$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a363a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a363a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: bPE6bDu9Ef8MJD3I8JtiqcEaiNrK9eXUIPr7b5XfsoQ= Subject key identifier: 46:69:CD:D1:8D:5C:A9:13:72:B8:45:4B:EF:B9:60:F6:F8:7E:95:9C Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 78CA1EC7F6CA0120C24DA6ECC1264F6F80B62369 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a363a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 00:00:01 +0000 ROA not before: Tue 10 Jun 2025 23:55:01 +0000 ROA not after: Wed 10 Jun 2026 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ca:1e:c7:f6:ca:01:20:c2:4d:a6:ec:c1:26:4f:6f:80:b6:23:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 23:55:01 2025 GMT Not After : Jun 10 00:00:01 2026 GMT Subject: CN=4669CDD18D5CA91372B8454BEFB960F6F87E959C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:df:c1:51:43:75:d8:c9:e7:4a:45:18:7b: 61:58:d1:90:c2:13:cc:a1:91:56:e8:b4:90:65:d3: 17:d5:a7:fa:d1:fa:b6:1e:7c:56:b8:bd:ad:1d:7a: 1d:b3:55:b4:4c:44:2d:a9:e8:46:82:19:3d:a8:ec: 7c:51:12:dc:d7:f7:9d:bf:04:7b:93:5e:1d:b5:a1: f7:e0:16:85:67:d6:92:bc:23:67:6a:fc:7f:9e:b8: 5e:df:54:77:c1:67:33:ea:98:93:85:4f:35:19:70: d6:69:3a:78:80:ad:cf:a5:f9:b0:94:0c:4f:95:12: bd:03:b4:d3:ee:80:14:d1:6d:73:4e:8d:fb:ed:f5: e9:b2:b7:8e:ac:ab:cf:54:87:c8:65:b2:c7:31:32: 51:33:63:94:d4:c8:e5:92:ba:02:85:4f:ae:b5:98: 37:b6:dd:67:39:66:30:d4:81:da:f3:0b:0f:70:85: 57:a8:84:e2:50:ee:34:8b:37:bc:66:03:c9:28:31: ae:07:ea:38:47:5a:46:a0:5f:00:57:c6:b3:5f:1b: 65:d2:d7:41:fa:b6:37:df:1c:8b:58:b0:3e:c5:8d: d8:49:99:8c:fa:bf:81:49:14:26:ef:09:76:61:12: f4:18:5a:c9:30:8b:c1:ba:79:08:cf:8c:7e:ad:9b: fe:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:69:CD:D1:8D:5C:A9:13:72:B8:45:4B:EF:B9:60:F6:F8:7E:95:9C X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a363a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:6::/48 Signature Algorithm: sha256WithRSAEncryption 0b:3b:e0:67:20:c5:6f:cb:18:e0:e7:8c:d8:99:61:e6:70:cd: f4:82:1b:d0:1e:42:87:e2:e2:62:39:ed:be:ea:43:53:41:68: 34:f9:60:c3:a2:f6:b8:45:b3:f2:66:4b:c4:7e:d2:a4:de:f3: ab:da:cb:75:b4:01:ec:93:d8:03:e0:f0:55:15:68:83:b5:33: 04:f2:d2:21:9c:c6:02:c2:d9:80:e6:c1:fa:5d:f2:6e:76:de: ec:d0:a9:73:fb:74:a0:24:a3:a0:f7:96:cb:67:13:16:97:11: d2:0c:02:88:b6:78:09:74:52:ca:73:47:0a:c2:01:54:03:0d: 6a:44:42:f2:b7:5b:c1:95:a0:2b:b7:96:cc:db:73:d3:20:0d: f3:5e:20:22:0d:98:8f:bd:b3:11:84:32:8f:13:ee:1e:51:f3: 99:00:d6:37:36:3c:02:1b:94:d4:53:e0:a1:b3:3a:85:f5:84: e5:1c:73:66:71:1d:48:2c:48:bf:2a:dc:2f:33:13:bf:da:df: a1:63:82:70:ca:7a:b9:82:ac:70:51:fe:69:6c:2a:fc:4a:7e: 60:8e:dc:dd:f1:71:34:2e:cd:32:3d:e6:d3:25:fd:0b:f7:14: 20:33:c1:97:c4:1c:9c:c7:53:57:9a:4a:16:c7:01:27:33:1c: ed:6f:17:4e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUeMoex/bKASDCTabswSZPb4C2I2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMzU1MDFaFw0yNjA2MTAwMDAwMDFaMDMxMTAvBgNV BAMTKDQ2NjlDREQxOEQ1Q0E5MTM3MkI4NDU0QkVGQjk2MEY2Rjg3RTk1OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93d/BUUN12MnnSkUYe2FY0ZDC E8yhkVbotJBl0xfVp/rR+rYefFa4va0deh2zVbRMRC2p6EaCGT2o7HxREtzX952/ BHuTXh21offgFoVn1pK8I2dq/H+euF7fVHfBZzPqmJOFTzUZcNZpOniArc+l+bCU DE+VEr0DtNPugBTRbXNOjfvt9emyt46sq89Uh8hlsscxMlEzY5TUyOWSugKFT661 mDe23Wc5ZjDUgdrzCw9whVeohOJQ7jSLN7xmA8koMa4H6jhHWkagXwBXxrNfG2XS 10H6tjffHItYsD7FjdhJmYz6v4FJFCbvCXZhEvQYWskwi8G6eQjPjH6tm/5JAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQURmnN0Y1cqRNyuEVL77lg9vh+lZwwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAGMA0G CSqGSIb3DQEBCwUAA4IBAQALO+BnIMVvyxjg54zYmWHmcM30ghvQHkKH4uJiOe2+ 6kNTQWg0+WDDova4RbPyZkvEftKk3vOr2st1tAHsk9gD4PBVFWiDtTME8tIhnMYC wtmA5sH6XfJudt7s0Klz+3SgJKOg95bLZxMWlxHSDAKItngJdFLKc0cKwgFUAw1q RELyt1vBlaArt5bM23PTIA3zXiAiDZiPvbMRhDKPE+4eUfOZANY3NjwCG5TUU+Ch szqF9YTlHHNmcR1ILEi/KtwvMxO/2t+hY4Jwynq5gqxwUf5pbCr8Sn5gjtzd8XE0 Ls0yPebTJf0L9xQgM8GXxBycx1NXmkoWxwEnMxztbxdO -----END CERTIFICATE-----Generated at Mon Jun 16 13:15:13 2025 by rpki-client