$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: fkMEnTikk0AxLd9lclRcINz/SNAXYAn4q9ByCS3D+jw= Subject key identifier: 7B:9E:5D:BD:D1:59:F6:73:9D:83:07:D4:51:C4:F0:18:89:3B:FB:16 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 089A88DFEBD6CAE062C4337FA6D60EB2CA4F3246 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 14:00:01 +0000 ROA not before: Fri 04 Jul 2025 13:55:01 +0000 ROA not after: Fri 03 Jul 2026 14:00:01 +0000 asID: 153087 IP address blocks: 2404:97c0:163::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:9a:88:df:eb:d6:ca:e0:62:c4:33:7f:a6:d6:0e:b2:ca:4f:32:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 13:55:01 2025 GMT Not After : Jul 3 14:00:01 2026 GMT Subject: CN=7B9E5DBDD159F6739D8307D451C4F018893BFB16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:78:7c:c4:dc:8e:34:a2:ff:6b:a7:23:7c:73: 91:b2:86:62:e1:e4:cd:fb:00:c9:66:64:fc:3d:d9: 70:e9:22:7d:b7:ca:19:bb:09:d2:4d:85:78:c1:03: 57:2c:7a:99:2a:70:16:ef:21:7f:22:81:18:08:ee: a9:df:e5:fa:5a:fe:80:c4:7e:19:c1:1d:81:c4:c0: 62:4e:08:5c:3b:ba:09:e4:eb:a0:38:25:3c:85:56: 1a:4a:05:17:b7:a0:13:7e:6f:78:20:72:f9:74:1a: 73:ab:9e:21:24:21:5f:6e:b3:4c:ba:5d:95:08:35: a1:a9:01:92:4a:0d:df:7b:98:9c:7f:ad:ee:b9:cd: 7d:f6:ba:67:e6:dc:df:16:2d:b4:81:ba:85:70:6a: 22:cb:e3:7f:f0:ae:37:76:be:fb:f6:66:6f:8a:ee: 21:47:7a:25:55:52:7b:50:51:20:f9:2a:d0:9e:9c: 5c:48:93:36:86:97:01:db:32:60:fd:e9:bc:32:f1: e6:2f:46:bd:a7:0a:d2:00:44:2c:d1:0e:87:44:98: 47:6e:d4:75:7e:cf:9d:53:ca:2a:7e:02:1a:bc:b4: 2b:5c:a5:e1:99:fa:8a:b9:4c:bf:46:0b:e3:ad:fb: 7c:84:ba:54:96:1e:ec:38:37:67:8d:41:a7:47:4d: fc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9E:5D:BD:D1:59:F6:73:9D:83:07:D4:51:C4:F0:18:89:3B:FB:16 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:163::/48 Signature Algorithm: sha256WithRSAEncryption 46:cb:bd:1c:47:2c:ab:93:1d:bb:42:13:78:1d:e8:e4:79:6c: 8f:df:ce:e7:53:60:46:c8:7a:6d:b5:f9:59:52:6e:0c:bf:bb: 2c:39:c3:3b:2a:cd:40:60:88:23:8a:13:88:a3:0e:a5:b0:80: 81:f6:57:4c:89:80:79:ce:33:1b:1d:d1:25:66:3e:0e:5d:ec: d8:06:fd:5f:4e:17:62:aa:d2:e7:b3:68:9e:65:23:21:70:67: 90:ff:99:c5:d3:07:8b:02:a1:20:7f:75:31:cc:93:8e:4d:4b: 4a:53:a1:13:0a:ac:c1:e3:e7:15:10:dd:e6:1a:5f:e8:e7:70: 7a:db:a4:7f:32:9b:b0:33:66:06:f6:97:c3:43:59:bd:8d:5c: 21:11:aa:28:03:df:53:77:32:5c:52:6b:04:c4:32:ed:2c:26: 7f:6b:c6:81:33:08:46:e8:7b:e6:7b:87:b9:92:3e:b8:0a:44: 54:5e:ec:29:4e:82:ac:c3:2a:d5:c2:ce:e7:15:04:b6:c6:a7: d7:e1:49:59:d3:e8:b5:38:bd:b5:d1:02:b0:d0:ba:b5:3b:1e: bc:b2:90:22:92:93:03:56:93:2b:b2:e5:a3:25:d9:dc:5e:6b: 0b:a1:4f:ed:71:df:e6:f9:a9:3a:8c:c1:82:c5:37:b9:83:0f: 2f:19:8c:ba -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCJqI3+vWyuBixDN/ptYOsspPMkYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMzU1MDFaFw0yNjA3MDMxNDAwMDFaMDMxMTAvBgNV BAMTKDdCOUU1REJERDE1OUY2NzM5RDgzMDdENDUxQzRGMDE4ODkzQkZCMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaeHzE3I40ov9rpyN8c5GyhmLh 5M37AMlmZPw92XDpIn23yhm7CdJNhXjBA1csepkqcBbvIX8igRgI7qnf5fpa/oDE fhnBHYHEwGJOCFw7ugnk66A4JTyFVhpKBRe3oBN+b3ggcvl0GnOrniEkIV9us0y6 XZUINaGpAZJKDd97mJx/re65zX32umfm3N8WLbSBuoVwaiLL43/wrjd2vvv2Zm+K 7iFHeiVVUntQUSD5KtCenFxIkzaGlwHbMmD96bwy8eYvRr2nCtIARCzRDodEmEdu 1HV+z51Tyip+Ahq8tCtcpeGZ+oq5TL9GC+Ot+3yEulSWHuw4N2eNQadHTfztAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUe55dvdFZ9nOdgwfUUcTwGIk7+xYwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQBGy70cRyyrkx27QhN4HejkeWyP387nU2BG yHpttflZUm4Mv7ssOcM7Ks1AYIgjihOIow6lsICB9ldMiYB5zjMbHdElZj4OXezY Bv1fThdiqtLns2ieZSMhcGeQ/5nF0weLAqEgf3UxzJOOTUtKU6ETCqzB4+cVEN3m Gl/o53B626R/MpuwM2YG9pfDQ1m9jVwhEaooA99TdzJcUmsExDLtLCZ/a8aBMwhG 6Hvme4e5kj64CkRUXuwpToKswyrVws7nFQS2xqfX4UlZ0+i1OL210QKw0Lq1Ox68 spAikpMDVpMrsuWjJdncXmsLoU/tcd/m+ak6jMGCxTe5gw8vGYy6 -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:00 2025 by rpki-client