$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: zPNtfgZ0xuIJb6mJb8ImM+3c3T3QiTY+1lYZMk1v2MU= Subject key identifier: 85:72:2C:4B:33:2E:82:16:D0:8C:63:06:DD:99:BE:83:FA:27:4F:AB Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 4D449C2AC4B9D91ED6FDC1E0B2252027DB80443F Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:12 +0000 ROA not before: Sun 03 May 2026 03:00:12 +0000 ROA not after: Sun 02 May 2027 03:05:12 +0000 asID: 38156 IP address blocks: 2405:a540:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:44:9c:2a:c4:b9:d9:1e:d6:fd:c1:e0:b2:25:20:27:db:80:44:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:12 2026 GMT Not After : May 2 03:05:12 2027 GMT Subject: CN=85722C4B332E8216D08C6306DD99BE83FA274FAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:36:4a:0a:5f:73:b3:01:6e:e3:cd:4e:25: 28:cf:89:25:cd:03:59:f7:4c:97:04:4e:f0:51:3e: 54:34:ce:99:c2:58:06:50:f2:a7:c3:c7:20:a2:46: cd:73:9b:68:ff:ef:63:ad:78:4e:0e:d2:26:a6:33: 7e:99:78:7c:3c:1c:87:05:b9:4f:17:43:d6:d3:62: 27:90:98:96:f4:c9:0b:7e:36:34:77:af:f6:d1:b1: 5d:eb:d6:7b:bc:d3:08:4d:35:af:2f:1f:cf:d6:a1: 0b:b8:8e:4b:d4:9c:25:59:80:9a:70:b4:52:ba:ac: e0:b1:71:c6:75:b7:93:00:b3:c6:4d:9c:17:3f:52: b8:46:94:f6:05:b3:63:ea:c8:cb:b0:29:9e:5b:11: bf:07:85:1c:16:c3:e0:cc:32:ef:e6:3d:93:0f:7b: 56:d6:be:9e:61:d7:b4:dd:cb:c3:9e:e3:2b:6f:91: 4b:9e:65:10:81:4c:d1:9c:1a:43:b3:4e:a2:0b:5f: d6:0e:ad:a8:20:a8:10:52:50:6b:8f:68:b7:2b:ad: 18:32:4b:84:fc:d3:59:8f:ad:4b:54:38:ad:1e:40: f5:8b:d0:d8:fc:61:19:e5:19:82:3b:51:e5:08:ea: ed:8a:6a:b8:64:98:97:45:27:82:eb:26:a6:82:c3: 3c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:72:2C:4B:33:2E:82:16:D0:8C:63:06:DD:99:BE:83:FA:27:4F:AB X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100f::/48 Signature Algorithm: sha256WithRSAEncryption 0b:13:d7:8d:26:19:55:bc:0d:70:1e:86:8c:5d:e0:14:26:d8: 7b:ef:35:57:73:17:76:3a:f2:1c:a8:99:1d:05:37:e0:5c:50: b9:6f:ad:1e:fa:47:c7:fa:69:40:f1:37:90:b4:50:ee:b9:37: da:9d:6b:60:aa:ca:1f:a5:0f:32:e0:0a:64:d4:4a:49:8a:14: 09:8f:6e:14:3b:e7:cf:5f:61:be:69:04:94:bc:a9:f0:52:de: 13:3c:0d:a2:26:75:4c:00:52:64:89:c9:90:ec:08:b3:c6:9a: 82:c2:c0:27:19:eb:59:5e:a0:c4:e0:09:8a:62:17:f9:f8:ea: 77:71:74:ee:fc:bb:eb:34:f5:97:b5:b2:1e:96:56:d1:52:f2: 14:2a:53:bd:c9:06:6a:e5:1f:6e:87:38:ef:78:a8:44:c5:52: d2:13:f1:cf:d5:3f:85:9d:62:4a:2c:92:27:eb:cb:e5:c0:bc: 47:f4:17:62:b8:6a:92:07:e4:dd:4a:45:4f:ee:e9:b0:e0:fa: bc:77:b7:9f:be:63:b6:8d:a8:23:16:4b:02:ac:61:92:d3:58: bf:3a:f3:26:64:9d:99:9f:6c:b5:25:c9:4d:c3:f3:9d:c3:fc: ca:56:62:db:c2:cc:b4:e2:50:84:33:d7:14:27:5d:e8:19:29: 49:94:ed:fe -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTUScKsS52R7W/cHgsiUgJ9uARD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTJaFw0yNzA1MDIwMzA1MTJaMDMxMTAvBgNV BAMTKDg1NzIyQzRCMzMyRTgyMTZEMDhDNjMwNkREOTlCRTgzRkEyNzRGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4CTZKCl9zswFu481OJSjPiSXN A1n3TJcETvBRPlQ0zpnCWAZQ8qfDxyCiRs1zm2j/72OteE4O0iamM36ZeHw8HIcF uU8XQ9bTYieQmJb0yQt+NjR3r/bRsV3r1nu80whNNa8vH8/WoQu4jkvUnCVZgJpw tFK6rOCxccZ1t5MAs8ZNnBc/UrhGlPYFs2PqyMuwKZ5bEb8HhRwWw+DMMu/mPZMP e1bWvp5h17Tdy8Oe4ytvkUueZRCBTNGcGkOzTqILX9YOraggqBBSUGuPaLcrrRgy S4T801mPrUtUOK0eQPWL0Nj8YRnlGYI7UeUI6u2KarhkmJdFJ4LrJqaCwzzDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhXIsSzMughbQjGMG3Zm+g/onT6swHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAPMA0GCSqGSIb3DQEBCwUAA4IBAQALE9eNJhlVvA1wHoaMXeAUJth77zVXcxd2 OvIcqJkdBTfgXFC5b60e+kfH+mlA8TeQtFDuuTfanWtgqsofpQ8y4Apk1EpJihQJ j24UO+fPX2G+aQSUvKnwUt4TPA2iJnVMAFJkicmQ7AizxpqCwsAnGetZXqDE4AmK Yhf5+Op3cXTu/LvrNPWXtbIellbRUvIUKlO9yQZq5R9uhzjveKhExVLSE/HP1T+F nWJKLJIn68vlwLxH9BdiuGqSB+TdSkVP7umw4Pq8d7efvmO2jagjFksCrGGS01i/ OvMmZJ2Zn2y1JclNw/Odw/zKVmLbwsy04lCEM9cUJ13oGSlJlO3+ -----END CERTIFICATE-----Generated at Wed May 13 10:00:57 2026 by rpki-client