$ rpki-client -vvf rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: r2ZYiFd01bWs0eEN9nD+Mp8m+K6B0HFPjNNciuS/bGc= Subject key identifier: 20:E7:E8:75:CF:93:70:4D:F9:A4:EC:F6:91:8E:BD:04:51:78:7B:74 Certificate issuer: /CN=68A727878748F40EF62D744B06303F71A6B3F75C Certificate serial: 360BDFCACFE56703236C3484AB27952A074FC1BD Authority key identifier: 68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa Signing time: Sun 03 May 2026 02:35:13 +0000 ROA not before: Sun 03 May 2026 02:30:13 +0000 ROA not after: Sun 02 May 2027 02:35:13 +0000 asID: 24211 IP address blocks: 2402:a000:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:0b:df:ca:cf:e5:67:03:23:6c:34:84:ab:27:95:2a:07:4f:c1:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68A727878748F40EF62D744B06303F71A6B3F75C Validity Not Before: May 3 02:30:13 2026 GMT Not After : May 2 02:35:13 2027 GMT Subject: CN=20E7E875CF93704DF9A4ECF6918EBD0451787B74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1f:b6:97:89:39:e1:ce:92:d9:3f:6e:f6:61: 67:a3:58:33:df:18:4b:06:98:2a:31:58:0b:0d:31: 57:f1:69:57:ba:29:ac:a6:a4:8d:a0:78:ce:52:eb: f6:99:97:e8:23:d8:04:97:47:41:3c:0e:b7:07:74: 8e:6c:bd:b8:b4:8e:43:fc:61:48:9d:2c:de:88:b6: 96:cb:cc:7d:34:3d:79:72:61:e6:cd:fc:46:e8:a0: 5a:b7:87:27:f9:32:d2:58:b7:4c:b9:90:ef:f5:a6: a4:b1:9a:71:db:10:f1:71:d6:a2:4d:ec:35:48:11: ad:89:a0:f0:95:8a:66:a8:ef:e8:b1:0d:e5:98:3c: 09:2b:13:54:af:6c:6d:30:9a:72:c8:ee:2d:d2:ee: d5:8e:be:70:df:61:33:48:f8:e4:18:2a:73:bf:03: 35:65:86:e0:89:86:09:0b:46:c0:d1:55:52:5b:70: 7f:54:8a:68:ec:ea:7e:43:11:66:19:eb:98:27:f2: 4c:a8:19:2d:af:f1:21:01:ec:22:3c:d3:61:9f:17: ff:9c:45:95:32:2f:0c:19:c1:5e:c4:78:18:88:a7: 24:88:6e:16:54:84:99:2b:59:f5:aa:32:57:59:bf: fc:b9:7c:8f:56:9c:e1:12:57:cb:46:db:0a:58:7b: ff:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E7:E8:75:CF:93:70:4D:F9:A4:EC:F6:91:8E:BD:04:51:78:7B:74 X509v3 Authority Key Identifier: keyid:68:A7:27:87:87:48:F4:0E:F6:2D:74:4B:06:30:3F:71:A6:B3:F7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/68A727878748F40EF62D744B06303F71A6B3F75C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68A727878748F40EF62D744B06303F71A6B3F75C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:c000::/34 Signature Algorithm: sha256WithRSAEncryption 9b:57:0a:e3:58:d8:b4:d3:69:0f:db:01:d5:3c:7d:5d:44:97: