$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: ArldJV59T/AN0DLLjKdryy3dXOdpQHjw8YFmTH59OUg= Subject key identifier: 49:AE:C5:87:B3:2B:1E:36:A1:20:0C:F4:AB:CF:E5:81:1E:91:A1:A9 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 62D722021EDF42F76377484A99A0F63C2264C299 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:09 +0000 ROA not before: Sun 03 May 2026 03:00:09 +0000 ROA not after: Sun 02 May 2027 03:05:09 +0000 asID: 38156 IP address blocks: 2405:a540:100b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d7:22:02:1e:df:42:f7:63:77:48:4a:99:a0:f6:3c:22:64:c2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:09 2026 GMT Not After : May 2 03:05:09 2027 GMT Subject: CN=49AEC587B32B1E36A1200CF4ABCFE5811E91A1A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:8f:ef:23:5c:75:7b:3f:eb:79:93:2d:16: d6:3f:07:a9:33:3d:bf:fa:61:6a:59:58:2a:7e:36: 2c:63:cd:c1:1a:92:91:77:0a:56:04:96:6f:92:be: c1:a7:d3:63:e6:2b:43:f2:8a:4e:d1:65:34:56:62: 2f:09:d1:c5:26:f4:fd:aa:f3:b6:7a:47:65:1c:6f: 17:a8:d0:a6:1b:ad:51:36:19:cb:0a:18:33:2b:7d: 84:22:00:72:4f:ab:3a:bc:ac:7e:44:c5:bf:59:30: 31:ef:14:2e:f8:ed:5d:e7:e6:b2:c3:9a:f4:2e:99: ba:67:fd:9b:be:9d:11:67:97:dc:0a:27:14:5e:b2: e6:93:94:fd:be:d1:cd:e5:66:8c:4a:93:2d:fe:46: 12:d5:51:fc:3a:b1:ae:1b:73:2a:37:48:a0:a1:bd: c2:49:bb:f3:4b:10:33:81:f9:4b:ab:b5:fb:03:c6: 5f:44:f5:ab:ce:f0:d9:f9:89:08:56:c1:89:57:ac: 57:89:26:2f:49:ed:5e:8b:58:03:69:30:a3:77:be: 29:a3:30:36:eb:fd:9e:c1:98:d2:6f:6e:ed:4c:27: 98:f8:06:a9:80:19:81:61:f5:14:01:78:95:3f:b8: d6:f3:d4:91:8e:06:e0:23:24:df:35:fa:71:77:71: a9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AE:C5:87:B3:2B:1E:36:A1:20:0C:F4:AB:CF:E5:81:1E:91:A1:A9 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100b::/48 Signature Algorithm: sha256WithRSAEncryption 27:aa:43:fd:13:a0:1d:a6:9c:51:25:a7:8c:7e:d8:be:cb:7d: a9:dc:a7:c7:27:22:e5:c4:5c:16:92:18:5b:50:2f:4c:70:2f: 17:09:6b:14:7a:ce:50:47:3b:b9:a0:24:4c:fa:69:af:bb:df: c5:b2:ca:3f:69:27:ec:73:e3:a1:bc:92:6c:06:ae:83:a0:2c: 82:40:40:c7:ad:cf:eb:dd:52:f5:ab:cb:a7:13:d1:0e:4f:b8: 5c:e1:16:dd:33:da:bc:27:05:25:18:b0:a0:fb:25:b9:06:9e: 4f:51:fe:8a:38:78:95:16:94:87:20:64:b0:52:20:d0:ba:a0: 24:19:92:fa:d8:fa:83:d7:00:f0:ed:45:64:45:f5:c6:52:e2: a0:04:7a:9b:95:8f:f0:d7:86:67:6a:53:55:cc:bb:04:78:51: 33:bf:0f:87:65:2f:bf:1c:6a:ed:c2:95:34:7f:1a:6f:65:bd: 09:a7:6c:3e:f1:79:70:f2:74:04:fa:d3:a0:b7:fb:b0:9e:ef: b8:13:73:f2:ae:cf:49:2a:4a:1a:84:d6:b8:f1:86:c5:83:ec: b2:f6:f2:f5:64:57:12:4d:b8:84:f9:36:c2:56:9c:44:d0:eb: 19:3c:4a:fe:d3:40:fa:90:b1:b0:c1:fd:76:a6:90:64:1e:61: 69:ce:60:63 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYtciAh7fQvdjd0hKmaD2PCJkwpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMDlaFw0yNzA1MDIwMzA1MDlaMDMxMTAvBgNV BAMTKDQ5QUVDNTg3QjMyQjFFMzZBMTIwMENGNEFCQ0ZFNTgxMUU5MUExQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Go/vI1x1ez/reZMtFtY/B6kz Pb/6YWpZWCp+NixjzcEakpF3ClYElm+SvsGn02PmK0Pyik7RZTRWYi8J0cUm9P2q 87Z6R2Ucbxeo0KYbrVE2GcsKGDMrfYQiAHJPqzq8rH5Exb9ZMDHvFC747V3n5rLD mvQumbpn/Zu+nRFnl9wKJxResuaTlP2+0c3lZoxKky3+RhLVUfw6sa4bcyo3SKCh vcJJu/NLEDOB+UurtfsDxl9E9avO8Nn5iQhWwYlXrFeJJi9J7V6LWANpMKN3vimj MDbr/Z7BmNJvbu1MJ5j4BqmAGYFh9RQBeJU/uNbz1JGOBuAjJN81+nF3can3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUSa7Fh7MrHjahIAz0q8/lgR6RoakwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBALMA0GCSqGSIb3DQEBCwUAA4IBAQAnqkP9E6AdppxRJaeMfti+y32p3KfHJyLl xFwWkhhbUC9McC8XCWsUes5QRzu5oCRM+mmvu9/Fsso/aSfsc+OhvJJsBq6DoCyC QEDHrc/r3VL1q8unE9EOT7hc4RbdM9q8JwUlGLCg+yW5Bp5PUf6KOHiVFpSHIGSw UiDQuqAkGZL62PqD1wDw7UVkRfXGUuKgBHqblY/w14ZnalNVzLsEeFEzvw+HZS+/ HGrtwpU0fxpvZb0Jp2w+8Xlw8nQE+tOgt/uwnu+4E3Pyrs9JKkoahNa48YbFg+yy 9vL1ZFcSTbiE+TbCVpxE0OsZPEr+00D6kLGwwf12ppBkHmFpzmBj -----END CERTIFICATE-----Generated at Wed May 13 11:35:36 2026 by rpki-client