$ rpki-client -vvf repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/323430363a363230303a3a2f33322d3438203d3e203233373536.roa File: 323430363a363230303a3a2f33322d3438203d3e203233373536.roa (raw, json) Hash identifier: RDF8kXfxQQ2EWR27pMBSl3bUi8DuM2mKbwzECDZeSOA= Subject key identifier: 4B:D1:C2:38:3E:76:1B:75:A8:AA:CC:F6:4D:BC:A1:43:33:D0:01:B6 Certificate issuer: /CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Certificate serial: 787A51002FFB159BD6CBFBF05F4E472B991189 Authority key identifier: DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/323430363a363230303a3a2f33322d3438203d3e203233373536.roa Signing time: Mon 02 Jun 2025 01:03:16 +0000 ROA not before: Mon 02 Jun 2025 00:58:16 +0000 ROA not after: Mon 01 Jun 2026 01:03:16 +0000 asID: 23756 IP address blocks: 2406:6200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:7a:51:00:2f:fb:15:9b:d6:cb:fb:f0:5f:4e:47:2b:99:11:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Validity Not Before: Jun 2 00:58:16 2025 GMT Not After : Jun 1 01:03:16 2026 GMT Subject: CN=4BD1C2383E761B75A8AACCF64DBCA14333D001B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:76:5a:ef:19:e6:3e:bb:93:72:19:4b:70:0a: 04:72:bf:9c:52:81:82:4f:26:f4:c6:54:ce:8a:35: 49:69:3e:4a:1e:cd:67:7c:01:75:44:90:5d:ce:db: 7c:ba:fd:5b:d9:9b:68:c2:bf:1b:d1:af:74:b7:8b: df:de:9d:66:a3:23:f0:0e:87:a0:68:28:ad:fd:08: a8:5b:f9:e2:1c:67:e7:04:ff:b6:6b:e7:cd:f9:c4: 98:8c:21:64:97:e4:b0:97:13:82:8d:24:c8:f0:5e: 1f:ab:71:69:34:c9:21:45:a7:29:9b:62:ab:56:db: 48:b1:ae:8f:e3:20:d0:14:87:09:ef:5e:5c:27:3e: fd:15:dd:f2:e5:61:e8:fe:25:c0:dd:77:9e:5b:a1: f1:d1:2a:a5:49:b9:1e:7d:da:5c:56:1e:1a:ae:62: e3:70:0e:10:c4:90:ac:06:73:59:a9:1b:8d:11:f3: 89:99:2a:35:2e:24:39:46:0b:54:60:e1:e8:3f:a7: 90:e8:f5:cc:67:85:eb:f9:35:81:d3:f4:f8:88:b9: 46:23:ac:7b:6d:e2:22:60:c5:75:c3:04:28:fd:5c: 84:aa:7c:c0:a7:11:2b:0e:50:42:39:91:c5:19:3f: ff:13:90:23:c3:19:c3:29:04:8a:bf:1c:a7:f6:f7: d2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D1:C2:38:3E:76:1B:75:A8:AA:CC:F6:4D:BC:A1:43:33:D0:01:B6 X509v3 Authority Key Identifier: keyid:DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/323430363a363230303a3a2f33322d3438203d3e203233373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6200::/32 Signature Algorithm: sha256WithRSAEncryption a0:2e:70:40:43:8e:fa:65:d4:b2:ab:a1:dc:47:8a:21:de:90: df:f5:fe:9a:c4:69:be:b5:06:29:a7:f2:d5:39:8c:48:ed:b9: a4:5a:f3:65:19:60:cf:e3:46:03:b8:bc:1d:90:97:14:b2:49: