$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: JCCAJ/EDgS27ycZ3628tTPH6fZQnrNGTI3WkVYF+XvQ= Subject key identifier: 67:AF:12:B9:2A:7E:8C:2A:F4:95:61:1D:E7:2B:3D:5D:23:84:1B:59 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 24E9636423220265C304F686C90A07B28EE2E619 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:01 +0000 ROA not before: Fri 04 Jul 2025 12:55:01 +0000 ROA not after: Fri 03 Jul 2026 13:00:01 +0000 asID: 153087 IP address blocks: 2404:97c0:162::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e9:63:64:23:22:02:65:c3:04:f6:86:c9:0a:07:b2:8e:e2:e6:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:01 2025 GMT Not After : Jul 3 13:00:01 2026 GMT Subject: CN=67AF12B92A7E8C2AF495611DE72B3D5D23841B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:06:2c:9b:c0:d9:85:12:ef:5a:36:c2:27:99: 5c:94:be:fd:55:a9:c1:f9:04:a5:88:ea:e1:1c:46: 16:56:0a:1c:74:c7:2e:8a:94:2b:bd:ef:48:7a:3c: 07:94:0b:e7:44:91:67:71:18:0b:c9:05:d9:8c:bd: 70:39:31:37:ab:d2:8a:e3:8d:09:6a:47:47:25:02: 1a:b6:35:c6:08:ac:2f:2c:7b:53:18:48:a6:9e:62: d0:b7:e5:1a:92:b7:a7:7b:9b:3a:17:bb:cc:e7:bc: 1e:46:0a:d6:c9:c2:b5:62:d5:72:9a:b9:9a:ca:3f: aa:5a:fd:09:d2:aa:19:d6:21:4c:87:b7:e1:cf:f0: 31:2f:74:91:51:63:57:9b:ad:69:89:19:fa:c2:3c: 9a:d4:e8:a8:1d:1c:08:70:2d:ca:cf:ef:68:f3:58: ec:46:d1:e8:e6:01:75:dc:10:8f:8b:c1:c9:8f:74: 27:81:e4:25:1c:a4:d0:be:55:67:e6:cb:dd:81:77: f0:e2:98:9d:03:0f:4d:10:85:c3:27:64:a0:24:98: 25:8d:00:47:5f:33:b1:3e:cd:dc:e7:60:f6:75:7a: a1:53:52:fd:09:cd:73:90:7b:87:34:75:9d:0b:0c: dd:c4:d2:38:32:be:55:37:dc:ca:a4:08:08:17:cc: 8f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AF:12:B9:2A:7E:8C:2A:F4:95:61:1D:E7:2B:3D:5D:23:84:1B:59 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:162::/48 Signature Algorithm: sha256WithRSAEncryption 6c:38:d6:09:10:d7:7b:ad:aa:ce:a4:58:40:b0:c9:fd:78:62: 9a:54:7a:08:88:cf:7f:d9:81:b3:19:cf:cb:73:b1:cb:2d:47: 80:70:a7:d0:f2:e0:2a:3d:5e:f1:87:e8:04:a5:8c:18:66:61: be:64:2f:ef:a9:99:cc:9a:b9:50:34:f8:91:f3:a7:c0:28:1a: bf:b3:e0:a9:dd:62:90:7d:66:f4:88:66:1f:44:b8:f5:8e:cf: 8d:8b:c3:07:46:bc:b0:41:52:f7:ec:ef:11:42:c6:e3:f8:81: e4:09:cd:fa:f8:49:97:b7:8d:5f:c3:c3:f6:3e:f4:08:78:19: 7b:7b:9d:16:85:ce:9f:2b:e1:b4:cd:b2:c8:71:48:a4:53:b4: d1:05:24:85:ac:15:63:2c:c6:ea:d6:62:ca:f9:6d:6e:df:57: 49:c9:14:b6:a8:59:0e:b8:f1:13:ea:39:43:50:c8:85:0c:d3: e9:c0:52:96:32:40:3c:20:b9:ee:97:7a:5e:41:60:f3:c2:61: 51:e4:3c:69:73:ab:16:0a:f8:0e:cd:2c:d2:79:83:7e:5a:86: 4b:61:87:fb:82:53:a4:62:85:32:6f:31:6d:e3:03:c3:4d:28: 55:6b:9a:6e:df:cc:30:bf:f8:71:e5:20:0c:43:8b:82:ea:40: 93:f2:99:7b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJOljZCMiAmXDBPaGyQoHso7i5hkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDFaFw0yNjA3MDMxMzAwMDFaMDMxMTAvBgNV BAMTKDY3QUYxMkI5MkE3RThDMkFGNDk1NjExREU3MkIzRDVEMjM4NDFCNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXBiybwNmFEu9aNsInmVyUvv1V qcH5BKWI6uEcRhZWChx0xy6KlCu970h6PAeUC+dEkWdxGAvJBdmMvXA5MTer0orj jQlqR0clAhq2NcYIrC8se1MYSKaeYtC35RqSt6d7mzoXu8znvB5GCtbJwrVi1XKa uZrKP6pa/QnSqhnWIUyHt+HP8DEvdJFRY1ebrWmJGfrCPJrU6KgdHAhwLcrP72jz WOxG0ejmAXXcEI+LwcmPdCeB5CUcpNC+VWfmy92Bd/DimJ0DD00QhcMnZKAkmCWN AEdfM7E+zdznYPZ1eqFTUv0JzXOQe4c0dZ0LDN3E0jgyvlU33MqkCAgXzI/xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZ68SuSp+jCr0lWEd5ys9XSOEG1kwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFiMA0GCSqGSIb3DQEBCwUAA4IBAQBsONYJENd7rarOpFhAsMn9eGKaVHoIiM9/ 2YGzGc/Lc7HLLUeAcKfQ8uAqPV7xh+gEpYwYZmG+ZC/vqZnMmrlQNPiR86fAKBq/ s+Cp3WKQfWb0iGYfRLj1js+Ni8MHRrywQVL37O8RQsbj+IHkCc36+EmXt41fw8P2 PvQIeBl7e50Whc6fK+G0zbLIcUikU7TRBSSFrBVjLMbq1mLK+W1u31dJyRS2qFkO uPET6jlDUMiFDNPpwFKWMkA8ILnul3peQWDzwmFR5Dxpc6sWCvgOzSzSeYN+WoZL YYf7glOkYoUybzFt4wPDTShVa5pu38wwv/hx5SAMQ4uC6kCT8pl7 -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:00 2025 by rpki-client