$ rpki-client -vvf rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313030303a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a313030303a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: SLO7crG5MN2DlhdgBiaeLi1vELhQiu/y4Xricr0iQIY= Subject key identifier: 56:31:68:3B:32:E1:31:3C:E2:A6:6D:71:A6:4B:24:F6:8F:31:97:AF Certificate issuer: /CN=67869B177D646DD081563D36E6E9775C31473EE2 Certificate serial: 390759D7D39DEE2B4CD449FE93A9FE0895627E33 Authority key identifier: 67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313030303a3a2f34382d3438203d3e203338353135.roa Signing time: Sun 03 May 2026 02:41:05 +0000 ROA not before: Sun 03 May 2026 02:36:05 +0000 ROA not after: Sun 02 May 2027 02:41:05 +0000 asID: 38515 IP address blocks: 2402:600:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:07:59:d7:d3:9d:ee:2b:4c:d4:49:fe:93:a9:fe:08:95:62:7e:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67869B177D646DD081563D36E6E9775C31473EE2 Validity Not Before: May 3 02:36:05 2026 GMT Not After : May 2 02:41:05 2027 GMT Subject: CN=5631683B32E1313CE2A66D71A64B24F68F3197AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:28:08:a6:bd:f6:61:f6:38:90:c6:d1:e2: f9:e6:46:ce:ba:83:21:04:34:2c:32:84:a7:a0:fc: 84:b8:a6:38:8c:69:d6:05:3c:26:41:75:0d:c3:7d: 45:0d:2e:2c:cb:8a:7d:19:ef:16:61:15:6a:98:aa: 58:d2:53:fc:d7:7e:e5:85:06:07:fa:68:4a:6a:9d: 9d:a4:c2:4b:c1:b3:55:ac:37:a1:c6:7d:26:08:93: d2:b9:0f:45:a4:30:27:23:c6:d7:2b:97:d7:de:c2: df:5f:02:d4:cc:3c:7d:e1:08:fe:48:14:b8:60:0e: d2:93:8d:f6:c0:45:0d:7c:9a:c2:53:87:15:c7:c1: 98:e2:dd:98:87:18:cd:d3:42:28:9a:62:c7:a8:9b: b4:04:2e:06:73:6a:98:87:62:fb:5c:25:c5:6e:2a: 8c:57:82:0d:75:c9:65:03:74:1f:0c:1f:14:47:28: bb:c2:d2:1d:4a:26:cc:7a:19:01:77:68:fc:96:18: 7d:9e:fc:e9:91:fc:95:4d:01:32:2d:d1:38:bf:7c: cb:ef:38:2b:83:37:d4:f1:0a:f7:74:8d:c8:1c:9f: 95:9d:9c:22:94:1a:53:a1:ea:41:1d:55:45:20:0d: 72:a4:9c:db:8e:c4:60:98:e1:f1:be:90:a0:aa:90: 10:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:31:68:3B:32:E1:31:3C:E2:A6:6D:71:A6:4B:24:F6:8F:31:97:AF X509v3 Authority Key Identifier: keyid:67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313030303a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:1000::/48 Signature Algorithm: sha256WithRSAEncryption 33:bc:33:e1:7d:b7:37:96:de:74:06:4f:f4:c2:20:82:02:c3: a6:93:2e:d8:0f:17:be:0d:30:62:e0:6e:b0:fa:2a:e9:cc:af: d5:9e:a6:f6:87:c9:c8:75:ba:81:1a:f3:40:02:02:23:43:54: 47:f8:00:15:38:0b:4d:41:62:b4:68:33:c7:a8:ac:53:aa:b9: 0d:50:dd:39:43:2b:e7:03:56:a8:7a:66:84:29:8c:5a:78:89: 07:b1:7c:93:5b:18:fd:36:94:92:a0:65:77:69:36:7b:96:36: 07:ae:c0:df:2a:2c:4a:a4:60:72:f0:89:90:93:78:f7:36:9a: f7:50:9c:b8:58:76:d2:ae:e8:00:93:79:9d:b7:16:60:b5:9b: a6:71:60:ed:88:12:b8:43:85:7c:c6:04:11:a1:60:ed:d3:8e: 72:6a:7d:f6:99:04:a4:28:57:d5:4c:67:9f:8f:17:04:ae:65: 3d:e3:76:c5:b1:f2:72:cb:84:59:34:69:5e:5f:6d:cd:37:ce: ff:ef:56:00:da:ba:a3:0e:20:a9:ab:b2:a0:38:05:2b:65:63: ca:53:4d:ca:f6:0a:56:4c:82:08:02:bc:f7:d2:45:b2:0d:7e: 05:7b:5e:40:ec:b9:7c:bb:2c:3d:72:66:dd:dd:f9:7c:51:fe: 70:16:ff:92 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUOQdZ19Od7itM1En+k6n+CJVifjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4NjlCMTc3RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMz MTQ3M0VFMjAeFw0yNjA1MDMwMjM2MDVaFw0yNzA1MDIwMjQxMDVaMDMxMTAvBgNV BAMTKDU2MzE2ODNCMzJFMTMxM0NFMkE2NkQ3MUE2NEIyNEY2OEYzMTk3QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpIigIpr32YfY4kMbR4vnmRs66 gyEENCwyhKeg/IS4pjiMadYFPCZBdQ3DfUUNLizLin0Z7xZhFWqYqljSU/zXfuWF Bgf6aEpqnZ2kwkvBs1WsN6HGfSYIk9K5D0WkMCcjxtcrl9fewt9fAtTMPH3hCP5I FLhgDtKTjfbARQ18msJThxXHwZji3ZiHGM3TQiiaYseom7QELgZzapiHYvtcJcVu KoxXgg11yWUDdB8MHxRHKLvC0h1KJsx6GQF3aPyWGH2e/OmR/JVNATIt0Ti/fMvv OCuDN9TxCvd0jcgcn5WdnCKUGlOh6kEdVUUgDXKknNuOxGCY4fG+kKCqkBDVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUVjFoOzLhMTzipm1xpksk9o8xl68wHwYDVR0j BBgwFoAUZ4abF31kbdCBVj025ul3XDFHPuIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmM0YzY0YTktMzUzNy00YmM3LTg2MTMtOGU5ODE2MjllNGNhLzAvNjc4NjlCMTc3 RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMzMTQ3M0VFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Nzg2OUIxNzdENjQ2REQwODE1NjNEMzZFNkU5Nzc1QzMxNDcz RUUyLmNlcjCBqQYIKwYBBQUHAQsEgZwwgZkwgZYGCCsGAQUFBzALhoGJcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTMxMzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAQ ADANBgkqhkiG9w0BAQsFAAOCAQEAM7wz4X23N5bedAZP9MIgggLDppMu2A8Xvg0w YuBusPoq6cyv1Z6m9ofJyHW6gRrzQAICI0NUR/gAFTgLTUFitGgzx6isU6q5DVDd OUMr5wNWqHpmhCmMWniJB7F8k1sY/TaUkqBld2k2e5Y2B67A3yosSqRgcvCJkJN4 9zaa91CcuFh20q7oAJN5nbcWYLWbpnFg7YgSuEOFfMYEEaFg7dOOcmp99pkEpChX 1Uxnn48XBK5lPeN2xbHycsuEWTRpXl9tzTfO/+9WANq6ow4gqauyoDgFK2VjylNN yvYKVkyCCAK899JFsg1+BXteQOy5fLssPXJm3d35fFH+cBb/kg== -----END CERTIFICATE-----Generated at Wed May 13 14:13:52 2026 by rpki-client