$ rpki-client -vvf rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: OzZH/D6AOeSKi/B68s/JsfZKJ8q2Nf0IMX0MHCxOzJU= Subject key identifier: 66:FD:36:93:6F:B5:99:CD:34:DA:3C:92:A4:B9:68:E8:55:2D:8B:ED Certificate issuer: /CN=67869B177D646DD081563D36E6E9775C31473EE2 Certificate serial: 2AE6FCE8944F5232FE44FE3874596497681DD0F2 Authority key identifier: 67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa Signing time: Sun 03 May 2026 02:41:07 +0000 ROA not before: Sun 03 May 2026 02:36:07 +0000 ROA not after: Sun 02 May 2027 02:41:07 +0000 asID: 38515 IP address blocks: 2402:600:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e6:fc:e8:94:4f:52:32:fe:44:fe:38:74:59:64:97:68:1d:d0:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67869B177D646DD081563D36E6E9775C31473EE2 Validity Not Before: May 3 02:36:07 2026 GMT Not After : May 2 02:41:07 2027 GMT Subject: CN=66FD36936FB599CD34DA3C92A4B968E8552D8BED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:97:c1:d7:df:00:12:26:58:10:91:0f:bb: bc:a8:2d:64:8e:52:04:df:40:88:22:13:c0:47:83: a1:ad:4d:27:05:83:1c:a7:fc:c8:2a:61:8b:cd:38: 41:2a:f0:83:7c:17:fd:89:7d:26:68:2b:3d:a2:62: 83:be:be:ab:f1:9c:84:31:1c:c4:aa:12:0e:f2:1c: 1f:26:47:6e:05:12:ac:b8:97:09:3a:94:23:68:0d: 2a:ed:14:65:8d:9f:f1:97:28:f0:2f:bf:d3:4b:22: 9d:00:80:23:ef:0a:3a:c1:cd:df:09:85:8d:ec:bd: 39:9f:dd:60:41:34:57:4e:cb:93:1a:30:00:d7:77: 37:2b:c7:4b:d9:ec:fe:9f:47:6c:3a:a4:82:f6:5e: 56:a6:6f:12:75:e6:5f:e1:f9:5d:58:1c:eb:93:27: 50:85:4a:75:84:b6:aa:bf:3b:1e:ff:3d:f0:2d:08: cb:4b:6f:df:c5:79:34:50:72:d1:0c:e9:af:37:ef: 69:ea:b5:a3:eb:25:43:d5:b8:1e:5e:ef:c2:21:1f: bb:8a:67:38:d6:67:49:a1:ad:28:43:eb:93:51:bb: 79:cb:88:99:ab:3a:ef:3b:db:75:a3:f3:6d:df:c8: 7f:dd:af:80:16:37:c2:e2:57:96:85:04:20:88:1f: 8d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:FD:36:93:6F:B5:99:CD:34:DA:3C:92:A4:B9:68:E8:55:2D:8B:ED X509v3 Authority Key Identifier: keyid:67:86:9B:17:7D:64:6D:D0:81:56:3D:36:E6:E9:77:5C:31:47:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/67869B177D646DD081563D36E6E9775C31473EE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/67869B177D646DD081563D36E6E9775C31473EE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:d::/48 Signature Algorithm: sha256WithRSAEncryption 23:53:e5:37:37:48:dc:19:94:1d:4b:d7:82:13:dd:20:3e:ba: 69:06:86:8c:af:f0:f0:5b:fc:50:5e:eb:27:d0:38:75:1d:ca: 