$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: PMHOYTmMn+D/6C7InXFcTGR3429Se5vXqgpWqmRx6Jg= Subject key identifier: 72:7B:9E:9A:20:52:50:C4:5D:1F:75:24:DF:30:ED:89:E4:05:7C:83 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 754EA2365EEE8EE0DA9764F9D0CA7FD8F20AE641 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:04 +0000 ROA not before: Fri 04 Jul 2025 12:55:04 +0000 ROA not after: Fri 03 Jul 2026 13:00:04 +0000 asID: 153087 IP address blocks: 2404:97c0:33::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4e:a2:36:5e:ee:8e:e0:da:97:64:f9:d0:ca:7f:d8:f2:0a:e6:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:04 2025 GMT Not After : Jul 3 13:00:04 2026 GMT Subject: CN=727B9E9A205250C45D1F7524DF30ED89E4057C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c4:42:81:1f:97:ec:2c:03:71:32:4c:b1:6a: 36:91:5e:a7:40:ea:2a:fa:15:8a:c8:9f:bb:d5:d1: 55:ce:ae:d7:a8:b3:06:3f:c7:b8:e8:c8:38:c4:0c: 4d:c4:4b:ac:c0:ae:7e:ab:4a:72:b4:73:9b:68:7e: 13:cf:c9:d1:b0:63:81:fd:3e:8a:1d:f1:f3:23:42: f3:35:68:85:68:97:56:d0:5b:e3:6f:c9:7e:1f:50: 40:75:1a:c9:a8:42:7a:2e:26:98:55:63:7d:96:7a: 25:17:e6:93:99:9c:6b:08:e8:e7:84:b5:83:22:eb: aa:af:0e:c9:ce:8f:da:94:56:bd:e2:51:d1:02:3c: b1:45:e2:d0:d8:8d:bb:39:cc:ce:6c:35:64:9e:a2: 1a:59:b1:4a:18:5f:81:b9:30:c9:14:f8:f6:08:13: 3e:47:99:45:d9:c5:ef:82:55:37:7f:02:00:bf:fe: ee:cb:00:f5:4b:a2:46:4f:23:76:e3:50:0b:9f:3d: b6:d6:de:5e:f3:36:1e:4d:a9:b0:1d:60:64:d7:79: cc:0c:c4:22:62:ec:e9:34:8b:fd:89:55:4f:24:fa: 54:1d:56:c7:5b:53:36:5b:ef:b3:18:3d:b2:2c:78: 59:08:11:ff:b8:21:fa:68:6c:31:30:8b:35:25:f6: 84:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7B:9E:9A:20:52:50:C4:5D:1F:75:24:DF:30:ED:89:E4:05:7C:83 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:33::/48 Signature Algorithm: sha256WithRSAEncryption 98:e6:5f:5e:96:57:3c:7d:37:c0:9f:33:12:b4:b5:44:c8:fb: 05:1a:78:7c:73:e8:3f:73:39:32:92:96:af:d6:3c:4a:7f:f9: 3d:78:af:cf:8a:ae:ff:21:92:db:12:3b:7d:5c:b3:90:2c:ac: 96:99:ee:fb:27:84:63:dc:65:b0:fd:77:5a:ce:fb:74:6c:fc: 58:da:32:6a:90:9a:74:8d:cb:95:fe:86:02:b1:e3:a8:bc:17: 01:04:30:9a:48:25:b8:70:a2:f5:b9:dc:d8:cb:cf:28:fc:90: 22:9d:98:2a:17:cf:a3:1f:9a:e0:1c:d9:e5:a0:bb:48:b1:0a: 44:8f:89:13:75:04:6f:05:d8:ed:7d:8a:7f:45:16:35:35:8f: d0:46:48:d6:cf:8d:2c:ba:93:73:7b:e7:32:cb:ac:d7:2a:bf: fa:99:d2:f4:4e:14:ba:f3:cc:0e:c7:83:fc:e3:8c:22:2d:57: 1e:74:68:67:54:19:0d:cf:1a:7d:52:69:01:e3:35:56:d8:78: 08:25:83:b2:7f:d4:74:63:e8:f0:cc:af:ee:3c:46:de:26:36: fc:ed:40:95:87:9e:4e:0d:de:9b:7c:51:a3:c8:ff:50:e5:c8: 7c:f6:dd:f6:d2:32:7b:40:4f:5d:ce:81:a4:9c:00:a8:7a:fa: 5a:c4:19:4b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdU6iNl7ujuDal2T50Mp/2PIK5kEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDRaFw0yNjA3MDMxMzAwMDRaMDMxMTAvBgNV BAMTKDcyN0I5RTlBMjA1MjUwQzQ1RDFGNzUyNERGMzBFRDg5RTQwNTdDODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYxEKBH5fsLANxMkyxajaRXqdA 6ir6FYrIn7vV0VXOrteoswY/x7joyDjEDE3ES6zArn6rSnK0c5tofhPPydGwY4H9 Pood8fMjQvM1aIVol1bQW+NvyX4fUEB1GsmoQnouJphVY32WeiUX5pOZnGsI6OeE tYMi66qvDsnOj9qUVr3iUdECPLFF4tDYjbs5zM5sNWSeohpZsUoYX4G5MMkU+PYI Ez5HmUXZxe+CVTd/AgC//u7LAPVLokZPI3bjUAufPbbW3l7zNh5NqbAdYGTXecwM xCJi7Ok0i/2JVU8k+lQdVsdbUzZb77MYPbIseFkIEf+4IfpobDEwizUl9oTxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUcnuemiBSUMRdH3Uk3zDtieQFfIMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEl8AA MzANBgkqhkiG9w0BAQsFAAOCAQEAmOZfXpZXPH03wJ8zErS1RMj7BRp4fHPoP3M5 MpKWr9Y8Sn/5PXivz4qu/yGS2xI7fVyzkCyslpnu+yeEY9xlsP13Ws77dGz8WNoy apCadI3Llf6GArHjqLwXAQQwmkgluHCi9bnc2MvPKPyQIp2YKhfPox+a4BzZ5aC7 SLEKRI+JE3UEbwXY7X2Kf0UWNTWP0EZI1s+NLLqTc3vnMsus1yq/+pnS9E4UuvPM DseD/OOMIi1XHnRoZ1QZDc8afVJpAeM1Vth4CCWDsn/UdGPo8Myv7jxG3iY2/O1A lYeeTg3em3xRo8j/UOXIfPbd9tIye0BPXc6BpJwAqHr6WsQZSw== -----END CERTIFICATE-----Generated at Sun Jul 27 02:07:46 2025 by rpki-client