$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: U+8f/Sf5BM6B7EOHAfWHJW9sCVbf0kmnz38ZyKkQBbw= Subject key identifier: C9:DD:C9:7B:5C:7D:B3:76:B0:02:98:B6:14:12:7E:F0:83:4F:FE:77 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 6EAFE19E7066209ED3483DC7F0C09A8875D2FE40 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:53 +0000 ROA not before: Sun 03 May 2026 02:07:53 +0000 ROA not after: Sun 02 May 2027 02:12:53 +0000 asID: 137330 IP address blocks: 2402:aa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:af:e1:9e:70:66:20:9e:d3:48:3d:c7:f0:c0:9a:88:75:d2:fe:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:53 2026 GMT Not After : May 2 02:12:53 2027 GMT Subject: CN=C9DDC97B5C7DB376B00298B614127EF0834FFE77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8e:85:4b:5c:49:de:42:01:64:ac:04:f9:0e: ee:73:65:07:12:51:9c:2e:88:40:6f:d3:71:82:be: 83:8f:11:83:5c:3f:03:d2:82:01:c6:57:84:62:ae: 11:f7:32:f1:2c:10:0b:4c:66:3e:42:c1:b2:38:ff: 90:55:15:68:69:69:9f:3f:ac:d0:e8:38:6c:39:0e: 8d:5f:bb:eb:b6:88:08:cd:47:6b:8e:a9:f9:59:1e: 49:fa:1c:ba:40:e9:72:e9:6c:48:36:5b:c5:15:bb: af:47:15:48:fa:ca:21:09:38:ab:85:63:66:33:38: 09:f6:12:30:af:60:52:ae:f9:fd:77:cc:7f:78:90: 33:d3:22:3b:ca:9a:ec:f2:2c:6f:f1:ef:45:f1:1a: 52:9d:47:64:90:29:16:55:99:f7:25:a4:7e:a6:d5: 8f:9d:36:f0:9d:84:9b:a4:ad:15:ec:af:3c:ee:a9: c1:2b:6d:82:bd:b4:63:37:23:c9:5d:63:4f:92:18: b3:23:ff:54:4f:57:cd:69:d9:14:19:76:2f:e4:ce: 3c:f4:9f:a3:86:ad:58:42:ed:04:df:bd:ea:07:85: 1b:20:0c:ff:d9:ae:0b:99:55:be:cc:ba:01:0c:e2: fa:9b:01:16:f5:b1:ab:3f:dc:30:70:e1:ce:39:9a: 55:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DD:C9:7B:5C:7D:B3:76:B0:02:98:B6:14:12:7E:F0:83:4F:FE:77 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:2::/48 Signature Algorithm: sha256WithRSAEncryption 06:11:22:f3:53:8e:da:38:76:22:76:f1:63:7f:6c:22:98:ed: 86:52:c6:ea:53:e1:f5:07:5d:17:1d:f8:9b:15:6a:55:58:8e: 22:06:6f:43:b2:f0:51:5d:d0:2b:7a:c5:42:19:e1:9a:dd:31: 9f:df:31:65:7f:48:66:34:ef:9b:f9:0d:25:15:22:ea:af:5c: 67:67:0f:6a:5e:fb:dd:e2:43:b1:14:3c:74:e7:56:fc:19:6c: 79:fd:07:82:df:f5:c8:e4:ab:e4:78:b1:40:19:a8:5e:e3:db: 7c:d4:25:7e:8b:a8:9d:47:4b:07:5b:07:f1:aa:29:cd:6b:0a: 2d:56:19:3f:2c:c2:96:9e:35:4c:b7:a9:7b:10:ac:dd:9e:ba: f5:2b:93:12:43:27:89:9a:ea:61:56:b4:93:25:6a:ec:85:35: c1:35:5c:59:ae:1a:2f:f6:30:dd:4e:f0:64:08:01:c7:e9:f1: a1:0e:b4:24:1c:97:4f:2c:8d:19:15:1e:cd:47:18:ff:c3:6a: fd:52:3a:62:02:b0:96:ab:68:5c:26:27:e6:ea:e6:13:7d:2a: f9:37:e7:cc:3f:73:ca:50:87:98:a4:5e:72:2a:e3:25:7d:50: 82:af:92:3d:18:0f:b4:6d:68:95:ee:16:32:6c:95:be:40:1e: 3e:1c:e0:49 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbq/hnnBmIJ7TSD3H8MCaiHXS/kAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTNaFw0yNzA1MDIwMjEyNTNaMDMxMTAvBgNV BAMTKEM5RERDOTdCNUM3REIzNzZCMDAyOThCNjE0MTI3RUYwODM0RkZFNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjjoVLXEneQgFkrAT5Du5zZQcS UZwuiEBv03GCvoOPEYNcPwPSggHGV4RirhH3MvEsEAtMZj5CwbI4/5BVFWhpaZ8/ rNDoOGw5Do1fu+u2iAjNR2uOqflZHkn6HLpA6XLpbEg2W8UVu69HFUj6yiEJOKuF Y2YzOAn2EjCvYFKu+f13zH94kDPTIjvKmuzyLG/x70XxGlKdR2SQKRZVmfclpH6m 1Y+dNvCdhJukrRXsrzzuqcErbYK9tGM3I8ldY0+SGLMj/1RPV81p2RQZdi/kzjz0 n6OGrVhC7QTfveoHhRsgDP/ZrguZVb7MugEM4vqbARb1sas/3DBw4c45mlUrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUyd3Je1x9s3awApi2FBJ+8INP/ncwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAIw DQYJKoZIhvcNAQELBQADggEBAAYRIvNTjto4diJ28WN/bCKY7YZSxupT4fUHXRcd +JsValVYjiIGb0Oy8FFd0Ct6xUIZ4ZrdMZ/fMWV/SGY075v5DSUVIuqvXGdnD2pe +93iQ7EUPHTnVvwZbHn9B4Lf9cjkq+R4sUAZqF7j23zUJX6LqJ1HSwdbB/GqKc1r Ci1WGT8swpaeNUy3qXsQrN2euvUrkxJDJ4ma6mFWtJMlauyFNcE1XFmuGi/2MN1O 8GQIAcfp8aEOtCQcl08sjRkVHs1HGP/Dav1SOmICsJaraFwmJ+bq5hN9Kvk358w/ c8pQh5ikXnIq4yV9UIKvkj0YD7RtaJXuFjJslb5AHj4c4Ek= -----END CERTIFICATE-----Generated at Wed May 13 14:10:29 2026 by rpki-client