$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 7VS0s3GgK3f9yXNytEbD8DVTlbSNP6Xg/+gEgqJ4UrY= Subject key identifier: 22:60:AD:81:F4:EB:50:DC:24:85:1C:B7:53:C4:F8:3B:8E:5F:E0:5E Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 75A365BBF752664A06D3422C6310B0C3C02465A4 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 2404:97c0:2222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a3:65:bb:f7:52:66:4a:06:d3:42:2c:63:10:b0:c3:c0:24:65:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=2260AD81F4EB50DC24851CB753C4F83B8E5FE05E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8f:0d:84:9e:6f:c7:bb:7b:b1:11:75:d3:8e: 42:42:55:da:f9:78:76:cb:23:c2:18:45:7c:c9:84: 10:70:0f:ff:35:3e:c0:e4:d4:06:ad:31:8b:6f:ac: cb:cd:7d:f6:62:dc:43:0c:1d:e0:21:29:c1:3a:b3: d7:f4:ea:6a:5c:42:71:3b:fb:52:1e:03:89:ab:41: 71:b0:e2:ef:15:1c:d3:63:31:1e:fc:34:89:9e:a3: aa:44:3f:06:67:fa:82:e0:b8:9e:43:79:4d:47:50: 87:36:c6:32:16:38:47:d4:55:d8:08:51:44:68:ca: 64:05:08:5e:8b:b7:5f:87:82:dd:44:3e:9d:e0:d8: e4:df:ea:2f:e8:5d:e0:63:cf:96:d5:69:6f:9c:29: 6f:d1:63:ea:b6:3b:c2:7f:c3:ce:a3:15:11:d6:5a: 40:91:63:cd:d9:fb:c1:29:bc:eb:48:ac:19:89:9a: 5c:54:cb:64:70:9e:e1:70:d8:5d:b7:8d:75:f0:5d: 47:a0:ab:4a:7a:b5:28:6f:30:7f:fc:db:10:0c:d4: 08:02:4b:37:30:7f:cd:ac:64:1b:2e:3b:c3:3f:7a: 61:f8:28:57:9c:82:56:75:bd:9c:1f:b8:d8:00:e0: fa:8f:a8:09:c6:b2:1a:83:25:80:15:88:54:c4:80: 42:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:60:AD:81:F4:EB:50:DC:24:85:1C:B7:53:C4:F8:3B:8E:5F:E0:5E X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2222::/48 Signature Algorithm: sha256WithRSAEncryption 35:47:74:7f:ef:8e:a4:0b:86:e1:9a:0c:3e:85:71:10:5e:c7: de:ca:db:ca:5e:04:ba:1a:18:55:2c:9d:33:fd:53:51:ee:61: ef:38:b6:4e:57:6b:7a:49:07:62:8b:63:1a:4e:81:d6:1e:fa: 3f:5b:e3:ca:99:93:7a:da:2b:0e:2f:5b:88:b3:9a:97:c3:41: 72:1d:3a:68:e7:1a:72:2e:b5:11:6e:c3:42:0e:6f:a8:10:78: e7:86:93:40:3a:79:45:4d:43:22:93:83:31:8e:53:6d:b4:05: f1:03:63:53:02:bc:ba:a2:13:33:7d:f7:df:34:88:9c:2a:74: bd:f7:6e:83:70:3a:ed:41:b6:c3:f7:7b:97:ff:73:b0:26:e6: 2e:0c:62:f1:5c:f2:2f:ca:18:e5:a4:30:d0:b4:c9:90:d6:22: 31:1f:ab:fe:65:2d:ad:a6:89:c0:23:ad:88:de:cf:1a:04:36: a4:e5:5d:eb:25:c4:15:bc:0f:a1:03:eb:bc:e3:37:fa:d6:fd: 84:5f:0d:7e:2b:84:6f:24:99:89:8f:ce:27:e5:2d:58:c3:d6: 40:91:d7:f4:b1:e6:34:d4:a0:7c:77:c2:a7:24:60:9d:a7:b9: 92:ce:fd:fa:a9:68:6a:c7:36:02:b9:b3:de:54:e0:92:d8:d7: 26:9e:10:d1 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdaNlu/dSZkoG00IsYxCww8AkZaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKDIyNjBBRDgxRjRFQjUwREMyNDg1MUNCNzUzQzRGODNCOEU1RkUwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsjw2Enm/Hu3uxEXXTjkJCVdr5 eHbLI8IYRXzJhBBwD/81PsDk1AatMYtvrMvNffZi3EMMHeAhKcE6s9f06mpcQnE7 +1IeA4mrQXGw4u8VHNNjMR78NImeo6pEPwZn+oLguJ5DeU1HUIc2xjIWOEfUVdgI UURoymQFCF6Lt1+Hgt1EPp3g2OTf6i/oXeBjz5bVaW+cKW/RY+q2O8J/w86jFRHW WkCRY83Z+8EpvOtIrBmJmlxUy2RwnuFw2F23jXXwXUegq0p6tShvMH/82xAM1AgC Szcwf82sZBsuO8M/emH4KFecglZ1vZwfuNgA4PqPqAnGshqDJYAViFTEgEIZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUImCtgfTrUNwkhRy3U8T4O45f4F4wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiIwDQYJKoZIhvcNAQELBQADggEBADVHdH/vjqQLhuGaDD6FcRBex97K28pe BLoaGFUsnTP9U1HuYe84tk5Xa3pJB2KLYxpOgdYe+j9b48qZk3raKw4vW4izmpfD QXIdOmjnGnIutRFuw0IOb6gQeOeGk0A6eUVNQyKTgzGOU220BfEDY1MCvLqiEzN9 9980iJwqdL33boNwOu1BtsP3e5f/c7Am5i4MYvFc8i/KGOWkMNC0yZDWIjEfq/5l La2micAjrYjezxoENqTlXeslxBW8D6ED67zjN/rW/YRfDX4rhG8kmYmPziflLVjD 1kCR1/Sx5jTUoHx3wqckYJ2nuZLO/fqpaGrHNgK5s95U4JLY1yaeENE= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client