$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: /raK2qdDpwYj0i6Kp22hBVDSF72DS0AJK0oGb8ZTOdY= Subject key identifier: 61:F2:7F:C9:1C:47:12:C5:6F:30:D2:36:E7:85:BD:42:23:35:7D:9B Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 677EAE0FA5D8D748B65D0337D26AB8DD141E3AFF Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:05 +0000 ROA not before: Fri 04 Jul 2025 12:55:05 +0000 ROA not after: Fri 03 Jul 2026 13:00:05 +0000 asID: 153087 IP address blocks: 2404:97c0:3176::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7e:ae:0f:a5:d8:d7:48:b6:5d:03:37:d2:6a:b8:dd:14:1e:3a:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:05 2025 GMT Not After : Jul 3 13:00:05 2026 GMT Subject: CN=61F27FC91C4712C56F30D236E785BD4223357D9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:34:1e:56:bb:b0:21:14:fc:13:98:da:0f:ed: bb:d7:44:23:52:68:ec:aa:42:e1:80:d4:ec:3a:ce: a5:07:00:ea:f4:05:0c:d2:66:00:75:5c:36:23:d9: 3a:10:bb:72:68:c0:11:df:bd:d0:69:27:9e:1b:06: d1:08:4b:b8:9c:64:b4:11:8e:ae:0b:d3:f6:85:e8: e2:64:21:ae:fd:0d:f7:21:5a:36:47:aa:61:0e:e8: 47:b9:7a:d5:6d:67:d9:8a:6f:04:0d:ba:4a:2a:47: d8:cc:86:ff:f9:17:83:9f:55:ff:1c:65:14:20:6e: 43:5b:27:2b:6c:3f:d9:83:88:20:01:1c:f9:94:78: e0:61:3d:36:c8:31:ae:bb:d9:17:3e:79:55:f8:e4: 57:13:ca:c9:03:04:ae:7b:87:f1:98:0a:db:20:c4: 68:12:9e:60:83:57:c2:74:66:1a:ca:b6:32:6f:cb: 76:aa:63:ed:77:76:40:af:17:a9:66:29:23:30:80: c9:b8:e2:31:1c:db:33:f5:2d:a2:ee:bf:1e:77:85: a7:26:b2:48:ae:c2:51:55:49:30:22:31:cc:94:7f: 06:60:df:4a:0b:9c:78:a1:1e:7f:3f:19:b6:b0:b0: 78:09:20:45:0d:9d:bf:a0:f4:6c:0b:21:e9:6e:1e: 78:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F2:7F:C9:1C:47:12:C5:6F:30:D2:36:E7:85:BD:42:23:35:7D:9B X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3176::/48 Signature Algorithm: sha256WithRSAEncryption 68:60:95:30:64:22:a5:29:db:e6:1c:9a:a8:02:66:3a:9b:93: 58:28:6e:d1:ef:c3:79:25:73:1a:6f:b3:bf:66:d7:ab:01:c0: 33:c3:99:b2:96:d8:e2:6e:28:f6:40:45:3f:4f:62:9b:b9:40: d9:67:3f:1c:aa:9f:27:85:49:e3:b8:13:93:eb:0b:8d:81:3b: 7b:2d:5d:74:0b:be:d2:30:28:c6:e1:67:8f:b1:eb:12:53:7f: 6e:cf:97:73:f1:55:f8:06:0c:02:ca:79:43:b4:92:cd:78:bd: da:ec:62:17:d7:db:dd:b8:72:dd:58:fd:05:e1:6d:ff:1f:2e: d8:30:f2:f4:89:e3:67:d7:28:06:99:20:77:cc:5c:2a:b6:32: 70:28:9c:e2:1c:ae:14:1c:c3:20:cd:ea:ed:c0:06:bb:aa:79: e4:58:71:88:e4:08:ac:e8:76:3d:2d:80:b9:05:c3:69:be:29: a4:6e:62:00:31:2e:dc:65:5d:de:da:7d:be:09:60:84:45:af: d1:07:1d:08:16:df:41:07:c1:b2:b8:81:b7:32:be:3f:02:96: 06:d8:2c:b3:0e:a6:d8:17:10:b7:53:7f:83:75:cd:a9:5d:c0: ca:5e:7a:2f:eb:44:96:ef:69:82:bd:25:dc:b2:9b:4c:c8:bf: ab:2d:c3:85 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUZ36uD6XY10i2XQM30mq43RQeOv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDVaFw0yNjA3MDMxMzAwMDVaMDMxMTAvBgNV BAMTKDYxRjI3RkM5MUM0NzEyQzU2RjMwRDIzNkU3ODVCRDQyMjMzNTdEOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLNB5Wu7AhFPwTmNoP7bvXRCNS aOyqQuGA1Ow6zqUHAOr0BQzSZgB1XDYj2ToQu3JowBHfvdBpJ54bBtEIS7icZLQR jq4L0/aF6OJkIa79DfchWjZHqmEO6Ee5etVtZ9mKbwQNukoqR9jMhv/5F4OfVf8c ZRQgbkNbJytsP9mDiCABHPmUeOBhPTbIMa672Rc+eVX45FcTyskDBK57h/GYCtsg xGgSnmCDV8J0ZhrKtjJvy3aqY+13dkCvF6lmKSMwgMm44jEc2zP1LaLuvx53hacm skiuwlFVSTAiMcyUfwZg30oLnHihHn8/GbawsHgJIEUNnb+g9GwLIeluHnjRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUYfJ/yRxHEsVvMNI254W9QiM1fZswHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTM3MzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMXYwDQYJKoZIhvcNAQELBQADggEBAGhglTBkIqUp2+YcmqgCZjqbk1gobtHv w3klcxpvs79m16sBwDPDmbKW2OJuKPZART9PYpu5QNlnPxyqnyeFSeO4E5PrC42B O3stXXQLvtIwKMbhZ4+x6xJTf27Pl3PxVfgGDALKeUO0ks14vdrsYhfX2924ct1Y /QXhbf8fLtgw8vSJ42fXKAaZIHfMXCq2MnAonOIcrhQcwyDN6u3ABruqeeRYcYjk CKzodj0tgLkFw2m+KaRuYgAxLtxlXd7afb4JYIRFr9EHHQgW30EHwbK4gbcyvj8C lgbYLLMOptgXELdTf4N1zaldwMpeei/rRJbvaYK9Jdyym0zIv6stw4U= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:49 2025 by rpki-client