$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ++vuEkt1o291s1BLNHuaNrPIR85iMOGPnEEHnaXmxY8= Subject key identifier: 1D:6F:90:6D:63:44:0D:DF:7A:B2:8F:17:49:46:2F:4E:F7:FA:AA:EA Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 348B8B6E112C9438B30380DBED68828E744CE146 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:04 +0000 ROA not before: Fri 04 Jul 2025 12:55:04 +0000 ROA not after: Fri 03 Jul 2026 13:00:04 +0000 asID: 153087 IP address blocks: 2404:97c0:2168::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8b:8b:6e:11:2c:94:38:b3:03:80:db:ed:68:82:8e:74:4c:e1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:04 2025 GMT Not After : Jul 3 13:00:04 2026 GMT Subject: CN=1D6F906D63440DDF7AB28F1749462F4EF7FAAAEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:33:e8:b6:6c:98:63:89:2f:b1:2f:76:cc:12: 93:eb:62:35:f5:6b:61:76:54:4e:af:60:17:e8:21: 99:c6:c3:6c:58:ee:59:54:41:00:03:06:c9:6a:c6: ff:37:b8:b8:f6:15:3a:7a:82:2f:19:21:06:7a:0b: a1:7f:8d:93:ae:5b:25:8f:a2:8c:35:67:3b:b3:f6: 96:df:81:77:28:d8:e3:31:49:09:26:5f:38:11:4d: b5:c6:d0:34:0d:d1:c5:d0:a9:8a:32:0e:f1:5c:1b: 0f:8a:6c:5b:15:89:1b:50:72:65:ed:02:ab:c1:4f: a8:ef:1a:09:54:4d:b3:78:d2:d8:d9:60:b0:be:28: 7d:83:4a:f8:bd:70:57:f1:27:8c:b2:33:af:d8:48: 9a:79:f3:e2:d6:8d:bd:4a:e8:bb:4d:43:39:cc:6d: fe:54:74:1d:fd:d9:14:7f:ae:9b:10:f3:b8:35:59: 47:af:6b:d8:30:77:a3:a2:fd:99:72:85:26:43:49: ba:da:09:94:82:5a:52:2f:a5:01:e5:70:99:22:07: 02:09:75:a1:e6:1a:9c:0e:bd:a4:40:62:7c:fb:de: e4:29:23:db:51:8d:1a:b5:47:4b:fb:65:57:ed:ed: e1:94:7e:8e:76:94:d6:29:30:f9:8e:f6:d4:c4:d7: 22:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6F:90:6D:63:44:0D:DF:7A:B2:8F:17:49:46:2F:4E:F7:FA:AA:EA X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2168::/48 Signature Algorithm: sha256WithRSAEncryption 02:3f:0e:77:1c:47:ba:21:73:eb:df:ed:5e:6c:a0:30:96:fd: 6f:11:c0:4c:96:7c:c1:54:87:98:3b:97:07:b1:b8:16:d8:fa: ac:a0:f5:a1:7e:a5:b7:9c:1b:94:d4:b9:df:fc:a2:99:36:a2: ea:4c:fc:ce:92:25:11:b6:4b:8a:82:8f:9d:5d:04:db:3a:b5: 3d:a6:c0:da:18:46:b5:23:cb:08:96:2b:8b:96:e2:27:51:d8: b7:ea:f2:2a:f5:78:4c:85:99:dc:ab:68:60:9d:6b:09:bd:e0: ec:20:87:5f:a7:3f:ad:3d:81:2d:78:2d:a2:a5:6b:06:b4:22: 8f:75:53:10:8d:25:7f:4c:e5:48:41:27:86:65:c5:01:55:fe: 33:4c:8b:a2:d3:6c:be:a3:63:52:ee:85:ac:33:41:b9:5f:1a: 0c:bd:01:bc:81:ba:e1:57:93:19:51:91:1e:78:f6:86:db:8e: 37:06:8b:f8:1e:c6:81:56:9c:c7:eb:16:93:36:9a:ce:5b:97: 0b:6d:61:de:31:9a:a7:db:18:95:7d:00:0d:3e:ab:83:f2:c8: 6a:d1:1c:dd:03:54:97:f7:89:82:00:06:26:d5:ad:7e:4c:ff: 6f:4e:cb:a4:c0:53:26:82:c3:f7:d6:3e:c0:90:17:f1:6e:20: b2:c8:ee:ca -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNIuLbhEslDizA4Db7WiCjnRM4UYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDRaFw0yNjA3MDMxMzAwMDRaMDMxMTAvBgNV BAMTKDFENkY5MDZENjM0NDBEREY3QUIyOEYxNzQ5NDYyRjRFRjdGQUFBRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/M+i2bJhjiS+xL3bMEpPrYjX1 a2F2VE6vYBfoIZnGw2xY7llUQQADBslqxv83uLj2FTp6gi8ZIQZ6C6F/jZOuWyWP oow1Zzuz9pbfgXco2OMxSQkmXzgRTbXG0DQN0cXQqYoyDvFcGw+KbFsViRtQcmXt AqvBT6jvGglUTbN40tjZYLC+KH2DSvi9cFfxJ4yyM6/YSJp58+LWjb1K6LtNQznM bf5UdB392RR/rpsQ87g1WUeva9gwd6Oi/ZlyhSZDSbraCZSCWlIvpQHlcJkiBwIJ daHmGpwOvaRAYnz73uQpI9tRjRq1R0v7ZVft7eGUfo52lNYpMPmO9tTE1yKZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUHW+QbWNEDd96so8XSUYvTvf6quowHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM2Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIWgwDQYJKoZIhvcNAQELBQADggEBAAI/DnccR7ohc+vf7V5soDCW/W8RwEyW fMFUh5g7lwexuBbY+qyg9aF+pbecG5TUud/8opk2oupM/M6SJRG2S4qCj51dBNs6 tT2mwNoYRrUjywiWK4uW4idR2Lfq8ir1eEyFmdyraGCdawm94Owgh1+nP609gS14 LaKlawa0Io91UxCNJX9M5UhBJ4ZlxQFV/jNMi6LTbL6jY1LuhawzQblfGgy9AbyB uuFXkxlRkR549obbjjcGi/gexoFWnMfrFpM2ms5blwttYd4xmqfbGJV9AA0+q4Py yGrRHN0DVJf3iYIABibVrX5M/29Oy6TAUyaCw/fWPsCQF/FuILLI7so= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client