$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ZkLZWI0jB7dJZ6WubOlT7zrZwPS6RmK5BS65LX0KVa0= Subject key identifier: C3:A3:0B:76:B5:AE:42:62:FB:3A:EE:49:C2:FF:24:32:DA:F3:8F:59 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 2B704FF9095135C024E0E6B26CE6E2136E007540 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2232::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:70:4f:f9:09:51:35:c0:24:e0:e6:b2:6c:e6:e2:13:6e:00:75:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=C3A30B76B5AE4262FB3AEE49C2FF2432DAF38F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e0:60:25:32:97:b4:c5:ae:10:fb:01:e6:a3: 5e:f3:4f:e4:e4:49:3e:f1:71:d9:8f:d0:64:e2:f3: 91:6f:23:92:f2:0a:8e:75:ff:d5:1d:61:b2:73:f4: e3:d7:51:78:8f:36:60:17:2c:87:e8:67:28:54:8e: 6f:61:63:bf:f9:bd:48:f4:0f:f5:ac:aa:a8:08:3a: b1:8d:3b:c9:e3:45:44:58:1e:40:70:1f:9a:cb:e9: 2d:0f:8b:05:3b:07:3c:05:b4:27:13:27:75:a7:03: ef:dd:b6:8b:73:5e:fd:2d:6d:e5:56:7d:52:7b:64: cf:7e:bd:00:0c:2d:93:74:82:22:86:96:d0:93:7d: 56:9d:8b:a6:76:97:35:da:c8:53:c0:3f:bf:85:43: d8:f4:b6:04:92:55:8b:ea:97:b9:9e:72:10:cf:35: ec:f7:a6:0f:90:53:59:89:1a:e7:b2:33:67:c6:55: a2:bc:6b:14:fa:1d:de:20:10:48:2a:b0:80:85:90: a5:3d:50:7a:e7:61:bf:46:c2:b0:e2:b3:82:85:12: 5e:e0:da:b0:cb:24:7d:13:98:e4:87:38:26:da:67: fe:73:01:6c:b1:39:eb:63:74:c4:be:51:e2:ba:95: 06:cd:e8:fa:74:13:d3:ad:7d:f1:10:34:11:0e:9d: 83:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A3:0B:76:B5:AE:42:62:FB:3A:EE:49:C2:FF:24:32:DA:F3:8F:59 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2232::/48 Signature Algorithm: sha256WithRSAEncryption 06:22:1b:f4:a6:66:67:46:54:60:bd:04:ce:41:06:79:37:22: 1e:14:a4:15:96:f2:f0:3f:7d:a3:d9:fa:0c:22:00:b8:3d:4e: df:2a:dc:f0:dc:29:b2:51:71:0a:db:17:59:cf:30:c0:a5:3b: f2:fb:e0:88:e3:51:63:bd:7c:e2:a1:b4:fb:5c:10:cd:c9:44: f0:f5:78:e1:c7:21:52:90:ab:b6:76:e2:9a:f4:6a:53:0e:86: 78:d7:23:43:16:aa:e2:7b:8a:7c:b5:fd:c1:fc:e8:c7:58:62: 03:10:cf:13:3d:ba:df:2f:b7:0c:8f:84:d7:a2:99:86:28:02: 13:02:16:98:d3:e5:3c:7f:19:7f:b6:c6:ca:ee:5f:8a:cb:6d: 74:59:1f:80:2f:f7:75:3b:12:c2:db:38:52:8e:bb:eb:af:d3: 06:f2:03:45:ab:24:3c:00:a5:c3:c3:a9:23:e5:a0:e7:4c:ca: ed:1d:af:c5:3c:a2:4e:98:9d:8b:7d:29:cc:96:86:43:1e:01: d9:41:d5:be:ee:97:80:a3:d0:73:9b:0a:b3:46:11:39:ba:4b: 24:c6:e2:7a:fa:f3:05:36:90:d5:18:0c:95:ec:37:1f:32:ad: d9:38:b6:58:94:96:88:94:e6:13:d5:7a:94:18:e6:b1:cb:76: d6:1b:9d:dc -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUK3BP+QlRNcAk4OaybObiE24AdUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKEMzQTMwQjc2QjVBRTQyNjJGQjNBRUU0OUMyRkYyNDMyREFGMzhGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS4GAlMpe0xa4Q+wHmo17zT+Tk ST7xcdmP0GTi85FvI5LyCo51/9UdYbJz9OPXUXiPNmAXLIfoZyhUjm9hY7/5vUj0 D/WsqqgIOrGNO8njRURYHkBwH5rL6S0PiwU7BzwFtCcTJ3WnA+/dtotzXv0tbeVW fVJ7ZM9+vQAMLZN0giKGltCTfVadi6Z2lzXayFPAP7+FQ9j0tgSSVYvql7mechDP Nez3pg+QU1mJGueyM2fGVaK8axT6Hd4gEEgqsICFkKU9UHrnYb9GwrDis4KFEl7g 2rDLJH0TmOSHOCbaZ/5zAWyxOetjdMS+UeK6lQbN6Pp0E9OtffEQNBEOnYP/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUw6MLdrWuQmL7Ou5Jwv8kMtrzj1kwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjIwDQYJKoZIhvcNAQELBQADggEBAAYiG/SmZmdGVGC9BM5BBnk3Ih4UpBWW 8vA/faPZ+gwiALg9Tt8q3PDcKbJRcQrbF1nPMMClO/L74IjjUWO9fOKhtPtcEM3J RPD1eOHHIVKQq7Z24pr0alMOhnjXI0MWquJ7iny1/cH86MdYYgMQzxM9ut8vtwyP hNeimYYoAhMCFpjT5Tx/GX+2xsruX4rLbXRZH4Av93U7EsLbOFKOu+uv0wbyA0Wr JDwApcPDqSPloOdMyu0dr8U8ok6YnYt9KcyWhkMeAdlB1b7ul4Cj0HObCrNGETm6 SyTG4nr68wU2kNUYDJXsNx8yrdk4tliUloiU5hPVepQY5rHLdtYbndw= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:59 2025 by rpki-client