$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: faD3B7SQ9gnCotifzlfHvwQWQYkhoK4nozj7gUdPqAE= Subject key identifier: 04:1C:1E:53:DE:E7:76:6E:6B:F9:58:73:F3:7D:0D:D6:DE:3E:F9:71 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 141C7874430E279951970B52C48E635B96F6FD3B Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 10 Jun 2025 22:00:01 +0000 ROA not before: Tue 10 Jun 2025 21:55:01 +0000 ROA not after: Tue 09 Jun 2026 22:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1c:78:74:43:0e:27:99:51:97:0b:52:c4:8e:63:5b:96:f6:fd:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 21:55:01 2025 GMT Not After : Jun 9 22:00:01 2026 GMT Subject: CN=041C1E53DEE7766E6BF95873F37D0DD6DE3EF971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:86:6d:4d:cc:2c:d0:bf:d6:2e:32:84:4b: ab:e2:c8:3d:de:25:f4:7a:5f:87:65:06:00:f6:16: ba:65:1b:c0:66:d4:8e:3a:54:0c:c7:6f:f9:b1:15: 23:92:41:fe:3a:02:7d:c3:d6:04:a3:f6:1d:dc:5b: 4b:66:6c:7c:a3:c8:e6:fb:bc:ee:05:16:1f:9f:57: 44:58:d9:c8:47:bd:ca:ed:b6:b4:5d:01:64:2d:c3: b4:ae:01:b5:df:6e:f4:d4:ac:e4:a7:18:d1:37:61: 1c:79:2c:bb:e8:38:70:86:75:0d:9b:38:f2:2e:5b: 2e:cb:8a:9c:0c:d2:ef:32:e6:22:22:53:94:62:ee: 79:57:49:c0:29:94:fc:96:20:95:b2:11:15:87:e6: 80:9b:89:d0:b9:5c:d1:aa:8d:1e:b2:13:c3:29:2f: f3:d8:fb:2f:9b:13:b9:f3:df:8a:0d:7f:ab:1d:f0: 62:40:7a:09:5d:04:ec:d0:8c:f5:34:89:09:4c:6b: 60:fa:77:35:ab:af:16:27:b0:24:ed:41:8b:bd:1f: da:e8:f0:05:bb:c5:f9:25:12:02:69:9a:78:e6:f3: 33:fd:7d:c7:8f:cb:bd:f5:9b:99:7a:ed:96:39:e5: d5:76:0f:fe:16:56:eb:74:fc:4f:bb:cd:38:8f:f5: 08:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1C:1E:53:DE:E7:76:6E:6B:F9:58:73:F3:7D:0D:D6:DE:3E:F9:71 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:4::/48 Signature Algorithm: sha256WithRSAEncryption 50:71:d3:6e:83:b8:01:83:1e:cf:0b:de:d1:1a:97:ec:c8:70: a3:1f:75:24:8f:5d:ed:34:9e:94:dc:93:19:d8:85:b7:34:54: dc:60:4f:71:87:d5:31:44:f2:76:cd:2f:f8:a9:b9:d3:78:81: 4e:3b:0e:d4:eb:6c:1f:04:fe:c6:e6:2d:b4:22:e5:78:b2:ef: e1:3c:0f:aa:6a:7a:b6:0f:10:98:ce:fd:f0:40:69:b8:69:bb: 89:9c:76:b9:81:1f:32:5a:95:54:7b:1f:d6:b4:23:40:31:f8: c3:94:c6:30:b8:fe:77:af:34:8f:50:66:66:f7:84:b9:ca:9b: 17:76:74:fb:95:a2:e9:5d:6d:e2:49:bc:77:ba:82:3e:d8:d4: 9b:d7:26:77:6a:33:92:d1:90:92:cd:63:b8:19:b8:05:91:f4: c9:1c:16:b9:ac:6a:c8:45:23:6c:74:b0:54:62:99:15:cb:20: 48:31:e0:d4:69:d4:92:12:76:c5:0f:32:66:c2:1c:85:c1:c0: c1:1e:bc:72:7e:e6:9f:a1:07:b3:49:4c:b3:cb:8d:56:b2:49: 13:19:ff:a0:c4:e4:9f:07:1b:b8:36:b3:94:ab:29:70:81:4f: 1a:58:25:17:ec:c6:64:40:66:cd:b5:2a:8a:5c:f0:44:f5:c5: d0:18:8e:8f -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUFBx4dEMOJ5lRlwtSxI5jW5b2/TswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMTU1MDFaFw0yNjA2MDkyMjAwMDFaMDMxMTAvBgNV BAMTKDA0MUMxRTUzREVFNzc2NkU2QkY5NTg3M0YzN0QwREQ2REUzRUY5NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxM4ZtTcws0L/WLjKES6viyD3e JfR6X4dlBgD2FrplG8Bm1I46VAzHb/mxFSOSQf46An3D1gSj9h3cW0tmbHyjyOb7 vO4FFh+fV0RY2chHvcrttrRdAWQtw7SuAbXfbvTUrOSnGNE3YRx5LLvoOHCGdQ2b OPIuWy7LipwM0u8y5iIiU5Ri7nlXScAplPyWIJWyERWH5oCbidC5XNGqjR6yE8Mp L/PY+y+bE7nz34oNf6sd8GJAegldBOzQjPU0iQlMa2D6dzWrrxYnsCTtQYu9H9ro 8AW7xfklEgJpmnjm8zP9fcePy731m5l67ZY55dV2D/4WVut0/E+7zTiP9QhbAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUBBweU97ndm5r+Vhz830N1t4++XEwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAEMA0G CSqGSIb3DQEBCwUAA4IBAQBQcdNug7gBgx7PC97RGpfsyHCjH3Ukj13tNJ6U3JMZ 2IW3NFTcYE9xh9UxRPJ2zS/4qbnTeIFOOw7U62wfBP7G5i20IuV4su/hPA+qanq2 DxCYzv3wQGm4abuJnHa5gR8yWpVUex/WtCNAMfjDlMYwuP53rzSPUGZm94S5ypsX dnT7laLpXW3iSbx3uoI+2NSb1yZ3ajOS0ZCSzWO4GbgFkfTJHBa5rGrIRSNsdLBU YpkVyyBIMeDUadSSEnbFDzJmwhyFwcDBHrxyfuafoQezSUyzy41WskkTGf+gxOSf Bxu4NrOUqylwgU8aWCUX7MZkQGbNtSqKXPBE9cXQGI6P -----END CERTIFICATE-----Generated at Mon Jun 16 12:06:56 2025 by rpki-client