$ rpki-client -vvf rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a3a2f33322d3332203d3e203338313536.roa File: 323430353a613534303a3a2f33322d3332203d3e203338313536.roa (raw, json) Hash identifier: mYAvetqJOaK+g42xXQIVuzKQ0V+8EMMx37honK4xGaY= Subject key identifier: A3:A1:86:33:DB:DD:B7:D1:17:AA:51:31:27:64:EC:57:C4:45:17:DA Certificate issuer: /CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Certificate serial: 14A7915DDC6FB26DAE7965AE6207166866501E4D Authority key identifier: 43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a3a2f33322d3332203d3e203338313536.roa Signing time: Sun 03 May 2026 03:05:09 +0000 ROA not before: Sun 03 May 2026 03:00:09 +0000 ROA not after: Sun 02 May 2027 03:05:09 +0000 asID: 38156 IP address blocks: 2405:a540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a7:91:5d:dc:6f:b2:6d:ae:79:65:ae:62:07:16:68:66:50:1e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E1CC61CDE59968FE0810D4937130A67D6541DC Validity Not Before: May 3 03:00:09 2026 GMT Not After : May 2 03:05:09 2027 GMT Subject: CN=A3A18633DBDDB7D117AA51312764EC57C44517DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:69:da:ea:0b:af:e7:ee:f8:c2:8f:3b:77:08: b3:81:92:98:3a:40:14:70:2e:28:ab:fb:7e:74:cb: da:72:31:33:29:4e:25:cb:63:45:42:53:ba:40:0c: 87:5c:dd:6e:a1:0d:76:2e:7c:03:bc:2b:58:88:ca: 89:24:05:7e:45:71:7e:a9:bc:af:81:e3:43:63:f9: 62:2b:e6:28:17:5b:ae:7f:34:8f:56:bd:ec:b1:3a: c2:3f:55:7a:3f:5c:87:db:0c:76:64:31:ed:5c:b0: af:67:6d:0d:13:f9:89:24:30:6a:14:29:e8:94:67: 6a:fb:c5:b8:79:c3:96:4f:7e:95:ad:66:3b:da:40: 3e:9c:c4:c7:b9:84:93:0b:de:86:3d:6e:a4:2e:a7: e7:63:7b:b7:59:06:74:c5:28:fd:cf:1e:b4:99:61: 76:05:43:52:4a:04:ac:49:3f:5c:79:ec:30:f0:6c: fb:08:7e:fa:f3:7b:60:c7:ee:4d:7c:2e:10:8a:54: 71:ab:9c:0d:55:21:df:34:74:e6:ea:58:fe:cb:dd: 00:ec:fd:7b:a6:3f:56:18:b0:e9:1b:fa:bf:c4:51: 40:3f:b3:50:03:8a:f8:8b:1f:78:2c:da:54:a6:ba: c6:a7:33:ad:a1:42:1d:c9:cb:fa:23:1f:1d:3a:97: 93:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A1:86:33:DB:DD:B7:D1:17:AA:51:31:27:64:EC:57:C4:45:17:DA X509v3 Authority Key Identifier: keyid:43:E1:CC:61:CD:E5:99:68:FE:08:10:D4:93:71:30:A6:7D:65:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/43E1CC61CDE59968FE0810D4937130A67D6541DC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E1CC61CDE59968FE0810D4937130A67D6541DC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a3a2f33322d3332203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540::/32 Signature Algorithm: