$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ihN8lJl3Azu7F6lolqu5tw5Z5mPw8NSUnRwinjOW5ao= Subject key identifier: 85:E3:C4:5F:02:86:53:F8:13:B6:38:FE:41:D4:D9:96:9F:3E:14:D5 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 6F271039813E6D1934BCD3FA369CEA3CB13F380A Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:04 +0000 ROA not before: Fri 04 Jul 2025 12:55:04 +0000 ROA not after: Fri 03 Jul 2026 13:00:04 +0000 asID: 153087 IP address blocks: 2404:97c0:2231::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:27:10:39:81:3e:6d:19:34:bc:d3:fa:36:9c:ea:3c:b1:3f:38:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:04 2025 GMT Not After : Jul 3 13:00:04 2026 GMT Subject: CN=85E3C45F028653F813B638FE41D4D9969F3E14D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:b4:85:0c:af:77:16:6d:92:c3:3c:c9:9a: de:1c:f6:41:05:7c:f4:45:8e:cd:18:94:48:21:a6: 69:e8:4e:d6:d0:e9:83:9c:64:46:47:c6:d3:63:45: 1c:88:ed:ae:6e:9c:df:6c:ef:5f:ea:26:c6:fb:1a: 3b:c2:cd:0b:65:20:d8:10:01:20:45:4a:7d:06:9c: e2:ca:46:34:c7:ef:95:fc:82:fe:99:14:41:b2:e5: ec:d3:51:b9:57:1a:d9:e2:bd:9f:14:12:ed:10:4b: 7e:73:23:f9:31:07:5f:2f:57:df:85:43:d6:d3:6e: 4b:30:63:95:ca:5b:a2:b2:49:b1:5a:28:4b:9f:84: df:1b:8e:a8:3f:0e:de:3a:07:69:c1:b5:91:01:47: ef:0c:40:56:cc:40:cf:13:6c:e2:7d:23:4f:e9:3f: 76:39:bc:32:66:dc:8b:8b:ea:95:3b:4a:15:58:75: 79:e9:d6:7b:8f:cd:df:f4:c8:5e:ad:f5:f0:a2:09: 89:e7:e9:72:cc:62:3e:70:76:e8:8c:8d:b5:ed:c8: 21:aa:b0:38:01:47:19:8e:46:5d:43:98:0e:49:72: 30:ff:2b:af:a3:97:d4:ce:ed:ae:ba:c5:dc:b9:6a: be:ab:e4:6e:7f:b2:fe:a3:01:01:03:39:48:34:dc: bd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E3:C4:5F:02:86:53:F8:13:B6:38:FE:41:D4:D9:96:9F:3E:14:D5 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2231::/48 Signature Algorithm: sha256WithRSAEncryption 7d:96:8a:5a:7b:af:a0:d9:6e:2f:2b:3d:2c:0d:23:d3:02:eb: f2:5c:be:e0:fe:58:da:f9:76:7f:2f:97:25:4d:c4:aa:70:74: 0e:12:4e:8f:13:24:b5:6d:0a:ef:a0:d0:d7:28:40:85:d6:2a: 18:9a:e6:81:ac:44:65:8e:95:da:49:33:48:b3:0a:a0:d5:42: fb:80:f1:96:9f:8d:c8:00:5e:fe:94:7e:5c:29:eb:b6:fa:00: b3:88:fb:e7:81:59:a8:68:25:d2:ca:86:36:a9:d0:25:2c:82: b3:f5:2c:8c:6e:85:d0:74:68:ee:0b:27:79:b0:bd:1a:51:cd: e7:ae:13:08:4b:bb:84:65:2e:d8:83:a7:bc:6d:82:b9:61:45: c4:f4:d3:76:51:1b:13:f6:11:6e:f7:7b:b7:cf:46:72:20:f0: 35:9e:2b:cd:25:31:37:89:21:69:36:33:9d:2a:cf:76:98:65: 6b:6f:fe:48:6a:de:80:96:59:20:03:8c:4e:f0:0b:af:4e:f4: c1:cb:93:8a:5a:d4:5a:89:c9:52:8b:f4:a2:a9:c5:3f:b8:76: d6:0a:b4:cd:6b:f4:72:55:9a:94:3b:41:f2:b3:79:39:19:a5: 56:79:f6:3d:3c:09:07:b6:d2:03:86:f6:a3:55:7f:61:a8:46: 3f:6d:0a:73 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUbycQOYE+bRk0vNP6NpzqPLE/OAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDRaFw0yNjA3MDMxMzAwMDRaMDMxMTAvBgNV BAMTKDg1RTNDNDVGMDI4NjUzRjgxM0I2MzhGRTQxRDREOTk2OUYzRTE0RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLSLSFDK93Fm2SwzzJmt4c9kEF fPRFjs0YlEghpmnoTtbQ6YOcZEZHxtNjRRyI7a5unN9s71/qJsb7GjvCzQtlINgQ ASBFSn0GnOLKRjTH75X8gv6ZFEGy5ezTUblXGtnivZ8UEu0QS35zI/kxB18vV9+F Q9bTbkswY5XKW6KySbFaKEufhN8bjqg/Dt46B2nBtZEBR+8MQFbMQM8TbOJ9I0/p P3Y5vDJm3IuL6pU7ShVYdXnp1nuPzd/0yF6t9fCiCYnn6XLMYj5wduiMjbXtyCGq sDgBRxmORl1DmA5JcjD/K6+jl9TO7a66xdy5ar6r5G5/sv6jAQEDOUg03L2VAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUhePEXwKGU/gTtjj+QdTZlp8+FNUwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjEwDQYJKoZIhvcNAQELBQADggEBAH2Wilp7r6DZbi8rPSwNI9MC6/JcvuD+ WNr5dn8vlyVNxKpwdA4STo8TJLVtCu+g0NcoQIXWKhia5oGsRGWOldpJM0izCqDV QvuA8ZafjcgAXv6Uflwp67b6ALOI++eBWahoJdLKhjap0CUsgrP1LIxuhdB0aO4L J3mwvRpRzeeuEwhLu4RlLtiDp7xtgrlhRcT003ZRGxP2EW73e7fPRnIg8DWeK80l MTeJIWk2M50qz3aYZWtv/khq3oCWWSADjE7wC69O9MHLk4pa1FqJyVKL9KKpxT+4 dtYKtM1r9HJVmpQ7QfKzeTkZpVZ59j08CQe20gOG9qNVf2GoRj9tCnM= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:00 2025 by rpki-client