ad:c6:4a:7e:2f:50:f4:d7:84:dd:d0:f0:96:cf:49:11:fa:e9: 9a:6b:64:bc:8b:9c:f4:a8:00:8a:6b:48:99:e7:e4:64:46:44: dd:fe:40:5e:0a:62:66:52:2c:24:1a:e7:5a:7f:a5:fd:57:36: cb:43:05:85:fe:92:3d:37:b0:c5:e3:37:77:c9:3c:3a:ae:b8: 2f:86:51:cd:78:3a:6e:03:40:47:37:73:ba:2f:d4:78:a7:da: 63:d1:9d:45:00:dc:7a:30:a1:0a:ed:e7:fd:0d:80:75:c2:7f: d7:5c:2b:0c:8c:94:6a:f5:b4:18:be:41:e8:11:2b:21:ef:68: 8a:11:60:a2:ca:53:17:76:14:7b:32:91:62:6c:db:10:7c:80: fa:6e:9f:e9:f5:07:2a:86:be:98:8a:ab:0d:ac:50:2d:2a:b7: 03:04:ea:dd:3f:b8:f9:27:11:b3:e4:58:34:f2:86:44:32:b6: a2:1c:5d:4b:ed:b0:7c:54:ef:9f:42:43:f0:12:24:e3:d4:a6: e6:f5:df:8a:6b:f8:d5:c3:c0:19:e9:74:27:04:c7:c4:35:14: b6:39:a2:ac:72:74:43:4a:3a:c4:af:fd:65:44:ac:29:8b:36: 96:9c:70:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNgvfys/lZwMjbDSEqyeVKgdPwb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhBNzI3ODc4NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFB NkIzRjc1QzAeFw0yNjA1MDMwMjMwMTNaFw0yNzA1MDIwMjM1MTNaMDMxMTAvBgNV BAMTKDIwRTdFODc1Q0Y5MzcwNERGOUE0RUNGNjkxOEVCRDA0NTE3ODdCNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkH7aXiTnhzpLZP272YWejWDPf GEsGmCoxWAsNMVfxaVe6KaympI2geM5S6/aZl+gj2ASXR0E8DrcHdI5svbi0jkP8 YUidLN6ItpbLzH00PXlyYebN/EbooFq3hyf5MtJYt0y5kO/1pqSxmnHbEPFx1qJN 7DVIEa2JoPCVimao7+ixDeWYPAkrE1SvbG0wmnLI7i3S7tWOvnDfYTNI+OQYKnO/ AzVlhuCJhgkLRsDRVVJbcH9Uimjs6n5DEWYZ65gn8kyoGS2v8SEB7CI802GfF/+c RZUyLwwZwV7EeBiIpySIbhZUhJkrWfWqMldZv/y5fI9WnOESV8tG2wpYe/8NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIOfodc+TcE35pOz2kY69BFF4e3QwHwYDVR0j BBgwFoAUaKcnh4dI9A72LXRLBjA/caaz91wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlmMDEzZjktYjRmNy00NThjLWFhYzUtMDgwNDFiM2Y2NWU2LzAvNjhBNzI3ODc4 NzQ4RjQwRUY2MkQ3NDRCMDYzMDNGNzFBNkIzRjc1Qy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEE3Mjc4Nzg3NDhGNDBFRjYyRDc0NEIwNjMwM0Y3MUE2QjNG NzVDLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AMAwDQYJKoZIhvcNAQELBQADggEBAJtXCuNY2LTTaQ/bAdU8fV1El63GSn4vUPTX hN3Q8JbPSRH66ZprZLyLnPSoAIprSJnn5GRGRN3+QF4KYmZSLCQa51p/pf1XNstD BYX+kj03sMXjN3fJPDquuC+GUc14Om4DQEc3c7ov1Hin2mPRnUUA3HowoQrt5/0N gHXCf9dcKwyMlGr1tBi+QegRKyHvaIoRYKLKUxd2FHsykWJs2xB8gPpun+n1ByqG vpiKqw2sUC0qtwME6t0/uPknEbPkWDTyhkQytqIcXUvtsHxU759CQ/ASJOPUpub1 34pr+NXDwBnpdCcEx8Q1FLY5oqxydENKOsSv/WVErCmLNpaccE4= -----END CERTIFICATE-----Generated at Wed May 13 07:45:09 2026 by rpki-client