$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ZQTbq5cPEbxcE82LsUghN3qOvjbLcaoobncFa5DyW6I= Subject key identifier: E3:D5:28:44:1A:4A:B7:E5:8F:A9:13:A6:5C:88:09:20:08:B9:FE:24 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 48D4629476FDEEE170003C7FA3641436B48C5A9D Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:04 +0000 ROA not before: Fri 04 Jul 2025 12:55:04 +0000 ROA not after: Fri 03 Jul 2026 13:00:04 +0000 asID: 153087 IP address blocks: 2404:97c0:2182::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d4:62:94:76:fd:ee:e1:70:00:3c:7f:a3:64:14:36:b4:8c:5a:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:04 2025 GMT Not After : Jul 3 13:00:04 2026 GMT Subject: CN=E3D528441A4AB7E58FA913A65C88092008B9FE24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6b:2f:2f:d6:1c:08:84:7d:64:9b:92:e4:fc: a7:d1:02:1d:71:84:cb:95:31:e2:8f:3f:40:74:08: 5f:e8:08:ca:be:73:6c:1a:44:3e:15:d0:08:02:34: 6b:eb:bc:65:76:8d:de:29:13:c4:cd:fa:52:b4:45: dd:e1:6a:ae:ba:e8:fa:ea:91:70:e7:46:50:f6:72: 40:0d:41:9d:55:ca:dd:27:b4:83:f7:85:d6:61:fe: 76:cf:b1:54:9a:0d:02:a3:56:d9:d8:96:ac:39:9e: 07:56:e9:ad:1e:02:c0:40:31:4d:e4:10:36:5e:2b: 97:68:92:c2:3b:0c:50:9a:e1:2f:b8:44:4a:07:70: e4:e8:4b:4e:eb:af:d7:86:37:ad:41:05:82:5f:56: 6b:b3:74:a0:3d:46:7c:29:ff:ee:06:b1:22:a8:6f: 97:f0:0e:ab:e9:47:23:b3:a0:02:1d:a8:ad:af:b3: 1b:b6:fe:69:92:c3:51:55:53:0f:65:19:9c:10:43: 51:74:e0:9c:03:df:73:05:90:5f:ab:3b:ec:cb:03: 56:1e:13:b1:12:d9:49:26:a2:19:78:a6:ff:53:52: 93:9b:95:36:8d:22:20:8d:3c:41:bd:d6:8d:55:b3: f9:47:fa:cd:52:29:fc:87:a2:2b:25:84:96:04:08: e9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D5:28:44:1A:4A:B7:E5:8F:A9:13:A6:5C:88:09:20:08:B9:FE:24 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2182::/48 Signature Algorithm: sha256WithRSAEncryption 9e:c5:63:b7:a9:1e:bb:35:0b:ab:ff:08:90:eb:a6:9e:e0:d7: c7:8e:39:f2:33:55:01:e8:f7:a4:ae:46:7a:6e:fe:90:4f:94: a1:65:eb:11:fb:3b:5f:37:e8:3a:eb:33:56:87:2e:8c:06:c0: 9f:1d:0c:ea:73:68:52:1b:a6:5f:99:5d:0e:6d:66:44:8d:1a: 02:d4:a1:c4:80:75:12:08:17:c9:e3:25:60:c5:a5:16:55:20: 40:ac:99:02:ba:bd:b7:c9:ad:43:df:e3:97:4f:17:ee:d3:13: 7c:4c:fb:37:74:63:26:e5:b2:4a:8c:04:d3:19:aa:1a:7e:76: 7d:18:98:8f:6f:bc:e6:cb:02:90:17:ed:0b:5b:6f:e6:24:37: e9:ed:9a:ea:10:c2:f1:d8:5e:2f:2c:f9:bd:75:ab:c5:e6:60: a9:71:df:46:38:39:f7:5d:a4:0d:09:d4:fc:36:7e:d1:55:d9: 78:b0:c3:a0:fe:ca:1c:ed:c4:e6:16:13:ab:d0:38:41:d8:f3: c2:31:a9:c4:f2:df:42:9c:6b:89:c5:65:bd:f0:99:45:10:36: 86:81:74:b9:c3:cd:7c:b5:36:69:f6:d3:ac:24:cc:12:ce:66: 3e:89:12:f4:a8:a4:60:ac:86:aa:0f:57:f0:a9:77:e3:b5:20: 2d:53:73:04 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUSNRilHb97uFwADx/o2QUNrSMWp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDRaFw0yNjA3MDMxMzAwMDRaMDMxMTAvBgNV BAMTKEUzRDUyODQ0MUE0QUI3RTU4RkE5MTNBNjVDODgwOTIwMDhCOUZFMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjay8v1hwIhH1km5Lk/KfRAh1x hMuVMeKPP0B0CF/oCMq+c2waRD4V0AgCNGvrvGV2jd4pE8TN+lK0Rd3haq666Prq kXDnRlD2ckANQZ1Vyt0ntIP3hdZh/nbPsVSaDQKjVtnYlqw5ngdW6a0eAsBAMU3k EDZeK5doksI7DFCa4S+4REoHcOToS07rr9eGN61BBYJfVmuzdKA9Rnwp/+4GsSKo b5fwDqvpRyOzoAIdqK2vsxu2/mmSw1FVUw9lGZwQQ1F04JwD33MFkF+rO+zLA1Ye E7ES2Ukmohl4pv9TUpOblTaNIiCNPEG91o1Vs/lH+s1SKfyHoislhJYECOnlAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU49UoRBpKt+WPqROmXIgJIAi5/iQwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM4MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIYIwDQYJKoZIhvcNAQELBQADggEBAJ7FY7epHrs1C6v/CJDrpp7g18eOOfIz VQHo96SuRnpu/pBPlKFl6xH7O1836DrrM1aHLowGwJ8dDOpzaFIbpl+ZXQ5tZkSN GgLUocSAdRIIF8njJWDFpRZVIECsmQK6vbfJrUPf45dPF+7TE3xM+zd0YyblskqM BNMZqhp+dn0YmI9vvObLApAX7Qtbb+YkN+ntmuoQwvHYXi8s+b11q8XmYKlx30Y4 OfddpA0J1Pw2ftFV2Xiww6D+yhztxOYWE6vQOEHY88IxqcTy30Kca4nFZb3wmUUQ NoaBdLnDzXy1Nmn206wkzBLOZj6JEvSopGCshqoPV/Cpd+O1IC1TcwQ= -----END CERTIFICATE-----Generated at Sun Jul 27 07:54:08 2025 by rpki-client