$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: hPHF5L92/aZrD7rqbkjSlybCZ3IaJkVfsaRnuRXTb98= Subject key identifier: 31:5D:3B:F7:C2:5A:9C:C2:9C:69:06:D3:C5:A8:45:4A:9D:C7:60:91 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 2EF083D9D7DE5FE6802795A1088301F8F7AF0B1F Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:50 +0000 ROA not before: Sun 03 May 2026 02:07:50 +0000 ROA not after: Sun 02 May 2027 02:12:50 +0000 asID: 137330 IP address blocks: 2402:aa40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f0:83:d9:d7:de:5f:e6:80:27:95:a1:08:83:01:f8:f7:af:0b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:50 2026 GMT Not After : May 2 02:12:50 2027 GMT Subject: CN=315D3BF7C25A9CC29C6906D3C5A8454A9DC76091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:31:be:59:e6:27:bb:88:15:d5:a4:0b:1c:15: 6f:41:f0:8b:c5:f8:d4:7a:80:3e:6e:94:66:98:65: a5:13:5d:4d:9b:c4:07:09:00:df:da:c8:2f:5c:09: 2a:ff:6e:26:11:04:9f:26:81:29:20:6e:f8:b8:36: f0:2a:38:27:ef:27:c5:7e:4c:4b:50:52:0c:90:a0: 2c:b0:84:d9:75:ad:1b:e2:0b:37:c7:5a:fb:ea:46: 01:d4:66:56:3b:f1:72:ac:d2:61:fd:6f:6d:82:94: ab:58:ce:96:07:13:a0:58:b5:36:34:34:84:e5:30: a6:1b:01:72:71:b2:aa:95:16:c1:99:0d:90:37:88: a5:e4:cc:52:f7:02:d6:95:a8:c1:93:ad:9b:53:d6: 01:7f:47:ae:2a:1e:46:72:38:71:ef:cf:cb:b4:f1: 1d:4b:4d:64:6b:75:9e:5d:97:41:3d:ee:05:87:d9: 9e:9c:56:2c:7f:7f:73:51:d6:1b:40:7c:08:8b:3d: 05:dd:f7:c2:2d:90:c5:c6:a0:39:64:55:e3:1c:5c: 7c:8d:50:19:56:fc:6c:57:5f:7e:6c:6b:55:a9:49: bb:de:4f:6b:8c:84:39:b0:06:fd:78:bb:94:6d:e0: 8b:ff:08:43:23:16:a1:f8:50:22:02:9f:ce:f2:70: c2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5D:3B:F7:C2:5A:9C:C2:9C:69:06:D3:C5:A8:45:4A:9D:C7:60:91 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:4::/48 Signature Algorithm: sha256WithRSAEncryption 96:cc:ac:27:9e:29:f3:70:58:6b:e2:e9:21:b6:6a:a4:4f:66: b4:bc:54:d5:01:98:ba:ee:97:e0:8c:7d:b1:0f:c6:b7:3f:99: 0e:41:6e:75:cb:95:96:4c:b1:22:ae:1f:2d:fc:7d:70:e3:25: f9:9b:46:1d:e2:e1:7b:bd:5e:0e:e8:83:a7:25:3f:5c:9a:f4: dd:1a:81:7a:01:c1:86:ec:bb:45:49:04:c6:a1:3d:0a:18:6e: 76:2e:e2:14:34:cd:42:c0:1a:de:c9:20:3c:63:d0:c0:ec:cf: bb:8d:0b:85:a9:2a:91:48:3b:2e:5f:4e:fb:ee:d1:83:6a:1e: 76:f0:06:40:8a:44:1d:e8:e7:61:81:ec:27:15:32:ac:4e:a2: 21:56:11:29:25:cb:aa:a3:b4:88:99:a2:fd:79:38:ba:07:50: 03:68:5e:cc:38:35:a1:d3:47:e0:2f:96:8c:ca:67:99:d1:0a: 7d:1f:f1:52:64:9b:59:9a:23:35:54:0e:12:03:cd:e1:4a:72: bb:03:c4:50:7b:1d:d4:76:f6:9d:a2:70:6d:6e:56:39:cd:84: 88:d9:33:07:fa:8e:71:41:8d:e3:db:1f:65:8e:1a:99:eb:5d: 29:26:0a:96:aa:71:55:67:f2:2e:4c:7c:2c:19:ee:c5:c1:76: 3f:78:74:57 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULvCD2dfeX+aAJ5WhCIMB+PevCx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTBaFw0yNzA1MDIwMjEyNTBaMDMxMTAvBgNV BAMTKDMxNUQzQkY3QzI1QTlDQzI5QzY5MDZEM0M1QTg0NTRBOURDNzYwOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCMb5Z5ie7iBXVpAscFW9B8IvF +NR6gD5ulGaYZaUTXU2bxAcJAN/ayC9cCSr/biYRBJ8mgSkgbvi4NvAqOCfvJ8V+ TEtQUgyQoCywhNl1rRviCzfHWvvqRgHUZlY78XKs0mH9b22ClKtYzpYHE6BYtTY0 NITlMKYbAXJxsqqVFsGZDZA3iKXkzFL3AtaVqMGTrZtT1gF/R64qHkZyOHHvz8u0 8R1LTWRrdZ5dl0E97gWH2Z6cVix/f3NR1htAfAiLPQXd98ItkMXGoDlkVeMcXHyN UBlW/GxXX35sa1WpSbveT2uMhDmwBv14u5Rt4Iv/CEMjFqH4UCICn87ycMIZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMV0798JanMKcaQbTxahFSp3HYJEwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAQw DQYJKoZIhvcNAQELBQADggEBAJbMrCeeKfNwWGvi6SG2aqRPZrS8VNUBmLrul+CM fbEPxrc/mQ5BbnXLlZZMsSKuHy38fXDjJfmbRh3i4Xu9Xg7og6clP1ya9N0agXoB wYbsu0VJBMahPQoYbnYu4hQ0zULAGt7JIDxj0MDsz7uNC4WpKpFIOy5fTvvu0YNq HnbwBkCKRB3o52GB7CcVMqxOoiFWESkly6qjtIiZov15OLoHUANoXsw4NaHTR+Av lozKZ5nRCn0f8VJkm1maIzVUDhIDzeFKcrsDxFB7HdR29p2icG1uVjnNhIjZMwf6 jnFBjePbH2WOGpnrXSkmCpaqcVVn8i5MfCwZ7sXBdj94dFc= -----END CERTIFICATE-----Generated at Wed May 13 14:53:42 2026 by rpki-client