$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: WgZKLMLpwFRH8Rc+mjcsJQGYvAiCBksSGlUySVC2KTU= Subject key identifier: 8F:35:52:35:3F:5F:A5:65:9B:02:DE:24:F6:E5:15:67:DC:B1:70:EF Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 4319D9CD44323408E77C17136AB52C81DBC5297F Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:12 +0000 ROA not before: Sun 03 May 2026 03:00:12 +0000 ROA not after: Sun 02 May 2027 03:05:12 +0000 asID: 38156 IP address blocks: 2405:a540:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:19:d9:cd:44:32:34:08:e7:7c:17:13:6a:b5:2c:81:db:c5:29:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:12 2026 GMT Not After : May 2 03:05:12 2027 GMT Subject: CN=8F3552353F5FA5659B02DE24F6E51567DCB170EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:94:3f:5f:bc:43:db:c3:27:53:2a:7d:1b:1e: 96:aa:15:12:ff:e2:85:64:96:1f:f8:de:c6:9e:91: 97:9b:f5:81:8f:b8:ec:c9:d5:68:ad:a4:c8:21:99: 7d:15:a6:a9:e8:d1:32:0d:0f:1b:be:18:fa:6c:3f: 00:71:c4:a3:63:3e:bf:cf:99:62:2d:0c:b7:e3:92: 9a:70:92:93:d5:a8:47:c6:a8:f7:dd:74:4e:44:83: 80:58:4f:4c:fa:69:c5:5a:6d:30:44:46:8d:aa:91: e4:08:82:8e:d6:43:4e:41:bc:ec:7c:72:89:d1:0b: 5f:98:d2:fb:95:78:0b:82:04:02:45:e2:4a:49:27: b8:18:1c:28:bc:3e:f4:5f:be:30:87:54:5c:12:2a: 64:2f:f3:22:b9:20:3b:47:e3:4a:9e:a6:46:70:99: 6a:1c:89:7c:32:cf:63:7b:ca:0a:ba:51:7c:00:d6: 96:68:c2:05:a1:36:94:18:b5:21:c9:af:6a:78:df: 39:61:d0:0e:f7:c2:df:08:b9:29:18:e8:b6:76:73: 7f:d0:a4:43:eb:99:5f:48:74:54:ce:80:b5:11:a9: 32:7c:60:21:58:90:ef:e4:72:f9:ac:6b:25:a5:b9: 43:c6:f7:1c:df:8f:36:b2:51:1b:e1:7c:46:ee:3d: 63:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:35:52:35:3F:5F:A5:65:9B:02:DE:24:F6:E5:15:67:DC:B1:70:EF X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1010::/48 Signature Algorithm: sha256WithRSAEncryption 9b:80:dd:44:9e:4a:81:16:a4:9c:c1:07:ed:e5:b0:6e:52:91: f0:6c:55:f2:52:70:ad:54:f2:a1:0e:3c:34:e1:af:b3:25:0e: 78:1c:e3:53:cc:3d:e2:52:44:c2:b2:f6:55:b2:45:2a:16:82: 45:89:53:85:a6:22:84:8c:44:82:73:01:20:34:b4:6e:03:fe: e3:29:40:ce:4c:0f:e2:69:f5:b0:eb:05:39:f1:7f:3d:62:08: 73:c9:8b:23:df:2e:1c:07:71:7c:e0:c5:56:1e:14:2c:db:4c: 91:d1:08:92:b4:ed:89:14:8a:9f:7a:96:5e:eb:10:c3:60:ea: 77:29:6b:9e:6e:84:54:e3:ba:16:bc:da:1b:9a:15:ed:ce:e8: 14:f1:dd:c5:08:82:7a:35:a0:fb:ce:f9:0d:39:fa:bb:8a:d1: 3c:ee:9c:ea:e0:a0:94:ae:59:c6:a4:54:0a:fc:02:0a:9b:7b: 19:ce:08:77:0b:79:81:47:06:0c:8e:8e:ce:1e:14:10:df:0e: ca:04:7d:af:5f:eb:f1:49:90:46:6f:2e:62:8f:44:d3:d0:94: 72:c2:96:2b:52:cf:25:5a:81:ae:3d:4d:03:2b:ec:7c:3d:7a: 1c:95:5f:e5:c7:c7:e2:1b:7f:48:60:98:0f:7d:a8:93:40:2b: 28:2e:16:7c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQxnZzUQyNAjnfBcTarUsgdvFKX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMTJaFw0yNzA1MDIwMzA1MTJaMDMxMTAvBgNV BAMTKDhGMzU1MjM1M0Y1RkE1NjU5QjAyREUyNEY2RTUxNTY3RENCMTcwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwlD9fvEPbwydTKn0bHpaqFRL/ 4oVklh/43saekZeb9YGPuOzJ1WitpMghmX0Vpqno0TINDxu+GPpsPwBxxKNjPr/P mWItDLfjkppwkpPVqEfGqPfddE5Eg4BYT0z6acVabTBERo2qkeQIgo7WQ05BvOx8 conRC1+Y0vuVeAuCBAJF4kpJJ7gYHCi8PvRfvjCHVFwSKmQv8yK5IDtH40qepkZw mWociXwyz2N7ygq6UXwA1pZowgWhNpQYtSHJr2p43zlh0A73wt8IuSkY6LZ2c3/Q pEPrmV9IdFTOgLURqTJ8YCFYkO/kcvmsayWluUPG9xzfjzayURvhfEbuPWOdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjzVSNT9fpWWbAt4k9uUVZ9yxcO8wHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAQMA0GCSqGSIb3DQEBCwUAA4IBAQCbgN1EnkqBFqScwQft5bBuUpHwbFXyUnCt VPKhDjw04a+zJQ54HONTzD3iUkTCsvZVskUqFoJFiVOFpiKEjESCcwEgNLRuA/7j KUDOTA/iafWw6wU58X89YghzyYsj3y4cB3F84MVWHhQs20yR0QiStO2JFIqfepZe 6xDDYOp3KWueboRU47oWvNobmhXtzugU8d3FCIJ6NaD7zvkNOfq7itE87pzq4KCU rlnGpFQK/AIKm3sZzgh3C3mBRwYMjo7OHhQQ3w7KBH2vX+vxSZBGby5ij0TT0JRy wpYrUs8lWoGuPU0DK+x8PXoclV/lx8fiG39IYJgPfaiTQCsoLhZ8 -----END CERTIFICATE-----Generated at Wed May 13 12:42:07 2026 by rpki-client