sha256WithRSAEncryption 78:f6:fd:b7:dd:ab:cb:48:13:63:6f:fc:2f:55:9c:90:23:70: 0f:bb:ac:9a:ce:74:31:ed:a1:83:7a:e6:e4:5a:1b:a5:55:dd: 26:02:3c:c8:5d:a4:68:04:a2:e1:68:6f:0a:77:4a:af:87:31: 4d:6f:4e:ce:ae:49:51:50:2d:0b:88:b7:da:97:6f:a5:15:61: a3:9e:8b:74:c9:70:72:5e:b9:6f:d7:29:6a:3c:7e:14:1c:9d: 37:32:ad:3d:1a:4c:3b:1a:44:8c:c4:56:ca:ea:d6:d5:d8:01: 3e:0e:e4:0e:5b:37:6b:24:04:ed:c4:36:12:df:fe:95:4f:ba: 89:3e:12:87:28:4e:d9:74:27:f0:2b:c8:51:04:5f:75:fa:ce: 1f:52:ba:26:56:2a:ba:e5:68:06:1e:37:7b:eb:9b:0c:c0:0f: 4f:37:8d:59:ad:4c:d4:db:88:6f:ea:87:c0:9a:1c:b8:1c:83: c8:4d:32:1c:63:8e:78:60:bd:d6:5b:4d:b4:f8:15:36:06:24: f1:b6:2e:76:45:d0:f1:d5:c4:ef:62:9d:06:0d:9a:d3:26:db: dc:c7:27:43:de:17:a0:95:42:e0:61:c0:5c:21:64:d8:3c:45: 42:f2:e3:d1:7b:32:34:6a:c9:3f:0c:19:41:d3:7b:1b:27:a6: 3b:4c:99:e1 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUFKeRXdxvsm2ueWWuYgcWaGZQHk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFMUNDNjFDREU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3 RDY1NDFEQzAeFw0yNjA1MDMwMzAwMDlaFw0yNzA1MDIwMzA1MDlaMDMxMTAvBgNV BAMTKEEzQTE4NjMzREJEREI3RDExN0FBNTEzMTI3NjRFQzU3QzQ0NTE3REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2adrqC6/n7vjCjzt3CLOBkpg6 QBRwLiir+350y9pyMTMpTiXLY0VCU7pADIdc3W6hDXYufAO8K1iIyokkBX5FcX6p vK+B40Nj+WIr5igXW65/NI9WveyxOsI/VXo/XIfbDHZkMe1csK9nbQ0T+YkkMGoU KeiUZ2r7xbh5w5ZPfpWtZjvaQD6cxMe5hJML3oY9bqQup+dje7dZBnTFKP3PHrSZ YXYFQ1JKBKxJP1x57DDwbPsIfvrze2DH7k18LhCKVHGrnA1VId80dObqWP7L3QDs /XumP1YYsOkb+r/EUUA/s1ADiviLH3gs2lSmusanM62hQh3Jy/ojHx06l5OHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUo6GGM9vdt9EXqlExJ2TsV8RFF9owHwYDVR0j BBgwFoAUQ+HMYc3lmWj+CBDUk3Ewpn1lQdwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YzVkM2QyMmEtMzM4Yi00MzAyLTkzZjQtYzAyMWVhNmFkNTQ4LzAvNDNFMUNDNjFD REU1OTk2OEZFMDgxMEQ0OTM3MTMwQTY3RDY1NDFEQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0UxQ0M2MUNERTU5OTY4RkUwODEwRDQ5MzcxMzBBNjdENjU0 MURDLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMzMzgzMTM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBaVAMA0GCSqGSIb3 DQEBCwUAA4IBAQB49v233avLSBNjb/wvVZyQI3APu6yaznQx7aGDeubkWhulVd0m AjzIXaRoBKLhaG8Kd0qvhzFNb07OrklRUC0LiLfal2+lFWGjnot0yXByXrlv1ylq PH4UHJ03Mq09Gkw7GkSMxFbK6tbV2AE+DuQOWzdrJATtxDYS3/6VT7qJPhKHKE7Z dCfwK8hRBF91+s4fUromViq65WgGHjd765sMwA9PN41ZrUzU24hv6ofAmhy4HIPI TTIcY454YL3WW020+BU2BiTxti52RdDx1cTvYp0GDZrTJtvcxydD3heglULgYcBc IWTYPEVC8uPRezI0ask/DBlB03sbJ6Y7TJnh -----END CERTIFICATE-----Generated at Wed May 13 09:12:35 2026 by rpki-client