$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: UAQHvTVxmZwgYkJuLSjYOTuU32z2mP4v9bphLMi1a7U= Subject key identifier: 31:0D:80:72:FD:5A:2F:EA:0E:75:91:E0:7A:BE:FF:F2:7C:F8:80:A7 Certificate issuer: /CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Certificate serial: 2B8B0ED9A1878F2C6CC6FB1F0854C9FD281E5E4A Authority key identifier: 42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa Signing time: Sun 03 May 2026 02:12:48 +0000 ROA not before: Sun 03 May 2026 02:07:48 +0000 ROA not after: Sun 02 May 2027 02:12:48 +0000 asID: 137330 IP address blocks: 2402:aa40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8b:0e:d9:a1:87:8f:2c:6c:c6:fb:1f:08:54:c9:fd:28:1e:5e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1 Validity Not Before: May 3 02:07:48 2026 GMT Not After : May 2 02:12:48 2027 GMT Subject: CN=310D8072FD5A2FEA0E7591E07ABEFFF27CF880A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:91:ac:74:af:66:17:77:8d:40:5b:10:14:90: fa:56:9a:10:e5:88:24:94:8d:24:4e:86:b4:79:40: 5b:57:58:f7:a0:dc:8f:95:5d:16:3e:89:8e:b3:26: d0:6c:23:90:5e:47:63:0d:47:7e:4b:6a:56:e3:91: be:13:b2:5d:77:7c:97:b3:88:11:94:cb:68:0e:46: 94:70:6a:cb:9b:10:0e:32:c7:14:a7:7a:b8:cc:16: c2:93:b8:b8:68:7e:35:97:bc:e4:34:d6:c7:60:8c: e1:c6:b9:d4:f6:2c:d5:50:4c:0c:3f:fa:8d:28:08: 4d:0b:da:6d:01:29:4f:08:e1:b4:0e:3d:35:e1:d9: 6b:04:27:d4:5d:73:64:df:8e:5c:c0:7e:be:1a:8f: 2a:84:8f:2b:5e:d6:34:09:2e:c2:b3:cb:39:be:6e: 71:dc:0d:58:bb:bf:3d:5f:4d:18:c1:13:1d:fc:ca: aa:72:06:84:aa:1d:00:35:8e:dc:b5:83:83:71:a8: c5:4e:29:db:63:e8:00:e8:e2:bb:57:c3:6e:0b:61: f1:74:de:28:f7:61:89:d0:1b:2f:e7:e0:b7:f9:67: 5e:d8:ed:cd:8b:c7:a1:13:71:40:ad:83:41:1a:87: ee:00:31:08:7a:78:a6:ff:da:b2:d0:a0:85:bb:95: 6d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0D:80:72:FD:5A:2F:EA:0E:75:91:E0:7A:BE:FF:F2:7C:F8:80:A7 X509v3 Authority Key Identifier: keyid:42:BC:C9:3C:15:AC:4D:18:51:A2:24:0C:9F:7B:E2:F9:C9:F5:1E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/42BCC93C15AC4D1851A2240C9F7BE2F9C9F51EF1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:8::/48 Signature Algorithm: sha256WithRSAEncryption 31:c4:9c:b3:5f:d3:02:c5:ef:e0:86:c5:e3:e2:92:23:e7:50: 65:ed:0f:dd:9b:9b:9a:ac:62:f4:45:13:03:13:b1:2f:94:7d: 25:de:e9:f2:f9:0a:64:83:f2:91:9d:c7:fb:27:15:d9:5d:53: 51:a6:71:85:9a:d6:8d:3b:78:2e:e9:db:26:39:7e:49:ec:90: cf:7e:cf:70:72:15:f3:17:a4:1a:65:22:ff:d4:4c:9e:3c:a2: c4:72:53:ee:3d:39:17:6f:6e:da:eb:05:39:20:25:bb:81:76: 39:e6:70:08:1d:7d:4e:81:0d:15:16:9b:0a:66:6e:7d:40:f1: fe:cd:5f:4f:5b:96:03:0b:3a:67:b3:03:f5:45:5a:ce:0f:55: 82:88:b3:13:93:99:97:b4:f1:d1:ab:02:50:62:65:af:89:7d: 0c:dc:6f:6b:f4:d4:96:59:db:26:78:6c:74:18:31:f6:ac:60: 86:d0:48:3f:76:6a:a8:67:8a:d4:e0:ef:5d:b0:06:0e:08:7b: 20:bd:94:41:55:87:67:a2:ae:ad:5e:87:f8:14:29:29:6f:76: 5a:a7:13:01:da:89:b7:30:6d:9c:c3:df:10:45:76:8e:fc:a7: e8:d9:43:74:0f:0f:7d:0b:11:35:2f:f6:16:18:b6:e8:ec:60: 26:c8:cd:bf -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUK4sO2aGHjyxsxvsfCFTJ/SgeXkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJCQ0M5M0MxNUFDNEQxODUxQTIyNDBDOUY3QkUyRjlD OUY1MUVGMTAeFw0yNjA1MDMwMjA3NDhaFw0yNzA1MDIwMjEyNDhaMDMxMTAvBgNV BAMTKDMxMEQ4MDcyRkQ1QTJGRUEwRTc1OTFFMDdBQkVGRkYyN0NGODgwQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbkax0r2YXd41AWxAUkPpWmhDl iCSUjSROhrR5QFtXWPeg3I+VXRY+iY6zJtBsI5BeR2MNR35Lalbjkb4Tsl13fJez iBGUy2gORpRwasubEA4yxxSnerjMFsKTuLhofjWXvOQ01sdgjOHGudT2LNVQTAw/ +o0oCE0L2m0BKU8I4bQOPTXh2WsEJ9Rdc2TfjlzAfr4ajyqEjyte1jQJLsKzyzm+ bnHcDVi7vz1fTRjBEx38yqpyBoSqHQA1jty1g4NxqMVOKdtj6ADo4rtXw24LYfF0 3ij3YYnQGy/n4Lf5Z17Y7c2Lx6ETcUCtg0Eah+4AMQh6eKb/2rLQoIW7lW0hAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMQ2Acv1aL+oOdZHger7/8nz4gKcwHwYDVR0j BBgwFoAUQrzJPBWsTRhRoiQMn3vi+cn1HvEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGMzNGZmMDgtZDIxZi00MjBiLTg3ZGYtNTMxMDNiNmRjMjUzLzAvNDJCQ0M5M0Mx NUFDNEQxODUxQTIyNDBDOUY3QkUyRjlDOUY1MUVGMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MkJDQzkzQzE1QUM0RDE4NTFBMjI0MEM5RjdCRTJGOUM5RjUx RUYxLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAgw DQYJKoZIhvcNAQELBQADggEBADHEnLNf0wLF7+CGxePikiPnUGXtD92bm5qsYvRF EwMTsS+UfSXe6fL5CmSD8pGdx/snFdldU1GmcYWa1o07eC7p2yY5fknskM9+z3By FfMXpBplIv/UTJ48osRyU+49ORdvbtrrBTkgJbuBdjnmcAgdfU6BDRUWmwpmbn1A 8f7NX09blgMLOmezA/VFWs4PVYKIsxOTmZe08dGrAlBiZa+JfQzcb2v01JZZ2yZ4 bHQYMfasYIbQSD92aqhnitTg712wBg4IeyC9lEFVh2eirq1eh/gUKSlvdlqnEwHa ibcwbZzD3xBFdo78p+jZQ3QPD30LETUv9hYYtujsYCbIzb8= -----END CERTIFICATE-----Generated at Wed May 13 13:43:03 2026 by rpki-client