$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: hK0K/ReeabWCEUV4uzz5EeRxjvVEqezAn7FNpKdSBio= Subject key identifier: F6:8F:24:59:3F:EE:F8:B3:7D:DB:91:9F:29:AA:AA:DB:DA:20:D1:61 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 4692E03737AA0882E0A0AB19323B363709A0B5C4 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 2404:97c0:2225::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:92:e0:37:37:aa:08:82:e0:a0:ab:19:32:3b:36:37:09:a0:b5:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=F68F24593FEEF8B37DDB919F29AAAADBDA20D161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:56:2e:d7:61:8f:e3:78:a2:df:d1:c3:c3:68: f5:3a:e4:ef:df:f1:23:94:79:d4:a5:b5:f7:a7:f3: be:94:43:7c:4f:82:01:4a:35:cf:0a:68:9c:16:04: 76:7b:67:b3:e3:77:f3:37:c5:3a:5b:d9:7d:1d:60: 00:85:e6:7f:ab:02:40:30:83:42:51:c9:12:15:d6: e6:d5:d2:d4:64:ad:50:15:b0:22:8d:7e:91:95:d5: 77:5a:65:0b:cb:37:9e:71:c1:84:31:f9:cd:10:e4: fe:94:41:ff:7f:bd:23:a1:1d:f5:ca:01:eb:56:57: 31:13:ac:d1:4d:68:92:c5:3e:ae:30:52:fa:39:3d: 40:03:fa:c7:c2:c3:b1:78:f9:4b:01:2f:f7:66:2f: 9b:54:47:c4:ea:1f:97:ff:9a:d5:f2:10:0c:67:9f: bd:dc:b3:8c:1d:1b:06:bd:1d:08:6f:82:2e:01:6f: 5d:c3:e4:cc:df:14:90:4c:4b:6e:c6:10:58:7b:1e: 8b:cd:6e:c1:d4:28:9f:cb:91:fc:38:d8:54:cd:dc: de:1c:0a:5d:43:20:d4:df:58:72:43:df:2c:00:09: 3e:17:58:cf:ed:13:6a:28:dd:43:85:9d:75:16:99: ca:20:d9:1b:92:30:f5:34:3d:62:6d:e6:47:96:12: bb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8F:24:59:3F:EE:F8:B3:7D:DB:91:9F:29:AA:AA:DB:DA:20:D1:61 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2225::/48 Signature Algorithm: sha256WithRSAEncryption 81:2a:df:dd:67:41:39:94:8e:7a:9f:76:93:33:3e:7f:64:c7: 27:7f:bd:86:9e:73:ed:e8:0a:d6:35:6e:62:be:8e:8f:67:ef: 0b:c3:54:69:d6:83:45:7b:82:9a:6a:32:15:8a:a9:79:2d:4c: 9d:ad:39:64:0e:be:41:ad:7c:6b:bd:7b:47:b4:ee:54:60:d2: ed:30:3d:79:d4:3c:24:7f:32:a0:94:f1:10:a1:51:98:ae:44: 2f:5e:5f:3c:62:74:58:91:51:40:d9:41:14:43:8d:1f:6a:88: d5:99:2e:11:56:e5:ea:13:a5:dd:e6:b4:4c:43:ab:51:46:ab: c6:eb:bf:b9:8c:51:ef:12:f2:2d:3d:58:d8:1f:14:6b:8f:79: f1:cb:c2:b9:e5:15:a3:03:b9:b0:8d:a6:2e:4e:2d:61:8f:59: bf:a8:70:9b:bf:0a:6b:bc:b1:89:97:29:3b:b7:2a:f3:34:c0: e8:3f:7e:e4:9b:14:4c:85:97:64:55:90:39:d3:9b:be:dd:91: db:ac:71:57:95:da:15:ff:10:b8:df:60:81:7c:58:1e:2d:f2: 8d:60:58:83:68:6c:56:df:75:8b:78:37:cd:d6:7a:2e:94:35: ef:76:c5:b3:78:c6:a6:51:35:03:aa:af:8e:0a:32:02:33:f2: 26:a7:7b:56 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURpLgNzeqCILgoKsZMjs2NwmgtcQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKEY2OEYyNDU5M0ZFRUY4QjM3RERCOTE5RjI5QUFBQURCREEyMEQxNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Vi7XYY/jeKLf0cPDaPU65O/f 8SOUedSltfen876UQ3xPggFKNc8KaJwWBHZ7Z7Pjd/M3xTpb2X0dYACF5n+rAkAw g0JRyRIV1ubV0tRkrVAVsCKNfpGV1XdaZQvLN55xwYQx+c0Q5P6UQf9/vSOhHfXK AetWVzETrNFNaJLFPq4wUvo5PUAD+sfCw7F4+UsBL/dmL5tUR8TqH5f/mtXyEAxn n73cs4wdGwa9HQhvgi4Bb13D5MzfFJBMS27GEFh7HovNbsHUKJ/Lkfw42FTN3N4c Cl1DINTfWHJD3ywACT4XWM/tE2oo3UOFnXUWmcog2RuSMPU0PWJt5keWErvFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU9o8kWT/u+LN925GfKaqq29og0WEwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiUwDQYJKoZIhvcNAQELBQADggEBAIEq391nQTmUjnqfdpMzPn9kxyd/vYae c+3oCtY1bmK+jo9n7wvDVGnWg0V7gppqMhWKqXktTJ2tOWQOvkGtfGu9e0e07lRg 0u0wPXnUPCR/MqCU8RChUZiuRC9eXzxidFiRUUDZQRRDjR9qiNWZLhFW5eoTpd3m tExDq1FGq8brv7mMUe8S8i09WNgfFGuPefHLwrnlFaMDubCNpi5OLWGPWb+ocJu/ Cmu8sYmXKTu3KvM0wOg/fuSbFEyFl2RVkDnTm77dkduscVeV2hX/ELjfYIF8WB4t 8o1gWINobFbfdYt4N83Wei6UNe92xbN4xqZRNQOqr44KMgIz8iane1Y= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:50 2025 by rpki-client