$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: O+L2NKK6XL7RRmdht/X7FCEZJs6nLEGWAPXfgqD654A= Subject key identifier: 49:41:3F:79:09:05:36:EE:19:21:07:C9:67:ED:75:9D:6D:C0:19:EB Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 15CE54F131A3E2FD46C73DB9F4F2982A268C308A Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 2404:97c0:2241::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ce:54:f1:31:a3:e2:fd:46:c7:3d:b9:f4:f2:98:2a:26:8c:30:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=49413F79090536EE192107C967ED759D6DC019EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:18:89:4e:c4:cf:01:15:06:80:71:70:f7:34: 42:e3:90:e5:8a:cc:97:73:14:21:99:cf:5d:14:0f: 15:4e:95:a1:bb:f9:07:34:24:94:a4:5d:7b:10:25: c8:c1:cb:c8:e0:69:7a:c1:a9:ae:9c:92:cc:b2:ab: 81:c0:a0:2e:bb:c4:20:cf:5a:24:92:84:f2:b7:f5: 53:70:39:1d:1f:a5:63:4f:f5:4c:7b:eb:0d:45:a3: b9:a0:da:30:f0:02:08:96:1c:56:1e:b1:ad:9c:21: 1a:16:23:5d:d6:58:09:77:5c:7a:81:a4:0b:24:cb: e9:10:68:d8:49:96:70:93:67:d3:91:a6:b7:16:db: 84:4f:5b:20:19:95:1d:61:8f:98:e1:d4:04:ef:6b: 21:50:26:cc:09:3f:3e:fd:de:a4:2f:f0:ed:b0:a4: e0:82:16:0a:e7:05:8e:60:64:87:8b:19:f3:f5:d0: ce:ac:e8:22:c3:9a:6d:4b:12:1b:d1:36:b0:1f:32: cb:03:95:09:77:5e:63:1d:17:2b:a1:47:6b:07:4d: 59:28:ba:f9:42:89:6c:8a:85:3a:ea:e3:1d:9f:fe: ba:ec:f5:f1:f5:f8:58:01:09:36:2c:a7:4f:1a:a4: 00:a1:97:54:e1:7c:b7:a3:03:80:e3:9c:e7:d2:5b: 53:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:41:3F:79:09:05:36:EE:19:21:07:C9:67:ED:75:9D:6D:C0:19:EB X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2241::/48 Signature Algorithm: sha256WithRSAEncryption b9:55:5c:21:d3:21:90:ca:5d:2b:77:c9:73:2a:e8:bf:09:5a: 21:79:11:a3:fe:d1:ac:e4:bd:30:c9:b8:fd:84:e7:40:38:9a: f0:c2:2d:a7:c3:d2:33:8d:1e:c4:79:50:76:70:f6:58:97:28: 6a:47:52:42:59:47:55:87:48:83:81:9a:af:b0:98:17:4e:7f: e9:09:54:c1:60:8b:ac:23:ed:91:ba:cf:dc:ba:62:ee:09:9f: 56:6a:c3:f9:ae:fc:4a:41:d8:b5:ca:4b:60:7c:a9:dc:f5:e9: 00:94:ae:49:ba:bb:c4:4f:b0:ff:53:fb:90:74:82:47:85:61: 50:8b:46:de:80:ef:ff:60:04:0d:e8:51:29:64:65:ec:89:22: bb:9d:bc:9d:2b:5e:64:af:86:3e:33:56:29:55:5f:6c:85:70: df:94:69:0b:df:ab:72:44:0f:a9:e4:eb:e5:47:02:12:83:68: a4:04:d4:5b:11:85:f7:9d:3f:03:98:4b:15:59:f5:e6:95:7e: 64:81:fa:5f:54:a6:23:5e:b8:c5:91:ed:14:a9:bd:11:f3:ae: 99:f5:f1:2f:b5:31:1f:e1:b1:b0:3d:37:4f:fa:9c:81:03:4e: 1a:ee:ea:cc:ce:01:d6:24:fa:83:c6:45:74:de:c3:d1:ac:c1: cb:84:12:10 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFc5U8TGj4v1Gxz259PKYKiaMMIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKDQ5NDEzRjc5MDkwNTM2RUUxOTIxMDdDOTY3RUQ3NTlENkRDMDE5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvGIlOxM8BFQaAcXD3NELjkOWK zJdzFCGZz10UDxVOlaG7+Qc0JJSkXXsQJcjBy8jgaXrBqa6cksyyq4HAoC67xCDP WiSShPK39VNwOR0fpWNP9Ux76w1Fo7mg2jDwAgiWHFYesa2cIRoWI13WWAl3XHqB pAsky+kQaNhJlnCTZ9ORprcW24RPWyAZlR1hj5jh1ATvayFQJswJPz793qQv8O2w pOCCFgrnBY5gZIeLGfP10M6s6CLDmm1LEhvRNrAfMssDlQl3XmMdFyuhR2sHTVko uvlCiWyKhTrq4x2f/rrs9fH1+FgBCTYsp08apAChl1ThfLejA4DjnOfSW1PNAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUSUE/eQkFNu4ZIQfJZ+11nW3AGeswHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0MzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkEwDQYJKoZIhvcNAQELBQADggEBALlVXCHTIZDKXSt3yXMq6L8JWiF5EaP+ 0azkvTDJuP2E50A4mvDCLafD0jONHsR5UHZw9liXKGpHUkJZR1WHSIOBmq+wmBdO f+kJVMFgi6wj7ZG6z9y6Yu4Jn1Zqw/mu/EpB2LXKS2B8qdz16QCUrkm6u8RPsP9T +5B0gkeFYVCLRt6A7/9gBA3oUSlkZeyJIrudvJ0rXmSvhj4zVilVX2yFcN+UaQvf q3JED6nk6+VHAhKDaKQE1FsRhfedPwOYSxVZ9eaVfmSB+l9UpiNeuMWR7RSpvRHz rpn18S+1MR/hsbA9N0/6nIEDThru6szOAdYk+oPGRXTew9GswcuEEhA= -----END CERTIFICATE-----Generated at Sun Jul 27 02:07:47 2025 by rpki-client