$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: zTksbOmqht4ASG3w9kn+fk27ebr6uQPh0aGUqp5VAz0= Subject key identifier: 3B:79:54:6A:DF:E4:8B:0A:35:44:D7:DC:40:06:38:73:9A:DB:BF:85 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 15B79EF74D16E272ABAE886DC0FAE226A4CF4215 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:02 +0000 ROA not before: Fri 04 Jul 2025 12:55:02 +0000 ROA not after: Fri 03 Jul 2026 13:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:2229::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b7:9e:f7:4d:16:e2:72:ab:ae:88:6d:c0:fa:e2:26:a4:cf:42:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:02 2025 GMT Not After : Jul 3 13:00:02 2026 GMT Subject: CN=3B79546ADFE48B0A3544D7DC400638739ADBBF85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:5c:57:0a:87:97:9b:43:f1:81:42:bc:fe: ce:a7:fa:4b:9e:fd:90:ad:4f:2e:b5:ca:79:5c:2d: d3:8a:47:fb:41:9a:7e:2c:f2:9c:a4:99:43:75:4e: 7e:84:b5:95:24:c4:c8:a6:eb:2a:d0:e0:34:ee:de: 2c:d7:9e:44:8e:ce:c9:32:b6:76:15:23:e1:a6:e3: bb:a6:78:31:ca:44:30:ab:09:71:20:75:4a:d4:00: 45:23:94:eb:83:d3:6d:a9:03:31:3f:f1:1e:dd:7a: f5:28:1a:18:64:9a:93:57:4e:8f:43:a8:5b:b8:41: b6:9e:a0:85:76:e3:66:ba:07:d5:ce:44:af:ba:9a: da:0f:4e:a2:54:b1:91:e8:21:9e:74:e6:f0:52:3a: 55:4b:f0:59:16:3b:b3:d8:5f:a2:77:c5:30:16:68: 64:60:8f:ca:84:6f:b6:41:1e:9f:ed:b9:f0:24:96: 2b:88:64:bd:79:e0:aa:16:d4:f3:c1:54:30:f7:7e: b9:57:18:ca:09:a7:65:a8:ee:87:6b:bb:17:b0:b9: 86:e6:58:73:6e:f9:24:1f:67:a7:3c:fa:0f:bd:f3: 10:00:c0:68:a5:74:9c:2a:a8:3a:df:02:60:75:1f: 72:ce:79:d3:4f:5e:52:21:e1:7d:99:4a:62:ca:a5: 23:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:79:54:6A:DF:E4:8B:0A:35:44:D7:DC:40:06:38:73:9A:DB:BF:85 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2229::/48 Signature Algorithm: sha256WithRSAEncryption 8e:24:64:d9:77:59:d3:86:37:d1:a5:70:ea:0a:0e:b7:db:fd: ee:b3:b0:a6:df:58:b3:49:80:6c:f8:d6:ad:cf:d6:61:e3:3c: 99:4f:ff:cb:01:04:ea:6e:98:77:5c:0c:f6:e9:7e:b1:97:20: e0:64:c5:14:f7:4e:08:86:47:37:32:0e:2a:c2:81:f8:fc:f0: 13:a4:34:d8:5c:64:6a:b2:b7:3d:ea:6c:17:de:31:c7:49:5d: e1:40:83:84:f7:26:0d:c3:3f:e1:44:08:7c:f1:b6:2e:bd:42: 84:90:b3:07:25:1a:7f:09:57:c8:68:8d:e1:0d:cb:a7:46:42: b0:7c:c3:a9:2b:5b:a3:7f:b0:e6:7c:dd:41:0d:81:2e:f3:e0: 8b:43:36:60:fa:7d:a1:5a:d0:6d:8e:7c:0c:9b:81:06:af:b4: ca:a5:c5:53:c8:43:9b:9c:8d:e6:08:f5:d9:3c:9f:83:da:a5: 26:6c:2b:da:1a:db:71:ed:99:ed:d9:9d:f5:ce:fd:37:a5:db: 62:df:e1:4a:b1:71:6e:cb:46:42:5e:0c:a3:12:c4:65:f1:9c: b9:22:fb:51:3d:7b:ee:82:73:a4:48:51:91:89:c5:87:13:ef: ed:73:f7:1d:d1:6c:38:b0:c3:8e:12:1c:5f:43:30:a1:e0:7b: 37:1b:cd:fa -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFbee900W4nKrrohtwPriJqTPQhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDJaFw0yNjA3MDMxMzAwMDJaMDMxMTAvBgNV BAMTKDNCNzk1NDZBREZFNDhCMEEzNTQ0RDdEQzQwMDYzODczOUFEQkJGODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2e1xXCoeXm0PxgUK8/s6n+kue /ZCtTy61ynlcLdOKR/tBmn4s8pykmUN1Tn6EtZUkxMim6yrQ4DTu3izXnkSOzsky tnYVI+Gm47umeDHKRDCrCXEgdUrUAEUjlOuD022pAzE/8R7devUoGhhkmpNXTo9D qFu4QbaeoIV242a6B9XORK+6mtoPTqJUsZHoIZ505vBSOlVL8FkWO7PYX6J3xTAW aGRgj8qEb7ZBHp/tufAkliuIZL154KoW1PPBVDD3frlXGMoJp2Wo7odruxewuYbm WHNu+SQfZ6c8+g+98xAAwGildJwqqDrfAmB1H3LOedNPXlIh4X2ZSmLKpSMnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUO3lUat/kiwo1RNfcQAY4c5rbv4UwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIikwDQYJKoZIhvcNAQELBQADggEBAI4kZNl3WdOGN9GlcOoKDrfb/e6zsKbf WLNJgGz41q3P1mHjPJlP/8sBBOpumHdcDPbpfrGXIOBkxRT3TgiGRzcyDirCgfj8 8BOkNNhcZGqytz3qbBfeMcdJXeFAg4T3Jg3DP+FECHzxti69QoSQswclGn8JV8ho jeENy6dGQrB8w6krW6N/sOZ83UENgS7z4ItDNmD6faFa0G2OfAybgQavtMqlxVPI Q5ucjeYI9dk8n4PapSZsK9oa23Htme3ZnfXO/Tel22Lf4UqxcW7LRkJeDKMSxGXx nLki+1E9e+6Cc6RIUZGJxYcT7+1z9x3RbDiww44SHF9DMKHgezcbzfo= -----END CERTIFICATE-----Generated at Sun Jul 27 07:53:57 2025 by rpki-client