$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: jdESrjmJQhjG8kc6FD8N6X6iVxeMA55PP67c1tPELGM= Subject key identifier: 47:E3:CD:34:12:C3:6F:02:97:32:24:30:BB:CB:9C:9C:AD:42:8D:F1 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 77F8A6E155C223BD03673F47483E5CD4242FB9C2 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:13 +0000 ROA not before: Sun 03 May 2026 03:00:13 +0000 ROA not after: Sun 02 May 2027 03:05:13 +0000 asID: 38156 IP address blocks: 2405:a540:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f8:a6:e1:55:c2:23:bd:03:67:3f:47:48:3e:5c:d4:24:2f:b9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:13 2026 GMT Not After : May 2 03:05:13 2027 GMT Subject: CN=47E3CD3412C36F0297322430BBCB9C9CAD428DF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fb:83:86:6e:54:e5:30:68:06:37:71:42:38: d0:74:61:93:72:0c:67:93:f8:e9:ea:9e:af:f0:54: 4f:5d:8b:c0:9f:b6:71:9b:40:04:10:c8:f7:12:a2: 35:25:f9:75:4c:52:57:5e:f9:73:8e:1b:fc:67:7a: 16:ed:4f:56:34:10:52:eb:b8:a5:6b:03:70:44:da: 2c:00:1c:cc:b8:4f:a6:10:93:83:75:43:17:ba:cb: c3:83:7d:03:aa:b6:f1:6a:b9:19:28:06:50:eb:8c: 67:44:b0:6e:14:99:bd:75:e1:e3:c2:53:99:4f:35: 3c:c0:3b:93:0e:79:0e:ba:d6:14:6b:b8:2c:00:7c: ba:e4:32:32:dd:f4:84:10:44:ee:5a:19:bb:e1:7c: 91:97:d2:27:f8:b8:10:49:8e:0c:39:74:56:f4:90: 78:28:37:e4:16:4d:84:df:57:ea:29:71:fd:58:a2: 02:b0:64:14:9a:68:a9:af:45:16:de:b4:a2:21:ac: 4f:03:6f:03:6b:1b:bb:bb:2d:a4:e1:65:c2:3a:51: e3:8b:b7:e9:e9:19:3d:3b:51:3d:36:cb:41:5d:d7: fa:31:c5:2d:a3:98:5c:83:bc:a9:9d:9c:d7:e1:a0: 4b:78:8a:ba:26:da:fe:e9:29:c7:5d:fe:34:80:73: d1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E3:CD:34:12:C3:6F:02:97:32:24:30:BB:CB:9C:9C:AD:42:8D:F1 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1008::/48 Signature Algorithm: sha256WithRSAEncryption 76:d1:19:b0:14:f3:e4:32:d9:76:00:5a:fc:87:39:0d:40:c6: 82:e9:c4:8f:d9:a2:98:88:cd:63:30:f9:b8:2c:4e:f8:b8:b3: ca:39:39:c7:7e:0b:e7:2f:6f:96:db:57:fe:44:6a:8c:58:e1: a6:ea:d2:37:cb:a2:55:d1:92:7a:df:38:87:09:71:d2:f8:d8: 47:09:bb:a5:a1:36:74:ba:78:c5:db:38:e6:5e:07:f1:c3:83: d1:af:41:09:1f:56:3a:a5:bb:08:2b:33:6a:e2:65:50:e7:58: 57:89:94:90:9b:93:83:8d:1b:89:a7:9e:fd:a7:a3:fb:e4:6b: d4:d9:62:a3:53:91:97:fc:14:43:79:91:47:03:7a:23:74:0e: a7:54:fd:1d:d2:97:5c:42:8c:e0:58:95:34:9e:13:bc:9e:76: 91:fe:e9:31:b8:15:30:d9:66:80:3f:87:6b:54:82:2d:da:dd: 81:55:9e:65:02:3f:f6:80:a6:6e:65:c5:f8:35:91:51:31:73: 3e:83:0c:7d:d8:2a:2c:b5:6e:3d:ca:b7:52:a1:17:5c:54:15: c0:9c:43:03:d4:3a:b9:49:65:ee:97:51:00:a1:8a:41:af:c5: 08:f0:94:38:fd:61:4a:c1:d0:0b:be:5d:83:f6:de:21:d4:d4: f9:a4:6c:9b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd/im4VXCI70DZz9HSD5c1CQvucIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTNaFw0yNzA1MDIwMzA1MTNaMDMxMTAvBgNV BAMTKDQ3RTNDRDM0MTJDMzZGMDI5NzMyMjQzMEJCQ0I5QzlDQUQ0MjhERjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW+4OGblTlMGgGN3FCONB0YZNy DGeT+Onqnq/wVE9di8CftnGbQAQQyPcSojUl+XVMUlde+XOOG/xnehbtT1Y0EFLr uKVrA3BE2iwAHMy4T6YQk4N1Qxe6y8ODfQOqtvFquRkoBlDrjGdEsG4Umb114ePC U5lPNTzAO5MOeQ661hRruCwAfLrkMjLd9IQQRO5aGbvhfJGX0if4uBBJjgw5dFb0 kHgoN+QWTYTfV+opcf1YogKwZBSaaKmvRRbetKIhrE8DbwNrG7u7LaThZcI6UeOL t+npGT07UT02y0Fd1/oxxS2jmFyDvKmdnNfhoEt4irom2v7pKcdd/jSAc9EDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUR+PNNBLDbwKXMiQwu8ucnK1CjfEwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAIMA0GCSqGSIb3DQEBCwUAA4IBAQB20RmwFPPkMtl2AFr8hzkNQMaC6cSP2aKY iM1jMPm4LE74uLPKOTnHfgvnL2+W21f+RGqMWOGm6tI3y6JV0ZJ63ziHCXHS+NhH CbuloTZ0unjF2zjmXgfxw4PRr0EJH1Y6pbsIKzNq4mVQ51hXiZSQm5ODjRuJp579 p6P75GvU2WKjU5GX/BRDeZFHA3ojdA6nVP0d0pdcQozgWJU0nhO8nnaR/ukxuBUw 2WaAP4drVIIt2t2BVZ5lAj/2gKZuZcX4NZFRMXM+gwx92CostW49yrdSoRdcVBXA nEMD1Dq5SWXul1EAoYpBr8UI8JQ4/WFKwdALvl2D9t4h1NT5pGyb -----END CERTIFICATE-----Generated at Wed May 13 12:01:44 2026 by rpki-client