$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: SMs3l2LaIu15xotNctGRKXxr41nAKmtqdH/wDotPjcE= Subject key identifier: 88:83:84:98:9C:E8:68:88:56:03:25:C8:9E:71:20:27:D0:98:ED:5D Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 298EBABB6DB4711636AB875174E37DEB8448557E Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:10 +0000 ROA not before: Sun 03 May 2026 03:00:10 +0000 ROA not after: Sun 02 May 2027 03:05:10 +0000 asID: 38156 IP address blocks: 2405:a540:1004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:8e:ba:bb:6d:b4:71:16:36:ab:87:51:74:e3:7d:eb:84:48:55:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:10 2026 GMT Not After : May 2 03:05:10 2027 GMT Subject: CN=888384989CE86888560325C89E712027D098ED5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d1:ff:ee:61:a2:d0:37:ca:77:e1:b9:ec:7a: cf:65:fa:53:21:db:9e:f5:67:29:88:b9:be:30:48: f9:a1:dc:b1:2f:f4:a4:b8:44:68:67:7e:23:7d:85: cc:79:fa:58:6e:cd:8b:1a:77:55:16:5c:ad:88:30: 0e:59:9a:3a:b7:d1:fe:42:35:0a:16:53:ab:4e:18: e5:ee:77:6c:e0:1e:f8:63:b6:b2:73:1f:47:5b:36: 1a:4b:83:76:3d:6d:e8:72:c2:f1:7c:a0:f4:0a:fa: 68:ce:93:27:33:3d:bc:05:f5:5c:91:00:a4:5e:6c: ea:ce:b2:3b:b3:8e:e3:9e:21:97:19:0a:c7:ba:b0: 72:15:d3:8f:62:8b:fc:33:22:da:7f:c8:91:1c:69: 62:46:c6:a1:5e:06:85:6b:9e:6a:04:e1:ab:e0:3b: 87:52:9d:06:40:9a:55:02:f4:79:db:09:30:08:5b: 30:b6:9c:8c:23:f6:98:d8:ba:7e:f4:f0:83:1d:87: 4c:a8:e2:e6:e8:28:1f:9f:4c:0d:f8:53:ee:8b:98: 7c:8a:34:04:17:41:3d:62:e2:59:7a:f3:12:22:f4: 70:22:9e:7d:5f:35:65:28:b0:73:13:9e:67:b9:8e: 2a:8e:8c:d6:61:af:be:9c:c1:46:b9:3f:05:20:fe: 7c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:83:84:98:9C:E8:68:88:56:03:25:C8:9E:71:20:27:D0:98:ED:5D X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1004::/48 Signature Algorithm: sha256WithRSAEncryption 2a:c2:4c:6f:4a:ff:16:ca:ab:5d:d5:3c:7b:2b:54:da:41:ef: 67:54:bd:29:7c:34:38:2f:c6:18:70:75:27:27:bc:95:a6:0a: 78:00:b8:3a:c3:44:fd:53:ee:4c:85:68:2c:9e:78:18:54:0a: 31:0a:ae:d7:9a:cd:2b:ea:d8:85:73:64:5a:08:d2:c5:b3:c6: f5:dc:f2:8e:88:7b:8d:90:46:21:c5:94:0d:01:93:a8:32:11: de:47:40:5b:a9:76:8f:b1:7d:e8:c7:72:d5:5c:a4:a7:0d:d7: 69:be:a7:d0:a9:08:c1:1f:6e:65:65:22:fa:d4:2f:3c:70:9e: 77:85:9e:08:99:fa:7a:6d:13:c2:81:46:48:af:81:b8:f1:3c: 50:b2:8d:4a:61:ce:85:14:7e:5d:c2:e0:b2:de:ea:70:62:6d: 21:8a:f3:98:b2:c3:59:01:97:ed:15:64:67:33:eb:0d:05:1d: 70:ac:59:3b:67:a1:1e:ef:b5:42:fd:8a:79:3a:a8:96:d5:34: ca:2e:4d:d3:2e:b6:45:3e:52:9c:1e:73:32:04:a7:ba:37:e0: 2a:9b:79:b9:f2:34:92:6e:77:f3:fb:2a:5c:96:fe:f6:63:82: ee:d4:27:c3:f3:89:bd:57:7a:d9:df:f5:f8:9c:22:a7:8d:ca: 3b:3d:76:01 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKY66u220cRY2q4dRdON964RIVX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTBaFw0yNzA1MDIwMzA1MTBaMDMxMTAvBgNV BAMTKDg4ODM4NDk4OUNFODY4ODg1NjAzMjVDODlFNzEyMDI3RDA5OEVENUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP0f/uYaLQN8p34bnses9l+lMh 2571ZymIub4wSPmh3LEv9KS4RGhnfiN9hcx5+lhuzYsad1UWXK2IMA5Zmjq30f5C NQoWU6tOGOXud2zgHvhjtrJzH0dbNhpLg3Y9behywvF8oPQK+mjOkyczPbwF9VyR AKRebOrOsjuzjuOeIZcZCse6sHIV049ii/wzItp/yJEcaWJGxqFeBoVrnmoE4avg O4dSnQZAmlUC9HnbCTAIWzC2nIwj9pjYun708IMdh0yo4uboKB+fTA34U+6LmHyK NAQXQT1i4ll68xIi9HAinn1fNWUosHMTnme5jiqOjNZhr76cwUa5PwUg/nyhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiIOEmJzoaIhWAyXInnEgJ9CY7V0wHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAEMA0GCSqGSIb3DQEBCwUAA4IBAQAqwkxvSv8Wyqtd1Tx7K1TaQe9nVL0pfDQ4 L8YYcHUnJ7yVpgp4ALg6w0T9U+5MhWgsnngYVAoxCq7Xms0r6tiFc2RaCNLFs8b1 3PKOiHuNkEYhxZQNAZOoMhHeR0BbqXaPsX3ox3LVXKSnDddpvqfQqQjBH25lZSL6 1C88cJ53hZ4Imfp6bRPCgUZIr4G48TxQso1KYc6FFH5dwuCy3upwYm0hivOYssNZ AZftFWRnM+sNBR1wrFk7Z6Ee77VC/Yp5OqiW1TTKLk3TLrZFPlKcHnMyBKe6N+Aq m3m58jSSbnfz+ypclv72Y4Lu1CfD84m9V3rZ3/X4nCKnjco7PXYB -----END CERTIFICATE-----Generated at Wed May 13 10:43:23 2026 by rpki-client