$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: Tv2GPPjlGM6s70rJUxZeMrMG5Grjr8wYER/e5zbXioI= Subject key identifier: D6:A1:0C:E0:F1:14:E5:76:F5:FD:2C:DE:BC:FD:A2:64:FB:E3:51:2B Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 7C508D0A4F33AA823F67D438C6560A74EC842CB0 Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:17 +0000 ROA not before: Sun 03 May 2026 02:30:17 +0000 ROA not after: Sun 02 May 2027 02:35:17 +0000 asID: 24211 IP address blocks: 2402:a000:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:50:8d:0a:4f:33:aa:82:3f:67:d4:38:c6:56:0a:74:ec:84:2c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:17 2026 GMT Not After : May 2 02:35:17 2027 GMT Subject: CN=D6A10CE0F114E576F5FD2CDEBCFDA264FBE3512B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:85:5b:c9:7d:e4:c3:80:16:53:7e:5b:3a:fe: 41:d1:69:22:67:6e:2f:80:f6:2a:87:5a:00:c6:27: 55:2b:c3:d9:73:71:d8:02:16:9e:e5:b6:40:c1:c2: 50:84:c4:72:37:90:ce:7e:60:eb:46:44:8d:a9:ab: 87:71:c1:11:9d:99:70:1d:4f:a4:25:98:e0:de:67: 44:30:e5:be:a4:3b:95:69:6d:5e:08:1c:a2:37:1d: 23:2b:5f:c6:df:ec:7e:4d:3c:c0:60:3d:f1:1f:ff: 7a:73:94:39:2c:65:96:c5:cf:fc:d6:05:da:d9:9e: 61:39:54:e1:7a:f6:60:de:cc:b6:59:ed:38:2b:9c: 4e:96:10:0a:24:4d:f9:2e:27:bf:47:90:09:c3:3a: 8e:1c:0b:0f:9a:db:24:ae:53:a3:50:38:e5:32:d4: 27:49:f3:11:3e:91:7d:93:bb:a9:71:c3:c4:d3:f2: 62:42:2f:ce:ef:a9:07:75:0e:35:12:e8:f3:86:be: 14:7e:96:6c:0a:e6:df:e6:94:20:93:7c:c7:fc:ba: 9f:03:ca:b6:57:61:9d:0f:5f:0a:60:62:60:1d:96: cf:d8:44:c1:3d:f5:6e:d5:e5:59:75:69:9b:2f:50: a7:0e:fe:6c:2f:d8:05:cb:4d:86:c0:bb:3b:4a:ce: 19:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A1:0C:E0:F1:14:E5:76:F5:FD:2C:DE:BC:FD:A2:64:FB:E3:51:2B X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:4000::/34 Signature Algorithm: sha256WithRSAEncryption af:ba:b5:81:bd:b3:a7:a3:b6:f3:6e:08:2e:69:e1:0e:41:3d: 57:23:81:81:30:a4:40:8c:65:9b:bb:8c:5a:b1:67:25:38:22: ea:4c:88:34:79:2e:da:99:4a:d5:bd:60:ba:4b:19:c3:a2:f7: 1a:b3:8e:b1:22:eb:ca:6f:a4:44:cf:18:ed:8b:3c:86:c5:9d: c9:5a:59:a1:f6:d9:6b:cc:b8:41:4f:5d:73:4b:43:92:5f:9a: 70:b9:c4:34:6a:85:d6:3a:6e:4e:a7:98:e5:a2:83:fe:63:63: 04:49:2c:7e:dc:93:55:5d:62:24:3c:23:b5:cd:f5:34:a0:3b: f0:19:81:46:16:90:bc:8f:9b:6d:db:1d:a5:3e:ad:53:9f:d0: 30:6d:4a:f1:f1:7d:10:5e:5f:0a:c3:a7:2f:97:37:82:5c:43: b7:d4:7a:0a:f2:09:f0:ec:7e:70:70:46:d3:e7:bf:41:e7:34: 12:bb:00:0d:2e:69:80:47:89:1c:1d:8f:03:00:ee:c9:77:26: 0e:74:fb:d1:39:70:4d:99:90:14:2c:9f:c8:7a:66:4d:b5:1b: ba:d8:99:cd:b7:b7:3a:cc:b1:1b:03:21:44:4a:66:62:14:cc: e1:b1:ef:75:3d:70:c6:91:42:53:8a:17:6e:c9:39:1c:a1:e2: c2:13:f6:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfFCNCk8zqoI/Z9Q4xlYKdOyELLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMTdaFw0yNzA1MDIwMjM1MTdaMDMxMTAvBgNV BAMTKEQ2QTEwQ0UwRjExNEU1NzZGNUZEMkNERUJDRkRBMjY0RkJFMzUxMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBhVvJfeTDgBZTfls6/kHRaSJn bi+A9iqHWgDGJ1Urw9lzcdgCFp7ltkDBwlCExHI3kM5+YOtGRI2pq4dxwRGdmXAd T6QlmODeZ0Qw5b6kO5VpbV4IHKI3HSMrX8bf7H5NPMBgPfEf/3pzlDksZZbFz/zW BdrZnmE5VOF69mDezLZZ7TgrnE6WEAokTfkuJ79HkAnDOo4cCw+a2ySuU6NQOOUy 1CdJ8xE+kX2Tu6lxw8TT8mJCL87vqQd1DjUS6POGvhR+lmwK5t/mlCCTfMf8up8D yrZXYZ0PXwpgYmAdls/YRME99W7V5Vl1aZsvUKcO/mwv2AXLTYbAuztKzhmvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1qEM4PEU5Xb1/SzevP2iZPvjUSswHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AEAwDQYJKoZIhvcNAQELBQADggEBAK+6tYG9s6ejtvNuCC5p4Q5BPVcjgYEwpECM ZZu7jFqxZyU4IupMiDR5LtqZStW9YLpLGcOi9xqzjrEi68pvpETPGO2LPIbFncla WaH22WvMuEFPXXNLQ5JfmnC5xDRqhdY6bk6nmOWig/5jYwRJLH7ck1VdYiQ8I7XN 9TSgO/AZgUYWkLyPm23bHaU+rVOf0DBtSvHxfRBeXwrDpy+XN4JcQ7fUegryCfDs fnBwRtPnv0HnNBK7AA0uaYBHiRwdjwMA7sl3Jg50+9E5cE2ZkBQsn8h6Zk21G7rY mc23tzrMsRsDIURKZmIUzOGx73U9cMaRQlOKF27JORyh4sIT9lM= -----END CERTIFICATE-----Generated at Wed May 13 07:39:09 2026 by rpki-client