$ rpki-client -vvf rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: mPehBT00jiY/mvxElgCv+CTGd1K6RVVC/AiDtpNS60E= Subject key identifier: 97:47:BA:64:96:A0:22:72:38:1E:C0:8B:20:60:BA:E7:95:B4:02:00 Certificate issuer: /CN=67869B177D646DD081563D36E6E9775C31473EE2 Certificate serial: 163188C96233AA3B372C41B70ACFEC3FE810D296 Authority key identifier: 67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa Signing time: Sun 03 May 2026 02:41:10 +0000 ROA not before: Sun 03 May 2026 02:36:10 +0000 ROA not after: Sun 02 May 2027 02:41:10 +0000 asID: 38515 IP address blocks: 2402:600:b1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:31:88:c9:62:33:aa:3b:37:2c:41:b7:0a:cf:ec:3f:e8:10:d2:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67869B177D646DD081563D36E6E9775C31473EE2 Validity Not Before: May 3 02:36:10 2026 GMT Not After : May 2 02:41:10 2027 GMT Subject: CN=9747BA6496A02272381EC08B2060BAE795B40200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:81:f1:69:2f:8c:4a:df:b4:b8:f9:5b:4b:cf: 28:32:83:ff:38:89:06:e7:19:5d:7d:84:48:cd:90: 0b:a4:81:23:f5:5e:4d:d3:bb:82:46:39:d6:44:4c: 4a:24:96:42:3d:87:05:75:00:72:6e:7d:2a:da:d2: 9c:e3:e5:55:c3:70:a3:77:07:09:83:2b:89:98:a3: 14:1b:1b:65:5d:9d:35:3a:4f:eb:71:8f:d7:30:ec: 08:e8:f5:49:3f:b9:c0:be:19:3a:01:5f:e0:cb:3a: b4:dc:45:00:74:ab:1b:0f:f3:cd:2a:4e:37:95:17: eb:72:c0:98:1d:23:6f:31:ec:2a:5a:d5:4c:61:1f: 82:87:79:a2:87:83:dd:28:ed:b2:9d:8c:00:25:c9: d4:a5:da:b1:2d:2c:5c:ec:e1:f7:c6:e1:d4:35:a9: 2d:22:a0:5b:41:f9:cc:89:4d:c8:97:95:15:a1:3d: 54:b8:46:f7:3c:1b:0a:b5:09:df:6b:cf:ee:a5:3f: 50:d9:e4:7f:0e:b1:06:95:4b:49:2e:d3:be:b2:c0: 24:12:e0:99:a6:d1:32:2f:7d:ff:bf:39:e4:20:07: 08:d0:6e:9e:09:1d:f3:dc:be:30:fe:a5:31:a2:d8: 14:f0:14:14:45:8f:1b:b4:ae:7a:ae:c1:8e:00:e6: 60:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:47:BA:64:96:A0:22:72:38:1E:C0:8B:20:60:BA:E7:95:B4:02:00 X509v3 Authority Key Identifier: keyid:67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:b1::/48 Signature Algorithm: sha256WithRSAEncryption 34:4d:b4:0c:aa:4c:fe:31:88:c4:f1:70:91:2b:5d:41:5f:1a: cf:56:49:b9:88:9b:89:5a:63:a2:77:79:63:06:49:65:ff:04: 19:10:6d:12:82:69:f8:98:e3:68:ba:9e:eb:2d:1b:69:f5:3d: 6d:63:41:40:46:a7:02:2c:bc:1f:14:03:ba:7a:b3:ed:0c:9f: e9:03:0f:4d:f4:fc:78:a8:42:48:98:b5:3c:22:89:64:14:de: 90:1a:36:69:d8:bf:0d:c2:7a:6d:cf:4d:d8:38:8f:fe:03:08: e1:37:a3:a8:e4:f1:36:8f:63:47:6e:a6:fd:48:f3:74:cc:7b: a4:f0:64:67:0a:3a:5d:fb:61:d3:96:b3:dc:de:d1:31:6b:e5: 8b:e3:98:a6:c4:99:b2:b9:6b:b8:66:9b:05:1d:2c:58:da:03: ea:ae:20:cf:f4:88:ac:2b:63:94:ee:50:41:96:7a:a7:4f:96: e1:73:fb:18:f2:07:b9:96:8e:31:a4:3d:86:f5:53:4d:64:79: d5:e9:aa:e1:eb:42:3c:6b:0a:ea:3b:e3:06:30:71:a8:a6:57: 38:20:26:ba:11:d6:04:b6:7e:6d:02:f3:f0:3d:b9:4a:fe:fc: 8c:46:bf:1c:b4:5f:eb:85:2d:2a:cc:ed:fe:b0:51:00:d3:24: 94:4f:92:c8 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUFjGIyWIzqjs3LEG3Cs/sP+gQ0pYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4NjlCMTc3RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMz MTQ3M0VFMjAeFw0yNjA1MDMwMjM2MTBaFw0yNzA1MDIwMjQxMTBaMDMxMTAvBgNV BAMTKDk3NDdCQTY0OTZBMDIyNzIzODFFQzA4QjIwNjBCQUU3OTVCNDAyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpgfFpL4xK37S4+VtLzygyg/84 iQbnGV19hEjNkAukgSP1Xk3Tu4JGOdZETEoklkI9hwV1AHJufSra0pzj5VXDcKN3 BwmDK4mYoxQbG2VdnTU6T+txj9cw7Ajo9Uk/ucC+GToBX+DLOrTcRQB0qxsP880q TjeVF+tywJgdI28x7Cpa1UxhH4KHeaKHg90o7bKdjAAlydSl2rEtLFzs4ffG4dQ1 qS0ioFtB+cyJTciXlRWhPVS4Rvc8Gwq1Cd9rz+6lP1DZ5H8OsQaVS0ku076ywCQS 4Jmm0TIvff+/OeQgBwjQbp4JHfPcvjD+pTGi2BTwFBRFjxu0rnquwY4A5mATAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUl0e6ZJagInI4HsCLIGC655W0AgAwHwYDVR0j BBgwFoAUZ4abF31kbdCBVj025ul3XDFHPuIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmM0YzY0YTktMzUzNy00YmM3LTg2MTMtOGU5ODE2MjllNGNhLzAvNjc4NjlCMTc3 RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMzMTQ3M0VFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Nzg2OUIxNzdENjQ2REQwODE1NjNEMzZFNkU5Nzc1QzMxNDcz RUUyLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTYyMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAIGAACxMA0G CSqGSIb3DQEBCwUAA4IBAQA0TbQMqkz+MYjE8XCRK11BXxrPVkm5iJuJWmOid3lj Bkll/wQZEG0Sgmn4mONoup7rLRtp9T1tY0FARqcCLLwfFAO6erPtDJ/pAw9N9Px4 qEJImLU8IolkFN6QGjZp2L8Nwnptz03YOI/+AwjhN6Oo5PE2j2NHbqb9SPN0zHuk 8GRnCjpd+2HTlrPc3tExa+WL45imxJmyuWu4ZpsFHSxY2gPqriDP9IisK2OU7lBB lnqnT5bhc/sY8ge5lo4xpD2G9VNNZHnV6arh60I8awrqO+MGMHGoplc4ICa6EdYE tn5tAvPwPblK/vyMRr8ctF/rhS0qzO3+sFEA0ySUT5LI -----END CERTIFICATE-----Generated at Wed May 13 09:09:26 2026 by rpki-client