$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a32303a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a32303a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: 4YpgCEixPvb9hTNqvAoLsU4GXNDjvT+0cAD6SPzANag= Subject key identifier: 28:9A:11:40:4A:6B:42:70:B3:D6:60:39:F5:0F:5E:3F:E6:65:60:37 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 66D951576B20ABC396475EDE2181D09EE2136DE3 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a32303a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:57 +0000 ROA not before: Sun 03 May 2026 02:07:57 +0000 ROA not after: Sun 02 May 2027 02:12:57 +0000 asID: 137330 IP address blocks: 2402:aa40:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d9:51:57:6b:20:ab:c3:96:47:5e:de:21:81:d0:9e:e2:13:6d:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:57 2026 GMT Not After : May 2 02:12:57 2027 GMT Subject: CN=289A11404A6B4270B3D66039F50F5E3FE6656037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:28:da:8b:ee:be:ce:96:ae:2b:fd:74:22:c0: fb:ed:57:8c:0b:61:7d:1a:3c:ad:25:00:52:2c:42: ec:38:dd:c1:cf:37:07:d2:0f:35:a3:92:f4:ad:22: d1:15:01:80:11:db:10:42:28:0e:d3:67:7e:ed:83: 26:d4:bb:7b:1c:96:77:e3:7f:fb:55:ee:cc:ee:a5: 1e:eb:a3:41:bf:29:62:ae:c8:35:09:9c:f9:6a:3d: 11:68:54:cc:6c:19:6c:a2:ec:f9:62:ac:16:fc:f5: 26:bf:ca:40:67:32:64:54:04:79:9d:36:37:01:fd: d3:4e:ef:a7:bc:e6:89:cc:99:df:04:78:d5:1a:24: b4:40:38:65:75:26:5f:9a:53:51:93:23:3b:2e:b1: cd:d5:c9:16:b3:8c:6c:e4:65:44:97:64:34:15:ab: 5a:7d:43:dd:43:9f:a0:6e:40:cf:03:45:37:91:59: 51:bf:d5:12:a3:b4:29:58:10:d6:27:b0:1d:d9:d4: 1c:9d:46:2e:da:ec:03:67:13:e5:b6:a6:86:5d:b4: 5a:59:75:5b:40:82:b4:cd:54:05:b5:76:f7:94:ef: 54:e2:aa:a0:7d:94:5f:b1:c1:46:6b:1c:1e:42:c9: 30:42:3a:d4:4b:a1:17:6a:16:98:c4:fa:83:6c:08: 8f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:9A:11:40:4A:6B:42:70:B3:D6:60:39:F5:0F:5E:3F:E6:65:60:37 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a32303a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:20::/48 Signature Algorithm: sha256WithRSAEncryption 5b:35:24:f3:45:60:44:7a:44:44:6a:42:ec:45:dc:9b:e9:d3: 6f:e9:4a:51:fb:a5:5b:33:a5:32:5d:22:56:c9:e6:46:2a:9d: 7d:25:28:e8:4b:2a:01:3c:a7:19:57:a6:a9:6d:d3:52:e0:68: 29:c9:bb:14:f0:d4:ce:8d:05:61:ef:4e:3e:89:d1:2e:3d:3c: c4:cc:24:7c:25:0f:c6:45:8e:5d:ee:a4:48:5e:44:a9:92:8d: ea:6f:f3:ad:7d:5b:3b:f2:30:cb:31:eb:16:53:97:d2:da:a5: f1:80:73:2d:c0:60:fb:ac:d6:ad:c7:7a:ff:70:bd:3d:d2:55: f3:c7:36:4b:09:a5:40:47:e3:3a:63:68:27:f2:81:79:ce:36: f3:b5:a2:e4:83:b9:f1:70:15:60:23:9c:36:7d:2d:2f:b7:49: 44:bb:a1:58:0b:a1:9f:7e:14:9d:75:cb:5d:d2:ae:9f:32:12: 35:0a:21:4c:8c:3a:00:ed:22:cc:16:85:fb:db:b1:d4:03:41: 11:6d:b0:44:0f:15:31:dd:4e:11:89:af:4a:07:a6:c1:ec:85: 65:e3:b6:1a:76:69:05:74:19:3a:01:61:64:1d:f3:58:45:e7: 6e:be:74:c7:9b:9d:fa:44:70:bb:52:ba:9d:7d:40:3a:0c:72: 51:ce:57:64 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZtlRV2sgq8OWR17eIYHQnuITbeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTdaFw0yNzA1MDIwMjEyNTdaMDMxMTAvBgNV BAMTKDI4OUExMTQwNEE2QjQyNzBCM0Q2NjAzOUY1MEY1RTNGRTY2NTYwMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUKNqL7r7Olq4r/XQiwPvtV4wL YX0aPK0lAFIsQuw43cHPNwfSDzWjkvStItEVAYAR2xBCKA7TZ37tgybUu3sclnfj f/tV7szupR7ro0G/KWKuyDUJnPlqPRFoVMxsGWyi7PlirBb89Sa/ykBnMmRUBHmd NjcB/dNO76e85onMmd8EeNUaJLRAOGV1Jl+aU1GTIzsusc3VyRazjGzkZUSXZDQV q1p9Q91Dn6BuQM8DRTeRWVG/1RKjtClYENYnsB3Z1BydRi7a7ANnE+W2poZdtFpZ dVtAgrTNVAW1dveU71TiqqB9lF+xwUZrHB5CyTBCOtRLoRdqFpjE+oNsCI/hAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUKJoRQEprQnCz1mA59Q9eP+ZlYDcwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA IDANBgkqhkiG9w0BAQsFAAOCAQEAWzUk80VgRHpERGpC7EXcm+nTb+lKUfulWzOl Ml0iVsnmRiqdfSUo6EsqATynGVemqW3TUuBoKcm7FPDUzo0FYe9OPonRLj08xMwk fCUPxkWOXe6kSF5EqZKN6m/zrX1bO/IwyzHrFlOX0tql8YBzLcBg+6zWrcd6/3C9 PdJV88c2SwmlQEfjOmNoJ/KBec4287Wi5IO58XAVYCOcNn0tL7dJRLuhWAuhn34U nXXLXdKunzISNQohTIw6AO0izBaF+9ux1ANBEW2wRA8VMd1OEYmvSgemweyFZeO2 GnZpBXQZOgFhZB3zWEXnbr50x5ud+kRwu1K6nX1AOgxyUc5XZA== -----END CERTIFICATE-----Generated at Wed May 13 14:41:12 2026 by rpki-client