$ rpki-client -vvf repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa File: 323430343a3630303a3a2f33322d3438203d3e2034383333.roa (raw, json) Hash identifier: W+3oudDGVZWtPTgLUpXVQqGay+DBQ/RLjB5FNHueSRc= Subject key identifier: A6:38:15:64:CE:F2:18:91:AB:3F:11:0F:0B:E4:40:EC:29:99:51:C9 Certificate issuer: /CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Certificate serial: 7A3DEBD6327F48B19FB56956C35C59233B76872B Authority key identifier: CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa Signing time: Mon 02 Jun 2025 02:03:26 +0000 ROA not before: Mon 02 Jun 2025 01:58:26 +0000 ROA not after: Mon 01 Jun 2026 02:03:26 +0000 asID: 4833 IP address blocks: 2404:600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:3d:eb:d6:32:7f:48:b1:9f:b5:69:56:c3:5c:59:23:3b:76:87:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Validity Not Before: Jun 2 01:58:26 2025 GMT Not After : Jun 1 02:03:26 2026 GMT Subject: CN=A6381564CEF21891AB3F110F0BE440EC299951C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:32:e5:77:1f:41:97:8e:42:15:1d:d6:12:d5: 5c:b8:cb:28:c7:ee:fe:ad:70:cf:8d:4d:0c:7f:18: 9b:71:83:81:bf:d5:80:0a:5f:16:9b:cc:22:43:78: 7f:a8:4c:39:14:ab:ea:5d:3c:12:75:4b:35:ee:9d: 06:91:5a:a2:f1:cd:ba:9e:8a:18:2c:6d:c9:c8:f2: 52:5d:d2:6e:68:fe:74:12:96:2d:6f:78:39:58:b6: 1b:1a:b1:33:87:de:1e:53:94:21:25:90:a0:bb:2a: 62:0e:2f:4c:43:e9:ba:6e:6f:5a:14:8f:ba:7e:4f: 09:3d:b6:df:5a:d7:c9:bf:a6:59:c7:39:cb:be:59: 01:df:aa:8d:d1:5a:e7:49:0b:6d:b2:c9:07:21:e6: 85:2b:bb:c9:4e:e1:34:a4:88:ff:be:a1:cb:a8:f0: 66:df:00:96:07:43:f2:d1:93:5d:f7:42:dd:6d:8b: be:f1:2d:76:cd:cd:b8:32:04:c2:ee:a0:1b:7a:02: 97:aa:06:7a:00:7b:1f:af:91:b2:fd:36:5a:0c:a2: 81:4d:77:d0:8c:c5:d8:e7:df:c6:8f:73:be:2c:ac: 4f:38:e5:13:0d:45:9b:9b:c4:54:bf:af:67:ed:45: 1c:68:74:62:80:86:11:0d:f4:d0:b3:f6:36:b6:8f: 4b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:38:15:64:CE:F2:18:91:AB:3F:11:0F:0B:E4:40:EC:29:99:51:C9 X509v3 Authority Key Identifier: keyid:CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:600::/32 Signature Algorithm: sha256WithRSAEncryption 55:e9:ba:72:59:59:40:84:a6:dd:43:92:1a:88:09:a6:5f:41: ef:c3:e6:7d:da:3c:5c:14:bb:43:c4:30:02:20:75:bb:26:85: e3:84:e6:1d:3c:68:fd:a7:34:f6:35:db:28:7c:cd:7f:56:df: e9:e8:d5:f6:64:f0:43:42:99:98:08:1a:cb:99:fb:05:45:3a: 51:be:4e:5c:b3:31:c6:13:af:fd:83:48:24:0c:7d:9f:fb:78: da:eb:c1:c3:11:6e:e2:74:8d:ee:8b:d8:a2:83:c8:19:81:32: 89:71:3c:db:44:42:10:12:b5:e8:1a:aa:8b:b0:1e:ef:fa:b0: bc:d1:d7:1d:80:8f:3a:e3:a3:05:9e:33:b4:ef:6c:1d:8d:ce: 78:61:04:6d:36:97:ae:e0:c5:b0:7e:a9:29:10:e6:ba:4d:80: 80:84:25:df:df:a1:88:44:8b:9f:cd:c2:ea:a0:fc:09:8a:54: 7e:7a:5f:59:4a:fb:c2:70:2d:5d:c2:cd:45:e4:9a:8d:a5:32: ac:b5:0f:57:25:6e:50:26:0a:93:ab:b5:a2:64:4b:a0:be:18: b9:83:e5:06:dc:00:bd:01:4b:ab:b1:a2:81:d5:76:62:b9:74: c9:a9:de:92:ad:e0:b7:45:d6:91:25:78:65:f9:97:a0:f5:53: f3:48:82:23 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUej3r1jJ/SLGftWlWw1xZIzt2hyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURG NjQ4QzRFOTAeFw0yNTA2MDIwMTU4MjZaFw0yNjA2MDEwMjAzMjZaMDMxMTAvBgNV BAMTKEE2MzgxNTY0Q0VGMjE4OTFBQjNGMTEwRjBCRTQ0MEVDMjk5OTUxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAMuV3H0GXjkIVHdYS1Vy4yyjH 7v6tcM+NTQx/GJtxg4G/1YAKXxabzCJDeH+oTDkUq+pdPBJ1SzXunQaRWqLxzbqe ihgsbcnI8lJd0m5o/nQSli1veDlYthsasTOH3h5TlCElkKC7KmIOL0xD6bpub1oU j7p+Twk9tt9a18m/plnHOcu+WQHfqo3RWudJC22yyQch5oUru8lO4TSkiP++ocuo 8GbfAJYHQ/LRk133Qt1ti77xLXbNzbgyBMLuoBt6ApeqBnoAex+vkbL9NloMooFN d9CMxdjn38aPc74srE845RMNRZubxFS/r2ftRRxodGKAhhEN9NCz9ja2j0vrAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUpjgVZM7yGJGrPxEPC+RA7CmZUckwHwYDVR0j BBgwFoAUzWgeQG0uzYrKKOTwe5r6nfZIxOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmMxZjUxYS04NjQ1LTRlYjEtYTJmZi1lMjdjMjRjOGUwYzgvMC9DRDY4MUU0MDZE MkVDRDhBQ0EyOEU0RjA3QjlBRkE5REY2NDhDNEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURGNjQ4 QzRFOS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZjMWY1MWEtODY0NS00ZWIxLWEy ZmYtZTI3YzI0YzhlMGM4LzAvMzIzNDMwMzQzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzgzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQGADANBgkqhkiG9w0BAQsF AAOCAQEAVem6cllZQISm3UOSGogJpl9B78Pmfdo8XBS7Q8QwAiB1uyaF44TmHTxo /ac09jXbKHzNf1bf6ejV9mTwQ0KZmAgay5n7BUU6Ub5OXLMxxhOv/YNIJAx9n/t4 2uvBwxFu4nSN7ovYooPIGYEyiXE820RCEBK16Bqqi7Ae7/qwvNHXHYCPOuOjBZ4z tO9sHY3OeGEEbTaXruDFsH6pKRDmuk2AgIQl39+hiESLn83C6qD8CYpUfnpfWUr7 wnAtXcLNReSajaUyrLUPVyVuUCYKk6u1omRLoL4YuYPlBtwAvQFLq7GigdV2Yrl0 yanekq3gt0XWkSV4ZfmXoPVT80iCIw== -----END CERTIFICATE-----Generated at Sat Jun 7 18:28:54 2025 by rpki-client