$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: kEcqvyKu+Zkux8FQxMAzUUB0W3JAQgD/UVYvfBGL4lI= Subject key identifier: A0:98:5B:A2:22:55:29:3B:CE:54:83:1B:8D:99:79:03:10:C5:9B:75 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 7BE002EC2A902F0235D8628F986662BDA417ACED Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 00:00:01 +0000 ROA not before: Tue 10 Jun 2025 23:55:01 +0000 ROA not after: Wed 10 Jun 2026 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:e0:02:ec:2a:90:2f:02:35:d8:62:8f:98:66:62:bd:a4:17:ac:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 23:55:01 2025 GMT Not After : Jun 10 00:00:01 2026 GMT Subject: CN=A0985BA22255293BCE54831B8D99790310C59B75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:87:03:7f:8c:a4:0f:a7:b4:f5:ee:3a:07:f2: 20:5f:a2:de:88:ee:c2:96:d9:43:b1:26:ca:98:02: a0:85:89:78:6d:eb:1a:ac:26:48:58:18:2b:35:5b: a8:bd:00:ee:fa:b0:5e:ca:1a:5a:76:8a:24:5f:8f: 18:4d:55:1b:3e:7d:ee:9f:3f:9a:ea:13:37:a2:59: 6f:ff:17:1e:33:8b:18:ab:93:06:2d:b1:e2:c4:54: a6:a9:13:00:92:45:68:ea:9a:8c:8e:8d:80:b8:0b: 94:e2:e8:7f:e2:9a:8a:36:0a:4b:f6:73:29:af:f4: 0a:1f:cf:b2:17:36:6f:64:f0:88:69:c0:fe:27:73: aa:dc:77:c7:d2:49:fe:46:76:02:60:18:73:af:b1: 22:79:cb:11:5f:8e:a5:ed:bc:5d:a2:b8:91:4c:bc: 16:56:0a:86:6f:ad:91:ef:75:8b:19:61:1e:f1:bb: ba:34:c9:c0:68:a0:19:e6:78:43:1c:f0:5b:22:65: b6:8c:e9:96:d3:22:a0:fc:4a:85:60:33:df:91:2a: 66:7b:fb:30:c5:7d:5c:9b:04:0a:d0:9f:3e:0e:ff: 78:2d:27:f8:4c:cc:dc:5b:d0:31:0a:51:a0:12:0b: 28:23:19:26:c2:d4:f9:73:11:27:bd:50:c7:cf:96: 4b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:98:5B:A2:22:55:29:3B:CE:54:83:1B:8D:99:79:03:10:C5:9B:75 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:9::/48 Signature Algorithm: sha256WithRSAEncryption 5c:42:77:c8:7a:f1:0f:5c:d7:75:e6:04:5b:ef:ec:9e:ac:a1: b5:ce:3a:1b:45:12:5c:e3:48:d4:aa:79:c6:37:8f:eb:13:59: 96:23:fc:49:0c:3f:77:85:56:e9:a7:a0:79:5f:7d:d2:29:9d: 85:09:fe:f0:17:45:fc:66:9c:f8:c1:85:06:24:be:9f:c5:18: 4b:11:52:6a:dc:2d:de:56:37:b4:f9:17:c9:e2:57:2e:bd:f2: be:31:6d:44:7b:3c:ec:3f:48:11:14:1b:0c:c5:8b:0b:68:de: 3d:82:83:b1:28:ad:b4:09:bc:c5:5f:8b:47:53:fd:5e:76:29: e4:7b:5e:b4:c9:88:71:d9:e2:26:bd:c3:59:e9:36:1d:8d:62: e0:08:91:27:d3:00:3a:f3:b8:3c:db:f7:87:85:ac:fe:60:a6: 78:5e:1b:ee:07:c4:33:ba:33:dc:97:3d:fa:c2:fb:98:bc:00: cd:93:a5:d8:fc:23:3d:5b:31:5a:aa:02:35:bf:d1:b7:cd:37: 88:38:b0:ea:1e:a9:fc:49:c4:d3:48:fe:88:ad:ce:f5:eb:76: 3d:13:d9:a7:56:b1:b0:9b:97:01:93:32:c6:64:75:51:28:92: ba:26:36:01:84:e6:32:af:fc:8b:65:cb:4e:a1:f2:9c:1a:fa: f1:a4:db:bb -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUe+AC7CqQLwI12GKPmGZivaQXrO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMzU1MDFaFw0yNjA2MTAwMDAwMDFaMDMxMTAvBgNV BAMTKEEwOTg1QkEyMjI1NTI5M0JDRTU0ODMxQjhEOTk3OTAzMTBDNTlCNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqhwN/jKQPp7T17joH8iBfot6I 7sKW2UOxJsqYAqCFiXht6xqsJkhYGCs1W6i9AO76sF7KGlp2iiRfjxhNVRs+fe6f P5rqEzeiWW//Fx4zixirkwYtseLEVKapEwCSRWjqmoyOjYC4C5Ti6H/imoo2Ckv2 cymv9Aofz7IXNm9k8IhpwP4nc6rcd8fSSf5GdgJgGHOvsSJ5yxFfjqXtvF2iuJFM vBZWCoZvrZHvdYsZYR7xu7o0ycBooBnmeEMc8FsiZbaM6ZbTIqD8SoVgM9+RKmZ7 +zDFfVybBArQnz4O/3gtJ/hMzNxb0DEKUaASCygjGSbC1PlzESe9UMfPlkvRAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUoJhboiJVKTvOVIMbjZl5AxDFm3UwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAJMA0G CSqGSIb3DQEBCwUAA4IBAQBcQnfIevEPXNd15gRb7+yerKG1zjobRRJc40jUqnnG N4/rE1mWI/xJDD93hVbpp6B5X33SKZ2FCf7wF0X8Zpz4wYUGJL6fxRhLEVJq3C3e Vje0+RfJ4lcuvfK+MW1EezzsP0gRFBsMxYsLaN49goOxKK20CbzFX4tHU/1edink e160yYhx2eImvcNZ6TYdjWLgCJEn0wA687g82/eHhaz+YKZ4XhvuB8QzujPclz36 wvuYvADNk6XY/CM9WzFaqgI1v9G3zTeIOLDqHqn8ScTTSP6Irc7163Y9E9mnVrGw m5cBkzLGZHVRKJK6JjYBhOYyr/yLZctOofKcGvrxpNu7 -----END CERTIFICATE-----Generated at Mon Jun 16 13:12:52 2025 by rpki-client