$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: q/tSBWv/7VM0Xu29FwAxjeFSDX/WD3INyENxffhPO4Q= Subject key identifier: 85:C8:1E:F4:41:8B:60:92:20:A4:5F:CE:77:CF:2C:88:76:60:E6:26 Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 220CD13671475849D2F7E7CBA7099ED3168D72F3 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:11 +0000 ROA not before: Sun 03 May 2026 03:00:11 +0000 ROA not after: Sun 02 May 2027 03:05:11 +0000 asID: 38156 IP address blocks: 2405:a540:100c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0c:d1:36:71:47:58:49:d2:f7:e7:cb:a7:09:9e:d3:16:8d:72:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:11 2026 GMT Not After : May 2 03:05:11 2027 GMT Subject: CN=85C81EF4418B609220A45FCE77CF2C887660E626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:84:2d:e9:89:ce:7c:a1:9b:6b:ec:41:33: e7:21:c8:f8:48:49:c8:14:95:1b:3e:72:c9:76:a8: 3b:a8:bf:e0:c1:32:42:47:de:d4:e4:8a:aa:aa:a5: 9c:4e:15:56:5c:59:1e:aa:78:17:c7:4d:13:b0:7b: d9:13:6a:6a:f9:e7:8f:f2:b4:23:e6:0b:b9:67:39: 4c:9e:2b:9c:65:43:99:90:58:02:ff:9a:59:1b:9d: 2e:fd:2a:01:ad:f8:ff:4e:10:35:b2:07:d8:9e:ad: a6:77:18:6d:4d:8c:1a:ab:01:15:da:4b:e3:d9:d0: 62:68:46:11:1d:9e:e8:cc:3d:30:d1:2d:06:00:79: 2e:d4:b9:3b:d5:c7:ff:69:98:d4:44:bd:a9:07:9e: 3c:7e:64:3d:89:4e:14:81:cd:98:63:cc:b6:91:cf: d0:e7:43:aa:0c:64:1b:4d:d6:03:7c:59:d3:f6:a2: b0:4a:b5:21:6e:6c:74:a1:4a:b0:89:e6:92:e6:69: c1:43:16:60:d5:a2:92:c6:b3:eb:a6:ad:ec:92:a1: ef:a2:d7:27:68:28:da:16:8b:af:a3:e3:9a:5d:a7: 7f:50:d7:3a:f8:e1:29:76:08:fb:3d:a5:20:7a:45: 86:0d:ee:d2:17:2e:27:6e:69:9e:67:31:2a:e5:e0: 7b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C8:1E:F4:41:8B:60:92:20:A4:5F:CE:77:CF:2C:88:76:60:E6:26 X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100c::/48 Signature Algorithm: sha256WithRSAEncryption b5:de:7d:8e:a2:f5:b5:5e:28:e8:6b:f5:24:a3:91:9b:f6:0d: 83:56:b1:53:65:14:f8:19:12:28:26:10:4e:43:6d:98:fc:f9: 41:2b:a0:f3:40:77:3f:5d:ab:4e:d5:56:78:db:01:87:25:38: e2:2c:a8:3f:8a:82:7a:2f:bb:07:cb:e3:53:35:e2:8c:14:2d: ad:bd:8d:dc:8c:8d:52:5a:3f:66:20:e3:7a:4f:b4:70:f5:13: 41:33:b8:22:49:cd:13:4a:83:e2:02:74:37:7f:51:ba:e0:ff: fc:de:d8:d0:79:2b:7a:3e:57:49:3d:4a:bc:93:29:39:3a:d3: 5e:b4:2d:7a:40:6b:57:43:62:f8:c6:cf:0d:c0:3c:22:14:5d: 13:d0:1c:1f:e4:24:b4:a9:9b:ba:b6:65:0e:3d:e6:5b:5e:d5: bc:cb:08:6d:38:c1:3c:9d:ac:9e:39:2c:54:58:da:ec:1c:02: 12:8c:94:cb:5d:54:9c:67:bf:55:a3:35:4b:1c:16:c8:39:96: 79:13:0a:5c:ee:2e:68:66:af:09:da:60:2a:a3:aa:63:47:c3: 2f:cd:1d:55:29:d7:68:bc:17:cc:cd:aa:fa:16:bb:ea:79:3d: ec:02:5b:5f:49:e0:c8:c5:5d:c7:05:06:ef:41:43:50:ea:91: bf:6a:2b:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIgzRNnFHWEnS9+fLpwme0xaNcvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTFaFw0yNzA1MDIwMzA1MTFaMDMxMTAvBgNV BAMTKDg1QzgxRUY0NDE4QjYwOTIyMEE0NUZDRTc3Q0YyQzg4NzY2MEU2MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPnIQt6YnOfKGba+xBM+chyPhI ScgUlRs+csl2qDuov+DBMkJH3tTkiqqqpZxOFVZcWR6qeBfHTROwe9kTamr554/y tCPmC7lnOUyeK5xlQ5mQWAL/mlkbnS79KgGt+P9OEDWyB9ieraZ3GG1NjBqrARXa S+PZ0GJoRhEdnujMPTDRLQYAeS7UuTvVx/9pmNREvakHnjx+ZD2JThSBzZhjzLaR z9DnQ6oMZBtN1gN8WdP2orBKtSFubHShSrCJ5pLmacFDFmDVopLGs+umreySoe+i 1ydoKNoWi6+j45pdp39Q1zr44Sl2CPs9pSB6RYYN7tIXLiduaZ5nMSrl4HvDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhcge9EGLYJIgpF/Od88siHZg5iYwHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAMMA0GCSqGSIb3DQEBCwUAA4IBAQC13n2OovW1Xijoa/Uko5Gb9g2DVrFTZRT4 GRIoJhBOQ22Y/PlBK6DzQHc/XatO1VZ42wGHJTjiLKg/ioJ6L7sHy+NTNeKMFC2t vY3cjI1SWj9mION6T7Rw9RNBM7giSc0TSoPiAnQ3f1G64P/83tjQeSt6PldJPUq8 kyk5OtNetC16QGtXQ2L4xs8NwDwiFF0T0Bwf5CS0qZu6tmUOPeZbXtW8ywhtOME8 nayeOSxUWNrsHAISjJTLXVScZ79VozVLHBbIOZZ5Ewpc7i5oZq8J2mAqo6pjR8Mv zR1VKddovBfMzar6FrvqeT3sAltfSeDIxV3HBQbvQUNQ6pG/ais6 -----END CERTIFICATE-----Generated at Wed May 13 10:39:20 2026 by rpki-client