$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ZvaCyP0hBpTAjSkrJvCl/1D5ltEJ/rIFnU1OaqnjovY= Subject key identifier: A1:8C:75:C7:01:C7:C9:8E:83:12:90:A3:C4:2B:83:56:C3:40:AD:84 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 4649DB860DA7A16EC45A71BB2A85012FA392F727 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:02 +0000 ROA not before: Fri 04 Jul 2025 12:55:02 +0000 ROA not after: Fri 03 Jul 2026 13:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:2144::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:49:db:86:0d:a7:a1:6e:c4:5a:71:bb:2a:85:01:2f:a3:92:f7:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:02 2025 GMT Not After : Jul 3 13:00:02 2026 GMT Subject: CN=A18C75C701C7C98E831290A3C42B8356C340AD84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:79:ba:c9:81:03:42:da:9a:36:13:ac:94:14: 19:2a:bf:27:e5:02:28:87:29:84:29:15:81:d0:a0: f2:fc:de:f7:15:02:7f:c4:d1:d9:4a:a8:a0:e9:2f: 2b:1a:4e:a1:e7:68:f9:58:d8:88:11:0e:43:6d:45: c9:91:62:a0:14:19:ce:b4:7c:50:aa:fc:11:31:e1: 16:a7:84:77:15:9a:90:55:5e:b2:6a:b2:bb:3a:13: b5:28:ad:a6:60:6c:de:68:2e:0f:3d:84:21:10:7a: af:23:bb:52:01:2b:1b:80:e4:eb:42:e1:8d:42:71: b5:48:a9:f5:67:bf:da:bd:18:26:b8:81:d0:19:ce: 50:9d:08:3c:d1:73:a2:68:ea:83:cc:83:2c:bc:5e: 10:f3:6f:20:33:06:4c:cb:95:37:cf:f5:14:d9:5f: e1:43:64:76:83:ad:59:3a:ac:69:24:6f:3d:cb:0f: 75:23:1b:54:f0:90:ad:cc:7b:06:db:bf:8a:87:2f: 6a:db:56:6d:f0:2e:a5:69:9e:c0:56:82:c5:c9:e2: 7b:af:53:9c:7f:1c:2a:9f:4e:fa:4c:98:49:0d:7e: cc:7e:48:63:26:f6:a4:ce:6c:80:c1:91:9a:8e:24: 09:d6:f6:15:db:6d:ab:83:1b:83:e8:9c:fc:ef:9f: 33:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8C:75:C7:01:C7:C9:8E:83:12:90:A3:C4:2B:83:56:C3:40:AD:84 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2144::/48 Signature Algorithm: sha256WithRSAEncryption 87:13:2d:91:b2:43:59:7b:d8:b4:00:37:e7:2b:9e:86:0d:53: af:e1:db:c8:31:4a:3e:1e:b3:1c:8f:a6:4b:7b:9b:87:a1:38: c5:65:d5:4f:2c:17:7a:a4:3a:e3:5d:2d:79:3f:68:ea:c5:6d: cc:7b:3f:1f:9b:04:02:89:d7:86:98:eb:b6:03:64:33:53:d3: 89:c4:29:96:62:c5:b9:49:e0:38:8c:b0:c8:2e:50:7d:0e:0a: ac:0a:e2:a5:e9:12:8b:50:b9:74:97:79:2f:88:5a:7d:84:1e: b5:c5:03:8b:0a:0d:44:5f:79:ac:2e:3b:75:3c:82:f0:bb:b4: 9c:ba:99:ba:e8:78:0a:f4:92:21:a6:21:8e:e8:3d:c6:48:71: 2a:55:b7:44:f5:91:ba:78:4e:3f:95:56:a8:50:0b:c7:db:c7: 70:10:48:a4:15:f7:79:c8:db:64:9a:6d:40:27:95:db:ff:d0: 29:4b:95:82:a3:90:a9:5d:54:90:ad:39:a9:86:53:21:24:e2: 89:79:0a:c4:15:01:0f:db:33:0a:c9:2d:e8:5d:3f:9a:5a:5c: 37:03:0a:e4:6a:ea:c3:84:aa:d6:bd:c9:c2:99:8d:a2:c4:8b: 31:ba:ef:df:27:e7:bf:08:f6:be:65:f3:d0:0f:78:e4:c6:02: 01:77:a9:46 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURknbhg2noW7EWnG7KoUBL6OS9ycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDJaFw0yNjA3MDMxMzAwMDJaMDMxMTAvBgNV BAMTKEExOEM3NUM3MDFDN0M5OEU4MzEyOTBBM0M0MkI4MzU2QzM0MEFEODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ebrJgQNC2po2E6yUFBkqvyfl AiiHKYQpFYHQoPL83vcVAn/E0dlKqKDpLysaTqHnaPlY2IgRDkNtRcmRYqAUGc60 fFCq/BEx4RanhHcVmpBVXrJqsrs6E7UoraZgbN5oLg89hCEQeq8ju1IBKxuA5OtC 4Y1CcbVIqfVnv9q9GCa4gdAZzlCdCDzRc6Jo6oPMgyy8XhDzbyAzBkzLlTfP9RTZ X+FDZHaDrVk6rGkkbz3LD3UjG1TwkK3Mewbbv4qHL2rbVm3wLqVpnsBWgsXJ4nuv U5x/HCqfTvpMmEkNfsx+SGMm9qTObIDBkZqOJAnW9hXbbauDG4PonPzvnzMJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUoYx1xwHHyY6DEpCjxCuDVsNArYQwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM0MzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIUQwDQYJKoZIhvcNAQELBQADggEBAIcTLZGyQ1l72LQAN+crnoYNU6/h28gx Sj4esxyPpkt7m4ehOMVl1U8sF3qkOuNdLXk/aOrFbcx7Px+bBAKJ14aY67YDZDNT 04nEKZZixblJ4DiMsMguUH0OCqwK4qXpEotQuXSXeS+IWn2EHrXFA4sKDURfeawu O3U8gvC7tJy6mbroeAr0kiGmIY7oPcZIcSpVt0T1kbp4Tj+VVqhQC8fbx3AQSKQV 93nI22SabUAnldv/0ClLlYKjkKldVJCtOamGUyEk4ol5CsQVAQ/bMwrJLehdP5pa XDcDCuRq6sOEqta9ycKZjaLEizG6798n578I9r5l89APeOTGAgF3qUY= -----END CERTIFICATE-----Generated at Sun Jul 27 07:54:08 2025 by rpki-client