$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 9lZbMQy1jqbL+y5QmmPw53tmeX8I05Kc/ztEEnvz6IU= Subject key identifier: EE:08:11:33:A3:F0:34:5D:8C:40:3D:4C:5D:C0:DC:D4:C6:AE:49:77 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 2BAF94D490AD842CEE11EEEBFC56BD272836B402 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:06 +0000 ROA not before: Fri 04 Jul 2025 12:55:06 +0000 ROA not after: Fri 03 Jul 2026 13:00:06 +0000 asID: 153087 IP address blocks: 2404:97c0:2167::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:af:94:d4:90:ad:84:2c:ee:11:ee:eb:fc:56:bd:27:28:36:b4:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:06 2025 GMT Not After : Jul 3 13:00:06 2026 GMT Subject: CN=EE081133A3F0345D8C403D4C5DC0DCD4C6AE4977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:71:8e:d8:8f:8d:30:d2:d8:f5:6c:0a:8a:fd: bd:2f:79:8c:76:97:98:fd:ca:f6:62:b5:04:b1:bd: 15:1d:19:7e:d8:85:54:08:13:f2:32:26:45:95:a3: d6:36:06:85:77:29:22:1b:e0:07:0e:b8:1d:cd:c0: a6:be:73:89:c0:b2:b2:05:d1:61:f2:b5:50:17:0c: b0:31:9b:ff:8f:07:2f:77:e6:79:08:df:46:da:87: 7b:71:df:28:c5:5e:31:7f:00:8e:3b:64:ba:e8:ac: c6:a9:2e:82:1a:4d:26:03:4b:02:f5:a0:64:d5:2f: 30:e3:cc:84:67:8e:d3:19:47:50:8c:ca:b3:fb:40: 0d:6a:ad:c2:97:2b:8c:b2:72:90:39:11:72:db:2c: 56:93:67:b0:5b:a7:92:c3:da:5e:e8:d5:12:5e:6b: bd:d1:63:83:71:19:94:5a:f9:c6:7b:cb:3d:ea:71: 6a:61:70:25:5d:83:32:95:49:49:96:c5:eb:6d:50: d3:c8:11:13:9e:17:21:ed:21:c0:56:b7:62:31:7e: ba:9d:32:2c:91:3e:7c:35:ef:e3:7d:a9:4f:85:07: 94:ac:dc:ec:d1:b0:da:c4:13:ff:2a:17:e6:bc:fd: c5:3f:d2:5b:c2:6c:46:25:6d:c3:52:5a:e6:e3:74: 6e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:08:11:33:A3:F0:34:5D:8C:40:3D:4C:5D:C0:DC:D4:C6:AE:49:77 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2167::/48 Signature Algorithm: sha256WithRSAEncryption 0b:05:44:0a:81:88:f0:da:77:b5:7d:50:a7:73:ec:f7:37:65: 09:30:4a:fa:24:fa:38:e7:44:39:52:b3:df:2b:54:e9:ed:0f: b6:90:8d:49:2a:b2:91:96:95:7a:ec:c7:6d:1a:b2:34:2e:31: b7:75:08:db:eb:40:b8:2b:ae:b7:bc:04:32:b3:bb:9b:17:b9: d5:c3:ad:3d:ba:62:d3:0e:17:de:7b:8c:81:ea:8c:96:ae:14: c7:4e:6d:20:d0:39:39:c2:d7:ff:07:2e:13:66:9d:bf:09:74: 27:14:63:97:b2:b9:ee:a7:8c:fc:42:13:0b:5f:5e:a7:e6:f5: f1:7a:ef:18:07:77:af:7e:7f:ae:cd:de:08:89:82:9f:f0:40: a0:cd:0e:90:22:a3:0b:6c:b8:64:db:b2:ab:22:f8:27:d5:a6: b0:29:45:f5:cf:cc:44:e9:03:f8:8b:9b:a2:a4:9a:37:52:95: 36:80:47:88:fb:04:58:7b:fc:14:08:61:bb:cb:4c:9f:c7:06: 13:fe:2b:bd:bc:1d:4b:c2:e1:05:fa:b5:49:25:e9:2d:2d:63: 7b:06:4b:81:77:98:1a:8d:20:ac:7e:6f:a8:41:1d:d2:12:d6: 23:38:14:f5:e2:e6:19:a9:26:a5:c8:8e:ce:e6:16:ea:cb:b9: 2f:1d:ad:47 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUK6+U1JCthCzuEe7r/Fa9Jyg2tAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDZaFw0yNjA3MDMxMzAwMDZaMDMxMTAvBgNV BAMTKEVFMDgxMTMzQTNGMDM0NUQ4QzQwM0Q0QzVEQzBEQ0Q0QzZBRTQ5NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCicY7Yj40w0tj1bAqK/b0veYx2 l5j9yvZitQSxvRUdGX7YhVQIE/IyJkWVo9Y2BoV3KSIb4AcOuB3NwKa+c4nAsrIF 0WHytVAXDLAxm/+PBy935nkI30bah3tx3yjFXjF/AI47ZLrorMapLoIaTSYDSwL1 oGTVLzDjzIRnjtMZR1CMyrP7QA1qrcKXK4yycpA5EXLbLFaTZ7Bbp5LD2l7o1RJe a73RY4NxGZRa+cZ7yz3qcWphcCVdgzKVSUmWxettUNPIEROeFyHtIcBWt2Ixfrqd MiyRPnw17+N9qU+FB5Ss3OzRsNrEE/8qF+a8/cU/0lvCbEYlbcNSWubjdG6dAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU7ggRM6PwNF2MQD1MXcDc1MauSXcwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM2Mzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIWcwDQYJKoZIhvcNAQELBQADggEBAAsFRAqBiPDad7V9UKdz7Pc3ZQkwSvok +jjnRDlSs98rVOntD7aQjUkqspGWlXrsx20asjQuMbd1CNvrQLgrrre8BDKzu5sX udXDrT26YtMOF957jIHqjJauFMdObSDQOTnC1/8HLhNmnb8JdCcUY5eyue6njPxC EwtfXqfm9fF67xgHd69+f67N3giJgp/wQKDNDpAiowtsuGTbsqsi+CfVprApRfXP zETpA/iLm6KkmjdSlTaAR4j7BFh7/BQIYbvLTJ/HBhP+K728HUvC4QX6tUkl6S0t Y3sGS4F3mBqNIKx+b6hBHdIS1iM4FPXi5hmpJqXIjs7mFurLuS8drUc= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client