$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: IbAFzZACUnD6lwBQxPhQqMDiyphOZDVL6AMwxKGfiyQ= Subject key identifier: 43:A2:B9:D1:C7:64:3B:AF:A2:30:85:08:F1:39:15:36:4F:58:93:37 Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 447958B1EE1B442CBFBBA17E6729CF2AED222ADA Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:14 +0000 ROA not before: Sun 03 May 2026 02:30:14 +0000 ROA not after: Sun 02 May 2027 02:35:14 +0000 asID: 24211 IP address blocks: 2402:a000:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:79:58:b1:ee:1b:44:2c:bf:bb:a1:7e:67:29:cf:2a:ed:22:2a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:14 2026 GMT Not After : May 2 02:35:14 2027 GMT Subject: CN=43A2B9D1C7643BAFA2308508F13915364F589337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2d:55:27:8f:a4:04:16:cd:80:a2:58:3b:a9: c0:cc:74:92:13:00:54:fe:d1:02:fd:8c:7e:fe:b6: fe:2c:31:76:59:0d:8c:04:f4:c0:84:79:17:10:d6: b6:9f:d0:79:ad:b0:ea:df:42:7b:8c:43:fe:30:d6: 25:ea:19:d1:fd:78:a4:99:07:e7:3a:8b:de:9d:66: de:1d:9b:f0:0d:86:e7:85:2c:3e:57:c5:d2:62:1b: 67:d9:da:6d:cf:82:cc:af:90:13:e0:a8:e5:8b:49: 14:7b:33:57:08:4b:ea:8c:a1:90:21:12:fb:7f:e1: 53:e5:e0:96:c3:79:d1:cc:74:ca:22:fc:a6:d8:b3: 46:df:59:bb:27:68:56:ab:62:03:bf:f4:b2:c1:bf: df:0b:33:ac:84:c2:fa:45:cb:52:e3:b9:ae:35:d6: 7c:51:6f:40:23:9c:50:e5:ac:0e:1d:2c:3b:ac:f2: 56:82:4c:88:53:0c:5f:bb:ed:55:e1:aa:36:a1:01: ef:80:89:e6:16:98:e2:a3:37:34:2a:5b:85:a6:bd: ae:e2:b4:86:53:a2:98:1c:b9:e3:f8:a1:00:4c:f0: 11:d0:1d:24:08:de:b3:e0:ec:a7:ba:5f:8d:a5:ee: 0e:2f:ff:6a:a5:ad:60:d1:bf:98:a6:e7:61:88:7d: 4b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A2:B9:D1:C7:64:3B:AF:A2:30:85:08:F1:39:15:36:4F:58:93:37 X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:8000::/34 Signature Algorithm: sha256WithRSAEncryption 61:94:83:72:87:b4:6f:97:50:58:77:46:80:21:63:e3:99:d4: 51:65:4d:8c:45:eb:a4:29:4d:be:a9:4a:0c:67:15:96:d0:0d: 2e:f5:a4:e1:af:45:c4:ae:ae:41:b9:d4:d7:fd:73:fe:8c:67: c8:90:b4:3e:cd:dc:26:f4:84:dd:b6:8a:1c:37:a5:86:d7:2c: 1a:22:c0:80:0c:c0:20:79:ec:05:8e:4f:f4:7a:dd:4d:86:56: b4:09:2c:89:de:99:f2:20:b3:26:78:11:b1:87:0f:fb:5b:1c: d8:5c:ee:d1:a3:1f:a5:5c:c3:e6:7a:16:54:6f:30:af:11:f7: 67:93:69:9d:a1:53:6b:ac:3d:69:49:e9:c3:c3:91:e4:eb:fa: f4:28:f3:40:be:fd:87:07:8c:c5:af:cc:17:b4:33:b7:69:28: b7:09:d2:19:27:7b:90:6a:b4:fb:60:f2:04:fb:e8:78:2c:4e: 52:7b:68:fd:69:1f:6a:d7:5d:9f:6a:df:d2:17:9a:1b:67:6e: de:3a:76:6a:ca:d4:f2:59:db:12:07:f0:4e:ce:88:de:ed:4d: 21:da:d3:cb:fb:fb:a5:7a:36:04:03:01:df:42:7b:af:2c:bb: a6:41:89:33:21:c3:0b:b8:22:50:db:2e:85:97:7f:ba:16:05: 7e:5c:07:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURHlYse4bRCy/u6F+ZynPKu0iKtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMTRaFw0yNzA1MDIwMjM1MTRaMDMxMTAvBgNV BAMTKDQzQTJCOUQxQzc2NDNCQUZBMjMwODUwOEYxMzkxNTM2NEY1ODkzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqLVUnj6QEFs2Aolg7qcDMdJIT AFT+0QL9jH7+tv4sMXZZDYwE9MCEeRcQ1raf0HmtsOrfQnuMQ/4w1iXqGdH9eKSZ B+c6i96dZt4dm/ANhueFLD5XxdJiG2fZ2m3PgsyvkBPgqOWLSRR7M1cIS+qMoZAh Evt/4VPl4JbDedHMdMoi/KbYs0bfWbsnaFarYgO/9LLBv98LM6yEwvpFy1Ljua41 1nxRb0AjnFDlrA4dLDus8laCTIhTDF+77VXhqjahAe+AieYWmOKjNzQqW4Wmva7i tIZTopgcueP4oQBM8BHQHSQI3rPg7Ke6X42l7g4v/2qlrWDRv5im52GIfUv9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQ6K50cdkO6+iMIUI8TkVNk9YkzcwHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AIAwDQYJKoZIhvcNAQELBQADggEBAGGUg3KHtG+XUFh3RoAhY+OZ1FFlTYxF66Qp Tb6pSgxnFZbQDS71pOGvRcSurkG51Nf9c/6MZ8iQtD7N3Cb0hN22ihw3pYbXLBoi wIAMwCB57AWOT/R63U2GVrQJLInemfIgsyZ4EbGHD/tbHNhc7tGjH6Vcw+Z6FlRv MK8R92eTaZ2hU2usPWlJ6cPDkeTr+vQo80C+/YcHjMWvzBe0M7dpKLcJ0hkne5Bq tPtg8gT76HgsTlJ7aP1pH2rXXZ9q39IXmhtnbt46dmrK1PJZ2xIH8E7OiN7tTSHa 08v7+6V6NgQDAd9Ce68su6ZBiTMhwwu4IlDbLoWXf7oWBX5cByM= -----END CERTIFICATE-----Generated at Wed May 13 07:35:24 2026 by rpki-client