$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31363a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31363a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: iJPAgEFu6DCGypmIkX2ltTGkjNhSTUKEXQCloAvrJiM= Subject key identifier: 34:EA:68:A0:9C:5A:71:BC:E5:EE:6C:BE:E2:6D:11:BC:B6:01:C3:17 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 437C328EF4C6625B07CA5BA08FF15D80F6D8C657 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31363a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:48 +0000 ROA not before: Sun 03 May 2026 02:07:48 +0000 ROA not after: Sun 02 May 2027 02:12:48 +0000 asID: 137330 IP address blocks: 2402:aa40:16::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7c:32:8e:f4:c6:62:5b:07:ca:5b:a0:8f:f1:5d:80:f6:d8:c6:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:48 2026 GMT Not After : May 2 02:12:48 2027 GMT Subject: CN=34EA68A09C5A71BCE5EE6CBEE26D11BCB601C317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:0a:df:de:ac:ab:34:b8:cb:7b:3a:77:74:04: 88:db:98:74:68:3b:c4:0e:bb:00:03:c5:13:e7:6a: dc:ef:a3:f5:fc:aa:97:4c:00:8b:39:c1:e0:3d:89: 54:e8:bd:18:b1:b3:bd:08:a5:f8:5c:e7:61:cd:18: bc:e3:6b:b4:13:79:49:28:8f:d7:b6:dd:a4:76:87: d2:e0:d0:6e:66:9b:d1:2e:e7:2b:ba:14:82:6b:d3: 98:30:35:65:d9:de:7c:f7:f9:e9:57:47:cc:7d:05: c1:25:26:ce:37:d1:b4:96:f9:f7:d5:6d:b9:70:4b: 2f:c5:d6:d9:80:71:65:a9:ba:23:ea:28:a8:07:b2: 09:9b:fd:22:be:52:cd:64:83:ce:cf:dd:5e:20:ea: a3:c3:0f:8f:e4:3d:30:c2:ba:91:fe:1c:9b:ac:2e: 76:91:68:99:9a:b5:fa:1d:f1:67:b9:7a:85:94:bc: f1:0a:30:af:31:dc:e2:b1:ae:07:ee:b2:7f:8c:97: 06:a6:3f:20:bd:3a:38:36:a4:08:4d:4a:eb:1f:9d: 5e:0e:17:be:86:91:6a:7a:76:cc:f1:53:1e:15:eb: a1:aa:89:ad:8f:65:9b:e0:17:99:b2:f9:88:de:b0: 84:11:71:b0:89:f1:1f:4d:ac:07:43:a3:29:d0:71: 3f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EA:68:A0:9C:5A:71:BC:E5:EE:6C:BE:E2:6D:11:BC:B6:01:C3:17 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31363a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:16::/48 Signature Algorithm: sha256WithRSAEncryption 10:78:de:b2:54:c5:97:ca:99:cd:17:ac:56:3e:8b:c6:34:ec: a5:57:2f:44:3c:b4:0d:1c:99:63:c0:17:8c:bd:14:f9:e9:a2: 77:59:0b:75:63:72:6c:f4:36:96:f7:81:97:eb:82:3b:dc:f8: d7:10:18:4e:90:5a:82:04:39:f1:15:a5:6d:13:f7:56:c7:15: 88:c4:b1:43:05:74:74:5c:e0:19:be:51:30:cc:ee:be:c6:6e: ef:2e:bf:0a:45:cd:bf:7a:6d:8e:6f:eb:52:27:db:23:96:a0: 78:21:4b:01:9e:d1:a3:72:4f:08:d9:a0:76:d0:ba:f8:85:ff: b3:b6:ef:8a:7f:ed:7a:03:ae:6a:f3:8c:4b:0e:c4:a2:d0:d3: 3d:c7:45:06:ae:db:5e:4d:03:13:e9:b4:ae:c8:cf:c8:93:ba: fa:cf:84:fa:35:2a:68:a9:a6:61:3f:99:53:88:8c:a9:8c:9b: de:e9:ca:ea:44:05:aa:99:dd:be:fd:ac:11:6c:08:43:ef:a0: 5b:3d:4f:68:3d:83:6b:ca:0e:5c:15:c1:b9:a9:15:05:b3:c0: ed:aa:22:27:11:64:04:71:79:29:62:55:e1:47:ce:26:e5:dc: 5d:93:62:cf:18:56:5c:91:7c:81:db:e1:53:fd:a4:e5:f6:68: fc:5d:7f:bf -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQ3wyjvTGYlsHylugj/FdgPbYxlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NDhaFw0yNzA1MDIwMjEyNDhaMDMxMTAvBgNV BAMTKDM0RUE2OEEwOUM1QTcxQkNFNUVFNkNCRUUyNkQxMUJDQjYwMUMzMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvCt/erKs0uMt7Ond0BIjbmHRo O8QOuwADxRPnatzvo/X8qpdMAIs5weA9iVTovRixs70Ipfhc52HNGLzja7QTeUko j9e23aR2h9Lg0G5mm9Eu5yu6FIJr05gwNWXZ3nz3+elXR8x9BcElJs430bSW+ffV bblwSy/F1tmAcWWpuiPqKKgHsgmb/SK+Us1kg87P3V4g6qPDD4/kPTDCupH+HJus LnaRaJmatfod8We5eoWUvPEKMK8x3OKxrgfusn+MlwamPyC9Ojg2pAhNSusfnV4O F76GkWp6dszxUx4V66Gqia2PZZvgF5my+YjesIQRcbCJ8R9NrAdDoynQcT8VAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUNOpooJxacbzl7my+4m0RvLYBwxcwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FjANBgkqhkiG9w0BAQsFAAOCAQEAEHjeslTFl8qZzResVj6LxjTspVcvRDy0DRyZ Y8AXjL0U+emid1kLdWNybPQ2lveBl+uCO9z41xAYTpBaggQ58RWlbRP3VscViMSx QwV0dFzgGb5RMMzuvsZu7y6/CkXNv3ptjm/rUifbI5ageCFLAZ7Ro3JPCNmgdtC6 +IX/s7bvin/tegOuavOMSw7EotDTPcdFBq7bXk0DE+m0rsjPyJO6+s+E+jUqaKmm YT+ZU4iMqYyb3unK6kQFqpndvv2sEWwIQ++gWz1PaD2Da8oOXBXBuakVBbPA7aoi JxFkBHF5KWJV4UfOJuXcXZNizxhWXJF8gdvhU/2k5fZo/F1/vw== -----END CERTIFICATE-----Generated at Wed May 13 13:28:05 2026 by rpki-client