$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: PeJ7812iCAFwEL4RVyYBQ7zi2tNf/qvlV66+P1JlSLA= Subject key identifier: F0:C9:9F:AE:65:37:73:D6:98:A8:4B:57:32:DE:F8:5A:1D:12:58:09 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 6E10B52ABFB53BD2AA9563A315270F9EF6A0B0FC Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:47 +0000 ROA not before: Sun 03 May 2026 02:07:47 +0000 ROA not after: Sun 02 May 2027 02:12:47 +0000 asID: 137330 IP address blocks: 2402:aa40:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:10:b5:2a:bf:b5:3b:d2:aa:95:63:a3:15:27:0f:9e:f6:a0:b0:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:47 2026 GMT Not After : May 2 02:12:47 2027 GMT Subject: CN=F0C99FAE653773D698A84B5732DEF85A1D125809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:10:3f:f7:c7:95:5a:f2:82:44:a5:19:68:68: ae:37:7e:a9:aa:a5:40:12:e5:cc:3e:2e:af:17:93: 73:72:ea:67:ae:56:99:d6:9f:f8:fa:07:52:e8:b7: 39:30:c2:b7:74:5e:1d:13:a2:be:1f:c7:c4:1b:55: dc:fa:7b:75:eb:65:54:c8:44:08:07:67:79:0c:83: 56:18:11:e1:f2:9b:6b:e2:67:63:8a:aa:89:36:1e: 35:eb:6b:37:e9:96:e7:10:27:72:20:cc:0e:3c:a8: 5d:93:c7:8a:16:7f:79:55:1a:89:2e:54:30:67:67: 94:2e:74:d9:ba:bf:4b:74:77:a5:84:31:8b:82:a6: d6:27:83:4a:21:c5:71:82:d4:77:dc:02:30:5e:37: fe:00:e7:5d:7f:1b:f5:c3:22:72:b4:8e:85:b7:ab: e2:6f:b8:ff:a2:25:eb:77:66:ee:60:a7:10:e0:f7: bb:66:5d:eb:3f:55:59:95:8d:04:14:96:fe:17:ed: ca:c8:73:b3:23:7e:f3:39:33:85:92:22:37:ab:33: 00:f4:3b:a4:3b:20:92:f2:de:89:b6:39:77:21:8c: 4e:95:76:13:e5:72:cf:84:21:a8:5d:9d:b1:e7:1a: 06:a2:53:a1:f4:23:9d:33:c8:f1:f7:3f:1e:90:41: db:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C9:9F:AE:65:37:73:D6:98:A8:4B:57:32:DE:F8:5A:1D:12:58:09 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31383a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:18::/48 Signature Algorithm: sha256WithRSAEncryption 33:ba:76:61:db:9c:11:b2:a2:09:ac:ef:16:6d:70:97:16:98: 44:d9:7b:e0:06:49:04:ef:d2:bd:95:c1:44:b8:44:3b:8f:0c: 69:a3:34:32:35:7a:e7:2d:bc:ff:f8:a9:ee:0a:a1:24:da:dc: ce:39:ff:cf:62:e7:7e:57:43:30:c0:6d:1f:27:25:54:a8:6c: 03:ed:a0:ad:0b:28:0b:2a:c5:d1:a0:46:dc:e7:58:f4:28:91: 89:fe:24:bf:35:db:4e:f7:e8:ab:56:70:46:90:66:74:d5:cc: 06:31:5d:ff:29:b9:20:66:69:50:e7:47:57:77:42:d1:34:02: df:ba:f1:81:15:08:8f:a6:55:05:d2:5e:dd:89:12:a6:ed:2f: 8d:3b:1f:29:47:df:5a:17:d1:a6:67:49:b9:0a:ca:56:b8:c8: 15:42:a0:4d:8c:12:e0:0e:cf:58:c0:4c:93:f5:00:1c:c6:23: b2:7e:17:32:c5:c5:2d:02:e7:6d:f5:57:28:42:54:e6:79:e1: d6:88:5f:34:7f:58:0d:1c:30:99:52:db:bc:10:9b:74:8c:6a: d0:4a:0e:f9:62:28:53:e3:26:8e:06:67:36:6f:6c:ea:79:b3: 6c:6f:36:c9:d1:c2:9e:03:64:59:91:ac:f8:d9:84:ab:22:6e: e9:dc:a9:21 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbhC1Kr+1O9KqlWOjFScPnvagsPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NDdaFw0yNzA1MDIwMjEyNDdaMDMxMTAvBgNV BAMTKEYwQzk5RkFFNjUzNzczRDY5OEE4NEI1NzMyREVGODVBMUQxMjU4MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzED/3x5Va8oJEpRloaK43fqmq pUAS5cw+Lq8Xk3Ny6meuVpnWn/j6B1Lotzkwwrd0Xh0Tor4fx8QbVdz6e3XrZVTI RAgHZ3kMg1YYEeHym2viZ2OKqok2HjXrazfplucQJ3IgzA48qF2Tx4oWf3lVGoku VDBnZ5QudNm6v0t0d6WEMYuCptYng0ohxXGC1HfcAjBeN/4A511/G/XDInK0joW3 q+JvuP+iJet3Zu5gpxDg97tmXes/VVmVjQQUlv4X7crIc7MjfvM5M4WSIjerMwD0 O6Q7IJLy3om2OXchjE6VdhPlcs+EIahdnbHnGgaiU6H0I50zyPH3Px6QQdvHAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU8MmfrmU3c9aYqEtXMt74Wh0SWAkwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA GDANBgkqhkiG9w0BAQsFAAOCAQEAM7p2YducEbKiCazvFm1wlxaYRNl74AZJBO/S vZXBRLhEO48MaaM0MjV65y28//ip7gqhJNrczjn/z2LnfldDMMBtHyclVKhsA+2g rQsoCyrF0aBG3OdY9CiRif4kvzXbTvfoq1ZwRpBmdNXMBjFd/ym5IGZpUOdHV3dC 0TQC37rxgRUIj6ZVBdJe3YkSpu0vjTsfKUffWhfRpmdJuQrKVrjIFUKgTYwS4A7P WMBMk/UAHMYjsn4XMsXFLQLnbfVXKEJU5nnh1ohfNH9YDRwwmVLbvBCbdIxq0EoO +WIoU+MmjgZnNm9s6nmzbG82ydHCngNkWZGs+NmEqyJu6dypIQ== -----END CERTIFICATE-----Generated at Wed May 13 13:48:33 2026 by rpki-client