$ rpki-client -vvf krill.syd-au.infininet.com.au/repo/BGP-Exchange/0/323430313a323036303a623030303a3a2f34382d3438203d3e203234333831.roa File: 323430313a323036303a623030303a3a2f34382d3438203d3e203234333831.roa (raw, json) Hash identifier: a0dJHkfL1qOi86Rtbo/BgTh1nVGDgN86oA5QV/DsT+E= Subject key identifier: 47:39:FB:23:3C:F5:13:DE:71:DA:18:38:53:3C:13:4B:80:C9:83:9F Certificate issuer: /CN=3C63FBDA23EE1D2BFADB806544E553DDBA294ACF Certificate serial: 16AD78B4E642A16F9109BA038E34FE2F00E9B8E6 Authority key identifier: 3C:63:FB:DA:23:EE:1D:2B:FA:DB:80:65:44:E5:53:DD:BA:29:4A:CF Authority info access: rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/3C63FBDA23EE1D2BFADB806544E553DDBA294ACF.cer Subject info access: rsync://krill.syd-au.infininet.com.au/repo/BGP-Exchange/0/323430313a323036303a623030303a3a2f34382d3438203d3e203234333831.roa Signing time: Wed 04 Jun 2025 16:13:31 +0000 ROA not before: Wed 04 Jun 2025 16:08:31 +0000 ROA not after: Wed 03 Jun 2026 16:13:31 +0000 asID: 24381 IP address blocks: 2401:2060:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://krill.syd-au.infininet.com.au/repo/BGP-Exchange/0/3C63FBDA23EE1D2BFADB806544E553DDBA294ACF.crl rsync://krill.syd-au.infininet.com.au/repo/BGP-Exchange/0/3C63FBDA23EE1D2BFADB806544E553DDBA294ACF.mft rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/3C63FBDA23EE1D2BFADB806544E553DDBA294ACF.cer rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.crl rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/11F98F3F8DD4F55CC7FFB7A4BACC656E0D193D1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EfmPP43U9VzH_7ekusxlbg0ZPR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 13:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ad:78:b4:e6:42:a1:6f:91:09:ba:03:8e:34:fe:2f:00:e9:b8:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C63FBDA23EE1D2BFADB806544E553DDBA294ACF Validity Not Before: Jun 4 16:08:31 2025 GMT Not After : Jun 3 16:13:31 2026 GMT Subject: CN=4739FB233CF513DE71DA1838533C134B80C9839F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1d:cf:06:a6:ee:af:fc:2f:1e:41:0b:ca:ae: 07:34:3d:de:4a:d9:fe:90:5d:40:c5:24:6a:a8:27: 21:9c:19:13:5f:d4:6f:03:22:b3:0d:78:69:fa:ad: ff:44:47:5a:98:5d:7b:40:f2:1b:c1:fe:1d:21:1c: c3:98:d0:f4:2a:ba:34:73:ba:4b:b2:d0:a4:f2:34: bb:79:84:01:d2:94:f4:5d:5d:b4:c7:82:28:7b:49: 58:88:4c:e8:9f:93:cf:60:81:04:dc:4a:c3:d6:78: 20:86:14:79:bb:eb:9a:a7:6e:ec:13:b7:68:6c:94: 1a:60:6c:af:a5:06:b8:80:8a:a3:e9:71:31:b5:a7: 72:e5:7d:5b:5c:10:63:5a:23:a4:86:c6:52:63:93: 6f:04:59:16:4d:86:da:f9:d9:12:dc:2f:a2:55:37: c0:aa:78:2c:8e:34:1d:92:a6:db:6b:8b:8a:a1:ea: 6f:ec:44:be:fe:fe:90:4d:1d:99:30:a5:8b:b3:02: 1f:63:2e:76:bb:53:49:f3:45:7e:c0:a2:6b:9f:58: 77:39:7f:c3:8a:05:23:4c:f3:9c:68:6f:21:8a:a2: 45:ff:1f:f7:1c:d8:73:21:e9:00:c9:9f:1f:f3:f2: 1d:fc:64:21:bc:48:04:8b:43:ee:3b:05:2c:76:9b: 70:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:39:FB:23:3C:F5:13:DE:71:DA:18:38:53:3C:13:4B:80:C9:83:9F X509v3 Authority Key Identifier: keyid:3C:63:FB:DA:23:EE:1D:2B:FA:DB:80:65:44:E5:53:DD:BA:29:4A:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.syd-au.infininet.com.au/repo/BGP-Exchange/0/3C63FBDA23EE1D2BFADB806544E553DDBA294ACF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.sub.apnic.net/repository/A9150E4D0000/0/3C63FBDA23EE1D2BFADB806544E553DDBA294ACF.cer