$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 0xXkjkgCpmYrxupQ310OgFO7dkQmSP4ati1POwwztq8= Subject key identifier: 17:0F:38:02:7E:62:DA:95:C1:43:FC:E5:69:FE:92:77:67:17:38:60 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 3ABC5267F946B7470039DA3A1E5B629498F67D1F Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:02 +0000 ROA not before: Fri 04 Jul 2025 12:55:02 +0000 ROA not after: Fri 03 Jul 2026 13:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:3253::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bc:52:67:f9:46:b7:47:00:39:da:3a:1e:5b:62:94:98:f6:7d:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:02 2025 GMT Not After : Jul 3 13:00:02 2026 GMT Subject: CN=170F38027E62DA95C143FCE569FE927767173860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:09:ec:eb:79:22:e3:f5:9e:ab:b7:af:d2:a0: e9:f9:7b:80:0d:92:4d:43:d4:4f:00:0f:55:77:82: 56:86:3a:9d:b0:3d:79:7a:20:e1:79:55:7a:1b:4e: 57:57:6f:9d:ce:37:32:1e:9b:9c:eb:fe:6c:af:fa: 6e:5c:36:05:2e:19:9a:7e:6f:10:8f:75:b8:c8:9f: e7:e1:0f:8e:fd:2c:11:11:8d:74:59:09:c4:d3:34: 1a:48:1b:05:aa:40:b6:d4:19:d5:c6:d0:a8:f8:16: 46:dd:c6:a4:c2:61:63:57:fd:fa:bd:f1:b5:eb:ab: b4:40:b8:13:6e:31:8c:e9:bc:a0:9e:ac:47:e0:9f: 93:f6:44:50:47:2b:e5:3d:65:9e:89:23:3d:fe:db: 39:9e:2b:13:84:21:ea:9c:d3:a7:44:e6:6f:cd:15: 55:0b:6b:23:9e:4c:ba:44:23:71:88:ee:df:75:eb: bc:de:e5:02:97:94:ff:a0:91:5e:d2:91:d4:0f:dc: d1:53:eb:e0:a2:5e:21:c0:ea:29:a6:4d:3d:85:cc: e1:a7:38:92:d4:19:c0:17:7b:26:dc:52:46:95:c3: 45:42:d0:5e:3d:96:d0:0e:9e:16:d0:19:1e:82:7f: 1a:39:24:ff:15:ba:86:8b:40:27:21:94:78:e6:0d: a4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0F:38:02:7E:62:DA:95:C1:43:FC:E5:69:FE:92:77:67:17:38:60 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3253::/48 Signature Algorithm: sha256WithRSAEncryption 11:a1:57:47:51:c4:6d:c9:4d:bb:8a:4a:33:b9:0a:40:21:c7: 0b:92:e8:6e:f4:7d:83:aa:f6:09:0e:40:74:c8:be:d9:d5:de: b2:00:68:9e:ee:77:58:91:01:1c:87:b7:7b:70:1e:1d:af:f8: 67:fb:e1:85:45:cd:56:b9:f2:81:fa:61:b0:09:40:bf:bb:5b: c4:16:24:36:59:a5:fc:e2:0c:d3:d1:41:76:8a:01:ab:29:d3: 22:e6:c7:63:71:ca:e3:35:ce:6f:45:99:ee:f6:52:91:99:7f: 0d:99:9e:f9:da:69:b5:bc:6f:8b:d1:ea:3a:28:c6:0d:31:79: 75:61:20:41:da:da:60:31:ab:78:f6:5c:9e:cb:66:e0:70:ef: 03:8f:a2:27:e4:04:93:8e:e9:1a:ce:4c:c0:23:8c:87:9b:08: eb:b9:b5:9d:6c:03:ce:e4:a4:fa:c5:db:ba:03:8f:b3:59:9c: 24:fa:87:a3:0b:cd:56:7f:b2:66:00:d3:2c:8e:71:50:f0:c1: 08:14:71:63:b3:11:81:54:4b:df:bc:41:d9:b0:49:25:98:e1: 55:54:be:ce:bf:df:e5:a2:5b:09:08:a3:49:54:32:35:2c:96: 26:34:5f:f9:d9:3c:72:38:7e:f5:83:59:bf:09:b3:89:4e:a8: b1:8a:4b:eb -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOrxSZ/lGt0cAOdo6HltilJj2fR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDJaFw0yNjA3MDMxMzAwMDJaMDMxMTAvBgNV BAMTKDE3MEYzODAyN0U2MkRBOTVDMTQzRkNFNTY5RkU5Mjc3NjcxNzM4NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlCezreSLj9Z6rt6/SoOn5e4AN kk1D1E8AD1V3glaGOp2wPXl6IOF5VXobTldXb53ONzIem5zr/myv+m5cNgUuGZp+ bxCPdbjIn+fhD479LBERjXRZCcTTNBpIGwWqQLbUGdXG0Kj4FkbdxqTCYWNX/fq9 8bXrq7RAuBNuMYzpvKCerEfgn5P2RFBHK+U9ZZ6JIz3+2zmeKxOEIeqc06dE5m/N FVULayOeTLpEI3GI7t9167ze5QKXlP+gkV7SkdQP3NFT6+CiXiHA6immTT2FzOGn OJLUGcAXeybcUkaVw0VC0F49ltAOnhbQGR6Cfxo5JP8VuoaLQCchlHjmDaQVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUFw84An5i2pXBQ/zlaf6Sd2cXOGAwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMjM1MzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMlMwDQYJKoZIhvcNAQELBQADggEBABGhV0dRxG3JTbuKSjO5CkAhxwuS6G70 fYOq9gkOQHTIvtnV3rIAaJ7ud1iRARyHt3twHh2v+Gf74YVFzVa58oH6YbAJQL+7 W8QWJDZZpfziDNPRQXaKAasp0yLmx2NxyuM1zm9Fme72UpGZfw2ZnvnaabW8b4vR 6jooxg0xeXVhIEHa2mAxq3j2XJ7LZuBw7wOPoifkBJOO6RrOTMAjjIebCOu5tZ1s A87kpPrF27oDj7NZnCT6h6MLzVZ/smYA0yyOcVDwwQgUcWOzEYFUS9+8QdmwSSWY 4VVUvs6/3+WiWwkIo0lUMjUsliY0X/nZPHI4fvWDWb8Js4lOqLGKS+s= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:51 2025 by rpki-client