$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: JOAtBF5+cfAqGhS9/3m1ZllG3nhy/U+cT4H4mHFtRKs= Subject key identifier: 29:CC:21:74:89:3C:61:E4:54:5E:19:0E:2D:A7:9E:E4:A9:14:75:AF Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 6ABFEA693E5C72D9202F7A510AA1D14EE021CAC3 Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:16 +0000 ROA not before: Sun 03 May 2026 03:00:16 +0000 ROA not after: Sun 02 May 2027 03:05:16 +0000 asID: 38156 IP address blocks: 2405:a540:100e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:bf:ea:69:3e:5c:72:d9:20:2f:7a:51:0a:a1:d1:4e:e0:21:ca:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:16 2026 GMT Not After : May 2 03:05:16 2027 GMT Subject: CN=29CC2174893C61E4545E190E2DA79EE4A91475AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:25:22:bd:f6:22:1d:40:9b:f1:cf:4c:52:42: 1d:10:87:42:b6:c2:c1:0c:ae:c3:f2:ab:70:28:38: 48:73:87:36:bd:29:36:6e:e6:79:6b:e0:e9:31:4c: a4:4b:37:23:86:da:10:26:a7:1b:7c:bf:0b:1f:87: 21:e3:58:86:4d:52:eb:29:f2:28:ec:fe:7d:fb:08: 95:31:a7:96:a4:cf:d7:49:90:14:79:f2:28:1e:e5: 66:1b:35:b9:51:93:6a:56:94:f8:c7:0a:a4:0f:c8: 21:e1:64:a1:17:aa:66:aa:78:cc:17:4b:9a:15:8f: ec:d2:66:34:4b:3d:f7:d8:76:99:93:d7:86:63:96: 16:e2:d2:06:44:9a:89:f3:e6:a2:3d:56:12:9e:4a: 6b:24:12:00:f0:a4:bc:4c:8e:5d:af:09:4f:7a:66: 04:43:e1:5e:c8:b8:c0:4d:7f:11:80:fc:30:89:36: 90:74:69:59:b0:f8:76:61:fa:24:ec:29:37:1c:a7: 9c:c4:9c:93:d9:73:95:55:cb:e8:9c:b5:ba:5b:29: f8:26:82:45:8e:33:b8:92:2d:6c:3c:01:a0:4d:d2: 9e:f8:d5:10:4b:10:4d:7f:37:9a:ab:59:6b:d5:17: 85:f7:6f:c5:cb:42:dc:09:e0:35:b7:ef:24:77:c8: ad:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:CC:21:74:89:3C:61:E4:54:5E:19:0E:2D:A7:9E:E4:A9:14:75:AF X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100e::/48 Signature Algorithm: sha256WithRSAEncryption 4f:80:25:f3:5f:74:46:3a:90:6d:e5:6a:ce:0d:f9:52:b8:2f: 65:1a:9f:15:d9:0c:11:94:6a:af:a7:16:f5:24:8b:b0:d3:a4: f5:54:d9:87:ac:55:a6:d8:9d:c8:f0:da:01:40:b1:55:c9:4a: ff:0c:5e:a9:ca:dd:39:e5:b2:4b:6f:6a:ce:40:b4:e2:fb:b9: 3e:25:13:a5:7a:9d:a3:92:0a:12:17:bc:15:bc:70:51:80:21: d3:30:ab:f7:f8:5c:d8:b3:0f:b4:5b:23:32:1b:4e:80:33:83: 64:c2:d5:c3:fd:a6:b4:57:22:73:cf:81:11:12:36:67:1c:9b: 34:83:aa:f2:f2:46:cd:50:a1:c5:cc:21:bb:4b:a6:b6:be:f3: e2:2f:fb:f6:c5:71:fc:da:65:13:99:19:db:fd:0d:5d:f3:65: 41:0e:07:a2:ef:61:37:bc:2d:6b:98:29:98:fa:8d:53:1d:17: 49:53:76:2c:54:c4:98:a4:5a:82:39:93:23:c7:e9:9c:14:19: b0:65:79:6b:e8:fe:98:bf:39:37:79:4a:e2:dd:f5:a0:9a:d7: 6b:4e:37:9d:3b:e1:fa:5a:c9:41:11:e1:ab:55:aa:7d:11:60: 6d:2b:86:d9:36:18:68:60:8a:50:66:78:00:2b:e6:dd:0d:ec: 0c:b1:30:b1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUar/qaT5cctkgL3pRCqHRTuAhysMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTZaFw0yNzA1MDIwMzA1MTZaMDMxMTAvBgNV BAMTKDI5Q0MyMTc0ODkzQzYxRTQ1NDVFMTkwRTJEQTc5RUU0QTkxNDc1QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcJSK99iIdQJvxz0xSQh0Qh0K2 wsEMrsPyq3AoOEhzhza9KTZu5nlr4OkxTKRLNyOG2hAmpxt8vwsfhyHjWIZNUusp 8ijs/n37CJUxp5akz9dJkBR58ige5WYbNblRk2pWlPjHCqQPyCHhZKEXqmaqeMwX S5oVj+zSZjRLPffYdpmT14Zjlhbi0gZEmonz5qI9VhKeSmskEgDwpLxMjl2vCU96 ZgRD4V7IuMBNfxGA/DCJNpB0aVmw+HZh+iTsKTccp5zEnJPZc5VVy+ictbpbKfgm gkWOM7iSLWw8AaBN0p741RBLEE1/N5qrWWvVF4X3b8XLQtwJ4DW37yR3yK27AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKcwhdIk8YeRUXhkOLaee5KkUda8wHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAOMA0GCSqGSIb3DQEBCwUAA4IBAQBPgCXzX3RGOpBt5WrODflSuC9lGp8V2QwR lGqvpxb1JIuw06T1VNmHrFWm2J3I8NoBQLFVyUr/DF6pyt055bJLb2rOQLTi+7k+ JROlep2jkgoSF7wVvHBRgCHTMKv3+FzYsw+0WyMyG06AM4NkwtXD/aa0VyJzz4ER EjZnHJs0g6ry8kbNUKHFzCG7S6a2vvPiL/v2xXH82mUTmRnb/Q1d82VBDgei72E3 vC1rmCmY+o1THRdJU3YsVMSYpFqCOZMjx+mcFBmwZXlr6P6Yvzk3eUri3fWgmtdr TjedO+H6WslBEeGrVap9EWBtK4bZNhhoYIpQZngAK+bdDewMsTCx -----END CERTIFICATE-----Generated at Wed May 13 10:39:21 2026 by rpki-client