$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: zcOeMXhbAw1VfW5yDv78FmXwagz7024FcemSV86aock= Subject key identifier: B1:12:DC:11:9A:24:D3:C0:5D:02:BF:1C:2A:A6:70:BB:07:B1:29:19 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 02B8E6D35C12F8CAE0D6C9471C00727E0AC3E2EE Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:49 +0000 ROA not before: Sun 03 May 2026 02:07:49 +0000 ROA not after: Sun 02 May 2027 02:12:49 +0000 asID: 137330 IP address blocks: 2402:aa40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:b8:e6:d3:5c:12:f8:ca:e0:d6:c9:47:1c:00:72:7e:0a:c3:e2:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:49 2026 GMT Not After : May 2 02:12:49 2027 GMT Subject: CN=B112DC119A24D3C05D02BF1C2AA670BB07B12919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:1e:26:c3:05:95:a5:06:c9:f2:bb:ff:7f: ad:1f:f5:c4:a7:0d:2d:1e:bb:7b:f7:a1:e4:86:98: 28:08:c9:8c:7e:69:14:49:1e:c0:f9:61:e1:95:18: da:14:e7:c9:aa:26:eb:5d:bf:4e:a4:99:c2:8f:c9: 57:be:c9:46:c2:93:c1:48:66:8b:30:39:39:b2:5a: f5:7e:09:22:0d:26:d2:af:19:c7:bf:f0:3c:f5:2f: f4:42:3a:b9:59:69:9f:cd:14:d6:31:a4:df:52:d8: bd:6f:9f:f0:a4:f1:23:b6:8e:37:a5:db:ad:3a:a5: 7e:58:46:24:d0:3f:10:1f:0b:4e:43:a6:14:32:00: 88:4e:49:9b:f3:f0:01:1e:55:4f:68:46:0a:86:48: 78:14:1e:a7:2c:90:0a:48:26:bf:91:06:dc:ef:06: 6c:ea:80:d7:cb:5e:a6:4f:3c:f2:54:ef:3c:d5:f1: 8d:25:8a:98:4c:b1:dc:c8:41:1f:a1:55:02:8f:ac: 15:be:f0:20:91:e2:6d:7f:0c:f8:b7:c4:9b:37:ca: e9:7b:11:03:67:e6:8c:7f:30:f8:fb:51:33:03:ca: 5e:8e:cc:7c:7a:50:30:ff:92:83:d2:50:4e:77:98: 83:8f:75:9b:ca:8a:6c:a1:0e:49:1e:97:78:d3:a3: 6e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:12:DC:11:9A:24:D3:C0:5D:02:BF:1C:2A:A6:70:BB:07:B1:29:19 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:1::/48 Signature Algorithm: sha256WithRSAEncryption 18:34:07:3c:74:03:fb:55:90:d5:b2:98:40:a2:37:53:1b:81: 6d:b5:2f:63:d1:c7:43:94:34:43:d3:70:a6:31:57:f2:51:8f: 72:26:7e:9a:c0:a8:93:5d:7c:0b:4a:77:5f:00:83:c3:42:5c: 6d:5c:d3:fd:f4:5e:1e:23:1f:a9:bc:66:5b:f8:43:8c:f5:69: 6f:10:93:38:64:15:a4:b0:24:5a:5e:e7:fa:83:b2:a8:95:73: 7d:80:7d:2b:94:14:cc:08:22:e7:7c:b8:bc:8b:cd:24:0f:e9: 64:60:44:a8:f6:68:53:87:e0:1b:90:2e:c3:4f:8e:b9:7b:17: 91:f9:f2:f5:51:90:6a:88:1b:0d:54:71:88:8d:87:c8:b8:04: da:48:28:60:88:04:e0:75:ab:3b:57:4a:26:78:66:81:45:0d: 2c:c9:20:a4:ea:f4:0b:32:a2:a9:0b:83:e7:24:77:56:f8:3f: 55:25:b9:c6:90:fd:b9:40:89:0c:9e:64:31:87:03:96:87:5a: 1e:34:24:ed:c6:3e:35:ec:05:c3:02:40:d0:14:f7:4b:d2:aa: 72:c9:0a:13:0b:3a:f5:15:88:5c:6f:c6:08:4a:47:a7:b3:36: 21:bb:a6:14:76:98:16:c5:48:5f:11:c3:9a:73:54:10:7b:d8: 7f:42:0c:76 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUArjm01wS+Mrg1slHHAByfgrD4u4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NDlaFw0yNzA1MDIwMjEyNDlaMDMxMTAvBgNV BAMTKEIxMTJEQzExOUEyNEQzQzA1RDAyQkYxQzJBQTY3MEJCMDdCMTI5MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqFh4mwwWVpQbJ8rv/f60f9cSn DS0eu3v3oeSGmCgIyYx+aRRJHsD5YeGVGNoU58mqJutdv06kmcKPyVe+yUbCk8FI ZoswOTmyWvV+CSINJtKvGce/8Dz1L/RCOrlZaZ/NFNYxpN9S2L1vn/Ck8SO2jjel 2606pX5YRiTQPxAfC05DphQyAIhOSZvz8AEeVU9oRgqGSHgUHqcskApIJr+RBtzv BmzqgNfLXqZPPPJU7zzV8Y0liphMsdzIQR+hVQKPrBW+8CCR4m1/DPi3xJs3yul7 EQNn5ox/MPj7UTMDyl6OzHx6UDD/koPSUE53mIOPdZvKimyhDkkel3jTo24pAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsRLcEZok08BdAr8cKqZwuwexKRkwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAEw DQYJKoZIhvcNAQELBQADggEBABg0Bzx0A/tVkNWymECiN1MbgW21L2PRx0OUNEPT cKYxV/JRj3ImfprAqJNdfAtKd18Ag8NCXG1c0/30Xh4jH6m8Zlv4Q4z1aW8Qkzhk FaSwJFpe5/qDsqiVc32AfSuUFMwIIud8uLyLzSQP6WRgRKj2aFOH4BuQLsNPjrl7 F5H58vVRkGqIGw1UcYiNh8i4BNpIKGCIBOB1qztXSiZ4ZoFFDSzJIKTq9AsyoqkL g+ckd1b4P1UlucaQ/blAiQyeZDGHA5aHWh40JO3GPjXsBcMCQNAU90vSqnLJChML OvUViFxvxghKR6ezNiG7phR2mBbFSF8Rw5pzVBB72H9CDHY= -----END CERTIFICATE-----Generated at Wed May 13 16:48:07 2026 by rpki-client