Subject Information Access: Signed Object - URI:rsync://krill.syd-au.infininet.com.au/repo/BGP-Exchange/0/323430313a323036303a623030303a3a2f34382d3438203d3e203234333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2060:b000::/48 Signature Algorithm: sha256WithRSAEncryption 94:3b:5e:43:91:de:97:6d:07:85:c1:42:d7:64:e3:fd:55:33: 60:2f:0b:4b:af:30:5c:c8:a5:fe:8d:d4:a1:86:d3:86:2c:02: 31:58:0d:8e:5a:6e:9f:97:22:eb:06:8b:95:8a:95:08:02:ec: ad:5f:67:88:2c:c9:4f:6c:4b:bb:ed:4c:81:cd:db:62:2f:e9: 80:8c:9a:00:16:ea:d5:a3:56:0d:7a:85:58:5f:60:d2:c5:40: b8:14:93:96:86:41:e0:34:0d:17:b6:07:46:e0:c4:e3:d7:3a: ec:57:79:69:c3:60:5e:2c:ff:86:2a:a7:8b:66:9d:db:52:e1: a9:c8:28:bd:89:a2:60:d8:23:4e:75:5c:bf:de:4f:23:1c:46: 9d:1d:92:7b:59:51:1e:f0:f4:ae:6e:7d:46:f9:06:dd:fb:80: 72:1c:19:bb:5c:ee:79:ad:e6:bd:e4:84:64:d0:18:5b:25:6e: 94:aa:1f:a1:91:52:47:69:ec:73:d1:fc:f3:47:f8:2d:7d:8c: ea:1b:84:e1:ee:8d:df:89:2e:f3:25:93:7e:e5:72:28:62:a4: af:9b:1c:70:91:95:4a:ec:a3:36:2d:52:76:c3:74:0d:13:2f: aa:d8:35:59:a1:e3:70:e6:39:76:55:ff:86:87:93:19:35:ab: ce:54:4e:78 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgIUFq14tOZCoW+RCboDjjT+LwDpuOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M2M0ZCREEyM0VFMUQyQkZBREI4MDY1NDRFNTUzRERC QTI5NEFDRjAeFw0yNTA2MDQxNjA4MzFaFw0yNjA2MDMxNjEzMzFaMDMxMTAvBgNV BAMTKDQ3MzlGQjIzM0NGNTEzREU3MURBMTgzODUzM0MxMzRCODBDOTgzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZHc8Gpu6v/C8eQQvKrgc0Pd5K 2f6QXUDFJGqoJyGcGRNf1G8DIrMNeGn6rf9ER1qYXXtA8hvB/h0hHMOY0PQqujRz ukuy0KTyNLt5hAHSlPRdXbTHgih7SViITOifk89ggQTcSsPWeCCGFHm765qnbuwT t2hslBpgbK+lBriAiqPpcTG1p3LlfVtcEGNaI6SGxlJjk28EWRZNhtr52RLcL6JV N8CqeCyONB2Spttri4qh6m/sRL7+/pBNHZkwpYuzAh9jLna7U0nzRX7AomufWHc5 f8OKBSNM85xobyGKokX/H/cc2HMh6QDJnx/z8h38ZCG8SASLQ+47BSx2m3DXAgMB AAGjggIoMIICJDAdBgNVHQ4EFgQURzn7Izz1E95x2hg4UzwTS4DJg58wHwYDVR0j BBgwFoAUPGP72iPuHSv624BlROVT3bopSs8wDgYDVR0PAQH/BAQDAgeAMHcGA1Ud HwRwMG4wbKBqoGiGZnJzeW5jOi8va3JpbGwuc3lkLWF1LmluZmluaW5ldC5jb20u YXUvcmVwby9CR1AtRXhjaGFuZ2UvMC8zQzYzRkJEQTIzRUUxRDJCRkFEQjgwNjU0 NEU1NTNEREJBMjk0QUNGLmNybDB9BggrBgEFBQcBAQRxMG8wbQYIKwYBBQUHMAKG YXJzeW5jOi8vcnBraS5zdWIuYXBuaWMubmV0L3JlcG9zaXRvcnkvQTkxNTBFNEQw MDAwLzAvM0M2M0ZCREEyM0VFMUQyQkZBREI4MDY1NDRFNTUzRERCQTI5NEFDRi5j ZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6Ly9rcmls bC5zeWQtYXUuaW5maW5pbmV0LmNvbS5hdS9yZXBvL0JHUC1FeGNoYW5nZS8wLzMy MzQzMDMxM2EzMjMwMzYzMDNhNjIzMDMwMzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNl MjAzMjM0MzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsG AQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEgYLAAMA0GCSqGSIb3DQEBCwUAA4IB AQCUO15Dkd6XbQeFwULXZOP9VTNgLwtLrzBcyKX+jdShhtOGLAIxWA2OWm6flyLr BouVipUIAuytX2eILMlPbEu77UyBzdtiL+mAjJoAFurVo1YNeoVYX2DSxUC4FJOW hkHgNA0XtgdG4MTj1zrsV3lpw2BeLP+GKqeLZp3bUuGpyCi9iaJg2CNOdVy/3k8j HEadHZJ7WVEe8PSubn1G+Qbd+4ByHBm7XO55rea95IRk0BhbJW6Uqh+hkVJHaexz 0fzzR/gtfYzqG4Th7o3fiS7zJZN+5XIoYqSvmxxwkZVK7KM2LVJ2w3QNEy+q2DVZ oeNw5jl2Vf+Gh5MZNavOVE54 -----END CERTIFICATE-----Generated at Mon Jun 16 02:34:16 2025 by rpki-client