$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: d1xIlC4+oMPbH5ZnyANomWLmufu1teeAjrpvqQHhDOY= Subject key identifier: 2A:7A:3D:D4:66:6B:CF:80:FE:43:F1:A3:AA:70:D1:6F:60:C5:78:6F Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 7F51EA1DDAF308731B0E5A1E419B37A41BD14C64 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 13:00:04 +0000 ROA not before: Fri 04 Jul 2025 12:55:04 +0000 ROA not after: Fri 03 Jul 2026 13:00:04 +0000 asID: 153087 IP address blocks: 2404:97c0:97c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:51:ea:1d:da:f3:08:73:1b:0e:5a:1e:41:9b:37:a4:1b:d1:4c:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 12:55:04 2025 GMT Not After : Jul 3 13:00:04 2026 GMT Subject: CN=2A7A3DD4666BCF80FE43F1A3AA70D16F60C5786F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4b:c6:8f:2d:47:7a:8c:74:9c:ff:06:01:8b: 1d:2e:cf:51:cb:fe:4f:db:e6:01:77:4a:48:5a:5b: 43:d1:87:49:dd:1c:7f:b7:31:ca:a4:0a:22:dd:a8: ef:3f:39:0f:be:df:8d:78:1f:c5:37:d2:b6:47:41: 39:f7:c4:34:d3:e4:65:54:78:1f:a6:e3:02:5b:61: ad:52:17:82:8b:aa:59:d7:4a:30:68:2c:02:7a:7c: 2f:fb:38:93:bc:be:3e:fd:4e:c5:c0:4d:c8:dd:68: e8:5e:2f:d5:65:c8:cd:24:ce:e7:e5:b3:9b:eb:67: 85:17:07:b3:fe:05:a2:e2:96:a2:db:97:9e:d6:00: 0f:a2:4c:6b:72:ee:bc:a2:e0:19:5f:b0:cf:29:3b: 30:24:9c:ae:84:fa:39:7a:a9:45:82:4a:08:cc:a3: 87:8c:34:47:22:19:a3:8f:5b:33:e7:ec:75:41:57: 99:c6:a8:73:06:a7:fd:02:e5:41:55:94:7d:c9:c4: ec:79:8b:7f:ef:f1:54:ca:de:bb:da:8f:e2:92:af: 0e:8f:63:9b:3e:d8:1f:fa:18:4b:99:b9:ec:b3:a7: cf:c8:a1:7c:c5:2d:22:24:8c:ba:cf:a7:a4:4d:e7: b8:94:4e:73:0c:eb:ca:69:39:3a:06:b9:b9:30:6e: 0a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7A:3D:D4:66:6B:CF:80:FE:43:F1:A3:AA:70:D1:6F:60:C5:78:6F X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:97c0::/48 Signature Algorithm: sha256WithRSAEncryption 39:ee:c8:97:0a:12:91:00:01:d9:44:b7:f2:74:43:e9:fd:50: 77:56:83:26:1b:be:bb:9f:c4:2b:48:eb:d6:0b:5f:86:46:cd: 35:43:3c:7a:f0:ce:e0:f3:a5:d4:d3:35:b3:06:64:7a:c5:33: 4f:5c:0d:52:1e:53:e5:dc:bd:0b:14:94:de:d4:dd:99:d2:5d: d9:35:e4:3e:00:ce:00:75:89:b3:34:12:77:91:20:50:de:41: 6a:57:14:38:aa:f8:c6:8d:8c:69:60:fa:be:4f:25:41:55:87: da:9a:2f:15:04:89:97:0c:00:0a:3c:e6:19:0f:4e:7e:d3:a1: ec:9e:27:c9:f4:05:44:2d:f7:32:f5:07:4a:08:63:19:c8:83: a5:5a:19:04:7d:a6:cd:6c:90:27:79:5c:47:52:6e:61:77:b2: 77:37:9f:b6:74:6b:d0:f9:69:21:f5:fa:b9:a4:a0:60:a1:92: 17:80:fc:98:76:02:dd:7e:cd:a8:b4:46:d7:af:21:d6:55:de: 4f:35:ab:7f:5d:af:7b:86:d9:1f:95:d4:26:04:0f:75:bf:43: 11:74:a1:bc:ad:3f:a2:d5:6d:22:56:1b:96:1a:8f:9b:c9:0c: 76:33:b9:2b:ac:d6:0a:37:df:da:5c:4a:b1:73:94:41:58:cf: 38:38:c5:91 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUf1HqHdrzCHMbDloeQZs3pBvRTGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMjU1MDRaFw0yNjA3MDMxMzAwMDRaMDMxMTAvBgNV BAMTKDJBN0EzREQ0NjY2QkNGODBGRTQzRjFBM0FBNzBEMTZGNjBDNTc4NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhS8aPLUd6jHSc/wYBix0uz1HL /k/b5gF3SkhaW0PRh0ndHH+3McqkCiLdqO8/OQ++3414H8U30rZHQTn3xDTT5GVU eB+m4wJbYa1SF4KLqlnXSjBoLAJ6fC/7OJO8vj79TsXATcjdaOheL9VlyM0kzufl s5vrZ4UXB7P+BaLilqLbl57WAA+iTGty7ryi4BlfsM8pOzAknK6E+jl6qUWCSgjM o4eMNEciGaOPWzPn7HVBV5nGqHMGp/0C5UFVlH3JxOx5i3/v8VTK3rvaj+KSrw6P Y5s+2B/6GEuZueyzp8/IoXzFLSIkjLrPp6RN57iUTnMM68ppOToGubkwbgqJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUKno91GZrz4D+Q/GjqnDRb2DFeG8wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzYzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAl8AwDQYJKoZIhvcNAQELBQADggEBADnuyJcKEpEAAdlEt/J0Q+n9UHdWgyYb vrufxCtI69YLX4ZGzTVDPHrwzuDzpdTTNbMGZHrFM09cDVIeU+XcvQsUlN7U3ZnS Xdk15D4AzgB1ibM0EneRIFDeQWpXFDiq+MaNjGlg+r5PJUFVh9qaLxUEiZcMAAo8 5hkPTn7ToeyeJ8n0BUQt9zL1B0oIYxnIg6VaGQR9ps1skCd5XEdSbmF3snc3n7Z0 a9D5aSH1+rmkoGChkheA/Jh2At1+zai0RtevIdZV3k81q39dr3uG2R+V1CYED3W/ QxF0obytP6LVbSJWG5Yaj5vJDHYzuSus1go339pcSrFzlEFYzzg4xZE= -----END CERTIFICATE-----Generated at Sun Jul 27 02:00:51 2025 by rpki-client