$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: FZYhJoD5RQXVQ3rMDYQ3hfzgb5WFT+kakfKJU+gJ0+w= Subject key identifier: C7:BB:77:B1:01:5A:B8:D8:50:1E:0A:BD:76:7F:E1:49:D6:A0:61:E0 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 51B8A31B786C21CB06131E81EE8A0174031DBC0B Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2226::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b8:a3:1b:78:6c:21:cb:06:13:1e:81:ee:8a:01:74:03:1d:bc:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=C7BB77B1015AB8D8501E0ABD767FE149D6A061E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c4:44:f1:b6:77:b8:83:85:4b:d0:e9:9b:94: 4e:f1:85:c2:05:b3:61:b0:bb:a7:4d:bc:41:a9:f0: f3:42:f7:93:0a:fd:07:7a:47:72:14:83:61:21:dd: c8:f6:1b:54:b3:a8:fa:15:f6:51:18:3f:11:27:b6: e7:62:27:a5:22:77:3e:47:77:45:2f:bb:ae:23:33: 93:46:d9:12:41:8c:13:d3:2d:e8:17:5c:63:e7:7e: f2:32:44:c0:f6:05:68:44:61:b9:11:eb:de:30:65: f9:cf:c2:44:42:74:37:ca:a5:4c:13:45:80:a0:62: 74:b8:23:fb:82:87:ad:12:27:34:df:ff:b8:21:e1: cd:13:01:b0:1e:ed:09:17:c0:13:ec:e2:9e:f2:1f: 24:05:0d:d6:b3:8d:21:c3:14:c2:47:14:90:e1:f8: 2f:90:91:bf:5e:64:6d:67:fc:77:c7:cf:7e:0b:2c: 97:45:4f:e0:67:88:cb:39:a2:3b:25:00:5e:d0:a0: e4:08:c5:ed:ce:78:8e:b3:b0:62:d6:3f:02:b3:de: 7e:3e:cb:af:e2:fa:77:52:7d:52:65:f2:fe:db:92: 31:fc:83:a3:8e:2c:86:61:23:10:86:3a:5c:8a:af: 92:45:30:ee:e6:98:01:ee:48:f9:91:a5:29:df:16: 6f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:BB:77:B1:01:5A:B8:D8:50:1E:0A:BD:76:7F:E1:49:D6:A0:61:E0 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2226::/48 Signature Algorithm: sha256WithRSAEncryption 3b:dc:49:3a:65:18:65:8f:af:7e:34:3d:8b:8c:b3:c1:fd:01: 4e:83:6b:aa:76:ec:16:da:a8:10:8a:0f:24:ef:f8:4f:22:00: f7:00:ff:7a:97:af:e3:c0:3d:d5:9d:ed:ca:06:64:37:73:31: f1:77:26:af:71:d5:eb:82:64:02:50:9b:4a:07:8d:61:32:24: 15:f5:60:2f:95:45:23:65:e3:4b:e4:7d:6e:be:c5:19:5e:1d: b6:db:ac:07:c6:d4:0e:da:85:36:a9:cb:45:94:7d:ac:bc:39: 07:f7:e9:44:3c:95:e4:c6:de:3f:2c:1d:c2:1a:5d:28:a1:69: d6:9b:6b:aa:53:70:ec:3b:ca:be:0e:56:5e:ed:aa:04:8a:c6: 11:56:01:8a:70:5e:16:c6:29:9f:e9:a9:e7:13:93:cb:82:db: c4:bc:5d:26:da:62:80:d2:cd:12:d9:e1:98:7e:2c:d9:b1:76: 3e:6d:a8:0b:f7:07:11:85:75:c7:78:cc:b9:06:c9:f5:e4:d7: ef:d6:f4:3a:16:03:84:a3:08:7c:22:1f:67:10:a7:90:4b:99: 33:1d:bc:be:77:5b:fd:9d:80:0a:f1:ab:7b:3f:87:12:b3:30: 9a:a6:b2:90:cb:63:11:ae:28:a3:0b:10:65:3b:6c:b8:18:7c: 86:ee:72:62 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUbijG3hsIcsGEx6B7ooBdAMdvAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKEM3QkI3N0IxMDE1QUI4RDg1MDFFMEFCRDc2N0ZFMTQ5RDZBMDYxRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuxETxtne4g4VL0OmblE7xhcIF s2Gwu6dNvEGp8PNC95MK/Qd6R3IUg2Eh3cj2G1SzqPoV9lEYPxEntudiJ6Uidz5H d0Uvu64jM5NG2RJBjBPTLegXXGPnfvIyRMD2BWhEYbkR694wZfnPwkRCdDfKpUwT RYCgYnS4I/uCh60SJzTf/7gh4c0TAbAe7QkXwBPs4p7yHyQFDdazjSHDFMJHFJDh +C+Qkb9eZG1n/HfHz34LLJdFT+BniMs5ojslAF7QoOQIxe3OeI6zsGLWPwKz3n4+ y6/i+ndSfVJl8v7bkjH8g6OOLIZhIxCGOlyKr5JFMO7mmAHuSPmRpSnfFm/zAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUx7t3sQFauNhQHgq9dn/hSdagYeAwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiYwDQYJKoZIhvcNAQELBQADggEBADvcSTplGGWPr340PYuMs8H9AU6Da6p2 7BbaqBCKDyTv+E8iAPcA/3qXr+PAPdWd7coGZDdzMfF3Jq9x1euCZAJQm0oHjWEy JBX1YC+VRSNl40vkfW6+xRleHbbbrAfG1A7ahTapy0WUfay8OQf36UQ8leTG3j8s HcIaXSihadaba6pTcOw7yr4OVl7tqgSKxhFWAYpwXhbGKZ/pqecTk8uC28S8XSba YoDSzRLZ4Zh+LNmxdj5tqAv3BxGFdcd4zLkGyfXk1+/W9DoWA4SjCHwiH2cQp5BL mTMdvL53W/2dgArxq3s/hxKzMJqmspDLYxGuKKMLEGU7bLgYfIbucmI= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client