:FD:68:2C:FF:FA:94:DA:15:CD Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 222D56BBA42240B5FC442B975ABBE584B1E418E8 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:50 +0000 ROA not before: Sun 03 May 2026 02:07:50 +0000 ROA not after: Sun 02 May 2027 02:12:50 +0000 asID: 137330 IP address blocks: 2402:aa40:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:2d:56:bb:a4:22:40:b5:fc:44:2b:97:5a:bb:e5:84:b1:e4:18:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:50 2026 GMT Not After : May 2 02:12:50 2027 GMT Subject: CN=3FF8E8F3C9FB34A09BAFFFFD682CFFFA94DA15CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:83:d6:71:83:a1:ea:31:fd:58:3a:12:89:8b: 20:49:5a:a1:c2:c0:62:ab:d4:e9:80:63:75:34:ba: 09:72:78:56:8a:00:58:d7:17:f9:9d:12:16:d2:15: 62:79:e5:15:f8:00:a0:65:97:e0:b0:1c:17:a8:b2: 37:1f:33:20:9e:cb:11:a0:88:ae:d6:da:5e:07:33: 12:cf:85:07:7e:81:b0:35:76:55:b1:ed:99:a4:04: 84:54:6f:60:7d:99:c3:53:0e:fa:e2:6e:84:be:5e: 7d:df:82:5e:eb:d0:12:05:ea:2a:a9:a2:ec:8e:ba: cd:10:91:01:b1:d5:0e:16:e0:69:9e:f8:f8:94:66: 9d:fd:31:84:f3:0e:f4:c6:f2:28:61:1b:91:01:1f: f9:6a:ab:d2:7c:36:09:9c:9e:94:99:04:11:7c:78: c5:af:2a:30:1f:c8:8e:4e:46:43:98:19:b5:b6:17: 9a:d2:ee:71:f1:39:2f:14:bb:af:55:ea:9d:4f:19: 38:8d:b3:9e:d3:43:69:1c:16:41:7e:81:1f:24:36: af:08:ec:46:11:3a:a9:e2:bc:86:8c:48:a4:ce:6c: fa:49:bd:86:e5:52:d4:3b:9c:29:23:4b:5f:62:9b: a5:0c:94:42:36:7d:68:0e:c0:04:7c:d6:b0:8a:41: 15:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F8:E8:F3:C9:FB:34:A0:9B:AF:FF:FD:68:2C:FF:FA:94:DA:15:CD X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:12::/48 Signature Algorithm: sha256WithRSAEncryption 4d:96:15:10:33:9a:3b:28:ba:fa:1d:ee:40:15:f8:e7:e8:29: 2d:78:b7:85:4d:c2:11:61:58:be:d3:10:2e:a0:1b:d1:a3:47: 89:0c:89:c4:03:58:9f:24:c8:c4:12:ff:5e:de:11:f9:f1:98: 48:d0:f1:33:69:da:76:db:2b:f7:53:4b:5e:55:c5:e4:4f:05: 7a:87:f9:ef:17:ec:38:6c:be:83:f2:20:39:ca:1f:49:dd:48: b2:67:a9:32:2b:3d:48:9d:99:2a:d2:46:0f:6a:f1:bc:49:2c: 75:4f:60:fd:0c:e5:5a:7d:35:f0:5d:06:59:24:db:61:ce:c4: a8:34:78:34:d6:ee:43:4a:2a:ed:14:3a:60:93:e0:50:17:36: ce:93:93:43:e6:88:6c:fe:c6:72:2a:ee:b0:5f:68:b0:55:b0: 31:ba:c2:0b:c3:11:28:26:a7:e9:43:10:0c:a0:13:e1:9f:34: 78:3d:c0:a3:a6:97:a2:50:be:d9:32:c1:5b:13:9e:3f:23:25: 1b:97:58:cd:ce:14:40:1b:53:25:e4:cc:1f:bf:06:d1:e6:74: a1:83:bb:00:96:3a:c4:21:ab:40:f5:f9:d7:af:98:71:a9:64: 7e:b9:84:18:ef:06:3b:20:77:27:4e:6a:eb:df:94:d7:22:1b: cd:b7:65:80 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIi1Wu6QiQLX8RCuXWrvlhLHkGOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTBaFw0yNzA1MDIwMjEyNTBaMDMxMTAvBgNV BAMTKDNGRjhFOEYzQzlGQjM0QTA5QkFGRkZGRDY4MkNGRkZBOTREQTE1Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxg9Zxg6HqMf1YOhKJiyBJWqHC wGKr1OmAY3U0uglyeFaKAFjXF/mdEhbSFWJ55RX4AKBll+CwHBeosjcfMyCeyxGg iK7W2l4HMxLPhQd+gbA1dlWx7ZmkBIRUb2B9mcNTDvriboS+Xn3fgl7r0BIF6iqp ouyOus0QkQGx1Q4W4Gme+PiUZp39MYTzDvTG8ihhG5EBH/lqq9J8NgmcnpSZBBF8 eMWvKjAfyI5ORkOYGbW2F5rS7nHxOS8Uu69V6p1PGTiNs57TQ2kcFkF+gR8kNq8I 7EYROqnivIaMSKTObPpJvYblUtQ7nCkjS19im6UMlEI2fWgOwAR81rCKQRWFAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUP/jo88n7NKCbr//9aCz/+pTaFc0wHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EjANBgkqhkiG9w0BAQsFAAOCAQEATZYVEDOaOyi6+h3uQBX45+gpLXi3hU3CEWFY vtMQLqAb0aNHiQyJxANYnyTIxBL/Xt4R+fGYSNDxM2nadtsr91NLXlXF5E8Feof5 7xfsOGy+g/IgOcofSd1IsmepMis9SJ2ZKtJGD2rxvEksdU9g/QzlWn018F0GWSTb Yc7EqDR4NNbuQ0oq7RQ6YJPgUBc2zpOTQ+aIbP7GcirusF9osFWwMbrCC8MRKCan 6UMQDKAT4Z80eD3Ao6aXolC+2TLBWxOePyMlG5dYzc4UQBtTJeTMH78G0eZ0oYO7 AJY6xCGrQPX516+YcalkfrmEGO8GOyB3J05q69+U1yIbzbdlgA== -----END CERTIFICATE-----Generated at Wed May 13 14:11:21 2026 by rpki-client