$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030353a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030353a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: DmCqSyLAbR1GcGB2b6c28zFVw4CNHOLr1uOyNF7nwjc= Subject key identifier: 79:3B:59:9E:98:47:40:AB:90:B6:8C:3B:62:47:C2:67:23:22:22:FB Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 023227E7B82A277FAF8C23C988EFA618EF6E439F Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030353a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:11 +0000 ROA not before: Sun 03 May 2026 03:00:11 +0000 ROA not after: Sun 02 May 2027 03:05:11 +0000 asID: 38156 IP address blocks: 2405:a540:1005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:32:27:e7:b8:2a:27:7f:af:8c:23:c9:88:ef:a6:18:ef:6e:43:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:11 2026 GMT Not After : May 2 03:05:11 2027 GMT Subject: CN=793B599E984740AB90B68C3B6247C267232222FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a8:6d:b6:14:4b:06:b7:b6:bf:32:fc:65:4f: e6:fd:18:a2:f0:66:59:61:b9:d1:b0:b3:12:05:b0: c9:62:f0:6e:7b:b9:ee:40:5d:4b:98:6d:37:3f:54: ee:11:a2:29:fc:8a:2c:e0:32:c7:86:62:6d:ce:ef: 3f:5c:e2:3f:df:cc:6e:34:a2:55:84:70:ea:a6:db: 42:c3:90:3a:13:bd:b9:d7:75:2c:ef:c6:f5:be:3a: 40:eb:bd:4a:75:e3:14:93:a2:52:3b:80:a9:9f:6c: 4f:33:eb:17:52:76:0e:18:89:dc:f1:dc:2e:44:6f: 70:ca:88:b4:3e:0a:ef:8f:ab:b3:db:1d:09:01:4c: ac:63:d6:67:e1:68:17:f1:97:ea:82:f5:5e:07:17: 9d:f5:bc:37:02:13:82:7d:ef:a7:8c:0c:1e:0d:73: 1b:6b:00:b7:c7:10:f6:10:67:2e:61:df:cd:39:7e: 48:32:02:79:d0:1c:ae:ec:88:b2:51:02:22:86:50: 92:95:95:a8:28:9f:b4:fa:e8:b8:57:72:9f:02:0f: 82:d2:a4:b3:d7:87:ce:c1:c5:98:35:42:23:2b:8d: da:8d:00:50:e0:f9:46:79:27:2d:71:bd:65:4e:50: 99:74:bc:89:59:5a:ec:ca:1d:58:ba:16:27:5a:f7: 61:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:3B:59:9E:98:47:40:AB:90:B6:8C:3B:62:47:C2:67:23:22:22:FB X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030353a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1005::/48 Signature Algorithm: sha256WithRSAEncryption 74:86:2b:bd:02:7b:af:43:34:07:b8:0f:8e:24:bb:21:0b:1f: c4:a6:16:e4:c0:23:bb:76:9c:4e:55:66:bf:a6:82:34:72:8d: ee:ca:c4:43:9f:e1:04:c7:90:b9:8b:4c:5f:c5:17:a6:d1:65: 7c:ad:f8:19:e6:c2:6d:35:59:09:09:e7:04:5b:2f:68:5b:cf: 96:02:4b:71:28:79:bb:9d:de:7b:dd:c9:ba:97:d7:a2:6a:f7: 31:0c:ce:97:91:0d:a5:ca:6a:65:c6:86:f2:13:92:df:3d:e9: 8f:f3:6b:d9:1f:72:ec:ed:9c:fc:23:48:ee:cc:0d:6c:b1:42: bf:6e:ec:58:21:cd:55:92:5b:a7:5d:e4:2f:e6:08:01:14:e2: b0:6e:52:72:79:55:1f:67:4d:f3:e8:b5:0d:76:1c:72:35:1f: d5:b3:9f:40:07:f6:59:33:4f:33:54:60:84:50:bc:1e:20:66: ce:1e:91:dc:69:58:b2:39:77:51:db:f6:dd:54:85:ba:a5:14: c7:eb:5a:33:3e:cb:4d:89:d1:a9:59:20:fa:c3:38:84:83:82: 10:15:b2:52:44:67:bb:be:b5:26:cf:b6:10:7d:04:ed:8b:cb: fe:ba:e8:0f:ab:7e:7a:24:ba:26:e8:53:6e:61:4e:77:dc:50: 4a:fb:23:94 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAjIn57gqJ3+vjCPJiO+mGO9uQ58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTFaFw0yNzA1MDIwMzA1MTFaMDMxMTAvBgNV BAMTKDc5M0I1OTlFOTg0NzQwQUI5MEI2OEMzQjYyNDdDMjY3MjMyMjIyRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqG22FEsGt7a/MvxlT+b9GKLw ZllhudGwsxIFsMli8G57ue5AXUuYbTc/VO4Roin8iizgMseGYm3O7z9c4j/fzG40 olWEcOqm20LDkDoTvbnXdSzvxvW+OkDrvUp14xSTolI7gKmfbE8z6xdSdg4Yidzx 3C5Eb3DKiLQ+Cu+Pq7PbHQkBTKxj1mfhaBfxl+qC9V4HF531vDcCE4J976eMDB4N cxtrALfHEPYQZy5h3805fkgyAnnQHK7siLJRAiKGUJKVlagon7T66LhXcp8CD4LS pLPXh87BxZg1QiMrjdqNAFDg+UZ5Jy1xvWVOUJl0vIlZWuzKHVi6Fida92GpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUeTtZnphHQKuQtow7YkfCZyMiIvswHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAFMA0GCSqGSIb3DQEBCwUAA4IBAQB0hiu9AnuvQzQHuA+OJLshCx/EphbkwCO7 dpxOVWa/poI0co3uysRDn+EEx5C5i0xfxRem0WV8rfgZ5sJtNVkJCecEWy9oW8+W AktxKHm7nd573cm6l9eiavcxDM6XkQ2lymplxobyE5LfPemP82vZH3Ls7Zz8I0ju zA1ssUK/buxYIc1VklunXeQv5ggBFOKwblJyeVUfZ03z6LUNdhxyNR/Vs59AB/ZZ M08zVGCEULweIGbOHpHcaViyOXdR2/bdVIW6pRTH61ozPstNidGpWSD6wziEg4IQ FbJSRGe7vrUmz7YQfQTti8v+uugPq356JLom6FNuYU533FBK+yOU -----END CERTIFICATE-----Generated at Wed May 13 11:22:11 2026 by rpki-client