7c:d4:4c:2f:1f:79:25:67:f8:01:da:db:53:b3:be:87:55:5b: ac:93:f0:7c:ea:f1:9e:8b:f9:bc:74:14:03:03:a6:50:b9:d0: 47:f7:8b:0b:04:ac:a5:4b:7f:b2:d5:20:ea:f3:88:03:52:80: 8c:8c:63:f5:6c:ed:d7:2a:97:79:fb:f8:59:a8:69:4b:58:5b: 3b:6d:d6:05:e9:45:bf:ae:bd:ee:20:47:f0:6b:c3:d3:73:74: 0c:77:d8:59:e1:00:1d:8c:ca:08:ae:3a:67:db:2f:be:22:76: 06:66:ba:7e:f8:30:3b:95:e5:bc:cd:8d:b6:61:c2:0d:0e:74: 01:5d:08:60:da:c8:76:28:70:43:f4:4e:22:f6:50:68:5d:43: 7d:dd:02:07:bb:87:b4:6c:fd:37:15:86:7a:72:b6:f4:c6:3e: 17:46:00:5c:f8:94:36:dc:3f:62:a0:e7:2c:b5:e6:71:15:6f: 58:6c:1e:68:fc:82:5b:71:13:54:00:70:c5:db:59:b2:b3:8e: 7e:04:41:16:9b:b2:14:83:9e:30:07:14:c0:57:e3:7e:df:e9: c2:6f:43:77 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUKub86JRPUjL+RP44dFlkl2gd0PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4NjlCMTc3RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMz MTQ3M0VFMjAeFw0yNjA1MDMwMjM2MDdaFw0yNzA1MDIwMjQxMDdaMDMxMTAvBgNV BAMTKDY2RkQzNjkzNkZCNTk5Q0QzNERBM0M5MkE0Qjk2OEU4NTUyRDhCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV9ZfB198AEiZYEJEPu7yoLWSO UgTfQIgiE8BHg6GtTScFgxyn/MgqYYvNOEEq8IN8F/2JfSZoKz2iYoO+vqvxnIQx HMSqEg7yHB8mR24FEqy4lwk6lCNoDSrtFGWNn/GXKPAvv9NLIp0AgCPvCjrBzd8J hY3svTmf3WBBNFdOy5MaMADXdzcrx0vZ7P6fR2w6pIL2XlambxJ15l/h+V1YHOuT J1CFSnWEtqq/Ox7/PfAtCMtLb9/FeTRQctEM6a8372nqtaPrJUPVuB5e78IhH7uK ZzjWZ0mhrShD65NRu3nLiJmrOu8723Wj823fyH/dr4AWN8LiV5aFBCCIH41zAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUZv02k2+1mc002jySpLlo6FUti+0wHwYDVR0j BBgwFoAUZ4abF31kbdCBVj025ul3XDFHPuIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmM0YzY0YTktMzUzNy00YmM3LTg2MTMtOGU5ODE2MjllNGNhLzAvNjc4NjlCMTc3 RDY0NkREMDgxNTYzRDM2RTZFOTc3NUMzMTQ3M0VFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82Nzg2OUIxNzdENjQ2REQwODE1NjNEMzZFNkU5Nzc1QzMxNDcz RUUyLmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTY0M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAADTANBgkq hkiG9w0BAQsFAAOCAQEAI1PlNzdI3BmUHUvXghPdID66aQaGjK/w8Fv8UF7rJ9A4 dR3KfNRMLx95JWf4AdrbU7O+h1VbrJPwfOrxnov5vHQUAwOmULnQR/eLCwSspUt/ stUg6vOIA1KAjIxj9Wzt1yqXefv4WahpS1hbO23WBelFv6697iBH8GvD03N0DHfY WeEAHYzKCK46Z9svviJ2Bma6fvgwO5XlvM2NtmHCDQ50AV0IYNrIdihwQ/ROIvZQ aF1Dfd0CB7uHtGz9NxWGenK29MY+F0YAXPiUNtw/YqDnLLXmcRVvWGweaPyCW3ET VABwxdtZsrOOfgRBFpuyFIOeMAcUwFfjft/pwm9Ddw== -----END CERTIFICATE-----Generated at Wed May 13 07:14:30 2026 by rpki-client