$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: 6zirYA01N689Nqbvv0qoHOKTgryGFV+JjoQOhDDTjxM= Subject key identifier: 66:2A:6E:2B:94:67:49:82:D1:CC:26:B7:ED:82:CB:DE:84:48:0A:0D Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 1F3B41EB07ABA604EB1B0E08F2264E9EF05266C8 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 01:00:01 +0000 ROA not before: Wed 11 Jun 2025 00:55:01 +0000 ROA not after: Wed 10 Jun 2026 01:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 04:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:3b:41:eb:07:ab:a6:04:eb:1b:0e:08:f2:26:4e:9e:f0:52:66:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 11 00:55:01 2025 GMT Not After : Jun 10 01:00:01 2026 GMT Subject: CN=662A6E2B94674982D1CC26B7ED82CBDE84480A0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:bd:9d:82:ac:8e:31:f3:71:a1:06:af:8e:98: 04:fc:4a:13:79:b8:6a:cc:00:70:31:d3:f9:fb:4f: 4d:2b:40:d7:95:45:c1:a0:77:8f:3d:d7:15:4a:33: c2:7e:21:d9:57:d1:88:cd:24:02:37:42:5c:99:07: 73:e5:d3:ad:da:ed:90:19:0b:71:91:05:4f:0f:c2: da:63:75:16:f3:8a:ab:30:5a:58:34:cd:d4:8a:b5: b4:2b:97:98:9a:11:99:dd:ab:b8:a0:e3:8f:17:df: 15:6d:5d:73:a7:d0:c9:de:80:86:b9:40:3e:9e:81: 5b:18:bf:2e:68:08:5f:fb:4a:87:fb:a2:5e:ca:e4: 56:bd:84:2f:dd:60:f0:74:24:5b:84:0d:76:26:90: 8a:4e:7b:4a:30:67:e8:df:6b:f4:85:96:bd:2c:4a: b5:c3:b1:3e:7f:67:30:f8:af:4e:77:48:24:38:bd: 0c:45:33:e7:ee:4b:2d:59:af:74:f4:6a:6a:97:ea: 87:d7:6b:48:ed:19:64:53:9e:f6:98:43:56:62:e7: ea:1d:21:bc:c2:c9:b4:1a:23:26:ba:64:c3:c4:cf: 1c:58:15:88:29:f9:0e:a7:4a:29:6a:53:72:a4:fc: e8:bb:87:37:c3:b0:2b:cb:88:01:4c:48:0d:cb:28: 34:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2A:6E:2B:94:67:49:82:D1:CC:26:B7:ED:82:CB:DE:84:48:0A:0D X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a623a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:b::/48 Signature Algorithm: sha256WithRSAEncryption 47:cb:a0:34:a3:e4:03:98:6c:cd:97:7f:1e:3c:d3:a6:f9:44: 6a:23:96:74:f2:a3:43:29:37:e4:e6:37:84:10:4a:5d:c6:cc: 74:9a:46:b5:65:ca:49:66:88:f2:b4:f8:c6:aa:19:92:25:14: 8a:d9:53:b6:bb:30:9e:4b:7c:9c:ac:be:c8:ec:b4:66:f7:ee: 8d:0a:45:d5:4a:fe:cf:2c:9e:1e:17:db:f1:a1:d3:ce:18:e4: fb:03:99:6a:5c:89:13:c0:f3:da:c3:dd:f5:c7:4c:01:66:43: 48:5f:e5:e2:26:77:cd:d1:fd:28:3b:47:80:91:e6:ea:00:74: cc:73:b2:60:27:c2:db:d3:13:d0:25:aa:7d:e8:da:b9:00:96: 45:19:7e:4d:68:91:fe:12:76:32:e1:bf:f0:b3:93:db:46:a4: 2d:5a:38:d7:af:0c:f4:7d:cc:aa:81:a0:83:35:01:6e:45:98: 50:62:c1:53:d8:b4:1e:39:4f:8b:61:9c:55:45:ed:10:a1:5d: 30:6b:78:e5:f5:80:c1:97:de:d1:f9:cf:c3:2a:e1:7a:4f:18: f5:1c:3d:bd:b9:14:3f:2e:a1:2d:73:8e:7c:13:08:2b:c8:88: 9f:92:cb:f4:d6:13:18:b2:01:4d:33:54:8b:b9:aa:d0:ff:a0: 1b:d3:a7:f7 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHztB6werpgTrGw4I8iZOnvBSZsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTEwMDU1MDFaFw0yNjA2MTAwMTAwMDFaMDMxMTAvBgNV BAMTKDY2MkE2RTJCOTQ2NzQ5ODJEMUNDMjZCN0VEODJDQkRFODQ0ODBBMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtvZ2CrI4x83GhBq+OmAT8ShN5 uGrMAHAx0/n7T00rQNeVRcGgd4891xVKM8J+IdlX0YjNJAI3QlyZB3Pl063a7ZAZ C3GRBU8PwtpjdRbziqswWlg0zdSKtbQrl5iaEZndq7ig448X3xVtXXOn0MnegIa5 QD6egVsYvy5oCF/7Sof7ol7K5Fa9hC/dYPB0JFuEDXYmkIpOe0owZ+jfa/SFlr0s SrXDsT5/ZzD4r053SCQ4vQxFM+fuSy1Zr3T0amqX6ofXa0jtGWRTnvaYQ1Zi5+od IbzCybQaIya6ZMPEzxxYFYgp+Q6nSilqU3Kk/Oi7hzfDsCvLiAFMSA3LKDRdAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUZipuK5RnSYLRzCa37YLL3oRICg0wHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAALMA0G CSqGSIb3DQEBCwUAA4IBAQBHy6A0o+QDmGzNl38ePNOm+URqI5Z08qNDKTfk5jeE EEpdxsx0mka1ZcpJZojytPjGqhmSJRSK2VO2uzCeS3ycrL7I7LRm9+6NCkXVSv7P LJ4eF9vxodPOGOT7A5lqXIkTwPPaw931x0wBZkNIX+XiJnfN0f0oO0eAkebqAHTM c7JgJ8Lb0xPQJap96Nq5AJZFGX5NaJH+EnYy4b/ws5PbRqQtWjjXrwz0fcyqgaCD NQFuRZhQYsFT2LQeOU+LYZxVRe0QoV0wa3jl9YDBl97R+c/DKuF6Txj1HD29uRQ/ LqEtc458EwgryIifksv01hMYsgFNM1SLuarQ/6Ab06f3 -----END CERTIFICATE-----Generated at Wed Nov 5 03:31:16 2025 by rpki-client