$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: +AION4xshL8iIxtHjO2ni1RMztsHD4O/HMoUXLigSYw= Subject key identifier: 6E:1C:EF:8B:2C:54:64:36:53:81:4E:64:1E:AD:C4:21:91:CD:AC:95 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 5FEA7E4861070B150BC21E4D07FC47C667B5E4B5 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2239::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ea:7e:48:61:07:0b:15:0b:c2:1e:4d:07:fc:47:c6:67:b5:e4:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=6E1CEF8B2C54643653814E641EADC42191CDAC95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:ef:40:7e:44:0e:4a:ef:6b:84:eb:69:fb: de:46:ef:12:ca:36:9f:b7:64:64:b5:f0:0f:83:07: cb:f5:1a:39:81:18:dd:5a:54:99:f3:e9:06:67:9b: 9a:a3:cd:52:35:5e:35:b7:4a:53:99:27:18:92:48: 6b:02:c6:3b:bb:a6:07:e6:cc:0e:a1:08:79:bf:96: 3b:43:58:51:29:83:88:93:7f:35:a4:34:6d:af:55: 01:83:e1:b6:82:6e:5c:23:4d:f4:b9:6a:26:cf:88: 3d:0f:64:b4:5d:07:98:6c:e4:a5:23:26:ce:b3:f1: 7e:b2:47:67:95:55:26:9e:bd:b9:3d:40:3b:0a:ce: f8:83:48:c5:ff:ab:2f:aa:6b:74:dc:70:95:a1:60: fb:fd:11:20:4b:c3:e6:53:57:c1:49:c0:eb:43:d6: 72:ac:0a:ea:df:65:d5:39:fe:ff:ff:33:ff:0c:d1: 84:bd:fc:59:f6:b8:e1:69:e2:99:a3:b5:1b:01:68: 54:12:c1:3c:5b:fb:41:ea:85:cc:73:5d:17:01:66: f9:77:5e:ce:6e:4b:04:37:b7:47:fc:51:af:17:27: af:1d:05:38:39:16:14:23:fb:48:56:34:54:21:4c: 02:9c:a9:00:54:8c:40:ed:78:49:9d:47:57:f4:4e: 3f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1C:EF:8B:2C:54:64:36:53:81:4E:64:1E:AD:C4:21:91:CD:AC:95 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2239::/48 Signature Algorithm: sha256WithRSAEncryption 0f:70:22:dc:d6:e3:1b:b4:e0:1d:4d:f8:07:bb:b5:73:3c:50: 25:a7:96:06:91:ff:18:1b:4f:0b:77:92:fe:ea:bc:6f:8a:08: 3b:cc:86:76:3d:dc:77:71:04:34:1f:f5:2f:fd:be:69:76:5b: e7:40:9d:ea:08:7d:51:30:c7:02:66:a2:53:9a:de:29:90:09: af:8a:65:dd:9f:3b:6a:66:56:42:13:fb:a2:c3:95:64:06:1e: 36:be:66:3b:de:5c:d4:0f:96:ee:d4:2b:01:81:a4:55:30:e4: 23:94:91:6b:4b:dc:83:89:d3:51:ba:da:6e:16:e9:b4:b3:36: 3a:fc:5e:57:6d:e2:64:8b:ff:87:c5:4f:38:25:b0:4d:af:62: 95:79:89:f5:2a:00:e7:e5:ba:cf:aa:38:b1:50:90:5e:c9:48: 1f:79:5c:a3:56:49:b2:e4:97:77:4e:dd:13:ec:fe:8f:00:6b: ae:97:86:6a:93:43:12:75:51:05:88:34:ac:4a:37:1a:c1:49: 16:69:75:66:01:6f:55:f3:33:37:6d:76:54:86:0c:60:43:c6: fa:c3:10:47:de:48:41:50:19:ee:eb:cc:04:39:5f:23:32:00: f9:b4:aa:18:15:be:e0:ef:57:8e:61:b1:2c:bf:41:60:7e:5c: 53:63:81:16 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUX+p+SGEHCxULwh5NB/xHxme15LUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKDZFMUNFRjhCMkM1NDY0MzY1MzgxNEU2NDFFQURDNDIxOTFDREFDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6eO9AfkQOSu9rhOtp+95G7xLK Np+3ZGS18A+DB8v1GjmBGN1aVJnz6QZnm5qjzVI1XjW3SlOZJxiSSGsCxju7pgfm zA6hCHm/ljtDWFEpg4iTfzWkNG2vVQGD4baCblwjTfS5aibPiD0PZLRdB5hs5KUj Js6z8X6yR2eVVSaevbk9QDsKzviDSMX/qy+qa3TccJWhYPv9ESBLw+ZTV8FJwOtD 1nKsCurfZdU5/v//M/8M0YS9/Fn2uOFp4pmjtRsBaFQSwTxb+0HqhcxzXRcBZvl3 Xs5uSwQ3t0f8Ua8XJ68dBTg5FhQj+0hWNFQhTAKcqQBUjEDteEmdR1f0Tj+XAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUbhzviyxUZDZTgU5kHq3EIZHNrJUwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjkwDQYJKoZIhvcNAQELBQADggEBAA9wItzW4xu04B1N+Ae7tXM8UCWnlgaR /xgbTwt3kv7qvG+KCDvMhnY93HdxBDQf9S/9vml2W+dAneoIfVEwxwJmolOa3imQ Ca+KZd2fO2pmVkIT+6LDlWQGHja+ZjveXNQPlu7UKwGBpFUw5COUkWtL3IOJ01G6 2m4W6bSzNjr8Xldt4mSL/4fFTzglsE2vYpV5ifUqAOflus+qOLFQkF7JSB95XKNW SbLkl3dO3RPs/o8Aa66XhmqTQxJ1UQWINKxKNxrBSRZpdWYBb1XzMzdtdlSGDGBD xvrDEEfeSEFQGe7rzAQ5XyMyAPm0qhgVvuDvV45hsSy/QWB+XFNjgRY= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:51 2025 by rpki-client