$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: ghjk9WxpBpcObQwhuyRJKOhe294PLPBofYqlraUkN+g= Subject key identifier: B7:B4:28:04:95:79:5B:F9:CA:89:9E:71:68:DD:E1:7A:26:45:76:55 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 19559EB03267A49E1B09D9CD47F175B3420A3D78 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:13 +0000 ROA not before: Sun 03 May 2026 03:00:13 +0000 ROA not after: Sun 02 May 2027 03:05:13 +0000 asID: 38156 IP address blocks: 2405:a540:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:55:9e:b0:32:67:a4:9e:1b:09:d9:cd:47:f1:75:b3:42:0a:3d:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:13 2026 GMT Not After : May 2 03:05:13 2027 GMT Subject: CN=B7B4280495795BF9CA899E7168DDE17A26457655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:61:0d:ec:1e:66:69:74:9f:04:d7:67:98:5d: 20:6e:e5:7a:65:20:21:97:da:aa:84:c8:39:5d:f1: 77:66:e5:cd:b9:6c:5a:a0:d7:04:f1:96:7e:1e:a9: fa:83:b2:a2:bf:95:61:23:48:85:80:ad:6c:5d:62: 62:b5:4e:af:32:bb:cd:fd:8a:e1:8c:dc:10:47:1f: 9c:ea:31:30:aa:af:b6:57:09:eb:c1:f8:92:25:34: 5f:ef:5b:8a:f8:f4:e3:6c:b4:fa:35:b8:4e:da:9f: e4:29:19:2a:f1:89:4a:f6:17:db:b8:41:fb:3d:58: 97:72:92:fe:7c:3e:bf:f0:0b:9c:e4:fe:68:0e:de: 3d:33:ad:56:67:dc:22:e5:d4:f3:29:a0:43:0c:3e: 61:31:25:e0:27:8d:c2:39:2c:f3:b2:1c:78:60:ab: 2a:a0:39:31:03:9b:fd:f8:ad:3e:b7:64:ce:3e:69: af:10:e2:f2:54:69:f1:d3:b4:37:b0:50:38:bc:f6: 1a:ba:c8:40:4a:bb:4b:5e:f6:10:db:aa:b6:bd:28: 96:af:55:5e:25:c5:8f:aa:2f:71:e8:b4:21:c8:28: 01:63:15:3f:03:1f:4a:c4:65:4d:24:82:c3:e9:c7: 8e:38:35:48:4d:03:ed:ab:61:d1:52:aa:09:d1:fb: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B4:28:04:95:79:5B:F9:CA:89:9E:71:68:DD:E1:7A:26:45:76:55 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1001::/48 Signature Algorithm: sha256WithRSAEncryption 9b:25:f5:94:b7:4a:66:27:9a:2f:b7:3e:b1:aa:9a:0a:40:5c: 8f:8c:27:fc:62:60:c1:30:01:3e:ee:58:3b:72:2e:c7:42:72: d3:6a:90:9f:56:aa:20:e1:94:bc:32:ec:4f:a8:fe:97:76:d8: 41:4b:c1:57:a8:7a:2a:ef:8e:ee:85:59:53:7a:38:28:8f:cc: 9a:84:22:7c:19:e9:6c:4a:4f:0c:06:31:b7:ff:8f:c4:c5:33: db:86:68:17:c9:6a:58:92:2b:8c:e2:bb:04:7b:ca:ad:8e:83: 1b:21:dc:ef:11:84:21:09:5a:c5:ea:20:e8:28:29:50:fb:3a: 2b:76:e8:e2:b6:36:b3:9d:7e:d3:bc:db:a9:86:6c:e3:bd:18: c9:91:21:01:48:2d:10:ff:4b:0f:a0:0b:7e:a3:1e:1a:5a:cb: bf:1b:8e:57:f4:0d:ea:f1:50:8d:1d:7d:c1:e0:29:0f:40:c9: 23:0c:a2:1b:28:5f:5e:74:4a:3a:35:c0:07:6e:5f:7e:2b:b8: 3c:c6:cc:ac:65:fe:ff:d1:ce:0b:5b:8a:af:79:4a:30:94:b3: af:1f:95:e5:79:06:a1:ea:47:0e:ba:35:fe:f7:c2:7a:a6:20: e4:50:4f:9a:b3:77:24:f2:39:4a:03:05:a6:45:f7:d3:9f:13: af:53:d0:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGVWesDJnpJ4bCdnNR/F1s0IKPXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTNaFw0yNzA1MDIwMzA1MTNaMDMxMTAvBgNV BAMTKEI3QjQyODA0OTU3OTVCRjlDQTg5OUU3MTY4RERFMTdBMjY0NTc2NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfYQ3sHmZpdJ8E12eYXSBu5Xpl ICGX2qqEyDld8Xdm5c25bFqg1wTxln4eqfqDsqK/lWEjSIWArWxdYmK1Tq8yu839 iuGM3BBHH5zqMTCqr7ZXCevB+JIlNF/vW4r49ONstPo1uE7an+QpGSrxiUr2F9u4 Qfs9WJdykv58Pr/wC5zk/mgO3j0zrVZn3CLl1PMpoEMMPmExJeAnjcI5LPOyHHhg qyqgOTEDm/34rT63ZM4+aa8Q4vJUafHTtDewUDi89hq6yEBKu0te9hDbqra9KJav VV4lxY+qL3HotCHIKAFjFT8DH0rEZU0kgsPpx444NUhNA+2rYdFSqgnR+5PLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUt7QoBJV5W/nKiZ5xaN3heiZFdlUwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBABMA0GCSqGSIb3DQEBCwUAA4IBAQCbJfWUt0pmJ5ovtz6xqpoKQFyPjCf8YmDB MAE+7lg7ci7HQnLTapCfVqog4ZS8MuxPqP6XdthBS8FXqHoq747uhVlTejgoj8ya hCJ8GelsSk8MBjG3/4/ExTPbhmgXyWpYkiuM4rsEe8qtjoMbIdzvEYQhCVrF6iDo KClQ+zordujitjaznX7TvNuphmzjvRjJkSEBSC0Q/0sPoAt+ox4aWsu/G45X9A3q 8VCNHX3B4CkPQMkjDKIbKF9edEo6NcAHbl9+K7g8xsysZf7/0c4LW4qveUowlLOv H5XleQah6kcOujX+98J6piDkUE+as3ck8jlKAwWmRffTnxOvU9Dg -----END CERTIFICATE-----Generated at Wed May 13 12:40:57 2026 by rpki-client