$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: nZc6cYZrjvSy/T5i1TOdhXT8xcbF7MziY29QnAs1ftk= Subject key identifier: 48:85:5A:61:F4:B8:09:E5:55:D3:DE:7B:DC:5D:82:06:34:37:E4:25 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 287A03C41951EE04D2F90AE9C60CACFF0C5C47ED Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 01:00:01 +0000 ROA not before: Wed 11 Jun 2025 00:55:01 +0000 ROA not after: Wed 10 Jun 2026 01:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:7a:03:c4:19:51:ee:04:d2:f9:0a:e9:c6:0c:ac:ff:0c:5c:47:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 11 00:55:01 2025 GMT Not After : Jun 10 01:00:01 2026 GMT Subject: CN=48855A61F4B809E555D3DE7BDC5D82063437E425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fd:83:65:4e:43:a5:37:f3:6b:b9:26:6c:29: 65:4b:07:04:78:d3:86:c6:d6:94:83:72:37:4b:c6: 20:07:85:b1:ad:3e:a8:0e:86:61:90:d0:46:5e:a4: 01:01:07:4e:63:f9:1a:c0:b0:6c:58:e1:d2:a0:da: f7:8c:e1:49:71:4d:5b:19:e6:7b:ad:73:40:e7:9f: 64:56:4b:43:ad:2c:d4:68:90:6a:7c:3c:43:44:45: d5:2e:ab:0d:7b:51:6c:d7:1b:07:dd:49:ff:b2:14: b5:46:bc:4f:99:c6:eb:87:25:45:30:7f:17:d5:4a: c9:10:90:8c:a8:f1:74:78:d6:be:fe:3d:fc:db:02: 4b:93:f7:1d:06:e2:f7:3d:cc:01:15:77:61:b8:c9: 56:34:cf:5f:1a:ce:fd:93:74:b2:fd:fc:ff:a1:a3: 37:a3:39:66:20:c7:1e:3f:df:3b:23:0c:9f:58:ff: a6:7d:95:5b:c3:af:be:fb:3c:b0:01:1a:1c:68:ca: 2e:94:37:9b:16:bd:57:8e:a9:bf:79:ae:19:01:13: 20:74:34:3f:70:78:4c:d8:ef:3d:7e:26:16:2b:40: ba:84:25:a7:af:ad:4e:f1:35:62:cf:2b:12:b4:26: 4b:a2:11:d9:b1:2a:b6:4c:82:f8:13:43:cd:88:52: 29:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:85:5A:61:F4:B8:09:E5:55:D3:DE:7B:DC:5D:82:06:34:37:E4:25 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a313a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:1::/48 Signature Algorithm: sha256WithRSAEncryption ba:2d:73:50:11:3d:f3:c5:61:86:66:d8:df:29:b4:55:46:4a: df:9c:7d:c5:14:ee:4c:b2:17:32:a3:06:1f:9e:1e:71:e9:9b: 62:91:64:b1:b1:5f:fc:74:38:41:ea:69:73:59:8f:88:6f:21: e2:16:9c:14:c4:75:1d:0c:3c:b7:f6:60:bb:92:74:10:fb:f0: e6:43:0f:42:23:d9:85:8f:34:52:17:b0:b5:ec:92:39:60:b1: 41:21:2c:24:22:74:e5:64:4b:94:ef:f3:27:51:ed:76:56:38: c6:a4:23:cd:4e:3e:5a:c7:d1:9b:bc:be:90:b2:51:d6:f3:74: 4c:06:04:c3:89:8b:af:3b:e0:f7:8f:e9:91:25:0a:c7:71:64: 2d:32:27:54:62:2e:85:c0:bd:ba:80:bc:16:d4:04:74:ef:87: 08:b8:0a:6b:f7:ab:27:0f:4f:98:07:f5:6c:d3:c7:25:ae:7e: 4c:a0:aa:be:44:6f:2e:de:70:4a:ed:6d:d9:7f:90:41:7d:d8: e6:d7:e4:b0:2c:34:87:e2:9d:eb:6f:6f:16:3e:41:81:60:6b: cd:68:bc:7a:f5:85:d3:ec:5d:ba:4e:f1:7d:1d:b9:71:ed:8b: 0c:de:ad:f2:e8:11:ee:2e:2f:e4:59:4d:82:ae:af:9f:24:f4: ea:97:f7:d3 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUKHoDxBlR7gTS+Qrpxgys/wxcR+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTEwMDU1MDFaFw0yNjA2MTAwMTAwMDFaMDMxMTAvBgNV BAMTKDQ4ODU1QTYxRjRCODA5RTU1NUQzREU3QkRDNUQ4MjA2MzQzN0U0MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe/YNlTkOlN/NruSZsKWVLBwR4 04bG1pSDcjdLxiAHhbGtPqgOhmGQ0EZepAEBB05j+RrAsGxY4dKg2veM4UlxTVsZ 5nutc0Dnn2RWS0OtLNRokGp8PENERdUuqw17UWzXGwfdSf+yFLVGvE+ZxuuHJUUw fxfVSskQkIyo8XR41r7+PfzbAkuT9x0G4vc9zAEVd2G4yVY0z18azv2TdLL9/P+h ozejOWYgxx4/3zsjDJ9Y/6Z9lVvDr777PLABGhxoyi6UN5sWvVeOqb95rhkBEyB0 ND9weEzY7z1+JhYrQLqEJaevrU7xNWLPKxK0JkuiEdmxKrZMgvgTQ82IUil7AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUSIVaYfS4CeVV09573F2CBjQ35CUwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAABMA0G CSqGSIb3DQEBCwUAA4IBAQC6LXNQET3zxWGGZtjfKbRVRkrfnH3FFO5MshcyowYf nh5x6ZtikWSxsV/8dDhB6mlzWY+IbyHiFpwUxHUdDDy39mC7knQQ+/DmQw9CI9mF jzRSF7C17JI5YLFBISwkInTlZEuU7/MnUe12VjjGpCPNTj5ax9GbvL6QslHW83RM BgTDiYuvO+D3j+mRJQrHcWQtMidUYi6FwL26gLwW1AR074cIuApr96snD0+YB/Vs 08clrn5MoKq+RG8u3nBK7W3Zf5BBfdjm1+SwLDSH4p3rb28WPkGBYGvNaLx69YXT 7F26TvF9Hblx7YsM3q3y6BHuLi/kWU2Crq+fJPTql/fT -----END CERTIFICATE-----Generated at Mon Jun 16 11:55:36 2025 by rpki-client