$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: NyDO9FJwB4qHqXlOJwvyA1JZ6k7WjGaLX2/BABJyBIU= Subject key identifier: A2:99:24:02:FD:ED:C1:DF:F1:1B:1E:FF:49:77:FB:04:A7:F0:B8:44 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 25D7382B185C8976B11423C741D05BBFAD809028 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 10 Jun 2025 23:00:01 +0000 ROA not before: Tue 10 Jun 2025 22:55:01 +0000 ROA not after: Tue 09 Jun 2026 23:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:d7:38:2b:18:5c:89:76:b1:14:23:c7:41:d0:5b:bf:ad:80:90:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 22:55:01 2025 GMT Not After : Jun 9 23:00:01 2026 GMT Subject: CN=A2992402FDEDC1DFF11B1EFF4977FB04A7F0B844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cd:3a:8a:5a:29:44:56:46:33:cd:01:f3:c3: df:b8:d7:59:20:b0:cd:3f:2b:73:6b:da:c1:67:d3: b9:33:53:34:cc:a2:05:06:47:67:8c:00:aa:ca:b1: 76:3c:e9:c8:52:14:29:55:7b:60:e3:a2:c1:cd:ef: 6a:eb:16:f8:1f:8f:2d:33:5e:75:7e:6c:98:7e:af: 3a:ab:5c:d2:f3:69:88:94:ff:e4:5c:00:cf:97:c8: 81:b9:75:63:b4:fe:7d:2e:c9:3e:17:e3:54:81:34: b2:09:86:a3:d9:bb:05:75:e0:82:92:a0:6e:e2:f2: bc:8b:9a:3d:09:79:d5:b0:58:03:f3:2f:9f:5e:17: 0e:f9:bf:46:37:cd:99:a2:e7:c0:03:e2:f2:11:26: 8a:9d:f5:d8:7c:8b:e2:58:11:d2:c6:f5:10:32:1b: 44:80:75:89:d6:9e:87:21:a8:55:28:3d:dc:36:e2: e2:53:0b:56:9c:38:15:e5:3c:40:5d:3c:c1:84:ff: 72:d6:5c:c3:f9:be:0e:c3:00:5c:1f:0c:42:d4:58: 9f:01:57:45:5e:06:3c:8b:5c:e1:79:08:de:2d:d8: a1:dd:d5:7c:a5:fa:00:87:f8:78:41:c4:c8:3b:26: c0:c4:a5:9e:2b:03:45:3a:75:1b:3d:1e:15:b1:b3: ed:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:99:24:02:FD:ED:C1:DF:F1:1B:1E:FF:49:77:FB:04:A7:F0:B8:44 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:3::/48 Signature Algorithm: sha256WithRSAEncryption 93:f6:03:09:0f:9d:10:f3:8b:de:a9:4c:01:07:55:47:3d:39: b7:6d:74:da:bb:17:3c:db:08:99:68:f8:6a:01:fe:99:4b:79: c4:e9:90:6f:56:a5:98:8d:b3:79:c1:9d:8a:4e:10:31:b7:42: 8a:b9:31:c5:68:88:e1:1b:a7:ae:7c:97:ed:34:c7:68:b8:6a: e3:7b:26:2a:b7:d3:3a:24:56:55:57:e6:60:52:fc:56:5a:7e: 8a:0f:8f:ff:c9:2e:c0:6a:47:e2:90:80:47:61:b8:01:a3:ce: 4b:d5:26:2c:4e:12:bc:fd:94:20:de:85:78:cc:c1:a2:6e:89: 4a:67:3b:0f:ad:db:1a:8f:b5:be:ca:a3:7b:92:83:2e:5c:01: de:0a:67:7c:d5:e5:15:d4:6b:62:10:9a:65:9a:dd:da:8d:68: 05:20:b0:d8:77:4e:07:d2:40:45:9a:20:5a:81:e8:9e:5c:0c: bd:d4:94:17:f2:8d:09:17:71:aa:1c:67:99:9d:b4:e2:e6:36: 5b:eb:bc:40:c3:d3:dd:60:08:88:ee:f3:b2:bc:fa:b2:a9:5b: 7b:e8:ba:08:90:2f:d4:8b:4d:d0:b4:7f:fa:93:b1:6e:64:1a: f8:1b:97:06:7c:63:8f:d4:cb:ed:ef:8e:4f:90:ba:9d:22:d9: 87:c6:62:9f -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUJdc4KxhciXaxFCPHQdBbv62AkCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMjU1MDFaFw0yNjA2MDkyMzAwMDFaMDMxMTAvBgNV BAMTKEEyOTkyNDAyRkRFREMxREZGMTFCMUVGRjQ5NzdGQjA0QTdGMEI4NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5zTqKWilEVkYzzQHzw9+411kg sM0/K3Nr2sFn07kzUzTMogUGR2eMAKrKsXY86chSFClVe2DjosHN72rrFvgfjy0z XnV+bJh+rzqrXNLzaYiU/+RcAM+XyIG5dWO0/n0uyT4X41SBNLIJhqPZuwV14IKS oG7i8ryLmj0JedWwWAPzL59eFw75v0Y3zZmi58AD4vIRJoqd9dh8i+JYEdLG9RAy G0SAdYnWnochqFUoPdw24uJTC1acOBXlPEBdPMGE/3LWXMP5vg7DAFwfDELUWJ8B V0VeBjyLXOF5CN4t2KHd1Xyl+gCH+HhBxMg7JsDEpZ4rA0U6dRs9HhWxs+01AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUopkkAv3twd/xGx7/SXf7BKfwuEQwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAADMA0G CSqGSIb3DQEBCwUAA4IBAQCT9gMJD50Q84veqUwBB1VHPTm3bXTauxc82wiZaPhq Af6ZS3nE6ZBvVqWYjbN5wZ2KThAxt0KKuTHFaIjhG6eufJftNMdouGrjeyYqt9M6 JFZVV+ZgUvxWWn6KD4//yS7AakfikIBHYbgBo85L1SYsThK8/ZQg3oV4zMGibolK ZzsPrdsaj7W+yqN7koMuXAHeCmd81eUV1GtiEJplmt3ajWgFILDYd04H0kBFmiBa geieXAy91JQX8o0JF3GqHGeZnbTi5jZb67xAw9PdYAiI7vOyvPqyqVt76LoIkC/U i03QtH/6k7FuZBr4G5cGfGOP1Mvt745PkLqdItmHxmKf -----END CERTIFICATE-----Generated at Mon Jun 16 12:09:31 2025 by rpki-client