$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31393a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31393a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: gYXFaD7OGmClPvYCCEB+y8CETc4wKwqYJyHyDsAQ7W4= Subject key identifier: DB:AE:FA:FB:81:6A:F6:D7:D7:F5:C2:0C:88:55:36:3A:5E:CF:0A:7A Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 72A20DFF8A3CA34F5273CF78D32771D46782C116 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31393a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:50 +0000 ROA not before: Sun 03 May 2026 02:07:50 +0000 ROA not after: Sun 02 May 2027 02:12:50 +0000 asID: 137330 IP address blocks: 2402:aa40:19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a2:0d:ff:8a:3c:a3:4f:52:73:cf:78:d3:27:71:d4:67:82:c1:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:50 2026 GMT Not After : May 2 02:12:50 2027 GMT Subject: CN=DBAEFAFB816AF6D7D7F5C20C8855363A5ECF0A7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:05:42:01:85:00:f1:7b:b1:b0:1e:4a:90:4a: 81:68:0f:9d:32:9a:ef:fd:2b:51:c9:05:bb:0b:09: 63:bb:a8:a1:b9:f7:3f:d3:ad:e6:fd:0b:58:c2:30: b3:9f:d7:95:8f:89:fd:7c:f9:b8:3f:08:21:f9:22: 12:e3:45:74:a9:42:25:ad:c1:7d:5b:0f:c7:13:cc: 71:92:78:0c:04:a7:97:91:5f:ea:f0:0f:c2:1d:67: 3c:3a:a8:9c:ff:9e:b4:7e:a6:56:59:74:f1:35:ec: 68:25:d6:ae:c2:93:f6:04:09:23:f2:dc:87:5d:82: 49:75:d1:e9:69:88:f4:5d:03:5c:ac:08:4f:c0:6b: 3b:99:1b:27:f1:e3:08:3d:46:88:1e:9c:af:9e:68: c1:e3:45:a3:ba:4e:ff:f9:20:91:88:3c:1a:65:25: 6c:33:16:77:53:f2:5a:48:c1:6d:58:5c:ea:41:5f: f7:88:42:78:05:59:38:9a:97:b5:b8:08:c8:1a:1b: 3a:45:ed:92:71:bd:09:05:2a:c8:e2:f3:af:04:ba: 8e:85:74:ee:a7:5f:53:73:b0:0e:47:8c:f2:47:f0: ce:45:75:b1:82:6d:45:24:3d:f2:3b:d7:62:64:ab: 80:e9:ec:3a:85:08:a8:ea:92:d1:ec:29:3c:b0:56: 52:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AE:FA:FB:81:6A:F6:D7:D7:F5:C2:0C:88:55:36:3A:5E:CF:0A:7A X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31393a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:19::/48 Signature Algorithm: sha256WithRSAEncryption 2e:13:4f:20:ef:5e:74:1b:5c:2a:1b:48:5a:86:ae:53:4f:d9: f5:33:8b:a4:bc:77:49:7c:78:15:0a:90:e9:1c:7f:34:e2:e4: 25:eb:19:75:84:62:e4:ca:f1:df:b4:3e:7f:2a:cc:60:0e:a7: 77:8a:e6:d9:4d:b6:f6:5c:0c:67:fc:c5:c4:53:22:20:d4:b9: e4:9b:ab:6c:d7:9e:b1:f4:a7:f1:c6:d2:9d:e0:e9:2e:87:c5: 34:0f:8e:f0:70:b4:d2:87:18:ac:93:23:fe:38:7b:0b:e1:08: 4a:57:a8:f2:ae:42:a5:4f:27:e8:2c:73:44:10:bd:67:2f:a5: d4:0a:4a:5e:66:f5:a0:d4:74:fc:80:4a:ce:74:8e:96:fc:c5: 59:a1:1d:c3:f5:24:3e:dc:03:00:2d:ff:26:27:35:b9:59:b7: 61:93:be:84:29:ce:62:06:d6:e3:c7:8f:ff:64:d4:83:8c:7a: 9b:10:e1:1e:0a:00:d7:ee:65:fb:de:f2:fa:5d:97:ae:8e:26: 27:3b:09:0b:21:29:88:e2:6e:cb:2d:aa:63:5f:e0:81:20:94: 1d:e4:3e:9d:32:c1:26:a6:b7:fc:75:da:38:b5:1d:96:9a:b2: 4d:14:77:2d:f4:29:fa:89:49:91:d1:ba:33:c8:c1:27:50:b9: f1:5a:23:52 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUcqIN/4o8o09Sc8940ydx1GeCwRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTBaFw0yNzA1MDIwMjEyNTBaMDMxMTAvBgNV BAMTKERCQUVGQUZCODE2QUY2RDdEN0Y1QzIwQzg4NTUzNjNBNUVDRjBBN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeBUIBhQDxe7GwHkqQSoFoD50y mu/9K1HJBbsLCWO7qKG59z/Treb9C1jCMLOf15WPif18+bg/CCH5IhLjRXSpQiWt wX1bD8cTzHGSeAwEp5eRX+rwD8IdZzw6qJz/nrR+plZZdPE17Ggl1q7Ck/YECSPy 3Iddgkl10elpiPRdA1ysCE/AazuZGyfx4wg9RogenK+eaMHjRaO6Tv/5IJGIPBpl JWwzFndT8lpIwW1YXOpBX/eIQngFWTial7W4CMgaGzpF7ZJxvQkFKsji868Euo6F dO6nX1NzsA5HjPJH8M5FdbGCbUUkPfI712Jkq4Dp7DqFCKjqktHsKTywVlIzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2676+4Fq9tfX9cIMiFU2Ol7PCnowHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA GTANBgkqhkiG9w0BAQsFAAOCAQEALhNPIO9edBtcKhtIWoauU0/Z9TOLpLx3SXx4 FQqQ6Rx/NOLkJesZdYRi5Mrx37Q+fyrMYA6nd4rm2U229lwMZ/zFxFMiINS55Jur bNeesfSn8cbSneDpLofFNA+O8HC00ocYrJMj/jh7C+EISleo8q5CpU8n6CxzRBC9 Zy+l1ApKXmb1oNR0/IBKznSOlvzFWaEdw/UkPtwDAC3/Jic1uVm3YZO+hCnOYgbW 48eP/2TUg4x6mxDhHgoA1+5l+97y+l2Xro4mJzsJCyEpiOJuyy2qY1/ggSCUHeQ+ nTLBJqa3/HXaOLUdlpqyTRR3LfQp+olJkdG6M8jBJ1C58VojUg== -----END CERTIFICATE-----Generated at Wed May 13 13:27:48 2026 by rpki-client