$ rpki-client -vvf rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa File: 323430323a3630303a3a2f33322d3438203d3e203338353135.roa (raw, json) Hash identifier: JOiAp3jXH49RWqx0RzZF/vQ7edFQ7lAl/c/n0M0GXRM= Subject key identifier: 34:20:AF:E5:FD:9B:0E:39:62:ED:90:28:4E:0A:38:34:66:37:60:7C Certificate issuer: /CN=67869B177D646DD081563D36E6E9775C31473EE2 Certificate serial: 29F8301313DCD9A8D5ABD4F360E0403E4730E9A7 Authority key identifier: 67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa Signing time: Sun 03 May 2026 02:41:06 +0000 ROA not before: Sun 03 May 2026 02:36:06 +0000 ROA not after: Sun 02 May 2027 02:41:06 +0000 asID: 38515 IP address blocks: 2402:600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f8:30:13:13:dc:d9:a8:d5:ab:d4:f3:60:e0:40:3e:47:30:e9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67869B177D646DD081563D36E6E9775C31473EE2 Validity Not Before: May 3 02:36:06 2026 GMT Not After : May 2 02:41:06 2027 GMT Subject: CN=3420AFE5FD9B0E3962ED90284E0A38346637607C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bc:58:c4:77:9d:38:e0:e1:1e:c4:3f:74:61: 91:69:9c:1e:cd:5c:a4:57:54:be:d2:98:3f:6f:ff: fc:41:61:19:d5:bc:41:96:4b:d6:db:3d:0c:6a:d4: 29:0b:59:69:5e:af:48:35:65:fa:79:f8:b4:c5:2d: 0b:3a:98:9b:b9:f2:19:b2:9b:ae:46:6b:b6:8c:ee: d7:29:57:c0:45:6e:8a:09:ea:6f:2b:f6:ed:38:4a: 99:90:16:14:36:39:51:f7:20:1f:9b:b8:d7:7a:e4: f4:c3:5d:fb:03:57:b0:c0:fc:c3:5e:0f:c5:86:2f: 9d:e6:fd:89:e4:4c:e4:47:77:a0:0e:b4:85:65:9d: 3e:3a:37:e1:da:e1:a0:21:23:f2:cd:49:17:ad:4c: 3c:79:92:89:77:b0:2a:07:1d:c9:e7:ae:33:5b:31: 38:8b:3b:a5:2c:dd:7f:1f:bf:1f:f1:08:89:90:81: ca:1f:b8:4e:8c:b5:47:d5:29:0a:d0:f0:ed:e2:5f: aa:03:40:17:69:18:98:c0:d0:73:df:4b:82:da:5e: 32:7c:1c:df:9e:c9:09:26:20:56:15:59:a2:ad:91: 0d:13:af:89:5c:dc:4d:bb:99:0c:64:67:7c:31:c3: 4b:8a:45:07:0a:39:a8:59:81:90:f9:f0:05:78:94: ad:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:20:AF:E5:FD:9B:0E:39:62:ED:90:28:4E:0A:38:34:66:37:60:7C X509v3 Authority Key Identifier: keyid:67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600::/32 Signature Algorithm: sha256WithRSAEncryption 73:aa:9b:5f:67:4d:f8:13:d5:6b:a0:ea:55:3d:82:d2:57:b1: 58:24:e1:e6:c2:42:46:7c:76:bf:31:1d:32:3b:1f:98:b4:d7: 89:cb:eb:3e:73:0a:65:b8:c5:be:e0:80:56:3b:2b:4c:f5:4e: 63:60:8a:c8:59:b6:1f:86:bc:74:26:54:4e:0c:52:58:b7:18: b4:51:aa:cb:81:28:c2:db:79:6c:06:a6:0b:37:12:f7:6d:f5: 