$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323235303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323235303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: xsolw2PY1oa8F/8bKzGripyHuLDXXmNm6Ht0jCbIpSI= Subject key identifier: FF:30:C2:08:8D:B0:F1:1A:D7:F6:8A:EE:38:61:3C:E8:E5:38:35:39 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 174810F09578299F1D58B57EC83E932E653EE2F6 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323235303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2250::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:48:10:f0:95:78:29:9f:1d:58:b5:7e:c8:3e:93:2e:65:3e:e2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=FF30C2088DB0F11AD7F68AEE38613CE8E5383539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:74:6a:46:01:b8:59:fb:98:d5:db:49:4c:5a: 80:5f:b3:76:5f:30:76:97:ba:5b:29:64:cb:3a:ed: fe:e3:95:bb:50:d7:cf:6f:34:bb:ac:78:e1:35:95: 80:f9:84:63:9b:0c:9e:f1:5d:c8:a6:c3:f3:15:62: c2:d1:5f:09:ce:bb:c3:5c:80:39:6f:6d:ad:06:10: ce:30:84:63:7a:db:db:7a:e6:db:bc:da:d2:60:75: ed:ab:20:9a:e5:45:0f:78:94:36:5a:22:03:3c:8c: f8:24:52:a7:ad:6c:d3:42:19:03:95:f5:20:42:44: 19:dc:c0:a3:38:5c:e3:d7:82:92:ca:23:4d:32:b3: f5:f1:a4:57:8c:fd:20:9b:2f:81:ba:b2:ab:f0:9d: 90:90:7f:45:7f:55:b9:69:de:73:d2:27:04:f3:49: 18:fa:3c:ba:58:45:8e:de:9d:db:72:5f:ea:08:b9: 1e:8c:aa:9b:2d:c8:28:a3:42:3b:41:1d:2f:05:e0: 75:02:73:38:28:e7:8b:20:75:8c:1b:ef:41:09:ca: 04:c7:72:52:0f:42:ac:e8:d2:2c:14:fd:3a:b8:9b: f6:6c:5b:a1:d2:8f:df:a8:1f:c3:8d:c7:97:11:9c: b6:6d:b6:02:84:4d:5a:37:cf:e2:3d:6f:b8:42:0f: 32:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:30:C2:08:8D:B0:F1:1A:D7:F6:8A:EE:38:61:3C:E8:E5:38:35:39 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323235303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2250::/48 Signature Algorithm: sha256WithRSAEncryption 1c:81:f3:7d:8a:ff:ae:61:58:86:db:cf:bf:7f:3e:64:4e:f0: 31:e6:48:70:f0:85:db:c9:a2:7b:1c:e1:bc:d5:ad:29:0d:7a: 81:39:4d:f0:5a:12:f9:b2:13:bd:d0:bf:3d:82:47:5b:7d:69: 9b:d2:63:e7:30:4b:42:8b:ff:7e:fa:0e:ef:01:98:1a:de:9b: ce:af:b6:d3:b7:32:b3:81:b1:63:5b:52:8b:b1:d4:95:70:bb: 8e:9a:e8:42:46:f1:54:a6:0e:15:79:cd:b7:ca:3f:48:bc:e8: e8:4f:dc:e5:2d:f2:c3:1e:18:37:1e:18:00:88:8b:be:b1:39: ae:b6:bb:c0:54:da:a8:f8:0a:53:63:34:3a:e0:d5:46:64:f0: be:bb:01:90:3c:d0:71:98:b2:6c:f8:f0:56:59:2e:17:66:e0: 0c:e4:95:22:73:43:3f:b4:b9:23:5d:54:6b:44:fe:31:82:e9: e4:68:43:59:a2:74:96:cf:bc:d5:3d:e8:6f:9b:e6:ce:f5:bd: 2a:b3:1c:10:31:f2:0c:ac:ff:00:e7:04:3a:62:9a:86:9a:0f: 83:4a:b2:fa:12:2d:d0:74:5e:d8:1e:fe:05:bc:5c:6c:46:60: 61:25:d7:2d:64:ce:bf:24:34:bb:f3:77:4d:3e:51:ad:49:6b: 04:a7:87:c3 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUF0gQ8JV4KZ8dWLV+yD6TLmU+4vYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKEZGMzBDMjA4OERCMEYxMUFEN0Y2OEFFRTM4NjEzQ0U4RTUzODM1MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9dGpGAbhZ+5jV20lMWoBfs3Zf MHaXulspZMs67f7jlbtQ189vNLuseOE1lYD5hGObDJ7xXcimw/MVYsLRXwnOu8Nc gDlvba0GEM4whGN629t65tu82tJgde2rIJrlRQ94lDZaIgM8jPgkUqetbNNCGQOV 9SBCRBncwKM4XOPXgpLKI00ys/XxpFeM/SCbL4G6sqvwnZCQf0V/Vblp3nPSJwTz SRj6PLpYRY7endtyX+oIuR6MqpstyCijQjtBHS8F4HUCczgo54sgdYwb70EJygTH clIPQqzo0iwU/Tq4m/ZsW6HSj9+oH8ONx5cRnLZttgKETVo3z+I9b7hCDzIvAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU/zDCCI2w8RrX9oruOGE86OU4NTkwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM1MzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIlAwDQYJKoZIhvcNAQELBQADggEBAByB832K/65hWIbbz79/PmRO8DHmSHDw hdvJonsc4bzVrSkNeoE5TfBaEvmyE73Qvz2CR1t9aZvSY+cwS0KL/376Du8BmBre m86vttO3MrOBsWNbUoux1JVwu46a6EJG8VSmDhV5zbfKP0i86OhP3OUt8sMeGDce GACIi76xOa62u8BU2qj4ClNjNDrg1UZk8L67AZA80HGYsmz48FZZLhdm4AzklSJz Qz+0uSNdVGtE/jGC6eRoQ1midJbPvNU96G+b5s71vSqzHBAx8gys/wDnBDpimoaa D4NKsvoSLdB0Xtge/gW8XGxGYGEl1y1kzr8kNLvzd00+Ua1JawSnh8M= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:48 2025 by rpki-client