$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: HFFKls9pbtJi4XHEKOJXiwkAPqHmAac8HcpirmppgTA= Subject key identifier: C6:F5:4C:79:E2:B9:A8:F7:42:3E:B3:ED:89:38:A2:ED:F6:58:02:BE Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 0870E00AD2E566C0152E1F831E3B7181BE633B13 Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:56 +0000 ROA not before: Sun 03 May 2026 02:07:56 +0000 ROA not after: Sun 02 May 2027 02:12:56 +0000 asID: 137330 IP address blocks: 2402:aa40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:70:e0:0a:d2:e5:66:c0:15:2e:1f:83:1e:3b:71:81:be:63:3b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:56 2026 GMT Not After : May 2 02:12:56 2027 GMT Subject: CN=C6F54C79E2B9A8F7423EB3ED8938A2EDF65802BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:1f:ec:b9:34:e6:52:c0:3e:20:c9:ce:5b: 5f:49:a9:67:64:ca:51:03:e2:a1:91:83:4b:db:e0: b7:28:a0:58:9f:72:f0:47:50:4e:de:2d:16:eb:e9: c7:e3:e6:9a:4a:1b:0a:74:83:53:81:9e:1b:41:3d: 17:0b:61:12:ef:65:f7:02:70:3f:e7:40:e9:2a:a5: 02:46:72:90:c7:e4:bc:f8:ad:34:b0:4b:0c:c9:58: 43:cd:1a:87:3d:70:e7:d6:e1:65:32:88:a2:c2:1c: 28:17:6c:ca:dd:46:ec:1a:af:19:be:2c:90:7c:95: 5f:e7:db:02:3f:e8:a2:dd:ca:36:a6:a6:37:b8:60: 11:a6:bd:58:b6:cb:56:d7:9e:f0:f3:08:88:d3:6f: 40:ea:b5:19:5d:99:af:f9:ff:68:25:b5:05:5a:ec: c2:af:50:a2:ec:a7:88:f2:b3:66:11:9f:f9:ba:7d: f0:4f:01:ce:57:43:a0:de:c7:d8:b5:34:fa:da:97: 30:22:ff:73:11:73:0a:4a:46:b6:e8:f7:6f:8e:b0: 76:11:07:66:74:6a:5c:31:8f:07:1a:f9:92:4b:a4: c2:68:6d:3a:ef:e1:fe:92:07:15:8c:e2:98:5e:4a: a7:50:a7:c7:15:23:c8:9b:c2:15:ca:a3:9e:0d:eb: 4a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F5:4C:79:E2:B9:A8:F7:42:3E:B3:ED:89:38:A2:ED:F6:58:02:BE X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:5::/48 Signature Algorithm: sha256WithRSAEncryption 6c:3d:74:2e:81:73:1b:a2:4e:7b:fe:02:20:6d:0a:17:53:3c: 6d:a3:52:f8:5a:88:64:13:1c:57:f3:e4:0c:8a:58:79:ca:62: 1e:80:44:79:33:69:c6:af:bb:ea:76:38:bc:3f:5d:62:bc:f7: 65:7c:4c:92:03:e7:fe:1e:f1:dd:4f:1b:91:d8:88:3f:35:b4: 0b:3b:51:dd:e5:c5:33:4a:b9:b0:de:ee:8a:66:6c:8b:8f:f4: 48:3e:66:96:0d:1f:eb:b6:38:db:ce:d2:89:47:df:37:4a:0a: 08:e6:f2:1b:4e:f9:01:2d:8e:74:e0:0b:63:e8:6b:34:93:09: 36:67:e3:2c:be:2d:65:34:5e:50:c3:03:de:a4:42:d2:20:8b: 05:2e:2f:10:aa:fa:87:3f:ba:06:30:d1:bd:ca:5f:ed:4e:16: 0d:28:cb:0e:55:a5:cc:90:04:35:eb:01:a6:60:e0:24:16:c0: 0d:c0:5a:8d:88:b0:6e:17:d6:d6:c5:6f:b8:72:36:a0:71:4e: 02:27:b2:8e:27:25:61:88:12:2a:95:aa:37:7e:d6:4d:56:7e: b7:c4:56:99:86:87:51:90:46:b7:4c:2d:d8:e8:2c:20:1b:29: 0e:f3:1f:30:7b:78:52:00:28:7b:e7:63:95:fd:14:79:e3:bd: 8c:22:60:40 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCHDgCtLlZsAVLh+DHjtxgb5jOxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTZaFw0yNzA1MDIwMjEyNTZaMDMxMTAvBgNV BAMTKEM2RjU0Qzc5RTJCOUE4Rjc0MjNFQjNFRDg5MzhBMkVERjY1ODAyQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4+R/suTTmUsA+IMnOW19JqWdk ylED4qGRg0vb4LcooFifcvBHUE7eLRbr6cfj5ppKGwp0g1OBnhtBPRcLYRLvZfcC cD/nQOkqpQJGcpDH5Lz4rTSwSwzJWEPNGoc9cOfW4WUyiKLCHCgXbMrdRuwarxm+ LJB8lV/n2wI/6KLdyjampje4YBGmvVi2y1bXnvDzCIjTb0DqtRldma/5/2gltQVa 7MKvUKLsp4jys2YRn/m6ffBPAc5XQ6Dex9i1NPralzAi/3MRcwpKRrbo92+OsHYR B2Z0alwxjwca+ZJLpMJobTrv4f6SBxWM4pheSqdQp8cVI8ibwhXKo54N60oBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUxvVMeeK5qPdCPrPtiTii7fZYAr4wHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAUw DQYJKoZIhvcNAQELBQADggEBAGw9dC6BcxuiTnv+AiBtChdTPG2jUvhaiGQTHFfz 5AyKWHnKYh6ARHkzacavu+p2OLw/XWK892V8TJID5/4e8d1PG5HYiD81tAs7Ud3l xTNKubDe7opmbIuP9Eg+ZpYNH+u2ONvO0olH3zdKCgjm8htO+QEtjnTgC2PoazST CTZn4yy+LWU0XlDDA96kQtIgiwUuLxCq+oc/ugYw0b3KX+1OFg0oyw5VpcyQBDXr AaZg4CQWwA3AWo2IsG4X1tbFb7hyNqBxTgInso4nJWGIEiqVqjd+1k1WfrfEVpmG h1GQRrdMLdjoLCAbKQ7zHzB7eFIAKHvnY5X9FHnjvYwiYEA= -----END CERTIFICATE-----Generated at Wed May 13 13:57:48 2026 by rpki-client