$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: fED9SfLOtNo9Mv4euRXv52ZKTW2j2xHnzBv3Lqo4jps= Subject key identifier: 86:EF:69:28:7F:11:7F:0F:D1:7B:EF:1F:6D:CF:2D:C0:97:DD:11:94 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 2DBE91AC0DBB9ACA4A89395C1C5ECC7FE8BD587D Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:06 +0000 ROA not before: Fri 04 Jul 2025 12:55:06 +0000 ROA not after: Fri 03 Jul 2026 13:00:06 +0000 asID: 153087 IP address blocks: 2404:97c0:3126::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:be:91:ac:0d:bb:9a:ca:4a:89:39:5c:1c:5e:cc:7f:e8:bd:58:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:06 2025 GMT Not After : Jul 3 13:00:06 2026 GMT Subject: CN=86EF69287F117F0FD17BEF1F6DCF2DC097DD1194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9c:4c:01:03:de:47:e5:88:0f:8d:d8:20:66: d5:eb:37:7c:c8:82:43:af:63:29:59:13:a2:8f:5d: 56:fe:32:57:c4:75:c7:99:cf:00:29:28:bf:27:7f: 18:cb:49:c3:ae:3a:f1:a7:bf:23:d9:f4:1f:b8:b8: 40:bb:66:c6:8f:e2:4d:bd:7d:29:88:52:81:d0:79: e7:e0:00:1c:e1:3f:66:53:8c:d4:f6:e9:f7:33:f0: 39:1a:b3:23:d2:9e:83:d2:1a:de:f7:d3:ef:18:ef: d4:7a:59:2a:8c:0b:17:7b:f3:bd:88:d8:fd:f4:1f: 86:f8:33:1d:6c:ef:8e:0d:54:50:84:89:a4:5e:ed: 9d:4d:92:cd:4b:c6:6b:0f:9e:00:80:f5:14:1a:c0: b2:27:6c:5c:83:50:fc:8a:af:e5:e9:d0:63:4a:de: 2c:b3:ee:15:e1:11:5b:66:46:c1:8d:7d:ce:f2:85: 38:74:e1:e0:28:3b:a2:5a:c3:d6:5f:6f:f4:7e:95: c8:30:3b:17:f4:8e:8f:5c:e4:2c:c2:27:0e:9f:8a: a2:e1:1c:fc:e6:46:f5:25:86:65:f1:a4:7e:75:06: 3c:f6:7f:ac:05:cf:89:89:a9:bb:31:2d:cc:8d:d6: a1:6d:ce:1f:ac:bc:2e:90:31:ce:43:28:fc:c7:35: f0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EF:69:28:7F:11:7F:0F:D1:7B:EF:1F:6D:CF:2D:C0:97:DD:11:94 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3126::/48 Signature Algorithm: sha256WithRSAEncryption c7:d1:38:2a:c3:aa:a7:9d:81:3b:be:a9:4a:91:4e:58:c5:91: 0e:ae:d7:12:12:f4:24:87:2f:04:56:58:28:46:7a:a5:48:d8: 2f:f5:76:9b:21:27:f8:25:ac:4d:95:e1:78:fd:2c:f3:c9:09: 95:2b:30:82:42:5f:fe:68:02:c6:2b:bc:bb:63:31:02:7c:03: ed:45:20:56:6d:a1:27:fe:e7:5b:c4:22:f8:9c:1b:cc:d4:9d: 2f:75:e2:50:02:d2:c8:c5:3a:2b:15:80:39:fa:5e:9e:cd:91: 98:b4:3e:9f:58:a9:e8:49:14:0b:8f:4b:74:ac:b6:01:c8:57: 80:56:b1:57:75:dc:5e:c2:62:c4:a6:f2:04:92:11:8c:b9:04: cc:46:ac:05:38:9a:8d:15:b5:53:af:68:94:5d:b3:16:66:b3: aa:18:4a:72:c4:9a:65:73:6a:ed:42:21:53:28:ce:a0:63:ce: 42:bb:68:69:34:0e:73:c3:98:8a:0f:25:6c:5e:c6:2e:48:fe: 35:d3:5b:a7:f7:b7:93:48:34:4d:59:fb:0c:e0:9e:63:ae:09: 16:89:30:a7:1d:9c:83:a4:33:bb:1d:88:1c:48:4c:01:80:6c: f5:1c:10:d4:0b:21:5b:2b:37:71:dd:e9:26:1c:17:70:f0:eb: 25:93:f9:5a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULb6RrA27mspKiTlcHF7Mf+i9WH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDZaFw0yNjA3MDMxMzAwMDZaMDMxMTAvBgNV BAMTKDg2RUY2OTI4N0YxMTdGMEZEMTdCRUYxRjZEQ0YyREMwOTdERDExOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZnEwBA95H5YgPjdggZtXrN3zI gkOvYylZE6KPXVb+MlfEdceZzwApKL8nfxjLScOuOvGnvyPZ9B+4uEC7ZsaP4k29 fSmIUoHQeefgABzhP2ZTjNT26fcz8DkasyPSnoPSGt730+8Y79R6WSqMCxd7872I 2P30H4b4Mx1s744NVFCEiaRe7Z1Nks1LxmsPngCA9RQawLInbFyDUPyKr+Xp0GNK 3iyz7hXhEVtmRsGNfc7yhTh04eAoO6Jaw9Zfb/R+lcgwOxf0jo9c5CzCJw6fiqLh HPzmRvUlhmXxpH51Bjz2f6wFz4mJqbsxLcyN1qFtzh+svC6QMc5DKPzHNfDrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUhu9pKH8Rfw/Re+8fbc8twJfdEZQwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMSYwDQYJKoZIhvcNAQELBQADggEBAMfROCrDqqedgTu+qUqRTljFkQ6u1xIS 9CSHLwRWWChGeqVI2C/1dpshJ/glrE2V4Xj9LPPJCZUrMIJCX/5oAsYrvLtjMQJ8 A+1FIFZtoSf+51vEIvicG8zUnS914lAC0sjFOisVgDn6Xp7NkZi0Pp9YqehJFAuP S3SstgHIV4BWsVd13F7CYsSm8gSSEYy5BMxGrAU4mo0VtVOvaJRdsxZms6oYSnLE mmVzau1CIVMozqBjzkK7aGk0DnPDmIoPJWxexi5I/jXTW6f3t5NINE1Z+wzgnmOu CRaJMKcdnIOkM7sdiBxITAGAbPUcENQLIVsrN3Hd6SYcF3Dw6yWT+Vo= -----END CERTIFICATE-----Generated at Sun Jul 27 02:07:46 2025 by rpki-client