$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa File: 323430343a3162383a3a2f33322d3332203d3e2039373934.roa (raw, json) Hash identifier: k/I8HNY5UL3N9qfMkbuJioceyunMrR3e593Ng1B4jpM= Subject key identifier: 9B:EE:BF:4C:19:91:5C:3E:DC:CD:6B:EC:F8:60:3B:13:23:B0:60:0B Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 55682F186499E51750B492509F768B5BB77AC226 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 9794 IP address blocks: 2404:1b8::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:68:2f:18:64:99:e5:17:50:b4:92:50:9f:76:8b:5b:b7:7a:c2:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=9BEEBF4C19915C3EDCCD6BECF8603B1323B0600B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:ab:c1:57:fe:b0:17:cf:65:b3:a4:76:2e: 34:c0:4d:b1:44:05:4a:a4:f2:3a:7f:d2:bb:fc:78: f2:14:67:e1:e5:01:73:98:bf:01:05:21:a3:8d:7a: ad:bb:82:24:d5:cf:14:8c:e9:ef:0a:8b:87:24:9e: 7b:25:93:c9:7b:66:43:70:bf:33:39:8e:05:c0:8f: ad:8d:1d:fa:45:ee:1c:67:65:31:e5:0f:91:9a:2e: 47:8e:8f:0f:cb:35:12:4d:1d:87:00:31:f5:2c:cf: 5b:30:55:d4:98:ca:33:94:ea:c3:ff:0b:01:6c:ea: 62:c2:c9:4b:4a:45:09:08:f1:4f:3c:d7:8c:94:30: 80:01:bc:31:49:3a:48:1a:6e:83:44:09:05:4e:3a: 2f:33:24:62:a2:c9:91:74:75:d3:bb:b0:64:9e:06: 55:ea:d8:8b:96:2e:a6:4d:e3:6c:bc:a1:f9:84:10: bc:a1:43:58:27:6e:10:6f:78:ac:a0:b9:76:22:c2: 59:30:a4:01:ce:85:e7:a4:e3:65:ec:16:74:a3:c5: 81:64:a3:dd:97:56:bf:c4:f7:ae:f3:fe:d2:51:1d: 3c:53:c8:ff:4d:f6:8d:7d:92:94:41:33:8b:97:b3: 62:30:a3:09:18:a9:db:5e:c3:98:64:31:1a:33:04: 8a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:EE:BF:4C:19:91:5C:3E:DC:CD:6B:EC:F8:60:3B:13:23:B0:60:0B X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1b8::/32 Signature Algorithm: sha256WithRSAEncryption 74:01:45:ed:cf:63:2a:3a:5d:67:e6:0a:02:17:e8:14:91:f8: 84:0a:5c:19:7f:f1:60:e3:c0:77:d2:65:64:63:2b:54:9b:37: f2:7a:b7:52:d4:a4:1f:31:d2:ad:71:8c:70:ee:e6:6b:33:36: 69:6f:72:16:7c:9c:a8:74:3f:41:a5:13:22:00:b5:fe:bb:10: 78:a1:67:7d:bd:e1:57:b4:58:79:13:7a:c8:20:89:8c:de:da: 6d:12:92:5f:75:c8:ae:f3:c2:89:2a:64:51:5c:ae:66:90:5c: 22:87:4e:26:5d:e0:b7:21:c6:10:03:66:c7:1d:2d:6c:f0:82: 95:8a:b9:8a:36:9e:1f:48:d6:0c:03:cb:50:e8:fd:0d:bb:62: d2:f3:40:cf:bc:a2:d2:9a:46:35:e0:74:39:6f:af:2a:4d:0a: a2:93:de:95:66:35:46:6b:d4:96:3c:f6:b2:04:02:45:7b:01: ac:c6:86:e2:23:52:13:40:73:b8:b7:d4:64:b1:fa:34:18:c0: e4:1c:d2:e0:29:cd:be:b6:a7:65:4b:60:97:50:93:21:95:77: b5:f8:47:15:86:48:9b:a6:39:22:1b:c3:ee:0c:5e:c3:dd:f8: 98:83:9b:01:3e:70:c6:e0:62:48:a8:aa:1a:ec:f7:1b:61:64: da:71:48:ed -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUVWgvGGSZ5RdQtJJQn3aLW7d6wiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKDlCRUVCRjRDMTk5MTVDM0VEQ0NENkJFQ0Y4NjAzQjEzMjNCMDYwMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyC6vBV/6wF89ls6R2LjTATbFE BUqk8jp/0rv8ePIUZ+HlAXOYvwEFIaONeq27giTVzxSM6e8Ki4cknnslk8l7ZkNw vzM5jgXAj62NHfpF7hxnZTHlD5GaLkeOjw/LNRJNHYcAMfUsz1swVdSYyjOU6sP/ CwFs6mLCyUtKRQkI8U8814yUMIABvDFJOkgaboNECQVOOi8zJGKiyZF0ddO7sGSe BlXq2IuWLqZN42y8ofmEELyhQ1gnbhBveKyguXYiwlkwpAHOheek42XsFnSjxYFk o92XVr/E967z/tJRHTxTyP9N9o19kpRBM4uXs2IwowkYqdtew5hkMRozBIqzAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUm+6/TBmRXD7czWvs+GA7EyOwYAswHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzNDMwMzQzYTMxNjIzODNhM2EyZjMzMzIyZDMz MzIyMDNkM2UyMDM5MzczOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQBuDANBgkqhkiG9w0BAQsF AAOCAQEAdAFF7c9jKjpdZ+YKAhfoFJH4hApcGX/xYOPAd9JlZGMrVJs38nq3UtSk HzHSrXGMcO7mazM2aW9yFnycqHQ/QaUTIgC1/rsQeKFnfb3hV7RYeRN6yCCJjN7a bRKSX3XIrvPCiSpkUVyuZpBcIodOJl3gtyHGEANmxx0tbPCClYq5ijaeH0jWDAPL UOj9Dbti0vNAz7yi0ppGNeB0OW+vKk0KopPelWY1RmvUljz2sgQCRXsBrMaG4iNS E0BzuLfUZLH6NBjA5BzS4CnNvranZUtgl1CTIZV3tfhHFYZIm6Y5IhvD7gxew934 mIObAT5wxuBiSKiqGuz3G2Fk2nFI7Q== -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:08 2025 by rpki-client