$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: sApDse45FiPhyvfCWElReYdPrJ0u2Q0Gyubyvqovoic= Subject key identifier: 38:91:D6:EA:D3:BC:90:D3:9F:F1:1B:F8:65:6D:CF:FC:DB:CF:12:6E Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 053F79C222513714F20C704F6AE01E1881AAA566 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:03 +0000 ROA not before: Fri 04 Jul 2025 12:55:03 +0000 ROA not after: Fri 03 Jul 2026 13:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:266::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3f:79:c2:22:51:37:14:f2:0c:70:4f:6a:e0:1e:18:81:aa:a5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:03 2025 GMT Not After : Jul 3 13:00:03 2026 GMT Subject: CN=3891D6EAD3BC90D39FF11BF8656DCFFCDBCF126E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:f8:e8:23:fa:5f:0a:06:14:f1:29:0b:2c: 12:b3:cb:46:9b:cf:6c:14:8f:35:22:30:94:ea:c0: da:c6:c5:22:04:5c:7a:fb:4d:0c:79:c3:86:ad:97: d2:cd:99:12:89:0b:60:fc:d2:5d:a2:d3:03:e0:b4: fd:77:4b:b1:c4:38:d7:11:c4:2f:e3:b2:e2:26:b1: f1:d6:2d:38:06:c0:ad:72:dc:6b:0f:61:fd:6d:67: d8:23:49:a4:b7:10:6c:ec:c8:4f:d7:17:ce:03:41: 88:1e:35:5c:22:b4:e2:1b:0b:cd:fd:d2:04:54:7d: 80:34:87:19:0c:dc:c3:74:18:f1:00:e3:9e:40:61: b3:aa:24:4d:6c:37:ef:27:db:bb:1c:cd:d3:39:79: 3c:40:1f:37:0d:5f:59:87:0b:fa:17:de:18:c7:62: c8:c1:1b:15:83:3f:4e:a8:72:f5:37:64:7b:ec:46: ac:02:72:8b:19:12:5f:76:0e:cc:15:b6:a9:01:68: a9:4e:84:16:48:b0:f4:1c:1f:de:f7:2f:23:6c:a6: df:ee:77:cb:17:4e:35:b4:18:51:cc:5f:83:d3:b3: 02:bc:7e:0c:8a:9a:84:6f:c0:b1:68:aa:6b:6a:2b: a2:3d:ab:6a:e8:1c:24:1d:d2:13:b4:e5:cb:99:fa: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:91:D6:EA:D3:BC:90:D3:9F:F1:1B:F8:65:6D:CF:FC:DB:CF:12:6E X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:266::/48 Signature Algorithm: sha256WithRSAEncryption 04:7f:45:f3:dd:fe:07:60:9a:5f:1a:b6:bc:65:65:02:db:7b: f4:c2:72:8e:d9:ab:f9:f7:ae:b8:45:47:5a:61:2f:b0:97:82: 82:47:25:c3:3b:e4:eb:cd:21:dc:15:4c:a8:19:40:ef:7a:9f: fa:4e:7f:41:e5:93:60:33:f2:5d:90:53:71:35:e7:cc:b4:1e: 0f:c4:7d:f8:a0:38:5d:8d:63:07:9b:05:95:b2:94:d1:d7:76: 21:29:50:0f:3b:71:47:f3:bf:90:79:21:e7:c8:53:c4:12:63: e0:20:c5:43:d0:26:d8:34:f0:49:d8:c5:ae:cf:af:49:b9:9e: bf:18:ce:d3:a4:23:8d:0f:6e:cf:07:17:d0:55:24:f6:08:8f: 1d:99:01:fb:9a:3a:59:2b:2d:28:8b:cc:90:b5:5a:13:9c:c3: 49:ef:9c:9e:51:b8:44:3b:fc:fd:9b:56:85:8f:35:1d:0d:cb: bc:db:d5:84:3c:ce:34:96:a3:50:05:00:13:85:40:33:14:6a: e5:d2:b4:cc:7f:1b:a8:9b:a3:a3:5e:67:3d:af:f1:dc:eb:dd: 65:d9:6d:94:95:ac:fb:98:e2:60:b1:4b:4b:75:38:66:45:3b: 0d:40:75:23:bb:46:05:7a:71:9b:ac:4a:eb:47:6a:46:c7:1a: 1f:9d:ea:39 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBT95wiJRNxTyDHBPauAeGIGqpWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDNaFw0yNjA3MDMxMzAwMDNaMDMxMTAvBgNV BAMTKDM4OTFENkVBRDNCQzkwRDM5RkYxMUJGODY1NkRDRkZDREJDRjEyNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6F/joI/pfCgYU8SkLLBKzy0ab z2wUjzUiMJTqwNrGxSIEXHr7TQx5w4atl9LNmRKJC2D80l2i0wPgtP13S7HEONcR xC/jsuImsfHWLTgGwK1y3GsPYf1tZ9gjSaS3EGzsyE/XF84DQYgeNVwitOIbC839 0gRUfYA0hxkM3MN0GPEA455AYbOqJE1sN+8n27sczdM5eTxAHzcNX1mHC/oX3hjH YsjBGxWDP06ocvU3ZHvsRqwCcosZEl92DswVtqkBaKlOhBZIsPQcH973LyNspt/u d8sXTjW0GFHMX4PTswK8fgyKmoRvwLFoqmtqK6I9q2roHCQd0hO05cuZ+u8tAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOJHW6tO8kNOf8Rv4ZW3P/NvPEm4wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzNjM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAJmMA0GCSqGSIb3DQEBCwUAA4IBAQAEf0Xz3f4HYJpfGra8ZWUC23v0wnKO2av5 9664RUdaYS+wl4KCRyXDO+TrzSHcFUyoGUDvep/6Tn9B5ZNgM/JdkFNxNefMtB4P xH34oDhdjWMHmwWVspTR13YhKVAPO3FH87+QeSHnyFPEEmPgIMVD0CbYNPBJ2MWu z69JuZ6/GM7TpCOND27PBxfQVST2CI8dmQH7mjpZKy0oi8yQtVoTnMNJ75yeUbhE O/z9m1aFjzUdDcu829WEPM40lqNQBQAThUAzFGrl0rTMfxuom6OjXmc9r/Hc691l 2W2Ulaz7mOJgsUtLdThmRTsNQHUju0YFenGbrErrR2pGxxofneo5 -----END CERTIFICATE-----Generated at Sun Jul 27 07:54:03 2025 by rpki-client