$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: N43lK9hmv37nrvHFfaSPukTJSDp5n3ODLI0RhFM+TW0= Subject key identifier: 3B:79:38:0E:3C:AF:0E:15:B2:5A:66:48:41:F8:1E:BC:0C:7A:D3:CB Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 19E4045EB9B8AD3518CECC2C7DDD73A75A091C98 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2249::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:e4:04:5e:b9:b8:ad:35:18:ce:cc:2c:7d:dd:73:a7:5a:09:1c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=3B79380E3CAF0E15B25A664841F81EBC0C7AD3CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:2b:c6:b6:41:e8:0b:7a:ca:a9:e9:a5:db: 2c:fa:95:bc:f0:bc:06:bb:6a:d4:33:49:8d:97:80: aa:b3:10:9f:cd:e4:aa:28:c5:65:41:10:e6:82:c1: d5:d9:40:a2:13:f6:d0:a2:3f:79:03:4c:59:8c:c4: 04:75:23:95:76:0d:35:1d:14:8f:b2:27:4a:e0:70: 3b:af:44:75:37:cf:b1:25:62:df:c3:e3:6a:99:28: 6b:49:99:95:5a:23:8b:3a:62:5b:ac:4d:d0:18:ae: 3b:21:43:4e:f8:55:88:3c:2e:b1:8e:df:41:62:06: 22:0f:70:4d:d6:b2:e4:21:17:6c:88:b4:6e:64:96: 70:e0:26:33:f2:f2:5d:cf:24:a1:4d:42:7f:5d:c5: a8:35:7e:3a:4a:12:95:b5:e4:19:4d:6c:d8:48:19: fc:ff:15:6e:cf:6e:35:63:69:2d:7d:a2:ac:4c:58: d4:b4:44:e1:40:d4:34:ae:86:e6:ca:e9:15:f8:88: bd:08:99:94:c6:21:65:5c:01:d7:b2:8e:c4:00:39: ea:8d:f9:35:9f:dd:bc:ee:44:19:33:2e:08:50:d0: ef:e1:2d:79:dd:19:dd:64:4b:cd:a0:8d:c0:e8:94: f6:0d:93:13:af:ca:56:00:c3:6b:07:77:4d:ad:8e: 0e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:79:38:0E:3C:AF:0E:15:B2:5A:66:48:41:F8:1E:BC:0C:7A:D3:CB X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2249::/48 Signature Algorithm: sha256WithRSAEncryption 08:c5:f4:f8:25:46:3e:18:5b:5e:11:96:e9:4f:63:48:2c:9d: e8:e6:e6:17:52:a4:93:54:93:10:3f:e8:1d:65:93:32:22:ec: 7e:24:94:a5:e4:25:4e:a3:3b:52:87:96:0c:6a:c3:03:9e:27: 59:34:99:99:d2:91:ea:61:e2:00:c8:fb:5e:69:a3:1d:f6:c9: a1:e8:ab:cb:75:76:3f:d6:a4:04:c5:d8:36:70:8b:0b:6c:4f: 1f:44:30:6e:83:df:6f:6a:0b:50:d5:c1:31:f1:0d:0b:4f:ee: 58:b7:ad:c1:36:1f:53:a4:2a:00:bd:ae:8e:a6:ee:61:e2:85: eb:23:c6:ce:3f:1a:40:18:ad:cb:53:f2:6a:71:5d:2d:28:15: 6f:a6:cc:d8:d7:ca:d5:ef:a4:9b:be:b7:1c:85:1e:5b:23:f8: bb:15:a9:bc:ee:ed:eb:4c:06:20:61:25:08:23:d6:1e:23:26: 0f:ba:90:24:12:e9:34:dc:e0:1c:6d:74:f8:06:ed:07:a4:98: 8c:fb:02:14:28:f9:f9:c8:58:1e:63:cb:2b:4e:d3:7b:54:b9: f5:80:93:57:ce:8e:b8:cb:98:12:92:28:fc:e9:38:50:aa:15: 23:16:c0:4a:29:63:7b:88:cd:07:89:ee:7a:51:da:ad:e7:36: 67:22:a9:18 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGeQEXrm4rTUYzswsfd1zp1oJHJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKDNCNzkzODBFM0NBRjBFMTVCMjVBNjY0ODQxRjgxRUJDMEM3QUQzQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA8CvGtkHoC3rKqeml2yz6lbzw vAa7atQzSY2XgKqzEJ/N5KooxWVBEOaCwdXZQKIT9tCiP3kDTFmMxAR1I5V2DTUd FI+yJ0rgcDuvRHU3z7ElYt/D42qZKGtJmZVaI4s6YlusTdAYrjshQ074VYg8LrGO 30FiBiIPcE3WsuQhF2yItG5klnDgJjPy8l3PJKFNQn9dxag1fjpKEpW15BlNbNhI Gfz/FW7PbjVjaS19oqxMWNS0ROFA1DSuhubK6RX4iL0ImZTGIWVcAdeyjsQAOeqN +TWf3bzuRBkzLghQ0O/hLXndGd1kS82gjcDolPYNkxOvylYAw2sHd02tjg5LAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUO3k4DjyvDhWyWmZIQfgevAx608swHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkkwDQYJKoZIhvcNAQELBQADggEBAAjF9PglRj4YW14RlulPY0gsnejm5hdS pJNUkxA/6B1lkzIi7H4klKXkJU6jO1KHlgxqwwOeJ1k0mZnSkeph4gDI+15pox32 yaHoq8t1dj/WpATF2DZwiwtsTx9EMG6D329qC1DVwTHxDQtP7li3rcE2H1OkKgC9 ro6m7mHihesjxs4/GkAYrctT8mpxXS0oFW+mzNjXytXvpJu+txyFHlsj+LsVqbzu 7etMBiBhJQgj1h4jJg+6kCQS6TTc4BxtdPgG7QekmIz7AhQo+fnIWB5jyytO03tU ufWAk1fOjrjLmBKSKPzpOFCqFSMWwEopY3uIzQeJ7npR2q3nNmciqRg= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:48 2025 by rpki-client