$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: Db738PYKMfnjCsWp0zW/vau7QQCmHZfS9iciM+ixnns= Subject key identifier: BD:F4:A2:DD:CC:3F:8A:DB:B8:3D:08:EC:74:0B:06:36:13:7A:39:97 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 638197559775E941E5F1007455A0109C30974A46 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 01:00:01 +0000 ROA not before: Wed 11 Jun 2025 00:55:01 +0000 ROA not after: Wed 10 Jun 2026 01:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:81:97:55:97:75:e9:41:e5:f1:00:74:55:a0:10:9c:30:97:4a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 11 00:55:01 2025 GMT Not After : Jun 10 01:00:01 2026 GMT Subject: CN=BDF4A2DDCC3F8ADBB83D08EC740B0636137A3997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a5:42:57:63:7f:2d:5d:a9:5e:db:b2:e5:22: 86:89:d2:be:a3:42:4e:81:7a:04:56:8f:28:08:9d: 14:da:e5:90:1b:79:22:7b:1e:41:7b:72:c6:6a:b4: 9d:51:0c:50:d6:a9:a8:b9:47:6a:0f:8e:d8:08:7b: b3:78:4d:2e:15:37:18:8d:c3:03:03:6a:d7:a6:63: 4d:8c:72:c7:1a:ce:29:f1:8e:78:b7:20:ad:e4:4a: c1:55:3f:e7:8b:25:f1:cd:89:31:67:cf:fb:98:09: b6:c1:8d:a6:b8:81:33:03:e5:7f:c3:86:ad:33:41: a1:d0:0c:b2:e5:12:ca:b2:00:3e:ff:7f:c7:db:03: 51:53:4e:05:65:ee:82:c6:d0:20:38:51:78:2d:a6: a1:ba:55:54:6d:df:54:66:aa:db:cd:b9:2c:d3:7c: b6:fa:88:b1:f5:49:cb:cb:ba:53:8e:4a:f9:9f:c4: b0:8d:f6:6c:05:76:1c:87:04:07:04:ba:0c:44:a3: 5c:3c:37:d5:85:37:f1:2b:19:12:90:78:ad:9d:fc: 99:6c:17:2c:05:1d:f0:50:95:e8:20:46:93:ae:9a: 95:03:9c:fa:37:98:f8:11:8c:ca:2c:8d:2c:2b:7b: b8:6d:27:6f:31:50:b1:8a:6e:7c:04:fa:0d:f7:ce: b9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F4:A2:DD:CC:3F:8A:DB:B8:3D:08:EC:74:0B:06:36:13:7A:39:97 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a323a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:2::/48 Signature Algorithm: sha256WithRSAEncryption 3a:c7:68:0b:e4:50:27:b2:6f:ee:d4:f5:82:c7:82:60:b9:9c: 6b:d8:18:55:bb:67:8a:5d:3d:31:f3:ea:72:13:fe:c1:7f:9c: 9f:85:28:d9:5e:77:2c:0f:0e:08:66:d7:8b:b7:a3:29:a4:60: 0b:6a:31:51:13:63:af:59:1f:d9:e3:1f:74:b2:b1:e6:11:03: fd:7e:64:7f:b8:aa:be:15:ca:c2:b2:65:04:8f:ac:ad:f9:fc: a3:f1:38:27:79:dc:31:45:60:be:8a:af:7e:f1:1a:87:49:ef: 74:9c:f6:d2:83:da:3c:39:62:53:0c:75:07:26:27:a1:fc:63: aa:bc:b4:1c:1e:39:6d:81:46:ac:ae:70:8d:d4:db:91:b6:f3: 7e:8c:65:92:be:01:b6:53:53:d9:a2:1e:7a:d2:8c:82:93:35: 37:04:ad:40:db:ce:f5:6d:21:eb:0b:27:32:09:84:bf:de:0b: 19:a9:d0:d4:cf:10:06:a9:0a:89:54:cb:5a:6d:ab:8f:53:88: 6b:d3:b1:80:7c:df:9b:76:74:d9:fb:07:30:5c:74:80:21:50: 0b:ca:10:c5:df:6d:6a:f1:d2:03:f0:f9:2f:7a:e0:49:89:40: 77:14:52:f3:b9:f1:2b:2e:b8:9b:54:1f:15:5b:b0:55:4c:04: 09:96:26:06 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUY4GXVZd16UHl8QB0VaAQnDCXSkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTEwMDU1MDFaFw0yNjA2MTAwMTAwMDFaMDMxMTAvBgNV BAMTKEJERjRBMkREQ0MzRjhBREJCODNEMDhFQzc0MEIwNjM2MTM3QTM5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDepUJXY38tXale27LlIoaJ0r6j Qk6BegRWjygInRTa5ZAbeSJ7HkF7csZqtJ1RDFDWqai5R2oPjtgIe7N4TS4VNxiN wwMDatemY02Mcscazinxjni3IK3kSsFVP+eLJfHNiTFnz/uYCbbBjaa4gTMD5X/D hq0zQaHQDLLlEsqyAD7/f8fbA1FTTgVl7oLG0CA4UXgtpqG6VVRt31RmqtvNuSzT fLb6iLH1ScvLulOOSvmfxLCN9mwFdhyHBAcEugxEo1w8N9WFN/ErGRKQeK2d/Jls FywFHfBQleggRpOumpUDnPo3mPgRjMosjSwre7htJ28xULGKbnwE+g33zrkPAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUvfSi3cw/itu4PQjsdAsGNhN6OZcwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAACMA0G CSqGSIb3DQEBCwUAA4IBAQA6x2gL5FAnsm/u1PWCx4JguZxr2BhVu2eKXT0x8+py E/7Bf5yfhSjZXncsDw4IZteLt6MppGALajFRE2OvWR/Z4x90srHmEQP9fmR/uKq+ FcrCsmUEj6yt+fyj8TgnedwxRWC+iq9+8RqHSe90nPbSg9o8OWJTDHUHJieh/GOq vLQcHjltgUasrnCN1NuRtvN+jGWSvgG2U1PZoh560oyCkzU3BK1A2871bSHrCycy CYS/3gsZqdDUzxAGqQqJVMtabauPU4hr07GAfN+bdnTZ+wcwXHSAIVALyhDF321q 8dID8PkveuBJiUB3FFLzufErLribVB8VW7BVTAQJliYG -----END CERTIFICATE-----Generated at Mon Jun 16 13:02:55 2025 by rpki-client