$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: cNxojtFRbTuypkMRxYTwfO1RxocJaeoWhL6wfFV6dRc= Subject key identifier: B1:17:21:4E:0F:66:C9:BF:5C:CF:B9:EE:3A:34:ED:BE:AF:0D:B6:70 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 52DB78D80B72E05EF0F1E2B7316086F273EA9EFB Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 00:00:01 +0000 ROA not before: Tue 10 Jun 2025 23:55:01 +0000 ROA not after: Wed 10 Jun 2026 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:db:78:d8:0b:72:e0:5e:f0:f1:e2:b7:31:60:86:f2:73:ea:9e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 23:55:01 2025 GMT Not After : Jun 10 00:00:01 2026 GMT Subject: CN=B117214E0F66C9BF5CCFB9EE3A34EDBEAF0DB670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:a3:cb:2e:b9:6f:f5:40:62:de:ed:ea:d4: ea:94:9d:63:4c:b6:8b:8c:80:58:ce:33:64:96:c1: 60:43:ad:82:e6:c5:09:21:b9:b5:7a:7b:7b:9d:2e: 19:8c:ed:17:f1:28:de:70:ff:76:d0:a8:d9:f8:61: 9c:32:90:31:83:a5:e4:14:be:ae:d6:be:f0:bd:a4: 7f:28:f4:f3:f4:85:0e:d6:d0:7a:36:59:c3:06:b4: bc:5d:6b:5c:19:9a:25:fa:91:2b:7c:2b:b2:c8:b2: d2:35:78:2e:e6:5e:84:c5:1d:8c:4b:07:23:1c:66: d9:a6:7c:66:2d:36:61:5f:b6:b8:df:5b:cd:44:da: cd:a8:41:4a:30:75:b1:24:ec:db:14:50:bf:88:be: 61:54:61:d6:ca:aa:54:9c:06:d4:ca:e9:dd:ea:97: df:d9:85:dd:7b:7e:90:52:63:e1:b8:1e:3d:eb:d7: 3f:c9:41:4a:a9:6e:68:49:57:63:ea:b0:25:f0:f1: 91:bd:55:57:0e:cb:b0:07:d0:d7:8c:f2:d3:30:bd: 58:27:85:ee:70:4e:50:e1:db:85:0f:8b:66:3b:c9: 9f:61:b1:b1:d0:13:f4:c9:11:53:3c:19:1f:ff:61: 7a:ff:3c:a1:c3:11:6b:90:f8:92:5d:39:36:78:a7: 8b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:17:21:4E:0F:66:C9:BF:5C:CF:B9:EE:3A:34:ED:BE:AF:0D:B6:70 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a383a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:8::/48 Signature Algorithm: sha256WithRSAEncryption 3e:ac:fa:03:d0:13:e8:a2:55:4f:25:0d:7c:db:90:2e:0d:1a: 47:e1:71:dc:49:30:bf:1d:af:d0:50:c1:4b:04:07:db:15:b0: 04:2f:4c:c1:bb:7e:2e:99:fe:60:a8:a2:1e:56:f5:63:6d:7f: a9:1b:c5:61:1a:70:f4:ff:6c:db:97:c6:1c:88:c9:46:7b:d1: c0:42:80:6d:75:2c:10:a6:e5:7f:15:06:46:cc:85:b9:f9:db: 75:68:13:1d:c4:57:99:3f:6a:be:82:17:0b:b6:8c:fe:a6:bb: 2f:61:18:f7:ae:99:40:9e:f7:03:fa:b7:e0:4b:1d:cd:b7:db: dd:5f:a6:eb:cb:94:2d:78:73:f8:76:42:b3:3c:fa:ee:ae:16: 67:cb:82:41:5f:a9:e9:2b:d9:07:68:4a:92:7b:19:69:fa:2f: c8:cb:f6:b0:59:d3:12:c5:cd:02:3b:e4:f9:c8:ee:a0:93:b1: 37:fe:c5:c8:f3:ea:78:3c:70:78:28:9c:d7:46:65:a5:bb:4d: 1e:05:86:3f:76:b4:5d:14:e7:a4:a0:3d:cd:d9:92:5a:0b:9b: 1f:f9:f3:7a:8d:b5:16:ed:75:bc:e9:4a:bc:48:ea:00:07:f6: 90:01:0d:0d:c4:0c:4c:4a:71:f9:1c:1d:0c:1e:b2:02:53:54: d8:e4:78:f7 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUUtt42Aty4F7w8eK3MWCG8nPqnvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMzU1MDFaFw0yNjA2MTAwMDAwMDFaMDMxMTAvBgNV BAMTKEIxMTcyMTRFMEY2NkM5QkY1Q0NGQjlFRTNBMzRFREJFQUYwREI2NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2iaPLLrlv9UBi3u3q1OqUnWNM touMgFjOM2SWwWBDrYLmxQkhubV6e3udLhmM7RfxKN5w/3bQqNn4YZwykDGDpeQU vq7WvvC9pH8o9PP0hQ7W0Ho2WcMGtLxda1wZmiX6kSt8K7LIstI1eC7mXoTFHYxL ByMcZtmmfGYtNmFftrjfW81E2s2oQUowdbEk7NsUUL+IvmFUYdbKqlScBtTK6d3q l9/Zhd17fpBSY+G4Hj3r1z/JQUqpbmhJV2PqsCXw8ZG9VVcOy7AH0NeM8tMwvVgn he5wTlDh24UPi2Y7yZ9hsbHQE/TJEVM8GR//YXr/PKHDEWuQ+JJdOTZ4p4slAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUsRchTg9myb9cz7nuOjTtvq8NtnAwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAIMA0G CSqGSIb3DQEBCwUAA4IBAQA+rPoD0BPoolVPJQ1825AuDRpH4XHcSTC/Ha/QUMFL BAfbFbAEL0zBu34umf5gqKIeVvVjbX+pG8VhGnD0/2zbl8YciMlGe9HAQoBtdSwQ puV/FQZGzIW5+dt1aBMdxFeZP2q+ghcLtoz+prsvYRj3rplAnvcD+rfgSx3Nt9vd X6bry5QteHP4dkKzPPrurhZny4JBX6npK9kHaEqSexlp+i/Iy/awWdMSxc0CO+T5 yO6gk7E3/sXI8+p4PHB4KJzXRmWlu00eBYY/drRdFOekoD3N2ZJaC5sf+fN6jbUW 7XW86Uq8SOoAB/aQAQ0NxAxMSnH5HB0MHrICU1TY5Hj3 -----END CERTIFICATE-----Generated at Mon Jun 16 22:49:05 2025 by rpki-client