$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: G3L597uJ/MtChNRFU4TPZTfQd8hCBfeft5oOi8ZO5Xk= Subject key identifier: 59:93:08:70:65:0B:34:3B:D2:D1:46:5D:93:B8:63:D0:B7:49:6B:E2 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 47D3314091B161B691CC1238396C6F32FCD2176E Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:07 +0000 ROA not before: Sun 03 May 2026 03:00:07 +0000 ROA not after: Sun 02 May 2027 03:05:07 +0000 asID: 38156 IP address blocks: 2405:a540:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d3:31:40:91:b1:61:b6:91:cc:12:38:39:6c:6f:32:fc:d2:17:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:07 2026 GMT Not After : May 2 03:05:07 2027 GMT Subject: CN=59930870650B343BD2D1465D93B863D0B7496BE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0c:77:63:94:e8:c3:98:22:1f:bb:13:2b:0b: fc:40:51:e9:1a:45:c8:53:7f:34:dd:50:83:78:07: 51:d0:13:a4:a2:89:40:58:3c:f5:f0:da:f0:98:77: 32:7d:02:99:05:80:e8:e4:d7:2f:d5:81:96:48:6f: 91:8c:19:2a:0d:49:95:d4:bb:79:01:1e:60:24:9e: 60:9f:7b:11:8f:db:9c:f8:55:2f:b9:c5:6e:99:b0: 74:28:c3:70:1d:af:a1:d5:0e:b9:a6:d5:4b:64:79: 55:6d:16:56:ae:11:c0:d2:f2:f7:11:0c:3c:e4:f8: 99:ce:da:b0:04:6a:6d:55:28:45:ec:6a:31:d7:97: 29:3b:31:cd:29:ed:d8:ab:42:17:76:bd:1e:8c:6d: 72:4b:a0:3b:e9:45:ba:c2:41:ec:a4:fd:ff:eb:4d: 57:54:ed:c8:f8:f5:be:64:e3:12:0f:f8:28:b1:f3: 8e:12:f9:f0:71:7b:22:f4:16:72:00:3b:d2:7c:25: 0a:a6:a3:20:ee:a5:8a:8a:42:89:33:fd:35:22:89: 77:5a:85:7f:08:c6:9e:7b:a9:00:c8:04:3d:27:5a: dc:3f:38:df:98:33:ba:5c:7d:db:ba:44:0c:b1:02: 8e:7c:73:6a:9e:4e:81:25:89:46:19:cb:51:e5:9f: c1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:93:08:70:65:0B:34:3B:D2:D1:46:5D:93:B8:63:D0:B7:49:6B:E2 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1002::/48 Signature Algorithm: sha256WithRSAEncryption 29:54:9e:39:2e:c5:33:d0:51:7f:a3:43:7e:83:70:ee:f9:58: 11:f5:e5:63:c9:5b:56:8e:f6:b2:8d:78:d2:c2:12:58:26:fb: 7f:85:7d:da:ae:a5:cb:b9:ef:97:2f:e1:67:56:f5:c3:bc:ad: e3:e2:8d:7b:75:e4:ff:a6:98:32:14:6c:28:f0:10:ac:77:e3: 48:5a:4a:6c:fe:cf:f4:c0:2e:13:be:60:14:45:11:d8:52:4b: 08:28:c1:ba:20:f1:06:25:28:8c:d1:52:3e:d8:ff:b6:94:28: f5:6a:6b:fb:02:b5:8a:3f:81:cf:24:1e:5c:cb:66:18:28:9d: 35:65:91:ee:85:e4:94:76:9e:12:76:bb:cd:20:2d:df:84:2c: 61:48:86:10:a1:37:a1:9a:82:c7:1c:78:f8:4b:69:b6:6a:0f: 5e:23:1a:d3:e3:18:04:92:a3:d0:6c:c6:d2:e2:93:e1:20:4d: ee:42:15:d2:5e:64:6a:34:ad:70:53:2b:38:88:63:3e:cc:0f: b8:c3:25:8e:00:75:0b:9e:cd:02:90:5e:b5:9e:21:f0:07:df: 9a:04:22:d2:02:fb:f6:75:09:a1:a4:1a:f2:84:8e:bb:52:f7: 06:55:e9:c8:f1:d0:23:4f:e1:04:c0:c7:a6:84:be:d7:5b:f5: f4:e3:1c:e1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR9MxQJGxYbaRzBI4OWxvMvzSF24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMDdaFw0yNzA1MDIwMzA1MDdaMDMxMTAvBgNV BAMTKDU5OTMwODcwNjUwQjM0M0JEMkQxNDY1RDkzQjg2M0QwQjc0OTZCRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWDHdjlOjDmCIfuxMrC/xAUeka RchTfzTdUIN4B1HQE6SiiUBYPPXw2vCYdzJ9ApkFgOjk1y/VgZZIb5GMGSoNSZXU u3kBHmAknmCfexGP25z4VS+5xW6ZsHQow3Adr6HVDrmm1UtkeVVtFlauEcDS8vcR DDzk+JnO2rAEam1VKEXsajHXlyk7Mc0p7dirQhd2vR6MbXJLoDvpRbrCQeyk/f/r TVdU7cj49b5k4xIP+Cix844S+fBxeyL0FnIAO9J8JQqmoyDupYqKQokz/TUiiXda hX8Ixp57qQDIBD0nWtw/ON+YM7pcfdu6RAyxAo58c2qeToEliUYZy1Hln8H5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWZMIcGULNDvS0UZdk7hj0LdJa+IwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBACMA0GCSqGSIb3DQEBCwUAA4IBAQApVJ45LsUz0FF/o0N+g3Du+VgR9eVjyVtW jvayjXjSwhJYJvt/hX3arqXLue+XL+FnVvXDvK3j4o17deT/ppgyFGwo8BCsd+NI Wkps/s/0wC4TvmAURRHYUksIKMG6IPEGJSiM0VI+2P+2lCj1amv7ArWKP4HPJB5c y2YYKJ01ZZHuheSUdp4SdrvNIC3fhCxhSIYQoTehmoLHHHj4S2m2ag9eIxrT4xgE kqPQbMbS4pPhIE3uQhXSXmRqNK1wUys4iGM+zA+4wyWOAHULns0CkF61niHwB9+a BCLSAvv2dQmhpBryhI67UvcGVenI8dAjT+EEwMemhL7XW/X04xzh -----END CERTIFICATE-----Generated at Wed May 13 12:42:11 2026 by rpki-client