$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: i7q93rEECACxYevunjJ10DOEQaKFHxHDUN0ypMUhiP8= Subject key identifier: E8:B2:7E:BF:9F:58:E1:81:3C:5E:4B:5C:9D:12:07:73:0E:D3:95:C6 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 71D66C6F67F6D0EF8CDD2745F385E24D9496D2EE Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 00:00:01 +0000 ROA not before: Tue 10 Jun 2025 23:55:01 +0000 ROA not after: Wed 10 Jun 2026 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 04:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:d6:6c:6f:67:f6:d0:ef:8c:dd:27:45:f3:85:e2:4d:94:96:d2:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 23:55:01 2025 GMT Not After : Jun 10 00:00:01 2026 GMT Subject: CN=E8B27EBF9F58E1813C5E4B5C9D1207730ED395C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:54:7a:20:33:04:24:f8:6b:c5:3d:61:45: 55:fa:73:2f:8f:5e:50:53:7b:e1:31:c5:17:1e:42: 7d:33:d3:20:70:ea:3a:ed:20:8f:f1:23:9b:7b:77: e9:5a:6c:29:70:6e:01:ec:26:1e:87:ae:10:08:49: f5:9a:72:cd:d1:e6:4e:12:5b:99:a2:e7:8d:f8:97: 05:64:1c:39:f2:68:85:c9:f3:ad:35:21:d3:6d:b9: 5e:e5:14:39:1a:15:f1:32:42:8a:0a:bd:45:2c:2b: d0:10:c1:6b:30:15:bb:3b:35:db:dc:58:d1:cc:e2: 85:5c:11:e5:32:63:45:75:6d:a3:ac:a4:d1:bc:6d: 88:a1:86:d8:45:c5:7c:cd:0e:ee:84:0c:e3:e5:a1: a5:2a:44:21:96:a0:2a:59:79:78:97:3e:f3:b2:88: 7c:3d:f3:b5:17:ea:da:ab:4d:7e:2c:2a:8f:0f:ed: 77:da:db:7b:16:ee:b2:f4:37:e6:6f:75:62:0c:b8: 03:65:33:34:5a:02:c6:65:3f:1e:9b:2b:e4:ae:b6: 06:28:69:62:64:63:bb:1e:d2:a6:a3:8b:9a:09:37: 67:fc:04:76:f9:32:90:4e:62:c9:33:92:87:68:95: 48:b8:33:3c:d4:91:1f:6d:9e:f9:12:37:35:9d:b2: f5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B2:7E:BF:9F:58:E1:81:3C:5E:4B:5C:9D:12:07:73:0E:D3:95:C6 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:5::/48 Signature Algorithm: sha256WithRSAEncryption a3:47:ab:a1:eb:a5:5e:53:7f:a5:ee:4a:a0:e2:97:87:d1:2f: f4:d5:14:31:60:6f:78:d3:8d:ef:b5:e4:8c:08:78:c0:04:c5: 3a:7d:86:de:c0:4e:c6:73:db:8d:00:8d:ea:9c:c8:d2:6f:c1: ee:47:3b:ae:49:c9:8c:15:0c:8c:d4:30:e3:be:10:c6:e6:77: f1:e2:1a:5d:3a:29:0b:fd:50:ab:81:b9:18:18:5d:da:6f:10: cf:88:85:26:34:21:0e:b7:29:83:7c:ff:02:a4:7a:44:8e:4b: ef:2d:ef:46:ea:c0:0e:1a:f8:e8:8e:80:e1:90:24:ab:f1:16: b8:7e:2a:41:a6:a5:b9:d8:e9:64:9d:89:7f:d1:12:70:77:b9: 4c:13:67:a8:f8:46:14:78:ea:1a:73:40:46:82:0a:53:f9:67: 33:05:8f:a3:3c:3a:44:d4:9f:94:9c:9e:82:b9:13:c7:f1:46: fe:95:d1:6c:5b:40:2c:29:c0:20:d7:82:86:26:f8:6f:db:1b: ef:10:ae:14:73:09:6f:8e:9d:f6:1d:9f:f7:2f:22:28:62:c8: 88:33:6a:66:7d:29:42:81:a7:7f:2f:3b:c1:3d:b3:b0:bd:32: 1a:9d:3c:ed:6a:58:b0:0e:15:1f:12:28:3e:37:78:70:03:f5: 3d:fb:88:da -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcdZsb2f20O+M3SdF84XiTZSW0u4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMzU1MDFaFw0yNjA2MTAwMDAwMDFaMDMxMTAvBgNV BAMTKEU4QjI3RUJGOUY1OEUxODEzQzVFNEI1QzlEMTIwNzczMEVEMzk1QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+RVR6IDMEJPhrxT1hRVX6cy+P XlBTe+ExxRceQn0z0yBw6jrtII/xI5t7d+labClwbgHsJh6HrhAISfWacs3R5k4S W5mi5434lwVkHDnyaIXJ8601IdNtuV7lFDkaFfEyQooKvUUsK9AQwWswFbs7Ndvc WNHM4oVcEeUyY0V1baOspNG8bYihhthFxXzNDu6EDOPloaUqRCGWoCpZeXiXPvOy iHw987UX6tqrTX4sKo8P7Xfa23sW7rL0N+ZvdWIMuANlMzRaAsZlPx6bK+SutgYo aWJkY7se0qaji5oJN2f8BHb5MpBOYskzkodolUi4MzzUkR9tnvkSNzWdsvXvAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU6LJ+v59Y4YE8XktcnRIHcw7TlcYwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAFMA0G CSqGSIb3DQEBCwUAA4IBAQCjR6uh66VeU3+l7kqg4peH0S/01RQxYG94043vteSM CHjABMU6fYbewE7Gc9uNAI3qnMjSb8HuRzuuScmMFQyM1DDjvhDG5nfx4hpdOikL /VCrgbkYGF3abxDPiIUmNCEOtymDfP8CpHpEjkvvLe9G6sAOGvjojoDhkCSr8Ra4 fipBpqW52OlknYl/0RJwd7lME2eo+EYUeOoac0BGggpT+WczBY+jPDpE1J+UnJ6C uRPH8Ub+ldFsW0AsKcAg14KGJvhv2xvvEK4Ucwlvjp32HZ/3LyIoYsiIM2pmfSlC gad/LzvBPbOwvTIanTztaliwDhUfEig+N3hwA/U9+4ja -----END CERTIFICATE-----Generated at Wed Nov 5 03:31:02 2025 by rpki-client