$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: pVidZjmRMEyfb4QZzJlTuqxCYUUKrVoqHsTt+CmtaVU= Subject key identifier: 5B:F3:1E:63:B2:CF:0E:6B:8A:3B:DB:25:C3:80:DD:45:BD:79:3F:82 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 7E48DA8C313E184024F9833E1EFF9D198058B916 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 11 Jun 2025 00:00:01 +0000 ROA not before: Tue 10 Jun 2025 23:55:01 +0000 ROA not after: Wed 10 Jun 2026 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:48:da:8c:31:3e:18:40:24:f9:83:3e:1e:ff:9d:19:80:58:b9:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jun 10 23:55:01 2025 GMT Not After : Jun 10 00:00:01 2026 GMT Subject: CN=5BF31E63B2CF0E6B8A3BDB25C380DD45BD793F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:bd:95:5f:ac:c0:3e:4c:84:af:a1:67:9e: d0:45:b2:5e:a3:1d:af:57:46:7d:b8:2e:f1:20:c3: f0:78:a7:cb:57:96:22:26:b2:57:40:cb:d2:9b:1d: 4f:07:7f:68:ec:61:bb:b6:58:24:9b:62:69:f4:56: 0f:de:b4:37:b5:42:b5:61:15:3b:09:f7:63:6a:0b: 39:be:17:16:fc:12:72:4f:5f:c1:35:44:b1:3f:3f: f3:06:8e:44:dc:87:2e:2c:9a:ec:94:ab:c6:c7:6f: b2:a4:c1:0a:d8:77:1c:1f:1f:f9:a8:7a:ac:43:9e: d4:36:6d:0c:2c:90:6f:2d:86:e6:73:3b:e2:f9:6f: 50:5f:ff:2a:6a:24:51:be:87:bb:59:0b:44:b0:88: 91:87:fd:55:22:0f:67:ca:9c:d1:67:70:33:e0:69: 15:e1:42:6a:fe:6c:0b:77:a9:25:86:f4:58:a1:99: b6:ff:ce:fa:18:b5:5c:9e:8d:7a:bb:82:6a:db:50: 92:0e:4b:ae:97:3b:1a:51:e2:7e:3a:87:28:a2:31: dc:fe:26:27:16:28:59:62:aa:33:37:98:4d:b7:fa: 71:c7:a0:af:fe:52:7a:d0:9c:d1:7e:b6:23:45:88: 5c:e9:75:a4:63:cf:99:91:c7:50:35:52:3b:20:88: 78:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F3:1E:63:B2:CF:0E:6B:8A:3B:DB:25:C3:80:DD:45:BD:79:3F:82 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:d::/48 Signature Algorithm: sha256WithRSAEncryption 45:ef:6c:c8:8b:14:4b:9d:3f:1d:c0:60:34:06:44:b3:b5:f3: 99:0d:06:58:b0:48:4b:dd:ba:bc:11:cc:1b:8b:fa:53:f8:59: d1:fb:56:2d:9f:a9:19:ad:c5:71:c6:fa:6d:82:b2:68:4c:29: 1e:48:12:46:2c:c2:5d:24:ba:8a:70:c2:d4:44:b3:16:93:1c: 06:48:f5:ce:36:d7:4d:65:ae:41:19:2e:9a:d2:e3:50:9d:ae: 01:96:b0:37:0a:5c:c4:54:8c:1f:ad:47:41:ba:c1:e6:e2:1e: 70:80:e6:3d:0a:75:fd:d3:27:b2:fe:7c:83:e8:cf:43:5e:7f: 9b:e0:18:cd:aa:b7:58:e8:25:d6:ce:25:80:a6:b3:b5:4a:e5: 47:e2:6e:d5:99:d7:4d:14:6a:34:b0:2f:93:33:1a:17:ac:bd: ef:c6:f8:9f:35:4a:83:0c:71:01:0a:d3:f0:d8:ce:d5:10:18: 28:81:9e:10:42:62:87:b4:af:90:34:8c:b2:33:4a:7b:31:18: 56:80:fe:90:2b:90:fb:4c:0c:08:92:fa:13:49:6f:2e:c1:09: 42:01:80:67:9e:86:ec:27:52:22:bf:a9:b7:26:56:26:11:65: 57:11:3d:d1:c9:17:79:7f:02:ac:1f:f7:b2:8c:3b:85:c4:59: 69:03:aa:f9 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfkjajDE+GEAk+YM+Hv+dGYBYuRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNTA2MTAyMzU1MDFaFw0yNjA2MTAwMDAwMDFaMDMxMTAvBgNV BAMTKDVCRjMxRTYzQjJDRjBFNkI4QTNCREIyNUMzODBERDQ1QkQ3OTNGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Jr2VX6zAPkyEr6FnntBFsl6j Ha9XRn24LvEgw/B4p8tXliImsldAy9KbHU8Hf2jsYbu2WCSbYmn0Vg/etDe1QrVh FTsJ92NqCzm+Fxb8EnJPX8E1RLE/P/MGjkTchy4smuyUq8bHb7KkwQrYdxwfH/mo eqxDntQ2bQwskG8thuZzO+L5b1Bf/ypqJFG+h7tZC0SwiJGH/VUiD2fKnNFncDPg aRXhQmr+bAt3qSWG9Fihmbb/zvoYtVyejXq7gmrbUJIOS66XOxpR4n46hyiiMdz+ JicWKFliqjM3mE23+nHHoK/+UnrQnNF+tiNFiFzpdaRjz5mRx1A1UjsgiHhVAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUW/MeY7LPDmuKO9slw4DdRb15P4IwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAANMA0G CSqGSIb3DQEBCwUAA4IBAQBF72zIixRLnT8dwGA0BkSztfOZDQZYsEhL3bq8Ecwb i/pT+FnR+1Ytn6kZrcVxxvptgrJoTCkeSBJGLMJdJLqKcMLURLMWkxwGSPXONtdN Za5BGS6a0uNQna4BlrA3ClzEVIwfrUdBusHm4h5wgOY9CnX90yey/nyD6M9DXn+b 4BjNqrdY6CXWziWAprO1SuVH4m7VmddNFGo0sC+TMxoXrL3vxvifNUqDDHEBCtPw 2M7VEBgogZ4QQmKHtK+QNIyyM0p7MRhWgP6QK5D7TAwIkvoTSW8uwQlCAYBnnobs J1Iiv6m3JlYmEWVXET3RyRd5fwKsH/eyjDuFxFlpA6r5 -----END CERTIFICATE-----Generated at Mon Jun 16 11:47:20 2025 by rpki-client