$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: pivfi9ji1ihnIAJ1idyzgwRmHruzS5uloDq3BscV5e0= Subject key identifier: 4F:30:03:3D:1E:80:67:B0:1F:4B:20:78:19:CA:F0:0A:80:B5:CD:F4 Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 02AAE003CD7904D1DCC8CC07C4D9F07763B1214C Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a3a2f33342d3334203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:13 +0000 ROA not before: Sun 03 May 2026 02:30:13 +0000 ROA not after: Sun 02 May 2027 02:35:13 +0000 asID: 24211 IP address blocks: 2402:a000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:aa:e0:03:cd:79:04:d1:dc:c8:cc:07:c4:d9:f0:77:63:b1:21:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:13 2026 GMT Not After : May 2 02:35:13 2027 GMT Subject: CN=4F30033D1E8067B01F4B207819CAF00A80B5CDF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5f:e6:2c:1d:2b:5e:6d:64:7e:6a:4f:5b:b6: c1:35:6e:34:1f:80:99:1e:9e:9a:f0:9a:64:c3:0f: 40:7e:e6:af:ea:e6:3b:53:b7:46:40:9c:eb:e3:4d: e1:23:3c:25:7f:0b:86:db:00:d9:d0:e4:8e:d5:6e: 47:08:1b:68:a9:a3:e3:3f:14:37:a6:5f:8a:49:67: 8b:9c:e3:f5:ea:84:f0:0c:e7:69:fe:11:95:09:d7: 78:e1:0e:40:09:06:e3:f7:20:33:9e:83:93:94:4a: f3:16:cf:45:ca:eb:de:5e:7a:10:ae:56:54:02:4c: e7:49:74:f8:4f:ac:09:4a:d4:01:1a:98:cb:3b:be: e1:05:45:7c:bb:af:6d:bd:d9:6d:84:52:91:12:ed: 1c:2d:83:d6:06:5d:81:dd:bc:83:d0:bf:ab:04:b0: 25:16:bc:89:38:b5:90:37:5a:d3:26:82:b2:34:72: 53:03:9d:9b:d3:bd:55:2b:eb:c7:5a:24:1b:e2:97: c3:fa:bc:70:7a:e0:8a:d7:6b:62:ad:9f:f4:79:9f: 11:87:18:3b:55:89:f8:92:05:1a:14:b9:90:e4:4c: a7:38:1c:5b:ef:5f:a8:88:ef:48:a0:0e:4a:ae:fc: c2:dc:16:f4:56:e8:dd:98:1e:e6:54:a7:37:71:98: 81:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:30:03:3D:1E:80:67:B0:1F:4B:20:78:19:CA:F0:0A:80:B5:CD:F4 X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000::/34 Signature Algorithm: sha256WithRSAEncryption 13:57:8f:76:09:09:8e:f1:d3:3a:ee:65:88:3c:8e:15:dd:6e: 34:c8:81:04:fc:f1:a6:5b:33:2d:06:eb:be:e1:c1:b0:3e:43: 04:3d:2c:1b:e7:9c:23:fb:29:51:fa:13:68:b0:79:20:d7:45: ef:27:8b:8b:ad:ff:c4:dd:00:b6:79:87:26:06:7c:2c:5c:02: 54:a9:9f:42:a6:4f:67:b4:4b:75:13:09:20:84:a6:f7:ae:7d: 15:8a:30:51:1e:05:45:ea:4d:5a:58:33:4e:21:12:ba:cc:61: 7e:58:2a:3c:4e:b1:5c:9b:e2:35:3b:11:99:ca:b5:a1:a6:00: c9:15:38:e3:b3:d1:d1:da:5b:94:09:f7:b8:46:8d:8a:bd:09: 9e:6f:0b:ef:65:76:55:a6:af:9b:9a:ac:65:c5:75:cb:60:5a: a7:f4:43:02:11:d8:d0:a7:ac:99:a9:3e:b0:6b:c9:fb:9f:ee: 0c:7a:2a:1e:ba:5e:ad:38:ff:ec:b6:63:b2:67:e3:c9:c2:09: 42:f1:35:65:cf:09:84:d7:82:fe:81:ea:46:13:03:b6:49:59: 08:2c:ba:0c:1f:77:7d:38:ec:5c:fe:72:2a:7b:a7:9c:1a:4b: 13:4c:68:36:40:38:c6:1b:5f:90:16:2c:aa:14:f7:84:d4:00: 4e:03:50:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAqrgA815BNHcyMwHxNnwd2OxIUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMTNaFw0yNzA1MDIwMjM1MTNaMDMxMTAvBgNV BAMTKDRGMzAwMzNEMUU4MDY3QjAxRjRCMjA3ODE5Q0FGMDBBODBCNUNERjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBX+YsHStebWR+ak9btsE1bjQf gJkenprwmmTDD0B+5q/q5jtTt0ZAnOvjTeEjPCV/C4bbANnQ5I7VbkcIG2ipo+M/ FDemX4pJZ4uc4/XqhPAM52n+EZUJ13jhDkAJBuP3IDOeg5OUSvMWz0XK695eehCu VlQCTOdJdPhPrAlK1AEamMs7vuEFRXy7r2292W2EUpES7Rwtg9YGXYHdvIPQv6sE sCUWvIk4tZA3WtMmgrI0clMDnZvTvVUr68daJBvil8P6vHB64IrXa2Ktn/R5nxGH GDtVifiSBRoUuZDkTKc4HFvvX6iI70igDkqu/MLcFvRW6N2YHuZUpzdxmIGZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTzADPR6AZ7AfSyB4GcrwCoC1zfQwHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMyMzQzMjMxMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYkAqAAADANBgkqhkiG 9w0BAQsFAAOCAQEAE1ePdgkJjvHTOu5liDyOFd1uNMiBBPzxplszLQbrvuHBsD5D BD0sG+ecI/spUfoTaLB5INdF7yeLi63/xN0AtnmHJgZ8LFwCVKmfQqZPZ7RLdRMJ IISm9659FYowUR4FRepNWlgzTiESusxhflgqPE6xXJviNTsRmcq1oaYAyRU447PR 0dpblAn3uEaNir0Jnm8L72V2Vaavm5qsZcV1y2Bap/RDAhHY0Kesmak+sGvJ+5/u DHoqHrperTj/7LZjsmfjycIJQvE1Zc8JhNeC/oHqRhMDtklZCCy6DB93fTjsXP5y KnunnBpLE0xoNkA4xhtfkBYsqhT3hNQATgNQ5g== -----END CERTIFICATE-----Generated at Wed May 13 02:25:56 2026 by rpki-client