$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: rJbHJ1TpKo5d9P8LB/4fj3DGBwHz+zDrdeS4FXSE73c= Subject key identifier: 79:35:07:8A:2C:F3:47:01:07:1D:99:DA:2F:43:41:1F:DA:6E:70:53 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 3E5CFAD09960D602066EAB9B085BFD0906803225 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa Signing time: Thu 10 Jul 2025 02:00:01 +0000 ROA not before: Thu 10 Jul 2025 01:55:01 +0000 ROA not after: Thu 09 Jul 2026 02:00:01 +0000 asID: 153087 IP address blocks: 2404:97c0:1530::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:5c:fa:d0:99:60:d6:02:06:6e:ab:9b:08:5b:fd:09:06:80:32:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 10 01:55:01 2025 GMT Not After : Jul 9 02:00:01 2026 GMT Subject: CN=7935078A2CF34701071D99DA2F43411FDA6E7053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:22:5d:d1:f2:f1:da:48:0b:02:b5:24:60:85: f8:9f:e2:92:a3:23:ab:4c:f0:2b:c5:e0:d8:5c:ef: 20:1b:e3:5c:00:7f:f7:d8:bc:d8:50:84:86:65:89: c8:22:09:1b:d7:5b:a2:ed:81:a8:59:50:24:b2:8d: 25:75:5e:38:1c:be:32:7b:b6:16:8f:e6:2b:48:06: 1e:07:a3:2b:d7:4d:3a:a8:57:75:ce:de:9d:7d:f5: b2:04:01:7f:9a:d7:cd:46:f6:f0:b0:ba:b8:0b:6f: 1f:a6:17:67:c7:fa:bc:2e:e5:c3:1b:2a:33:0d:e3: 6d:36:7e:3b:c2:ff:86:3d:f4:e5:0b:65:b9:ec:64: 41:26:1f:1a:6a:ed:e3:51:54:5e:7e:c5:cd:3c:74: dd:7d:9f:5e:04:9c:af:bf:48:40:fb:1a:63:94:34: 29:8b:ff:e9:82:86:65:0f:45:36:55:9c:30:91:bc: 88:41:79:9f:f2:b3:e3:fc:b5:72:5c:88:77:2a:7d: 37:68:8a:10:89:7e:52:d3:48:77:7f:2a:07:91:b1: ba:3a:41:94:cd:ae:d9:8f:d2:68:3b:ef:d7:6e:f1: 0f:df:33:6c:75:0e:85:a5:38:1c:a1:f9:d6:4d:5f: 8f:61:13:69:d2:37:8c:55:73:18:e9:7e:e9:26:77: 71:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:35:07:8A:2C:F3:47:01:07:1D:99:DA:2F:43:41:1F:DA:6E:70:53 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1530::/48 Signature Algorithm: sha256WithRSAEncryption 08:5f:d6:35:3e:f7:7d:3a:51:1a:f4:fa:30:4a:b3:fb:9f:63: c0:61:dd:d1:56:84:d4:6e:03:8a:4e:0f:77:5a:c3:e6:f4:bd: 88:64:af:f5:c9:27:8c:ae:12:9f:a3:74:e0:ca:36:01:1d:10: 44:bb:ab:76:7c:3a:49:b7:4e:45:fb:c1:3e:18:3a:d8:34:da: e4:16:7e:7e:c9:ee:23:1a:0f:cf:11:e0:9b:d5:70:6c:dd:f3: d5:2d:25:ef:74:fa:64:df:ed:0f:7e:c8:32:9a:bd:12:f6:5e: f1:da:d1:61:aa:b9:6f:64:82:bb:55:e4:78:27:e7:28:86:0b: 6d:e3:29:64:5c:30:5f:8c:f6:31:4a:6b:0f:ba:fc:f3:52:33: 63:fc:62:ea:e7:72:22:60:2d:cb:2d:30:ea:34:1f:9b:93:e5: 5e:3b:e5:3b:0f:9d:6b:cf:c0:9f:0d:80:3e:bb:4a:c9:f5:0b: 30:a7:5d:3d:5c:64:3f:00:04:b3:e0:c2:05:29:10:56:e7:7b: f5:86:5d:5b:74:8e:0f:d8:8b:27:fa:35:28:0e:f1:89:30:7b: e7:80:d0:51:7d:ce:f5:29:b3:2e:7c:c1:e7:b5:3d:7b:7c:1b: 48:0c:ac:ca:68:38:e3:9d:79:8b:5e:be:42:c8:08:4c:69:0c: 52:d6:74:e4 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPlz60Jlg1gIGbqubCFv9CQaAMiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MTAwMTU1MDFaFw0yNjA3MDkwMjAwMDFaMDMxMTAvBgNV BAMTKDc5MzUwNzhBMkNGMzQ3MDEwNzFEOTlEQTJGNDM0MTFGREE2RTcwNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjIl3R8vHaSAsCtSRghfif4pKj I6tM8CvF4Nhc7yAb41wAf/fYvNhQhIZlicgiCRvXW6LtgahZUCSyjSV1XjgcvjJ7 thaP5itIBh4HoyvXTTqoV3XO3p199bIEAX+a181G9vCwurgLbx+mF2fH+rwu5cMb KjMN4202fjvC/4Y99OULZbnsZEEmHxpq7eNRVF5+xc08dN19n14EnK+/SED7GmOU NCmL/+mChmUPRTZVnDCRvIhBeZ/ys+P8tXJciHcqfTdoihCJflLTSHd/KgeRsbo6 QZTNrtmP0mg779du8Q/fM2x1DoWlOByh+dZNX49hE2nSN4xVcxjpfukmd3HZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUeTUHiizzRwEHHZnaL0NBH9pucFMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNTMzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAFTAwDQYJKoZIhvcNAQELBQADggEBAAhf1jU+9306URr0+jBKs/ufY8Bh3dFW hNRuA4pOD3daw+b0vYhkr/XJJ4yuEp+jdODKNgEdEES7q3Z8Okm3TkX7wT4YOtg0 2uQWfn7J7iMaD88R4JvVcGzd89UtJe90+mTf7Q9+yDKavRL2XvHa0WGquW9kgrtV 5Hgn5yiGC23jKWRcMF+M9jFKaw+6/PNSM2P8YurnciJgLcstMOo0H5uT5V475TsP nWvPwJ8NgD67Ssn1CzCnXT1cZD8ABLPgwgUpEFbne/WGXVt0jg/Yiyf6NSgO8Ykw e+eA0FF9zvUpsy58wee1PXt8G0gMrMpoOOOdeYtevkLICExpDFLWdOQ= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:50 2025 by rpki-client