$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: jHrKWWZukLMZ3J2401GmiEuzkAvQx3pBL2xKoO7CBis= Subject key identifier: EC:2B:25:52:59:20:4A:6C:CE:5F:61:AF:98:E2:37:A0:F4:E5:70:E3 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 48592CFA65DA32D9A92BC352C1936C3C21175CB5 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:11 +0000 ROA not before: Sun 03 May 2026 03:00:11 +0000 ROA not after: Sun 02 May 2027 03:05:11 +0000 asID: 38156 IP address blocks: 2405:a540:100a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:59:2c:fa:65:da:32:d9:a9:2b:c3:52:c1:93:6c:3c:21:17:5c:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:11 2026 GMT Not After : May 2 03:05:11 2027 GMT Subject: CN=EC2B255259204A6CCE5F61AF98E237A0F4E570E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3a:de:67:37:63:f7:42:b5:cc:f1:83:23:08: 43:9e:1e:1a:76:d2:e6:79:5e:eb:7f:d9:14:eb:df: 22:f3:0c:f7:6f:df:cd:c1:cc:98:fa:e8:c1:c5:a1: b2:ad:60:e4:64:1e:f3:0d:a6:3d:c1:bc:75:bd:dc: 1b:ee:51:75:6c:43:16:f4:3d:08:b0:ae:66:ca:58: b6:f3:60:6d:1a:fc:99:d6:40:b5:38:6f:6b:95:cd: 2f:2c:0b:c9:db:6e:9b:a6:b4:e4:88:93:a3:ae:a1: bc:73:b2:46:99:ff:d4:16:28:c2:0a:9d:3e:e5:ba: 89:40:6c:aa:ad:49:27:06:98:ce:e1:96:48:08:57: 2c:6d:32:a2:0e:25:2b:a8:70:90:c1:1f:a1:d1:66: da:ce:94:f8:b3:61:45:e6:4d:f1:14:95:58:9e:bc: 1e:82:ec:88:11:d1:0f:7c:89:f3:a3:4d:43:63:a6: a3:03:6e:53:e5:7c:1b:fe:dd:a3:06:47:13:9b:5f: 92:81:27:0d:1b:ab:75:63:03:de:8e:86:62:0b:a4: 84:d1:03:77:f4:63:4e:9a:13:48:1c:8f:a7:69:27: dc:e2:d5:e8:3c:77:62:b6:d3:2e:d1:ec:0f:89:2a: d9:d1:b2:e7:19:f4:7c:a0:23:e8:9f:8c:d2:ce:f0: 87:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:2B:25:52:59:20:4A:6C:CE:5F:61:AF:98:E2:37:A0:F4:E5:70:E3 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100a::/48 Signature Algorithm: sha256WithRSAEncryption 48:24:40:79:be:fc:88:d6:01:10:69:87:93:4c:0d:9e:54:d4: 1d:4b:86:77:a8:f8:43:f5:a0:4d:f4:31:31:23:9c:e9:57:90: b7:24:08:62:03:86:96:a9:0f:81:36:da:95:d5:9a:a5:5a:fc: 9c:e9:db:ab:2a:c5:0b:89:da:02:eb:ab:d3:d5:28:ac:83:4b: 9f:7d:04:71:26:1b:03:e6:9d:7a:8a:0d:95:2d:a7:ef:56:f9: f3:f8:34:11:4d:48:0c:ff:f5:9d:ab:7e:94:09:30:f3:77:9e: 53:31:55:5b:1b:76:ff:00:8e:7a:83:9d:b7:07:d8:91:36:f0: c9:60:83:24:08:1b:a5:29:03:72:46:2c:cb:6f:6a:e0:97:b9: cd:a4:65:13:08:e5:4d:3b:92:b2:35:87:4d:df:89:5a:26:3e: 4d:50:54:f0:03:8d:3a:cb:fe:5c:80:73:9c:14:2e:49:4a:ab: 0c:7d:0d:fb:8c:56:cd:d7:a9:16:76:dc:9b:c9:72:4f:1d:6d: 35:ca:db:40:70:4f:93:d7:a2:12:6a:d5:bb:bb:7b:07:ee:4f: 33:41:98:40:ec:8c:7c:da:8b:66:18:e7:54:f8:8b:78:c6:7c: f8:e5:70:95:60:b1:f0:5a:26:dd:30:63:a3:c8:21:39:f3:35: 93:6c:c3:8a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSFks+mXaMtmpK8NSwZNsPCEXXLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTFaFw0yNzA1MDIwMzA1MTFaMDMxMTAvBgNV BAMTKEVDMkIyNTUyNTkyMDRBNkNDRTVGNjFBRjk4RTIzN0EwRjRFNTcwRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgOt5nN2P3QrXM8YMjCEOeHhp2 0uZ5Xut/2RTr3yLzDPdv383BzJj66MHFobKtYORkHvMNpj3BvHW93BvuUXVsQxb0 PQiwrmbKWLbzYG0a/JnWQLU4b2uVzS8sC8nbbpumtOSIk6OuobxzskaZ/9QWKMIK nT7luolAbKqtSScGmM7hlkgIVyxtMqIOJSuocJDBH6HRZtrOlPizYUXmTfEUlVie vB6C7IgR0Q98ifOjTUNjpqMDblPlfBv+3aMGRxObX5KBJw0bq3VjA96OhmILpITR A3f0Y06aE0gcj6dpJ9zi1eg8d2K20y7R7A+JKtnRsucZ9HygI+ifjNLO8IcfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7CslUlkgSmzOX2GvmOI3oPTlcOMwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAKMA0GCSqGSIb3DQEBCwUAA4IBAQBIJEB5vvyI1gEQaYeTTA2eVNQdS4Z3qPhD 9aBN9DExI5zpV5C3JAhiA4aWqQ+BNtqV1ZqlWvyc6durKsULidoC66vT1Sisg0uf fQRxJhsD5p16ig2VLafvVvnz+DQRTUgM//Wdq36UCTDzd55TMVVbG3b/AI56g523 B9iRNvDJYIMkCBulKQNyRizLb2rgl7nNpGUTCOVNO5KyNYdN34laJj5NUFTwA406 y/5cgHOcFC5JSqsMfQ37jFbN16kWdtybyXJPHW01yttAcE+T16ISatW7u3sH7k8z QZhA7Ix82otmGOdU+It4xnz45XCVYLHwWibdMGOjyCE58zWTbMOK -----END CERTIFICATE-----Generated at Wed May 13 11:35:26 2026 by rpki-client