b0:90:c5:a1:05:73:45:ed:55:f3:ba:48:db:f7:58:bd:dc:2e: 53:a1:40:de:3d:c9:ff:b3:32:09:53:9c:cb:67:9f:78:39:8c: 11:05:72:07:3b:d9:e5:4e:fc:a8:ec:2d:ba:05:79:fa:b8:f5: 33:78:94:1c:96:81:c9:b4:b0:a4:53:52:ca:96:29:c4:2a:13: d7:06:cb:50:52:8b:7c:d7:c3:bb:ce:c6:a0:ad:f9:cd:e9:e2: 77:21:60:55:c0:b1:30:ce:79:71:ad:f5:3a:8a:3b:1f:e0:a6: 80:79:80:2a:fc:eb:4e:cd:b7:67:6a:a3:87:eb:ad:e3:8b:1f: 88:3c:58:c8:12:ba:1e:c4:20:d5:e3:33:8e:77:53:cf:35:c9: 48:36:30:3f:b7:a2:e2:1f:b2:cf:64:9e:0f:6d:61:e3:bc:ae: ec:b4:b5:8a:9d:9c:e9:0e:16:25:08:e2:d0:18:5f:0f:9e:ca: 21:4b:d4:87:cc:de:d0:18:ad:30:47:4c:ac:5e:52:c6:d6:9f: 10:16:6a:f2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgITeHpRAC/7FZvWy/vwX05HK5kRiTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhEQkY1OTdFQTI5RUY4QTcwNjU2NDQ2QUY3NUNGMzNGMDYx OEU4MjgyMB4XDTI1MDYwMjAwNTgxNloXDTI2MDYwMTAxMDMxNlowMzExMC8GA1UE AxMoNEJEMUMyMzgzRTc2MUI3NUE4QUFDQ0Y2NERCQ0ExNDMzM0QwMDFCNjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPJ2Wu8Z5j67k3IZS3AKBHK/nFKB gk8m9MZUzoo1SWk+Sh7NZ3wBdUSQXc7bfLr9W9mbaMK/G9GvdLeL396dZqMj8A6H oGgorf0IqFv54hxn5wT/tmvnzfnEmIwhZJfksJcTgo0kyPBeH6txaTTJIUWnKZti q1bbSLGuj+Mg0BSHCe9eXCc+/RXd8uVh6P4lwN13nluh8dEqpUm5Hn3aXFYeGq5i 43AOEMSQrAZzWakbjRHziZkqNS4kOUYLVGDh6D+nkOj1zGeF6/k1gdP0+Ii5RiOs e23iImDFdcMEKP1chKp8wKcRKw5QQjmRxRk//xOQI8MZwykEir8cp/b30o0CAwEA AaOCAjEwggItMB0GA1UdDgQWBBRL0cI4PnYbdaiqzPZNvKFDM9ABtjAfBgNVHSME GDAWgBTb9ZfqKe+KcGVkRq91zzPwYY6CgjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Fk MGYxYTZlLTgzYjYtNDUzNC05NjdkLWY4ZGIzYzM3MTFmNC8wL0RCRjU5N0VBMjlF RjhBNzA2NTY0NDZBRjc1Q0YzM0YwNjE4RTgyODIuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9EQkY1OTdFQTI5RUY4QTcwNjU2NDQ2QUY3NUNGMzNGMDYxOEU4 MjgyLmNlcjCBoAYIKwYBBQUHAQsEgZMwgZAwgY0GCCsGAQUFBzALhoGAcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWQwZjFhNmUtODNiNi00NTM0LTk2 N2QtZjhkYjNjMzcxMWY0LzAvMzIzNDMwMzYzYTM2MzIzMDMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzIzMzM3MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGYgAwDQYJKoZIhvcN AQELBQADggEBAKAucEBDjvpl1LKrodxHiiHekN/1/prEab61Bimn8tU5jEjtuaRa 82UZYM/jRgO4vB2QlxSySbCQxaEFc0XtVfO6SNv3WL3cLlOhQN49yf+zMglTnMtn n3g5jBEFcgc72eVO/KjsLboFefq49TN4lByWgcm0sKRTUsqWKcQqE9cGy1BSi3zX w7vOxqCt+c3p4nchYFXAsTDOeXGt9TqKOx/gpoB5gCr8607Nt2dqo4frreOLH4g8 WMgSuh7EINXjM453U881yUg2MD+3ouIfss9kng9tYeO8ruy0tYqdnOkOFiUI4tAY Xw+eyiFL1IfM3tAYrTBHTKxeUsbWnxAWavI= -----END CERTIFICATE-----Generated at Sun Jun 8 02:35:27 2025 by rpki-client