$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ja2kEjkcjC0E3aWRDERlnAgw1nnkTcoTgKAJNBKS2+Y= Subject key identifier: 30:C6:99:D7:D5:86:65:5F:3B:CA:86:2E:88:3D:27:0A:18:A5:BC:73 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 68822CB9529A0B807239A177524EAF5F028A2681 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2248::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:82:2c:b9:52:9a:0b:80:72:39:a1:77:52:4e:af:5f:02:8a:26:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=30C699D7D586655F3BCA862E883D270A18A5BC73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:33:01:fa:4a:4f:05:5c:a3:cf:c7:a0:3e: 5d:1f:05:6d:cb:bc:2f:34:92:56:00:0c:49:6a:b6: be:21:06:da:14:b8:c7:22:bf:fe:b7:e8:43:4c:bc: 5d:04:12:fd:4c:9a:b3:1e:c4:c2:e6:8e:b7:6c:53: 62:87:cf:c2:68:0e:fc:d4:00:96:6d:cb:88:77:a3: 02:56:e0:7a:c3:a0:4d:04:25:60:68:01:32:cd:a8: 65:28:3c:83:5c:88:57:d1:6d:59:71:f6:68:db:03: d8:69:81:08:07:d0:a2:4d:fd:db:e9:00:24:27:b0: 20:7e:63:c2:4b:ef:76:82:3a:78:03:00:c3:3e:f0: 99:e1:ce:62:d8:00:50:e7:bb:28:52:cb:aa:02:33: b1:d8:27:33:4f:7f:64:71:bf:ce:16:ca:c6:d5:00: 39:8d:05:96:07:a1:14:d0:a7:7b:3a:0f:19:31:17: 3a:13:04:f2:69:0a:3d:8b:91:30:38:72:20:8a:cb: f1:d0:c4:a7:bf:bf:df:1c:f8:45:e2:2c:21:eb:d3: 6a:4a:62:78:0c:76:d5:b0:74:98:94:f4:28:a9:8a: a1:21:42:91:47:0c:75:8c:83:a5:f6:4d:14:e5:7a: 3a:aa:cc:7b:3f:60:63:84:1e:9d:94:b3:da:47:7d: 43:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C6:99:D7:D5:86:65:5F:3B:CA:86:2E:88:3D:27:0A:18:A5:BC:73 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2248::/48 Signature Algorithm: sha256WithRSAEncryption cf:42:91:02:e4:b2:cb:78:e9:75:6f:e0:a7:94:d6:c3:5d:92: d6:97:7d:b9:da:15:f8:5b:59:a8:89:23:51:87:50:9a:ee:cd: c9:79:e5:53:4d:fd:44:8d:1b:20:38:74:8a:b6:7e:c6:82:dc: 31:09:75:2b:82:c0:69:ca:1d:a1:15:19:6e:cd:e3:d3:33:52: 0a:14:aa:54:f0:6a:8f:8d:ca:18:e8:9c:f9:db:48:8c:2e:32: af:b1:aa:df:1e:e0:a8:c3:a4:9a:54:f3:fe:dc:ad:19:91:3d: 40:23:72:88:d4:a8:d3:70:23:07:a2:8d:4c:d8:fe:d8:67:01: 00:a4:3f:d9:2b:10:c7:ba:68:8c:a5:02:7c:49:4f:0d:0a:d7: 66:f7:8a:d4:7e:6d:c0:12:c8:2e:1b:84:c6:c0:c3:52:06:87: fd:22:d4:9e:d2:71:28:9f:d6:31:cb:cb:36:35:d1:a2:d3:8b: 80:eb:98:e6:9f:cb:d0:18:19:34:a9:68:88:85:20:42:c1:2a: 27:e3:48:2e:5f:e4:c4:2a:ba:0d:8e:78:1f:f3:95:a5:fd:2f: a9:ec:ba:7f:9c:f2:ee:32:4f:bf:1a:96:33:38:16:c6:1e:84: 0b:31:35:57:43:f4:02:89:e7:4a:7f:31:ed:d8:a8:f4:83:22: cf:c1:8b:11 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUaIIsuVKaC4ByOaF3Uk6vXwKKJoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKDMwQzY5OUQ3RDU4NjY1NUYzQkNBODYyRTg4M0QyNzBBMThBNUJDNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkzMB+kpPBVyjz8egPl0fBW3L vC80klYADElqtr4hBtoUuMciv/636ENMvF0EEv1MmrMexMLmjrdsU2KHz8JoDvzU AJZty4h3owJW4HrDoE0EJWBoATLNqGUoPINciFfRbVlx9mjbA9hpgQgH0KJN/dvp ACQnsCB+Y8JL73aCOngDAMM+8JnhzmLYAFDnuyhSy6oCM7HYJzNPf2Rxv84WysbV ADmNBZYHoRTQp3s6DxkxFzoTBPJpCj2LkTA4ciCKy/HQxKe/v98c+EXiLCHr02pK YngMdtWwdJiU9CipiqEhQpFHDHWMg6X2TRTlejqqzHs/YGOEHp2Us9pHfUM7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUMMaZ19WGZV87yoYuiD0nChilvHMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkgwDQYJKoZIhvcNAQELBQADggEBAM9CkQLksst46XVv4KeU1sNdktaXfbna FfhbWaiJI1GHUJruzcl55VNN/USNGyA4dIq2fsaC3DEJdSuCwGnKHaEVGW7N49Mz UgoUqlTwao+NyhjonPnbSIwuMq+xqt8e4KjDpJpU8/7crRmRPUAjcojUqNNwIwei jUzY/thnAQCkP9krEMe6aIylAnxJTw0K12b3itR+bcASyC4bhMbAw1IGh/0i1J7S cSif1jHLyzY10aLTi4DrmOafy9AYGTSpaIiFIELBKifjSC5f5MQqug2OeB/zlaX9 L6nsun+c8u4yT78aljM4FsYehAsxNVdD9AKJ50p/Me3YqPSDIs/BixE= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:50 2025 by rpki-client