$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: lCkk60deKpIyk2+URSWpsIxSx+TemC7/bF8ihLvR4/M= Subject key identifier: 1D:70:00:17:E9:D2:34:03:29:E7:76:2E:D3:CD:C6:83:70:D1:24:96 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 35B28B1768B59A0002C53FEC76BEAC58D6FABA82 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f34382d3438203d3e203338373533.roa Signing time: Mon 16 Jun 2025 05:03:20 +0000 ROA not before: Mon 16 Jun 2025 04:58:20 +0000 ROA not after: Mon 15 Jun 2026 05:03:20 +0000 asID: 38753 IP address blocks: 2401:ae00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 09:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b2:8b:17:68:b5:9a:00:02:c5:3f:ec:76:be:ac:58:d6:fa:ba:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 16 04:58:20 2025 GMT Not After : Jun 15 05:03:20 2026 GMT Subject: CN=1D700017E9D2340329E7762ED3CDC68370D12496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bf:b7:f6:75:8d:c7:17:f1:c4:a0:37:2e:ba: 4b:b9:9a:60:83:2d:b2:90:5e:7b:31:d4:60:81:33: c6:57:a2:ce:7a:b1:19:e2:e2:94:90:33:31:32:85: 5f:a4:b5:87:41:42:aa:05:62:85:ed:3f:31:cc:27: 8a:c8:de:21:69:f1:24:37:76:89:0a:c0:90:3e:4e: 8b:c0:ba:a9:88:6d:1d:3b:f4:5d:c0:75:fa:29:25: d1:81:7e:76:99:13:00:eb:4d:cc:eb:8b:fa:3b:ce: 88:d9:74:fd:70:f6:0b:0b:01:dc:fa:68:63:64:7a: 27:91:5c:2e:ee:b4:75:95:00:c0:c9:4b:38:94:e3: bf:50:cf:b2:61:e7:60:57:f3:8a:12:d1:29:0c:6b: 7b:a4:76:69:95:fc:5b:9a:2d:2a:c7:ed:cb:7b:ec: ba:98:d2:a6:30:07:68:14:88:01:5c:a8:57:cb:35: aa:2c:bd:88:7d:0f:ef:2b:50:2a:09:1a:c1:ac:59: 7a:cc:a0:fe:5c:8c:4b:ed:10:7e:ca:8c:07:a6:83: 7e:86:0d:75:36:cc:de:27:06:55:36:c3:19:14:f8: 58:52:5c:fb:6b:a7:3a:c0:0b:f7:e7:ad:36:48:4d: e0:cf:76:f9:21:96:c2:31:fa:71:3f:79:45:2b:9c: 15:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:70:00:17:E9:D2:34:03:29:E7:76:2E:D3:CD:C6:83:70:D1:24:96 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00::/48 Signature Algorithm: sha256WithRSAEncryption 29:d1:38:cb:ff:7d:8d:80:2a:e9:3a:0b:94:e4:a4:19:e7:23: 10:37:af:33:82:d6:c0:95:b4:d5:64:34:48:86:a9:09:3e:08: ac:8d:05:d8:01:fe:07:7c:03:f9:a7:b7:31:1c:89:0e:7e:50: 26:e9:d9:59:6e:70:b7:5c:24:33:c7:88:6a:9d:7f:db:11:c1: 24:19:7b:5e:58:33:13:b5:62:2b:6b:7b:2e:ce:54:a3:96:d2: 15:ed:39:94:8e:45:c3:72:64:00:c3:b2:8f:8c:df:90:2a:8d: 44:cb:5e:79:63:52:2e:5d:64:04:e6:3a:61:dd:d1:4f:28:ba: d3:de:5c:50:c8:a5:81:20:d1:65:cb:1b:78:de:2b:ca:df:3c: c4:0e:b4:5c:07:6e:1b:c4:5b:93:92:9b:54:66:9f:cf:8f:cb: 81:5b:e6:3a:4e:2b:57:a4:10:b5:5c:79:07:0c:de:07:15:4e: a7:3e:93:f4:fb:87:70:41:3c:b0:13:8a:51:ad:02:4c:fc:03: 15:ca:6d:e6:26:a3:0e:28:4d:3b:f0:dd:bc:de:15:19:54:c5: b5:a2:cc:1e:0c:d0:b6:5d:69:0e:4b:c3:d7:11:eb:27:2d:d2: 44:02:d9:1f:a6:aa:71:0d:7e:95:e8:61:78:b7:49:b2:07:69: c9:a5:88:2a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNbKLF2i1mgACxT/sdr6sWNb6uoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA2MTYwNDU4MjBaFw0yNjA2MTUwNTAzMjBaMDMxMTAvBgNV BAMTKDFENzAwMDE3RTlEMjM0MDMyOUU3NzYyRUQzQ0RDNjgzNzBEMTI0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChv7f2dY3HF/HEoDcuuku5mmCD LbKQXnsx1GCBM8ZXos56sRni4pSQMzEyhV+ktYdBQqoFYoXtPzHMJ4rI3iFp8SQ3 dokKwJA+TovAuqmIbR079F3AdfopJdGBfnaZEwDrTczri/o7zojZdP1w9gsLAdz6 aGNkeieRXC7utHWVAMDJSziU479Qz7Jh52BX84oS0SkMa3ukdmmV/FuaLSrH7ct7 7LqY0qYwB2gUiAFcqFfLNaosvYh9D+8rUCoJGsGsWXrMoP5cjEvtEH7KjAemg36G DXU2zN4nBlU2wxkU+FhSXPtrpzrAC/fnrTZITeDPdvkhlsIx+nE/eUUrnBXnAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUHXAAF+nSNAMp53Yu083Gg3DRJJYwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAa4AAAAwDQYJKoZI hvcNAQELBQADggEBACnROMv/fY2AKuk6C5TkpBnnIxA3rzOC1sCVtNVkNEiGqQk+ CKyNBdgB/gd8A/mntzEciQ5+UCbp2VlucLdcJDPHiGqdf9sRwSQZe15YMxO1Yitr ey7OVKOW0hXtOZSORcNyZADDso+M35AqjUTLXnljUi5dZATmOmHd0U8outPeXFDI pYEg0WXLG3jeK8rfPMQOtFwHbhvEW5OSm1Rmn8+Py4Fb5jpOK1ekELVceQcM3gcV Tqc+k/T7h3BBPLATilGtAkz8AxXKbeYmow4oTTvw3bzeFRlUxbWizB4M0LZdaQ5L w9cR6yct0kQC2R+mqnENfpXoYXi3SbIHacmliCo= -----END CERTIFICATE-----Generated at Mon Jun 16 19:09:46 2025 by rpki-client