$ rpki-client -vvf rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: UoQ5wwYQR1W0CdGwm3CbzAGtC1zCCxi3okzihU8MCho= Subject key identifier: 8A:42:99:2F:D9:18:51:23:FF:7D:EC:B1:4B:10:0C:B3:63:A9:0C:C9 Certificate issuer: /CN=67869B177D646DD081563D36E6E9775C31473EE2 Certificate serial: 3B79DA445571C654829202D6A8056D47B091E24A Authority key identifier: 67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa Signing time: Sun 03 May 2026 02:41:04 +0000 ROA not before: Sun 03 May 2026 02:36:04 +0000 ROA not after: Sun 02 May 2027 02:41:04 +0000 asID: 38515 IP address blocks: 2402:600:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:79:da:44:55:71:c6:54:82:92:02:d6:a8:05:6d:47:b0:91:e2:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67869B177D646DD081563D36E6E9775C31473EE2 Validity Not Before: May 3 02:36:04 2026 GMT Not After : May 2 02:41:04 2027 GMT Subject: CN=8A42992FD9185123FF7DECB14B100CB363A90CC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2d:86:68:08:36:63:a3:6a:6b:30:2e:65:2f: f6:a8:91:ce:e5:5b:90:b5:ee:dc:5f:e8:36:5e:0a: 18:05:5e:25:93:57:51:8b:97:3d:5e:31:42:44:bb: 2a:a5:73:2e:49:df:66:ef:a7:81:44:0b:4d:06:a7: 65:d2:30:32:a0:ca:70:0f:99:c0:09:c3:f8:a0:4a: 77:c1:30:25:eb:95:8b:fe:6e:a7:fb:e2:a3:0a:f1: 2c:4e:a4:77:b8:83:1b:64:f2:51:8d:98:22:30:73: d3:a6:8e:f7:6c:d3:28:1b:1d:2e:8f:b3:b6:e2:4c: 64:42:09:b8:ac:d3:5d:00:57:6d:08:1f:99:39:5f: 97:81:20:9d:c5:af:e1:27:13:f7:f1:8c:32:5e:32: 41:08:0e:52:ff:bc:b1:52:00:db:e9:52:c6:d8:4f: 05:0a:25:f3:91:26:40:4c:c7:f9:61:95:3d:11:90: 6b:06:b1:1a:1b:96:67:dc:16:70:63:94:c0:c8:85: bb:ec:5f:6b:c7:ce:25:fd:3c:8b:fc:53:81:c0:92: bb:71:27:9d:e7:e0:66:a3:e5:4d:7a:a7:c6:a2:29: 12:64:56:64:59:49:f7:b6:6a:c2:47:95:83:f7:2d: eb:76:82:34:d6:9d:bb:b1:25:8c:43:f9:27:fe:12: 77:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:42:99:2F:D9:18:51:23:FF:7D:EC:B1:4B:10:0C:B3:63:A9:0C:C9 X509v3 Authority Key Identifier: keyid:67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:1::/48 Signature Algorithm: sha256WithRSAEncryption 2b:42:43:6b:e0:33:d0:aa:2e:e5:e2:48:70:e7:a2:19:58:30: 67:6f:6a:43:20:96:a1:ee:d5:de:b8:59:77:4f:40:7f:8a:92: 76:f1:c0:78:8d:33:27:08:e2:44:13:1a:1a:8d:4d:34:41:36: 1d:eb:b1:16:1f:54:5e:1f:8a:58:1c:c2:cd:33:53:90:1d:8d: d2:ad:1d:16:14:60:22:34:95:2f:f7:aa:1c:b8:72:84:08:ee: 78:90:35:93:04:23:0b:23:b4:6e:ee:11:c3:7c:5f:4c:9a:76: 35:c1:77:f6:14:fb:06:f1:cc:aa:95:02:42:95:b8:1c:41:cb: 57:c9:4e:3b:77:5f:52:2f:93:7d:b1:b6:8d:98:95:24:4e:ad: 0f:55:2c:39:11:f1:a6:a8:f2:4a:2d:54:0f:ff:ef:b8:06:14: 85:1e:a6:05:71:ca:51:15:9a:4f:24:7d:07:c0:be:b8:95:b2: 26:da:51:ba:76:c5:24:cb:87:fa:6e:0d:2c:21:1a:da:f4:b9: ec:63:a3:3c:e9:09:8d:0e:e5:ba:0b:ae:55:d5:04:71:c0:76: 39:34:cf:43:c3:d3:2d:b8:33:75:be:2f:90:c8:cf:03:fe:6a: da:97:77:bb:4e:ad:48:9b:a7:cb:53:9b:24:56:58:bf:c8:fc: f2:36:9e:28 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUO3naRFVxxlSCkgLWqAVtR7CR4kowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4NjlCMTc3RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMz MTQ3M0VFMjAeFw0yNjA1MDMwMjM2MDRaFw0yNzA1MDIwMjQxMDRaMDMxMTAvBgNV BAMTKDhBNDI5OTJGRDkxODUxMjNGRjdERUNCMTRCMTAwQ0IzNjNBOTBDQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnLYZoCDZjo2prMC5lL/aokc7l W5C17txf6DZeChgFXiWTV1GLlz1eMUJEuyqlcy5J32bvp4FEC00Gp2XSMDKgynAP mcAJw/igSnfBMCXrlYv+bqf74qMK8SxOpHe4gxtk8lGNmCIwc9Omjvds0ygbHS6P s7biTGRCCbis010AV20IH5k5X5eBIJ3Fr+EnE/fxjDJeMkEIDlL/vLFSANvpUsbY TwUKJfORJkBMx/lhlT0RkGsGsRoblmfcFnBjlMDIhbvsX2vHziX9PIv8U4HAkrtx J53n4Gaj5U16p8aiKRJkVmRZSfe2asJHlYP3Let2gjTWnbuxJYxD+Sf+EndFAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUikKZL9kYUSP/feyxSxAMs2OpDMkwHwYDVR0j BBgwFoAUZ4abF31kbdCBVj025ul3XDFHPuIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmM0YzY0YTktMzUzNy00YmM3LTg2MTMtOGU5ODE2MjllNGNhLzAvNjc4NjlCMTc3 RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMzMTQ3M0VFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Nzg2OUIxNzdENjQ2REQwODE1NjNEMzZFNkU5Nzc1QzMxNDcz RUUyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTMxM2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAAATANBgkq hkiG9w0BAQsFAAOCAQEAK0JDa+Az0Kou5eJIcOeiGVgwZ29qQyCWoe7V3rhZd09A f4qSdvHAeI0zJwjiRBMaGo1NNEE2HeuxFh9UXh+KWBzCzTNTkB2N0q0dFhRgIjSV L/eqHLhyhAjueJA1kwQjCyO0bu4Rw3xfTJp2NcF39hT7BvHMqpUCQpW4HEHLV8lO O3dfUi+TfbG2jZiVJE6tD1UsORHxpqjySi1UD//vuAYUhR6mBXHKURWaTyR9B8C+ uJWyJtpRunbFJMuH+m4NLCEa2vS57GOjPOkJjQ7luguuVdUEccB2OTTPQ8PTLbgz db4vkMjPA/5q2pd3u06tSJuny1ObJFZYv8j88jaeKA== -----END CERTIFICATE-----Generated at Wed May 13 08:39:49 2026 by rpki-client