$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: SZaF9BZHsjDhigmYn8b3CzFda4W8ebb0Hsx2Q1oeRzY= Subject key identifier: F7:00:D9:5E:D4:9F:F8:8E:27:C7:33:08:7C:B3:A6:24:27:C2:1F:BE Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 4E313561D48B4A09CE01238F6E8ED6E91A55985E Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:57 +0000 ROA not before: Sun 03 May 2026 02:07:57 +0000 ROA not after: Sun 02 May 2027 02:12:57 +0000 asID: 137330 IP address blocks: 2402:aa40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:31:35:61:d4:8b:4a:09:ce:01:23:8f:6e:8e:d6:e9:1a:55:98:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:57 2026 GMT Not After : May 2 02:12:57 2027 GMT Subject: CN=F700D95ED49FF88E27C733087CB3A62427C21FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d4:3b:04:50:70:83:f4:96:c7:58:28:18:92: 42:cf:88:c8:1e:57:ae:0c:b8:4e:aa:71:2a:d4:21: 9e:35:0e:5a:9f:89:7a:4b:6d:f3:10:3d:f7:e8:28: b2:ae:8e:41:31:dd:fe:b3:a6:a5:85:38:ba:28:b0: c5:43:77:8b:bb:8b:7f:48:e2:2b:69:ef:86:a7:7a: 03:36:51:d5:10:1a:ea:9c:4d:48:15:6c:da:ec:7b: f6:28:6c:76:00:71:70:be:32:dd:20:c6:9e:13:44: 09:2f:0a:eb:fc:84:50:b1:bf:6d:54:b9:64:69:16: 9b:aa:5f:f9:11:cd:0c:eb:c3:1b:3e:87:6f:20:46: ee:ea:51:3c:c7:2f:9d:9d:bb:1e:a0:21:cc:35:ac: 94:9f:1a:7b:e8:9e:da:46:95:4f:ec:e1:2f:81:59: e5:da:8d:8a:ac:af:b7:ab:c4:83:83:2e:0a:ae:b4: 17:51:ab:b9:03:08:81:9c:4c:3f:8f:82:9e:db:2e: 49:02:4f:74:eb:f1:01:ae:b0:f8:44:35:d8:c4:f7: a3:53:8d:6c:96:20:45:bc:20:b8:d2:53:87:9b:27: 18:84:02:48:db:ff:c2:2b:94:2b:85:d5:f1:4f:86: ce:f1:b0:00:48:8c:87:a8:08:f6:7b:b2:92:38:b9: 60:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:00:D9:5E:D4:9F:F8:8E:27:C7:33:08:7C:B3:A6:24:27:C2:1F:BE X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:7::/48 Signature Algorithm: sha256WithRSAEncryption 74:6c:0e:84:40:84:b2:00:ee:03:0e:60:8a:7d:da:d4:d3:1d: 41:42:8d:d8:a0:f3:e5:25:92:39:45:f8:70:4e:a7:47:11:d3: 7f:57:b1:89:04:1b:f5:ae:10:34:ba:e3:e1:ce:dc:0b:b7:52: c2:05:75:1c:fe:23:cd:68:51:7a:fd:66:af:21:7c:0d:ce:75: 12:79:c9:81:3a:0e:60:15:03:8d:51:7e:12:55:43:a5:99:fa: 3d:8f:8f:79:f1:91:c6:b7:3e:94:63:47:4c:95:f8:1c:10:09: 0a:a9:15:df:0b:61:56:89:1c:80:c2:bd:66:b9:77:e4:a2:60: bd:b3:d8:a3:30:a7:10:23:01:fa:0f:1c:54:ad:77:c8:44:5e: d6:23:0c:11:d7:95:be:22:a6:63:a2:7d:5e:a1:de:6f:87:7b: 46:96:98:d3:bd:c3:89:4c:96:9d:81:d3:47:49:b5:09:84:85: 7f:48:fa:0d:a2:9a:a9:d9:3a:a9:02:31:89:ff:b1:28:e9:32: 91:9a:e9:ea:82:ff:91:14:71:d8:38:64:d7:f2:51:f5:bd:09: 1b:be:e0:b1:45:33:ac:55:f4:81:9b:fd:5c:40:f2:ac:4d:6b: cd:52:1e:66:83:81:12:ca:4d:d9:96:c3:77:bd:23:f5:62:8d: be:c9:00:01 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTjE1YdSLSgnOASOPbo7W6RpVmF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NTdaFw0yNzA1MDIwMjEyNTdaMDMxMTAvBgNV BAMTKEY3MDBEOTVFRDQ5RkY4OEUyN0M3MzMwODdDQjNBNjI0MjdDMjFGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCM1DsEUHCD9JbHWCgYkkLPiMge V64MuE6qcSrUIZ41DlqfiXpLbfMQPffoKLKujkEx3f6zpqWFOLoosMVDd4u7i39I 4itp74anegM2UdUQGuqcTUgVbNrse/YobHYAcXC+Mt0gxp4TRAkvCuv8hFCxv21U uWRpFpuqX/kRzQzrwxs+h28gRu7qUTzHL52dux6gIcw1rJSfGnvontpGlU/s4S+B WeXajYqsr7erxIODLgqutBdRq7kDCIGcTD+Pgp7bLkkCT3Tr8QGusPhENdjE96NT jWyWIEW8ILjSU4ebJxiEAkjb/8IrlCuF1fFPhs7xsABIjIeoCPZ7spI4uWA/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU9wDZXtSf+I4nxzMIfLOmJCfCH74wHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAcw DQYJKoZIhvcNAQELBQADggEBAHRsDoRAhLIA7gMOYIp92tTTHUFCjdig8+UlkjlF +HBOp0cR039XsYkEG/WuEDS64+HO3Au3UsIFdRz+I81oUXr9Zq8hfA3OdRJ5yYE6 DmAVA41RfhJVQ6WZ+j2Pj3nxkca3PpRjR0yV+BwQCQqpFd8LYVaJHIDCvWa5d+Si YL2z2KMwpxAjAfoPHFStd8hEXtYjDBHXlb4ipmOifV6h3m+He0aWmNO9w4lMlp2B 00dJtQmEhX9I+g2imqnZOqkCMYn/sSjpMpGa6eqC/5EUcdg4ZNfyUfW9CRu+4LFF M6xV9IGb/VxA8qxNa81SHmaDgRLKTdmWw3e9I/Vijb7JAAE= -----END CERTIFICATE-----Generated at Wed May 13 13:24:04 2026 by rpki-client