$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: mFGkwzIdR0mZAObni9tyvyUAOcwtdXd3lFjhbnsL0NA= Subject key identifier: 9C:5D:F2:2E:B7:43:81:D1:9F:4B:3C:8A:B7:4F:78:2D:12:92:59:3A Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: E4263554BDE3E623254447929E037B0CE7B909 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 14:00:01 +0000 ROA not before: Fri 04 Jul 2025 13:55:01 +0000 ROA not after: Fri 03 Jul 2026 14:00:01 +0000 asID: 153087 IP address blocks: 2404:97c0:103::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e4:26:35:54:bd:e3:e6:23:25:44:47:92:9e:03:7b:0c:e7:b9:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 13:55:01 2025 GMT Not After : Jul 3 14:00:01 2026 GMT Subject: CN=9C5DF22EB74381D19F4B3C8AB74F782D1292593A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b6:9c:99:89:d9:b4:6b:07:d8:9a:02:21:fb: 15:ee:6f:9c:67:5e:74:e2:21:13:f5:ac:a4:52:57: ae:94:eb:a6:c0:58:4e:74:9d:06:07:86:13:42:64: be:61:fb:0d:d6:22:05:82:cf:34:91:4c:7d:8e:e1: ce:e5:3d:23:7c:5a:a0:40:80:72:18:1d:1e:94:75: bc:0d:19:4a:eb:b0:66:6f:b4:de:43:88:80:d1:dc: ff:80:9e:f3:56:d8:da:90:77:91:94:2d:54:70:d8: 0e:a4:09:d3:6d:a5:8c:65:30:8e:25:6e:8e:de:9e: 54:92:38:4d:72:81:df:85:f6:3c:23:7a:db:df:46: 2f:b1:eb:34:da:0c:1e:af:c9:d7:b1:8d:b9:9c:84: 76:d8:b3:b5:b7:91:e5:9e:70:f3:2c:3b:7e:5b:13: 15:64:53:f1:64:ae:fd:c5:a2:45:f4:25:e9:e9:d5: ce:82:7b:4f:95:76:a8:e4:06:db:27:c1:6b:b7:c8: 64:b7:3a:a5:14:2c:7c:fc:4f:33:da:10:04:61:29: 16:f7:6a:b1:38:93:25:95:9c:ed:cc:18:32:fb:ce: b0:d3:e1:d8:64:63:b6:39:e7:f1:f3:4f:15:29:4b: 52:4b:e2:ef:b5:b4:1d:a6:dd:c9:3d:5f:10:59:dd: c5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5D:F2:2E:B7:43:81:D1:9F:4B:3C:8A:B7:4F:78:2D:12:92:59:3A X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:103::/48 Signature Algorithm: sha256WithRSAEncryption 8d:c2:af:62:e2:33:c6:1a:ac:a1:ca:f3:b3:40:9c:74:05:32: 33:65:1c:95:8b:14:14:2a:25:69:53:b3:a7:fd:84:c2:43:c4: e8:3d:79:27:8a:59:1a:58:b3:eb:56:a0:26:bf:6e:25:a3:ba: 35:6b:8c:57:14:fb:13:9a:61:93:e2:02:c6:d5:91:bd:37:32: 70:cf:e9:cb:37:6c:16:65:78:01:b2:ae:5f:d7:bb:48:60:e6: 46:16:de:99:b9:00:c3:28:51:cf:92:f1:80:21:27:fa:76:e1: b1:ff:3f:9e:d5:e6:f7:76:0b:38:80:d0:ca:b9:1b:97:41:82: 44:8e:84:a1:d7:64:fc:46:f0:7a:d6:55:c3:f9:f9:82:60:d6: 4e:79:5e:a2:c7:48:3f:bc:4c:ed:6a:8a:7b:bc:e2:bd:dd:86: 4b:24:9f:bd:b5:49:0f:9d:e5:a9:32:16:d0:b3:31:6b:9a:ba: 68:7c:87:92:00:9b:d5:9a:bc:da:4b:80:c5:89:fc:d0:92:79: b5:66:41:8e:45:d4:be:b0:42:f1:83:25:3c:56:01:f0:5e:d1: 57:b0:7f:43:91:a8:08:ec:6a:03:06:52:5c:ef:17:13:8f:89: 69:f9:5f:f1:64:dd:2d:19:07:a1:ca:8d:af:a9:b6:74:75:f8: 03:6f:6d:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAOQmNVS94+YjJURHkp4DewznuQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMzU1MDFaFw0yNjA3MDMxNDAwMDFaMDMxMTAvBgNV BAMTKDlDNURGMjJFQjc0MzgxRDE5RjRCM0M4QUI3NEY3ODJEMTI5MjU5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOtpyZidm0awfYmgIh+xXub5xn XnTiIRP1rKRSV66U66bAWE50nQYHhhNCZL5h+w3WIgWCzzSRTH2O4c7lPSN8WqBA gHIYHR6UdbwNGUrrsGZvtN5DiIDR3P+AnvNW2NqQd5GULVRw2A6kCdNtpYxlMI4l bo7enlSSOE1ygd+F9jwjetvfRi+x6zTaDB6vydexjbmchHbYs7W3keWecPMsO35b ExVkU/Fkrv3FokX0Jenp1c6Ce0+VdqjkBtsnwWu3yGS3OqUULHz8TzPaEARhKRb3 arE4kyWVnO3MGDL7zrDT4dhkY7Y55/HzTxUpS1JL4u+1tB2m3ck9XxBZ3cXtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUnF3yLrdDgdGfSzyKt094LRKSWTowHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQCNwq9i4jPGGqyhyvOzQJx0BTIzZRyVixQU KiVpU7On/YTCQ8ToPXknilkaWLPrVqAmv24lo7o1a4xXFPsTmmGT4gLG1ZG9NzJw z+nLN2wWZXgBsq5f17tIYOZGFt6ZuQDDKFHPkvGAISf6duGx/z+e1eb3dgs4gNDK uRuXQYJEjoSh12T8RvB61lXD+fmCYNZOeV6ix0g/vEztaop7vOK93YZLJJ+9tUkP neWpMhbQszFrmrpofIeSAJvVmrzaS4DFifzQknm1ZkGORdS+sELxgyU8VgHwXtFX sH9DkagI7GoDBlJc7xcTj4lp+V/xZN0tGQehyo2vqbZ0dfgDb23W -----END CERTIFICATE-----Generated at Sun Jul 27 07:54:13 2025 by rpki-client