$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: VlY5JXD98wE4H0cHdXyksMDdtt7hVewJ5NJJOtJnXRY= Subject key identifier: 95:C1:D0:8C:00:5A:80:B4:78:F9:0E:3F:E4:47:BD:6A:6B:D0:C3:53 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 2DFA586E2A507E26D159AC46E103F354BB80A037 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 2404:97c0:2233::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:fa:58:6e:2a:50:7e:26:d1:59:ac:46:e1:03:f3:54:bb:80:a0:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=95C1D08C005A80B478F90E3FE447BD6A6BD0C353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:58:4b:a3:50:fc:cb:fb:b1:fd:a4:45:eb:fc: 15:06:4c:91:41:14:77:5b:ed:cd:e8:e9:cf:32:46: 4c:85:ed:18:ff:48:05:f4:76:c9:63:f2:43:32:d2: d6:f8:21:00:de:2c:83:e8:7a:3a:71:e2:45:84:25: 45:a6:ee:3f:5d:14:1a:f1:59:49:d6:2d:c9:85:a5: 8a:6f:90:72:0f:1d:f9:37:ca:2c:65:9f:93:55:43: f5:45:e8:4d:d6:86:df:45:1e:59:b1:b8:74:22:7a: bd:5e:24:ae:a7:70:9c:de:8a:b4:ad:92:2e:59:1c: a0:eb:d2:57:11:ee:9f:50:30:cc:2c:0d:db:4f:c3: b8:59:e7:8c:76:60:73:a2:4a:02:8d:f0:96:2f:40: 6c:11:e2:93:7d:bd:bd:dc:a4:6c:ab:db:dd:bf:32: 8c:8d:f4:66:bf:8b:a5:cd:5e:a2:99:e5:05:89:cd: 8d:f2:a1:b1:5b:a0:29:95:a1:13:be:42:a9:66:8d: cf:4d:2c:f6:7f:96:7d:ba:b7:f9:57:1a:d3:26:29: e4:8a:f6:e8:86:41:1c:4b:32:e2:12:cd:43:c8:4f: 5c:9d:0b:ee:a5:52:36:7c:9a:90:f0:8f:0b:fe:57: 6b:6e:58:d4:40:f1:6c:a5:6e:31:4c:68:b8:29:76: 09:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C1:D0:8C:00:5A:80:B4:78:F9:0E:3F:E4:47:BD:6A:6B:D0:C3:53 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2233::/48 Signature Algorithm: sha256WithRSAEncryption 0b:54:8f:8c:b2:7f:be:52:d4:61:72:cd:74:08:5b:22:55:27: b7:51:c6:27:09:90:0f:fb:25:ae:4d:6f:cf:a9:3c:9e:fa:15: 12:39:5c:1e:15:9d:74:3b:35:fc:33:d3:b8:cc:e3:95:8c:19: a6:4e:6f:eb:89:a6:bd:6a:d3:14:de:31:12:79:f1:db:4a:0e: 38:fc:0b:87:34:6b:a6:57:2f:ef:74:16:2e:00:99:cd:4c:6e: 55:ac:a3:61:8c:25:b4:89:da:ec:8a:50:df:8d:e4:eb:98:74: 71:1d:bf:59:e2:e3:aa:02:00:bc:82:6d:3b:72:07:22:66:31: 20:b4:f8:70:ab:ab:e4:17:e7:cf:00:1a:19:ef:73:25:4c:29: ff:ce:6f:b6:31:31:cf:55:5f:d4:4e:a2:3f:01:00:ce:b2:95: 8f:ba:94:35:ee:32:55:e5:20:49:00:1b:5a:fd:bd:e5:1e:02: 8e:fa:3e:3b:2f:60:29:e7:81:87:d1:78:88:c1:b0:87:7f:ed: d3:31:dd:2d:b5:3f:f8:f7:fe:22:bd:43:6b:d3:22:5a:87:83: 80:85:cc:fb:02:39:28:6a:68:b0:fd:85:38:b1:cb:9b:a9:67: 77:36:7c:59:36:d3:93:6c:ad:b7:35:99:29:9e:81:8f:53:02: 21:65:64:3e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULfpYbipQfibRWaxG4QPzVLuAoDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKDk1QzFEMDhDMDA1QTgwQjQ3OEY5MEUzRkU0NDdCRDZBNkJEMEMzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGWEujUPzL+7H9pEXr/BUGTJFB FHdb7c3o6c8yRkyF7Rj/SAX0dslj8kMy0tb4IQDeLIPoejpx4kWEJUWm7j9dFBrx WUnWLcmFpYpvkHIPHfk3yixln5NVQ/VF6E3Wht9FHlmxuHQier1eJK6ncJzeirSt ki5ZHKDr0lcR7p9QMMwsDdtPw7hZ54x2YHOiSgKN8JYvQGwR4pN9vb3cpGyr292/ MoyN9Ga/i6XNXqKZ5QWJzY3yobFboCmVoRO+Qqlmjc9NLPZ/ln26t/lXGtMmKeSK 9uiGQRxLMuISzUPIT1ydC+6lUjZ8mpDwjwv+V2tuWNRA8WylbjFMaLgpdgmTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUlcHQjABagLR4+Q4/5Ee9amvQw1MwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjMwDQYJKoZIhvcNAQELBQADggEBAAtUj4yyf75S1GFyzXQIWyJVJ7dRxicJ kA/7Ja5Nb8+pPJ76FRI5XB4VnXQ7Nfwz07jM45WMGaZOb+uJpr1q0xTeMRJ58dtK Djj8C4c0a6ZXL+90Fi4Amc1MblWso2GMJbSJ2uyKUN+N5OuYdHEdv1ni46oCALyC bTtyByJmMSC0+HCrq+QX588AGhnvcyVMKf/Ob7YxMc9VX9ROoj8BAM6ylY+6lDXu MlXlIEkAG1r9veUeAo76PjsvYCnngYfReIjBsId/7dMx3S21P/j3/iK9Q2vTIlqH g4CFzPsCOShqaLD9hTixy5upZ3c2fFk205Nsrbc1mSmegY9TAiFlZD4= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client