$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: XlVjEd/S/3h4K5hOFhdAwkIbfyxJ2Bmky7HfaDQm+F4= Subject key identifier: F4:92:DC:4C:CD:48:76:3B:05:CE:F5:0A:41:BE:BE:57:CA:A7:3E:05 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 46244152748D862ABEBE73B04FB3AC3EBFE617FB Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2230::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:24:41:52:74:8d:86:2a:be:be:73:b0:4f:b3:ac:3e:bf:e6:17:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=F492DC4CCD48763B05CEF50A41BEBE57CAA73E05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:7f:d7:2d:0b:d5:fa:32:67:31:49:11:85: ff:3c:ff:e5:38:8d:b1:97:4a:be:20:b9:5c:69:14: 5c:c8:a1:ae:6d:e3:4f:19:f0:ac:bb:a1:62:6d:4f: d3:3b:8e:d3:f4:9d:e7:c0:80:9b:0b:16:3b:9d:88: fd:fa:41:28:d1:1d:23:5d:32:9e:0f:f4:47:e3:8a: f5:dd:76:31:85:45:63:c8:9c:e6:22:22:51:19:bc: ab:2d:94:69:05:26:0b:5b:31:46:0a:5f:5b:20:7f: a7:a1:09:f3:a0:f4:b6:e3:f0:f2:25:8a:f9:e2:e7: e8:c5:69:f0:55:8b:38:f4:bf:cc:f7:01:4d:30:07: 56:49:87:9f:f6:8d:c6:37:31:da:9c:1c:52:f5:e5: 7e:b4:d0:d5:45:be:cc:35:84:52:43:18:c5:72:4d: 21:1a:b5:a6:2d:88:e7:6d:ba:f7:c1:2e:f6:87:4a: ed:09:27:32:35:a4:d9:f4:7e:f9:91:33:ab:f3:bc: a6:29:91:1c:fe:07:73:a6:3d:22:8a:03:32:f3:35: 06:b9:43:7b:0c:e1:77:e0:45:a1:0f:4c:ac:7e:b3: 8f:96:d8:46:af:d9:05:80:7a:7a:fb:f5:52:60:55: 78:de:fc:63:bd:9e:e1:60:b8:3b:10:33:12:db:84: 30:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:92:DC:4C:CD:48:76:3B:05:CE:F5:0A:41:BE:BE:57:CA:A7:3E:05 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2230::/48 Signature Algorithm: sha256WithRSAEncryption 8b:cf:d9:75:2e:2f:d0:36:8c:b9:21:d3:6f:f2:4d:da:ec:28: d8:42:18:6c:6d:ce:17:ef:0c:2d:c1:48:07:e4:70:80:1d:00: 67:9f:e3:09:3c:69:61:79:0f:dc:b5:c3:f5:4b:16:72:7e:40: 27:a2:39:7a:ee:12:c3:1a:a5:5b:5b:26:7e:f2:f0:fd:32:2a: fe:07:3b:5b:cc:fa:16:ef:99:43:78:a3:7f:53:b4:e3:3e:2f: d7:98:91:cc:d8:86:49:07:0c:98:85:26:a0:e7:05:59:64:f0: 19:9b:1b:7f:d1:b2:1f:d1:56:04:73:68:42:97:cb:83:66:38: ed:c3:86:8d:8b:58:17:9e:8b:6f:97:b4:56:9e:fc:13:3b:b6: e6:33:2f:63:76:df:b1:1d:b3:cb:d3:e2:12:f6:43:af:e9:d6: 78:7b:3c:29:9c:f8:37:89:8e:84:d4:65:79:8a:d3:a1:a6:cc: 3b:ea:ff:6d:52:fc:be:85:68:13:57:a0:8a:83:a7:73:b4:8f: 3d:e6:46:51:da:f9:e6:07:ff:81:b0:df:f8:0b:47:f6:5c:e6: 99:24:c2:ec:78:6f:d8:60:57:46:51:d4:23:33:78:8c:bc:85: 5e:e7:24:71:35:b2:70:8d:a5:2d:cb:c2:3c:bd:06:39:e8:ff: ed:a3:33:27 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURiRBUnSNhiq+vnOwT7OsPr/mF/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKEY0OTJEQzRDQ0Q0ODc2M0IwNUNFRjUwQTQxQkVCRTU3Q0FBNzNFMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr53/XLQvV+jJnMUkRhf88/+U4 jbGXSr4guVxpFFzIoa5t408Z8Ky7oWJtT9M7jtP0nefAgJsLFjudiP36QSjRHSNd Mp4P9EfjivXddjGFRWPInOYiIlEZvKstlGkFJgtbMUYKX1sgf6ehCfOg9Lbj8PIl ivni5+jFafBVizj0v8z3AU0wB1ZJh5/2jcY3MdqcHFL15X600NVFvsw1hFJDGMVy TSEataYtiOdtuvfBLvaHSu0JJzI1pNn0fvmRM6vzvKYpkRz+B3OmPSKKAzLzNQa5 Q3sM4XfgRaEPTKx+s4+W2Eav2QWAenr79VJgVXje/GO9nuFguDsQMxLbhDDrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU9JLcTM1IdjsFzvUKQb6+V8qnPgUwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjAwDQYJKoZIhvcNAQELBQADggEBAIvP2XUuL9A2jLkh02/yTdrsKNhCGGxt zhfvDC3BSAfkcIAdAGef4wk8aWF5D9y1w/VLFnJ+QCeiOXruEsMapVtbJn7y8P0y Kv4HO1vM+hbvmUN4o39TtOM+L9eYkczYhkkHDJiFJqDnBVlk8BmbG3/Rsh/RVgRz aEKXy4NmOO3Dho2LWBeei2+XtFae/BM7tuYzL2N237Eds8vT4hL2Q6/p1nh7PCmc +DeJjoTUZXmK06GmzDvq/21S/L6FaBNXoIqDp3O0jz3mRlHa+eYH/4Gw3/gLR/Zc 5pkkwux4b9hgV0ZR1CMzeIy8hV7nJHE1snCNpS3Lwjy9Bjno/+2jMyc= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:51 2025 by rpki-client