$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: +FM4I+w7B6+tO/3MqEz8YhoqcUcc7yqMtsQdbHOkj70= Subject key identifier: 88:7F:7F:37:4A:64:7C:A6:AC:85:A9:FC:3F:FE:BB:68:B0:16:6F:40 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 1ED71D274EA71309CD456762E26C40165FDB6558 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 2404:97c0:2245::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d7:1d:27:4e:a7:13:09:cd:45:67:62:e2:6c:40:16:5f:db:65:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=887F7F374A647CA6AC85A9FC3FFEBB68B0166F40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:25:07:b3:ea:03:5b:b6:fc:14:b8:47:a8: 97:c3:98:40:40:fc:37:5b:1a:5e:29:f4:1b:cf:b9: 80:73:6e:dd:ee:d2:ea:ec:ea:08:fb:01:dd:87:bf: 96:91:5d:36:bc:19:8b:8a:ac:11:9d:41:5a:6a:c6: 81:f0:eb:6c:45:61:3f:49:a4:29:6f:6d:f1:54:e6: 58:84:42:41:0a:70:0f:28:98:01:46:6a:d7:70:8b: 9c:3b:9a:8d:6c:46:a6:d1:3b:84:bd:78:08:14:e4: 53:f3:9f:1e:6f:3b:14:09:c9:28:f0:2c:d9:a1:4f: 4f:bd:b0:1e:bf:3b:87:1a:f3:f2:e0:1b:d7:3f:5e: 3d:3a:ff:4b:16:d2:48:60:3e:a1:c7:0b:fc:d5:e2: 50:66:7e:bd:83:3a:c7:e2:4b:f2:76:0e:5a:96:96: ea:6f:ba:7b:5d:f9:1d:22:e5:67:5d:a9:54:37:d2: f5:32:32:2d:02:57:d8:40:4a:ff:34:f2:e6:f3:f1: 6d:70:60:b7:ee:f3:c7:7c:52:5e:2e:32:06:a3:35: e5:09:a7:64:57:5c:14:78:7e:3f:d9:84:f8:ad:54: 75:61:f7:a1:45:09:8f:03:bb:6d:9d:41:ee:39:83: f4:06:59:4f:6a:51:5e:a8:06:5e:fd:e8:2c:59:ed: f3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7F:7F:37:4A:64:7C:A6:AC:85:A9:FC:3F:FE:BB:68:B0:16:6F:40 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2245::/48 Signature Algorithm: sha256WithRSAEncryption 6e:af:f2:77:b9:b6:9d:cc:12:e3:88:be:a8:b9:fe:06:d3:1d: 1a:31:3d:e2:fa:0b:d7:7e:a3:2d:3a:59:3d:3a:83:12:dd:d4: 5e:47:90:4f:1a:be:c8:43:0a:09:4b:a4:f2:6f:51:e9:30:51: a3:07:0a:72:81:d4:9e:64:d4:ec:0f:62:6b:03:8c:9a:ed:0c: e5:67:9f:12:6f:52:a2:68:84:91:4a:8c:ae:06:4d:1a:ad:f8: ee:e3:8f:1d:6f:f7:bc:54:d4:36:56:c7:5d:d2:63:dd:03:f5: e8:29:29:e0:99:05:5d:9a:cc:65:89:5e:2c:34:79:45:0c:9b: 54:b9:c3:e7:7b:d1:93:0f:6f:39:96:e3:a7:dc:14:b7:3d:96: 5c:ad:7a:05:6b:3b:05:83:61:89:ba:a9:27:63:65:42:70:b3: 08:02:7a:11:99:f8:61:53:cc:bf:0b:b9:32:c6:fb:e2:83:0e: ee:98:33:57:0e:08:0e:12:6e:9f:fa:11:7b:07:f1:3f:2d:38: 5c:cc:21:6c:b6:e2:23:3f:d0:38:45:15:58:83:8e:09:0f:68: 3a:a4:eb:5f:eb:c5:55:70:d4:e5:b0:ee:b0:43:a2:a5:79:c2: 4c:65:bf:4e:6c:6a:a6:e8:f3:ef:1a:5e:00:c9:8d:b1:f2:51: f3:f9:93:7b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUHtcdJ06nEwnNRWdi4mxAFl/bZVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKDg4N0Y3RjM3NEE2NDdDQTZBQzg1QTlGQzNGRkVCQjY4QjAxNjZGNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ESUHs+oDW7b8FLhHqJfDmEBA /DdbGl4p9BvPuYBzbt3u0urs6gj7Ad2Hv5aRXTa8GYuKrBGdQVpqxoHw62xFYT9J pClvbfFU5liEQkEKcA8omAFGatdwi5w7mo1sRqbRO4S9eAgU5FPznx5vOxQJySjw LNmhT0+9sB6/O4ca8/LgG9c/Xj06/0sW0khgPqHHC/zV4lBmfr2DOsfiS/J2DlqW lupvuntd+R0i5WddqVQ30vUyMi0CV9hASv808ubz8W1wYLfu88d8Ul4uMgajNeUJ p2RXXBR4fj/ZhPitVHVh96FFCY8Du22dQe45g/QGWU9qUV6oBl796CxZ7fObAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUiH9/N0pkfKashan8P/67aLAWb0AwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0MzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkUwDQYJKoZIhvcNAQELBQADggEBAG6v8ne5tp3MEuOIvqi5/gbTHRoxPeL6 C9d+oy06WT06gxLd1F5HkE8avshDCglLpPJvUekwUaMHCnKB1J5k1OwPYmsDjJrt DOVnnxJvUqJohJFKjK4GTRqt+O7jjx1v97xU1DZWx13SY90D9egpKeCZBV2azGWJ Xiw0eUUMm1S5w+d70ZMPbzmW46fcFLc9llytegVrOwWDYYm6qSdjZUJwswgCehGZ +GFTzL8LuTLG++KDDu6YM1cOCA4Sbp/6EXsH8T8tOFzMIWy24iM/0DhFFViDjgkP aDqk61/rxVVw1OWw7rBDoqV5wkxlv05saqbo8+8aXgDJjbHyUfP5k3s= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client