$ rpki-client -vvf repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/323430363a346563303a3a2f33322d3332203d3e20313430343735.roa File: 323430363a346563303a3a2f33322d3332203d3e20313430343735.roa (raw, json) Hash identifier: sqH8mgq0fr+XiznMLTzogmtodA1+q341U0FlkHOzY5k= Subject key identifier: 59:CF:09:E0:D6:58:9A:B2:C2:4B:41:03:B2:B0:EA:71:12:04:4D:83 Certificate issuer: /CN=B197F427572524588487CFDB163A9E512FAE4DF2 Certificate serial: 0C905CFF3CBF32CDFF29D8F9602EC4FB990F9E6F Authority key identifier: B1:97:F4:27:57:25:24:58:84:87:CF:DB:16:3A:9E:51:2F:AE:4D:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/323430363a346563303a3a2f33322d3332203d3e20313430343735.roa Signing time: Sat 21 Jun 2025 10:00:01 +0000 ROA not before: Sat 21 Jun 2025 09:55:01 +0000 ROA not after: Sat 20 Jun 2026 10:00:01 +0000 asID: 140475 IP address blocks: 2406:4ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.crl rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:90:5c:ff:3c:bf:32:cd:ff:29:d8:f9:60:2e:c4:fb:99:0f:9e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B197F427572524588487CFDB163A9E512FAE4DF2 Validity Not Before: Jun 21 09:55:01 2025 GMT Not After : Jun 20 10:00:01 2026 GMT Subject: CN=59CF09E0D6589AB2C24B4103B2B0EA7112044D83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8f:d9:8b:22:68:bc:e8:23:7f:ea:14:f4:f4: 79:e8:10:8a:f4:fb:17:e4:fd:30:73:e6:1f:55:5a: 2f:22:bc:b3:5f:9b:81:4c:eb:2f:e0:34:9b:a0:4a: e2:af:8d:40:81:37:a5:01:5b:d6:1e:34:4c:d5:33: 1e:da:20:54:b6:53:92:1b:c6:97:f6:87:22:c2:7f: b6:cf:02:61:46:2c:26:23:c3:0e:cb:04:7e:ad:7b: 64:be:86:f1:11:37:eb:ac:b6:45:58:67:4e:16:a5: 22:35:26:51:e0:83:29:94:b9:19:09:47:40:1d:d6: d2:d5:35:5c:7f:7b:f4:57:36:f5:c7:60:e8:6d:b5: df:45:c0:f2:71:8c:d6:09:ba:88:c4:95:fb:83:88: 9f:10:79:74:51:8d:77:8e:31:da:d1:88:a8:2b:1b: ad:39:09:46:50:21:79:10:fa:39:6e:78:cd:d3:ff: 95:68:88:d3:31:18:c7:c3:60:1b:30:3a:4d:96:6a: c8:58:cf:d5:1f:2a:5a:61:df:bb:e9:11:25:db:f6: 9d:7c:c5:b2:43:8b:1a:ef:71:9f:80:87:05:92:15: 5f:f9:e1:b0:0a:2e:e6:ef:e7:bb:6a:81:32:6a:9d: 0e:02:18:6a:c0:60:10:8e:de:a7:24:1a:21:c9:cd: ff:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:CF:09:E0:D6:58:9A:B2:C2:4B:41:03:B2:B0:EA:71:12:04:4D:83 X509v3 Authority Key Identifier: keyid:B1:97:F4:27:57:25:24:58:84:87:CF:DB:16:3A:9E:51:2F:AE:4D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/323430363a346563303a3a2f33322d3332203d3e20313430343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4ec0::/32 Signature Algorithm: sha256WithRSAEncryption 