05:30:21:ae:ab:eb:5c:8e:2c:fe:f5:48:7c:ad:ea:bf:be:d7: 0b:d5:e9:78:cd:55:ae:22:c5:6a:cb:12:da:5b:2a:e0:e0:6f: a2:2e:42:4d:83:dd:dd:83:b2:6d:cb:36:b6:25:9b:88:e8:c6: 7b:eb:d1:3f:dd:3c:b7:a2:4d:bd:ce:ae:12:8c:9b:2d:89:b1: e1:78:ec:11:d4:58:fd:8a:7d:96:e3:54:cd:18:09:7a:86:97: 2c:6a:ad:ee:0c:e2:e9:f7:79:61:5b:b3:22:08:c4:5b:46:9f: 88:5b:d4:70:a6:3e:92:7d:6c:c5:38:eb:23:57:f0:83:dc:98: 9a:5d:d2:31:98:c2:3c:5e:71:2f:9d:e5:aa:f5:e9:8f:70:67: a3:f9:1b:5c:8e:3b:02:6a:a1:57:f1:65:e4:6f:d8:9e:b1:ac: ac:df:1f:c3 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUKfgwExPc2ajVq9TzYOBAPkcw6acwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4NjlCMTc3RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMz MTQ3M0VFMjAeFw0yNjA1MDMwMjM2MDZaFw0yNzA1MDIwMjQxMDZaMDMxMTAvBgNV BAMTKDM0MjBBRkU1RkQ5QjBFMzk2MkVEOTAyODRFMEEzODM0NjYzNzYwN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsvFjEd5044OEexD90YZFpnB7N XKRXVL7SmD9v//xBYRnVvEGWS9bbPQxq1CkLWWler0g1Zfp5+LTFLQs6mJu58hmy m65Ga7aM7tcpV8BFbooJ6m8r9u04SpmQFhQ2OVH3IB+buNd65PTDXfsDV7DA/MNe D8WGL53m/YnkTORHd6AOtIVlnT46N+Ha4aAhI/LNSRetTDx5kol3sCoHHcnnrjNb MTiLO6Us3X8fvx/xCImQgcofuE6MtUfVKQrQ8O3iX6oDQBdpGJjA0HPfS4LaXjJ8 HN+eyQkmIFYVWaKtkQ0Tr4lc3E27mQxkZ3wxw0uKRQcKOahZgZD58AV4lK2hAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUNCCv5f2bDjli7ZAoTgo4NGY3YHwwHwYDVR0j BBgwFoAUZ4abF31kbdCBVj025ul3XDFHPuIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmM0YzY0YTktMzUzNy00YmM3LTg2MTMtOGU5ODE2MjllNGNhLzAvNjc4NjlCMTc3 RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMzMTQ3M0VFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Nzg2OUIxNzdENjQ2REQwODE1NjNEMzZFNkU5Nzc1QzMxNDcz RUUyLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNmM0YzY0YTktMzUzNy00YmM3LTg2 MTMtOGU5ODE2MjllNGNhLzAvMzIzNDMwMzIzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMzMzgzNTMxMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAgYAMA0GCSqGSIb3DQEB CwUAA4IBAQBzqptfZ034E9VroOpVPYLSV7FYJOHmwkJGfHa/MR0yOx+YtNeJy+s+ cwpluMW+4IBWOytM9U5jYIrIWbYfhrx0JlRODFJYtxi0UarLgSjC23lsBqYLNxL3 bfUFMCGuq+tcjiz+9Uh8req/vtcL1el4zVWuIsVqyxLaWyrg4G+iLkJNg93dg7Jt yza2JZuI6MZ769E/3Ty3ok29zq4SjJstibHheOwR1Fj9in2W41TNGAl6hpcsaq3u DOLp93lhW7MiCMRbRp+IW9Rwpj6SfWzFOOsjV/CD3JiaXdIxmMI8XnEvneWq9emP cGej+RtcjjsCaqFX8WXkb9iesays3x/D -----END CERTIFICATE-----Generated at Wed May 13 07:36:00 2026 by rpki-client