$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: EyxfIo7OAQWw1MGLf2hnboQwKWhY+SI5HwClxhLsbJg= Subject key identifier: 74:B7:51:B7:A5:8A:DE:CA:42:D6:A4:8A:A6:53:D8:41:52:4E:56:78 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 4F39B2E1CEF2AAA75613CCC3DEBCF41D89CAB904 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:52 +0000 ROA not before: Sun 03 May 2026 02:07:52 +0000 ROA not after: Sun 02 May 2027 02:12:52 +0000 asID: 137330 IP address blocks: 2402:aa40:15::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:39:b2:e1:ce:f2:aa:a7:56:13:cc:c3:de:bc:f4:1d:89:ca:b9:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:52 2026 GMT Not After : May 2 02:12:52 2027 GMT Subject: CN=74B751B7A58ADECA42D6A48AA653D841524E5678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:03:f8:3e:dd:29:13:68:60:06:05:65:46:33: 8a:0a:34:e3:a1:b3:12:8a:29:d9:2a:d6:99:d4:8e: 47:ae:8a:02:97:05:3b:4f:45:1b:be:24:31:24:ab: 9a:84:72:cb:df:61:d7:81:8a:f5:72:b1:f9:ba:b9: 1a:1a:6d:92:78:90:8b:ca:94:6d:71:de:61:bb:50: 88:82:f2:be:25:a3:a7:23:75:59:a6:7c:92:c9:73: 85:59:73:e0:a7:a6:d5:7c:71:ab:ba:95:a8:bb:44: 7d:8b:79:bf:92:32:44:9b:a6:32:52:9b:3d:a1:ba: 44:d1:12:1a:78:f2:68:9b:20:f1:ce:b3:f2:d7:d3: 54:af:a0:43:a9:1e:76:dc:80:94:ff:d9:a7:22:4c: 79:10:04:9c:58:6e:ef:4e:d6:cf:4f:bc:ef:27:37: 35:9f:48:de:64:5c:4b:ec:56:25:f1:d3:f8:6d:f0: 01:f8:28:7b:78:c0:bf:ab:b6:c5:6c:f7:e4:61:30: e0:9c:c2:7a:4f:fd:c1:24:14:fa:6e:80:f4:94:d7: e5:e0:43:fc:71:b8:5c:b6:4b:af:6c:89:99:7f:fa: d4:51:ee:67:16:45:29:75:13:a8:e4:bd:22:c7:45: bf:c1:b8:d8:35:ad:20:18:81:de:d5:c0:d1:85:45: 1d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B7:51:B7:A5:8A:DE:CA:42:D6:A4:8A:A6:53:D8:41:52:4E:56:78 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:15::/48 Signature Algorithm: sha256WithRSAEncryption 28:4b:2c:19:fd:ae:35:36:f1:e3:fb:f4:fc:14:a4:5e:63:ce: d0:ec:32:db:a6:58:1f:87:75:9a:d4:23:7c:0f:36:10:48:7b: 80:cc:c4:4b:7c:ea:f1:9d:f9:3e:bd:22:ff:8e:44:d7:8c:6a: 80:67:18:20:fe:84:b1:00:30:3a:c9:65:30:3d:20:28:da:de: 4c:fb:c6:8c:4b:6c:f1:68:9a:d5:c4:61:7d:d0:2f:29:db:5a: f4:d5:9a:0d:01:91:c2:10:0c:1c:d6:67:ef:10:5c:2e:69:c3: 04:41:3d:49:90:f1:97:de:fd:6b:a8:a4:a1:7d:9e:59:d1:3c: eb:8b:68:82:71:a1:73:b7:8d:7e:47:ee:91:90:c3:86:b8:38: 0f:7f:39:1d:5f:6d:51:f3:75:41:69:bd:13:ca:dc:4b:c8:cc: 6f:a4:d3:63:9b:b0:e0:65:f1:d1:c6:d3:5a:57:5c:db:20:61: ad:11:96:70:d6:4c:8f:24:31:68:f3:50:e8:b0:32:88:a0:6a: 13:d9:93:48:0d:a2:75:18:6d:4f:85:41:57:d4:93:2b:c3:b9: bf:66:f4:07:4b:a7:55:7f:77:da:1b:e7:2e:b1:bb:bf:44:eb: b8:dc:49:84:0c:d8:99:aa:ca:ee:6a:8d:1c:a6:70:7e:f6:93: 23:f4:b9:c7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUTzmy4c7yqqdWE8zD3rz0HYnKuQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTJaFw0yNzA1MDIwMjEyNTJaMDMxMTAvBgNV BAMTKDc0Qjc1MUI3QTU4QURFQ0E0MkQ2QTQ4QUE2NTNEODQxNTI0RTU2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTA/g+3SkTaGAGBWVGM4oKNOOh sxKKKdkq1pnUjkeuigKXBTtPRRu+JDEkq5qEcsvfYdeBivVysfm6uRoabZJ4kIvK lG1x3mG7UIiC8r4lo6cjdVmmfJLJc4VZc+CnptV8cau6lai7RH2Leb+SMkSbpjJS mz2hukTREhp48mibIPHOs/LX01SvoEOpHnbcgJT/2aciTHkQBJxYbu9O1s9PvO8n NzWfSN5kXEvsViXx0/ht8AH4KHt4wL+rtsVs9+RhMOCcwnpP/cEkFPpugPSU1+Xg Q/xxuFy2S69siZl/+tRR7mcWRSl1E6jkvSLHRb/BuNg1rSAYgd7VwNGFRR0LAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUdLdRt6WK3spC1qSKplPYQVJOVngwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FTANBgkqhkiG9w0BAQsFAAOCAQEAKEssGf2uNTbx4/v0/BSkXmPO0Owy26ZYH4d1 mtQjfA82EEh7gMzES3zq8Z35Pr0i/45E14xqgGcYIP6EsQAwOsllMD0gKNreTPvG jEts8Wia1cRhfdAvKdta9NWaDQGRwhAMHNZn7xBcLmnDBEE9SZDxl979a6ikoX2e WdE864tognGhc7eNfkfukZDDhrg4D385HV9tUfN1QWm9E8rcS8jMb6TTY5uw4GXx 0cbTWldc2yBhrRGWcNZMjyQxaPNQ6LAyiKBqE9mTSA2idRhtT4VBV9STK8O5v2b0 B0unVX932hvnLrG7v0TruNxJhAzYmarK7mqNHKZwfvaTI/S5xw== -----END CERTIFICATE-----Generated at Wed May 13 13:26:56 2026 by rpki-client