49:82:f8:d9:97:72:a3:48:64:01:3d:aa:4b:b6:6c:57:ce:de: 41:3c:9d:fc:d8:9e:1c:37:cd:b9:f7:4c:d4:64:1a:e3:d8:3e: 8f:29:6f:f5:5b:23:5d:58:c1:65:e2:c3:72:ad:1e:7d:77:db: ce:1b:bc:6d:4d:46:25:78:5a:22:2e:59:66:f8:d7:0b:08:15: 7b:2c:fe:7f:72:c0:86:53:04:51:3f:70:1a:c2:af:c9:4b:1c: c7:4e:6c:82:c4:ee:b6:53:42:da:b3:74:26:eb:d3:de:24:28: 20:9b:7c:81:4a:27:c3:31:26:3c:e8:5e:42:d0:d5:03:ac:5f: b1:df:dc:c2:fa:f8:57:0e:94:dd:b2:1f:13:d6:ee:db:93:9a: 9f:e0:49:6b:10:8e:58:1d:72:e2:c0:f3:21:40:92:4b:5a:e5: 88:de:87:5a:49:fc:a8:ca:06:10:e4:f4:d5:24:1b:82:59:4e: c5:ed:4c:88:3c:7c:ec:ed:09:84:5b:b2:53:2d:12:90:cd:6f: 67:db:4f:48:05:f4:ac:1f:fb:1d:26:6d:88:39:89:60:04:e3: 79:b2:81:d4:fa:dc:2a:d5:60:00:b0:02:c7:87:34:e2:a9:78: 1b:ad:90:4d:ff:0f:1e:f2:06:34:95:9e:37:fd:76:ae:96:f6: 52:6e:27:79 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDJBc/zy/Ms3/Kdj5YC7E+5kPnm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE5N0Y0Mjc1NzI1MjQ1ODg0ODdDRkRCMTYzQTlFNTEy RkFFNERGMjAeFw0yNTA2MjEwOTU1MDFaFw0yNjA2MjAxMDAwMDFaMDMxMTAvBgNV BAMTKDU5Q0YwOUUwRDY1ODlBQjJDMjRCNDEwM0IyQjBFQTcxMTIwNDREODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUj9mLImi86CN/6hT09HnoEIr0 +xfk/TBz5h9VWi8ivLNfm4FM6y/gNJugSuKvjUCBN6UBW9YeNEzVMx7aIFS2U5Ib xpf2hyLCf7bPAmFGLCYjww7LBH6te2S+hvERN+ustkVYZ04WpSI1JlHggymUuRkJ R0Ad1tLVNVx/e/RXNvXHYOhttd9FwPJxjNYJuojElfuDiJ8QeXRRjXeOMdrRiKgr G605CUZQIXkQ+jlueM3T/5VoiNMxGMfDYBswOk2WashYz9UfKlph37vpESXb9p18 xbJDixrvcZ+AhwWSFV/54bAKLubv57tqgTJqnQ4CGGrAYBCO3qckGiHJzf+LAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUWc8J4NZYmrLCS0EDsrDqcRIETYMwHwYDVR0j BBgwFoAUsZf0J1clJFiEh8/bFjqeUS+uTfIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGNmNDA2Ny1hNjlkLTQ5MDgtYmVlOC1iNDY1NWJkYzE1ZjgvMC9CMTk3RjQyNzU3 MjUyNDU4ODQ4N0NGREIxNjNBOUU1MTJGQUU0REYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE5N0Y0Mjc1NzI1MjQ1ODg0ODdDRkRCMTYzQTlFNTEyRkFF NERGMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkY2Y0MDY3LWE2OWQtNDkwOC1i ZWU4LWI0NjU1YmRjMTVmOC8wLzMyMzQzMDM2M2EzNDY1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGTsAwDQYJKoZI hvcNAQELBQADggEBAEmC+NmXcqNIZAE9qku2bFfO3kE8nfzYnhw3zbn3TNRkGuPY Po8pb/VbI11YwWXiw3KtHn13284bvG1NRiV4WiIuWWb41wsIFXss/n9ywIZTBFE/ cBrCr8lLHMdObILE7rZTQtqzdCbr094kKCCbfIFKJ8MxJjzoXkLQ1QOsX7Hf3ML6 +FcOlN2yHxPW7tuTmp/gSWsQjlgdcuLA8yFAkkta5Yjeh1pJ/KjKBhDk9NUkG4JZ TsXtTIg8fOztCYRbslMtEpDNb2fbT0gF9Kwf+x0mbYg5iWAE43mygdT63CrVYACw AseHNOKpeButkE3/Dx7yBjSVnjf9dq6W9lJuJ3k= -----END CERTIFICATE-----Generated at Tue Jul 1 08:39:56 2025 by rpki-client