$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/323430363a323430303a3a2f33322d3438203d3e203435323837.roa File: 323430363a323430303a3a2f33322d3438203d3e203435323837.roa (raw, json) Hash identifier: VW/9nDJQjFvUWNt8EqbaeORZUsYDdJ6mH99j9xi/Rqk= Subject key identifier: 51:E2:C4:02:57:8D:64:2F:40:69:B1:C3:F6:8D:BD:91:4A:A0:7C:D0 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 251AFB588DAB3B644C74E636B4F61B111EAFF057 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/323430363a323430303a3a2f33322d3438203d3e203435323837.roa Signing time: Mon 02 Jun 2025 01:02:34 +0000 ROA not before: Mon 02 Jun 2025 00:57:34 +0000 ROA not after: Mon 01 Jun 2026 01:02:34 +0000 asID: 45287 IP address blocks: 2406:2400::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:1a:fb:58:8d:ab:3b:64:4c:74:e6:36:b4:f6:1b:11:1e:af:f0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jun 2 00:57:34 2025 GMT Not After : Jun 1 01:02:34 2026 GMT Subject: CN=51E2C402578D642F4069B1C3F68DBD914AA07CD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:52:eb:66:cf:f0:b9:75:fb:ee:9a:8a:c2: 49:29:32:da:48:c8:27:22:52:16:58:ef:4c:89:08: 40:64:78:98:30:b8:07:eb:d7:f3:fa:e5:36:a4:0e: a2:a0:db:60:5b:3d:3a:68:57:57:b0:64:f3:35:e6: 06:49:4f:7d:6e:75:7f:3e:22:06:eb:7a:e1:38:dd: bd:30:e8:ac:2f:2e:91:b7:32:2d:58:d7:a7:58:30: a7:82:85:a3:3c:3e:d3:d7:d9:76:28:8e:b9:71:db: 38:b4:f2:59:73:45:a2:6c:a0:18:58:b1:72:a5:65: f6:cb:1b:b6:72:14:86:cd:15:6d:2d:69:21:e3:09: be:57:5b:73:13:27:3e:6f:e8:c9:a1:e6:e3:81:45: 36:4b:5a:d5:83:2c:df:d3:28:71:0b:c1:85:2c:bd: 26:fe:f4:1e:44:cb:db:97:3b:8b:d8:45:75:9c:fd: f3:30:af:e6:f7:9a:b6:f4:c4:86:b0:26:c1:2b:f2: f1:7d:20:b7:90:74:5f:25:6c:cb:ad:4c:0f:a6:99: 9f:7e:47:04:b2:ce:5a:26:a9:d0:5d:83:99:79:19: 3a:e5:74:ad:37:c9:c4:55:0b:a1:05:19:5c:99:fb: 3e:10:28:a2:89:34:bb:a4:1e:b7:74:02:14:2d:3d: bd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E2:C4:02:57:8D:64:2F:40:69:B1:C3:F6:8D:BD:91:4A:A0:7C:D0 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/323430363a323430303a3a2f33322d3438203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:2400::/32 Signature Algorithm: sha256WithRSAEncryption 29:09:c9:05:b2:0a:5f:07:ee:00:7d:4f:ae:27:cf:f5:cf:0d: 81:bf:0e:55:27:6e:4b:ae:76:06:8a:7a:5a:f8:ce:85:80:f8: 42:c7:61:ac:47:dc:8b:68:b4:8a:52:36:a9:59:b2:e6:df:20: 46:83:e5:f6:e6:1c:ad:ad:cb:c8:1e:d4:c0:c1:cf:20:44:d0: 24:f8:02:d1:f9:0d:69:9a:f9:6c:97:ea:2e:64:be:8e:97:a8: 65:2f:48:da:aa:b8:d5:af:f7:3d:91:68:52:e9:3d:bb:48:98: bb:2c:0d:60:71:d3:2c:56:e1:ca:92:43:75:cd:70:9a:a5:61: 27:30:5d:a9:53:55:8b:e2:42:4a:e6:c8:0a:64:d5:a4:76:9a: 07:d2:66:82:92:91:9b:06:38:1f:b3:16:3c:76:fc:60:2b:ac: d5:46:c6:d9:e2:ce:cd:43:19:74:2a:b8:74:2e:08:d6:e0:21: d1:d1:57:1c:29:07:fc:79:1c:08:04:fc:c1:21:7f:0c:70:82: 70:6e:49:9f:9e:dc:85:5e:69:72:21:1d:77:99:99:df:64:08: aa:30:22:de:bb:5d:d5:12:be:cf:3b:2c:7e:a1:36:ce:0f:96: e2:23:24:81:f6:fa:dd:dd:21:c9:ef:87:1e:f4:eb:bd:6d:31: 10:fe:64:6d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUJRr7WI2rO2RMdOY2tPYbER6v8FcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNTA2MDIwMDU3MzRaFw0yNjA2MDEwMTAyMzRaMDMxMTAvBgNV BAMTKDUxRTJDNDAyNTc4RDY0MkY0MDY5QjFDM0Y2OERCRDkxNEFBMDdDRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6/lLrZs/wuXX77pqKwkkpMtpI yCciUhZY70yJCEBkeJgwuAfr1/P65TakDqKg22BbPTpoV1ewZPM15gZJT31udX8+ IgbreuE43b0w6KwvLpG3Mi1Y16dYMKeChaM8PtPX2XYojrlx2zi08llzRaJsoBhY sXKlZfbLG7ZyFIbNFW0taSHjCb5XW3MTJz5v6Mmh5uOBRTZLWtWDLN/TKHELwYUs vSb+9B5Ey9uXO4vYRXWc/fMwr+b3mrb0xIawJsEr8vF9ILeQdF8lbMutTA+mmZ9+ RwSyzlomqdBdg5l5GTrldK03ycRVC6EFGVyZ+z4QKKKJNLukHrd0AhQtPb0jAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUUeLEAleNZC9AabHD9o29kUqgfNAwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMyMzQzMDM2M2EzMjM0MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzMjM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBiQAMA0GCSqGSIb3 DQEBCwUAA4IBAQApCckFsgpfB+4AfU+uJ8/1zw2Bvw5VJ25LrnYGinpa+M6FgPhC x2GsR9yLaLSKUjapWbLm3yBGg+X25hytrcvIHtTAwc8gRNAk+ALR+Q1pmvlsl+ou ZL6Ol6hlL0jaqrjVr/c9kWhS6T27SJi7LA1gcdMsVuHKkkN1zXCapWEnMF2pU1WL 4kJK5sgKZNWkdpoH0maCkpGbBjgfsxY8dvxgK6zVRsbZ4s7NQxl0Krh0LgjW4CHR 0VccKQf8eRwIBPzBIX8McIJwbkmfntyFXmlyIR13mZnfZAiqMCLeu13VEr7POyx+ oTbOD5biIySB9vrd3SHJ74ce9Ou9bTEQ/mRt -----END CERTIFICATE-----Generated at Sat Jun 7 23:00:44 2025 by rpki-client