$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: fVhv8M53mX+/Xg2OBBncO7dhuspALhYrRfqRAzuy/nc= Subject key identifier: FA:B0:57:14:D4:6F:98:6D:1B:9B:C8:25:A8:E4:C8:76:9E:AC:70:40 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 4B8AD113E20DA59B565717CA975DEAC09B26F758 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:06 +0000 ROA not before: Fri 04 Jul 2025 12:55:06 +0000 ROA not after: Fri 03 Jul 2026 13:00:06 +0000 asID: 153087 IP address blocks: 2404:97c0:3130::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:8a:d1:13:e2:0d:a5:9b:56:57:17:ca:97:5d:ea:c0:9b:26:f7:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:06 2025 GMT Not After : Jul 3 13:00:06 2026 GMT Subject: CN=FAB05714D46F986D1B9BC825A8E4C8769EAC7040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b4:a5:61:b7:84:06:77:77:ee:04:76:4b:8c: 1d:8d:91:90:0c:06:ab:6e:5a:ec:3b:11:81:e5:5f: 5c:eb:d8:ff:8c:b3:5f:b7:f7:33:0b:e6:4a:08:cf: 76:e1:fb:da:de:be:e0:c3:7a:38:1e:23:38:3f:dc: 90:a9:44:66:ac:99:e9:c3:81:83:0b:e7:f2:84:59: da:79:ea:c0:b5:0b:de:4d:7a:5f:e7:15:94:ea:e8: ed:ca:cc:16:dc:a6:74:fc:ae:a0:a5:c8:59:76:e2: fb:cd:11:16:e2:80:87:3b:a5:2b:f0:2b:e6:77:e8: 70:29:ab:18:18:6c:d5:6e:9c:d4:62:33:7e:02:e8: 22:fb:d8:e0:74:e2:96:7e:9a:01:6c:60:e6:68:ae: 50:f4:f8:84:cc:9b:50:53:99:82:65:86:b0:4d:c5: dc:23:14:c1:e7:ec:f8:e3:4c:0a:d1:48:d3:74:19: 61:76:46:04:96:de:41:68:46:60:c7:75:3a:4f:b8: 5f:91:28:00:20:a5:b1:dd:bd:f5:1e:2c:a5:56:78: 08:c0:05:40:3d:07:f0:eb:28:dc:29:e0:21:98:be: 69:6b:06:8f:47:34:39:da:a4:f8:fc:31:00:01:ab: 55:70:b5:03:7e:b9:40:77:4a:2f:eb:11:8f:6e:da: ce:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B0:57:14:D4:6F:98:6D:1B:9B:C8:25:A8:E4:C8:76:9E:AC:70:40 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333133303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3130::/48 Signature Algorithm: sha256WithRSAEncryption 3b:65:8a:95:7a:8c:17:ef:1d:ca:2b:86:9c:33:6a:25:8e:30: 61:d7:0a:2c:a7:91:bc:7f:25:b0:69:59:08:c6:c9:27:e8:ea: 1e:ae:ce:9f:1e:13:8c:3d:12:02:e2:68:c9:c4:6c:83:2b:62: a1:3c:3e:d3:68:eb:00:8e:3d:d0:56:3d:f2:98:a0:14:40:5c: 04:d1:63:df:c3:13:eb:03:3b:34:b3:21:fc:fd:da:84:35:1c: 27:1c:e3:ad:b4:7e:79:b4:60:7d:67:99:8e:8c:3e:9c:6d:c2: 21:52:24:fd:cc:df:aa:4e:08:03:61:be:46:01:17:de:42:c1: e2:a6:41:59:a6:a7:6a:75:38:b0:c3:90:ae:55:c6:0c:fc:2c: d2:69:27:36:c8:8e:03:49:63:95:e4:11:3c:4e:f1:54:0a:a0: 3a:25:27:b9:01:a5:09:1a:8c:61:61:c3:9f:98:55:e8:b1:18: 15:4e:1b:51:44:99:ae:20:35:a4:c6:eb:c6:ae:bf:4b:db:47: 7d:2d:f6:3f:fd:40:f8:36:f5:42:e1:a4:84:52:33:5b:f3:66: d4:9d:00:2f:2b:7e:93:bd:ce:1f:e9:01:30:03:80:67:8c:a5: de:ae:e4:28:eb:f7:05:52:d2:ef:1d:9a:12:13:e2:fb:19:80: a9:5d:a2:2d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUS4rRE+INpZtWVxfKl13qwJsm91gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDZaFw0yNjA3MDMxMzAwMDZaMDMxMTAvBgNV BAMTKEZBQjA1NzE0RDQ2Rjk4NkQxQjlCQzgyNUE4RTRDODc2OUVBQzcwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDItKVht4QGd3fuBHZLjB2NkZAM BqtuWuw7EYHlX1zr2P+Ms1+39zML5koIz3bh+9revuDDejgeIzg/3JCpRGasmenD gYML5/KEWdp56sC1C95Nel/nFZTq6O3KzBbcpnT8rqClyFl24vvNERbigIc7pSvw K+Z36HApqxgYbNVunNRiM34C6CL72OB04pZ+mgFsYOZorlD0+ITMm1BTmYJlhrBN xdwjFMHn7PjjTArRSNN0GWF2RgSW3kFoRmDHdTpPuF+RKAAgpbHdvfUeLKVWeAjA BUA9B/DrKNwp4CGYvmlrBo9HNDnapPj8MQABq1VwtQN+uUB3Si/rEY9u2s7fAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU+rBXFNRvmG0bm8glqOTIdp6scEAwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMTAwDQYJKoZIhvcNAQELBQADggEBADtlipV6jBfvHcorhpwzaiWOMGHXCiyn kbx/JbBpWQjGySfo6h6uzp8eE4w9EgLiaMnEbIMrYqE8PtNo6wCOPdBWPfKYoBRA XATRY9/DE+sDOzSzIfz92oQ1HCcc4620fnm0YH1nmY6MPpxtwiFSJP3M36pOCANh vkYBF95CweKmQVmmp2p1OLDDkK5Vxgz8LNJpJzbIjgNJY5XkETxO8VQKoDolJ7kB pQkajGFhw5+YVeixGBVOG1FEma4gNaTG68auv0vbR30t9j/9QPg29ULhpIRSM1vz ZtSdAC8rfpO9zh/pATADgGeMpd6u5Cjr9wVS0u8dmhIT4vsZgKldoi0= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:49 2025 by rpki-client