$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: AEyx1AtkkV+lNL6jZfOdqxPTjSpoHYEiDbViZO547jQ= Subject key identifier: 5D:59:87:56:EC:A3:A8:BE:3A:8E:8A:82:84:2C:87:80:4A:97:83:AA Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 5965895425FF115F7DEE9E90212A9B64B335B296 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:04 +0000 ROA not before: Fri 04 Jul 2025 12:55:04 +0000 ROA not after: Fri 03 Jul 2026 13:00:04 +0000 asID: 153087 IP address blocks: 2404:97c0:3254::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:65:89:54:25:ff:11:5f:7d:ee:9e:90:21:2a:9b:64:b3:35:b2:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:04 2025 GMT Not After : Jul 3 13:00:04 2026 GMT Subject: CN=5D598756ECA3A8BE3A8E8A82842C87804A9783AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ef:bc:42:90:79:6f:ac:ab:f6:17:7e:6a:19: ee:96:a1:e4:de:21:73:ee:21:bf:2c:3d:04:8f:ec: 60:7f:4e:1e:8a:98:fd:94:59:a2:1f:71:38:2a:2a: b3:3d:33:da:41:b8:38:cb:cf:e1:00:59:e2:48:c4: 4f:d7:ad:63:1a:f5:8c:83:51:16:04:03:2d:0d:0e: 1d:2f:97:53:15:c4:4d:4f:3c:2c:16:a1:72:89:b0: 4f:24:cd:f5:23:61:93:1f:4b:86:de:dd:64:76:9c: d8:f8:db:f3:c2:8f:af:4f:dc:35:00:61:c0:58:72: ed:f2:f1:f0:03:64:c2:b5:6a:4e:11:b8:97:80:ed: 8a:17:85:43:f2:c5:a6:01:43:53:b1:9e:6c:86:95: 80:19:53:ce:f4:d2:3c:74:f3:57:ca:6a:e0:ef:26: 7c:93:cc:24:47:09:43:f9:8f:e1:50:1c:86:23:26: 4e:f4:ad:e5:24:61:3e:5b:18:d2:d5:21:af:73:3d: f1:f3:f0:11:48:b8:54:c6:2a:4e:64:35:54:dc:e5: b4:67:8f:67:d1:9f:49:3d:fa:f0:f7:68:31:6f:ed: c6:d7:54:00:32:26:e0:81:e6:b7:b8:53:74:c3:a9: 59:5c:7f:9d:55:f5:ae:0a:d3:06:63:22:50:71:4c: e0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:59:87:56:EC:A3:A8:BE:3A:8E:8A:82:84:2C:87:80:4A:97:83:AA X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3254::/48 Signature Algorithm: sha256WithRSAEncryption 5e:fa:be:a3:8e:ae:9c:2e:c3:46:92:62:e2:25:9d:b5:ed:e6: 64:0e:de:d1:87:83:44:bb:d5:b2:f3:b0:d3:57:ec:6c:cd:c7: c3:25:2e:83:f5:71:f1:6b:f8:7e:ef:77:ed:6e:c7:2d:02:f2: 67:e6:ab:a5:42:87:96:7a:14:96:79:04:71:7e:b1:2e:14:76: 26:dc:01:bc:9a:29:86:4e:c4:d5:a2:4e:52:35:a8:78:2a:94: db:aa:40:86:5c:dd:89:b2:99:35:46:92:ed:4a:87:f1:14:e4: f4:7b:f0:2f:e2:81:dc:ab:b4:5c:4e:b5:a3:fb:9d:ec:2a:a3: b5:16:3c:a0:79:4f:f4:66:5b:4a:80:e7:d6:16:eb:6f:a5:c5: de:13:a7:ce:a0:00:6a:6d:b3:55:be:0c:15:0e:f5:03:6d:43: 1a:13:ae:82:a5:09:fd:01:48:5e:22:65:9c:5e:52:41:5d:5c: b8:82:54:8e:9d:47:e3:a2:d7:a3:67:47:52:57:02:75:4b:3e: 55:67:cd:94:4b:71:a1:30:03:cd:87:4b:3a:8e:e1:48:62:13: 9f:04:79:f0:74:d2:8a:28:18:cd:6a:0a:31:7b:3a:f0:50:a9: 99:40:4d:cb:67:48:a9:bd:c2:fe:b7:44:26:c3:c9:82:c4:9c: c4:c9:49:fe -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUWWWJVCX/EV997p6QISqbZLM1spYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDRaFw0yNjA3MDMxMzAwMDRaMDMxMTAvBgNV BAMTKDVENTk4NzU2RUNBM0E4QkUzQThFOEE4Mjg0MkM4NzgwNEE5NzgzQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn77xCkHlvrKv2F35qGe6WoeTe IXPuIb8sPQSP7GB/Th6KmP2UWaIfcTgqKrM9M9pBuDjLz+EAWeJIxE/XrWMa9YyD URYEAy0NDh0vl1MVxE1PPCwWoXKJsE8kzfUjYZMfS4be3WR2nNj42/PCj69P3DUA YcBYcu3y8fADZMK1ak4RuJeA7YoXhUPyxaYBQ1OxnmyGlYAZU8700jx081fKauDv JnyTzCRHCUP5j+FQHIYjJk70reUkYT5bGNLVIa9zPfHz8BFIuFTGKk5kNVTc5bRn j2fRn0k9+vD3aDFv7cbXVAAyJuCB5re4U3TDqVlcf51V9a4K0wZjIlBxTOCzAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUXVmHVuyjqL46joqChCyHgEqXg6owHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMjM1MzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMlQwDQYJKoZIhvcNAQELBQADggEBAF76vqOOrpwuw0aSYuIlnbXt5mQO3tGH g0S71bLzsNNX7GzNx8MlLoP1cfFr+H7vd+1uxy0C8mfmq6VCh5Z6FJZ5BHF+sS4U dibcAbyaKYZOxNWiTlI1qHgqlNuqQIZc3YmymTVGku1Kh/EU5PR78C/igdyrtFxO taP7newqo7UWPKB5T/RmW0qA59YW62+lxd4Tp86gAGpts1W+DBUO9QNtQxoTroKl Cf0BSF4iZZxeUkFdXLiCVI6dR+Oi16NnR1JXAnVLPlVnzZRLcaEwA82HSzqO4Uhi E58EefB00oooGM1qCjF7OvBQqZlATctnSKm9wv63RCbDyYLEnMTJSf4= -----END CERTIFICATE-----Generated at Sun Jul 27 01:59:58 2025 by rpki-client