$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3a2f33322d3332203d3e20313533303837.roa File: 323430343a393763303a3a2f33322d3332203d3e20313533303837.roa (raw, json) Hash identifier: o33weiAlctPbdV3C1kWuH2apUUi1fsw+0mPXwm0wqIo= Subject key identifier: 95:71:3D:AF:7B:83:C4:B9:2B:A8:84:50:55:50:68:F1:D4:9C:52:87 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 1C41CE9DE0D9044EFDAD334AA5D8318158E268EF Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3a2f33322d3332203d3e20313533303837.roa Signing time: Fri 04 Jul 2025 14:00:02 +0000 ROA not before: Fri 04 Jul 2025 13:55:02 +0000 ROA not after: Fri 03 Jul 2026 14:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 13:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:41:ce:9d:e0:d9:04:4e:fd:ad:33:4a:a5:d8:31:81:58:e2:68:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 4 13:55:02 2025 GMT Not After : Jul 3 14:00:02 2026 GMT Subject: CN=95713DAF7B83C4B92BA88450555068F1D49C5287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f4:1e:b6:a6:d5:82:13:fb:8d:6a:6a:54:87: d0:35:ce:1d:86:ea:38:ec:e4:18:7f:b4:73:84:d6: b7:e5:65:00:81:33:ef:b1:aa:4a:88:df:e0:80:8f: b8:e8:fe:b4:7c:cb:ba:42:f9:dd:2f:3a:31:9f:9a: 4a:ab:63:5b:00:54:6d:ec:ad:36:b1:cf:a0:b5:f3: 76:21:c4:1c:0e:40:fb:a6:cb:a3:ce:04:38:3c:14: 91:d7:33:4b:99:86:96:54:ae:50:3f:f7:63:5e:88: 49:96:bb:85:65:26:50:08:a1:20:0f:5f:f2:a7:b3: aa:81:8d:9e:6e:94:61:21:d7:94:a6:83:cf:c7:84: 9b:ab:36:3d:9a:fe:f5:9a:e5:e2:ec:96:a3:95:cf: 5d:cb:7a:9d:4a:a6:e2:8c:8b:8b:70:bf:4f:ab:eb: ed:98:ea:10:c5:eb:f6:d0:82:d8:97:bf:5e:92:8f: e8:61:88:6e:ec:45:ff:8c:c1:03:bf:6d:76:d1:e7: c3:0a:88:e3:52:4b:46:5a:74:40:75:44:31:e6:4d: 4b:22:c2:ed:02:3d:e5:a2:73:1f:42:41:86:0f:81: e0:d7:8c:7a:17:a0:1a:91:11:c4:f6:8f:1f:8a:4b: f4:37:e7:74:5a:c8:0a:83:1d:5c:81:bd:e3:85:bc: cc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:71:3D:AF:7B:83:C4:B9:2B:A8:84:50:55:50:68:F1:D4:9C:52:87 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3a2f33322d3332203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0::/32 Signature Algorithm: sha256WithRSAEncryption 66:ea:7a:37:d1:e1:5e:7a:19:f2:bf:98:f8:b1:ca:9f:b7:b1: 8a:23:b2:65:4f:1a:a9:65:3c:aa:e0:51:40:79:54:34:55:b3: 9b:a4:a9:12:a5:47:04:ff:57:52:94:b3:63:ed:d3:fd:2f:e7: f4:be:de:7e:1d:dc:88:7e:cd:1b:26:ce:76:f5:8b:ba:2d:2c: 3e:68:bf:9d:f8:cb:bd:44:15:87:79:0c:6c:55:0d:fb:85:06: be:26:28:87:91:7a:e5:36:96:4d:58:c0:80:69:a5:e7:16:cb: 09:ac:bc:9a:21:29:1b:0c:ef:08:c7:0a:0c:df:c9:0f:e5:97: bc:42:cc:d1:fa:91:1d:be:28:39:17:e4:c0:50:24:b8:d4:d1: 46:1c:ab:b6:85:4f:52:49:f3:2d:1f:a0:53:e7:db:fc:a8:12: 58:e8:93:40:ed:72:89:7f:c5:0d:b8:a6:35:82:76:59:78:a2: f1:32:44:0e:d3:58:77:74:93:15:bc:c5:71:f7:cb:b2:f0:f8: 2c:e4:07:5c:25:20:8a:b4:dc:a6:81:f1:42:d7:55:42:39:f2: 2b:56:df:48:79:25:5c:52:a2:01:af:db:cd:c3:47:c6:d0:69: d4:b9:e5:99:b9:3f:9a:ef:76:a8:97:ec:7a:e2:7e:63:35:83: 44:1c:c2:f8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUHEHOneDZBE79rTNKpdgxgVjiaO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNTA3MDQxMzU1MDJaFw0yNjA3MDMxNDAwMDJaMDMxMTAvBgNV BAMTKDk1NzEzREFGN0I4M0M0QjkyQkE4ODQ1MDU1NTA2OEYxRDQ5QzUyODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC59B62ptWCE/uNampUh9A1zh2G 6jjs5Bh/tHOE1rflZQCBM++xqkqI3+CAj7jo/rR8y7pC+d0vOjGfmkqrY1sAVG3s rTaxz6C183YhxBwOQPumy6POBDg8FJHXM0uZhpZUrlA/92NeiEmWu4VlJlAIoSAP X/Kns6qBjZ5ulGEh15Smg8/HhJurNj2a/vWa5eLslqOVz13Lep1KpuKMi4twv0+r 6+2Y6hDF6/bQgtiXv16Sj+hhiG7sRf+MwQO/bXbR58MKiONSS0ZadEB1RDHmTUsi wu0CPeWicx9CQYYPgeDXjHoXoBqREcT2jx+KS/Q353RayAqDHVyBveOFvMz1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUlXE9r3uDxLkrqIRQVVBo8dScUocwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEl8AwDQYJKoZI hvcNAQELBQADggEBAGbqejfR4V56GfK/mPixyp+3sYojsmVPGqllPKrgUUB5VDRV s5ukqRKlRwT/V1KUs2Pt0/0v5/S+3n4d3Ih+zRsmznb1i7otLD5ov534y71EFYd5 DGxVDfuFBr4mKIeReuU2lk1YwIBppecWywmsvJohKRsM7wjHCgzfyQ/ll7xCzNH6 kR2+KDkX5MBQJLjU0UYcq7aFT1JJ8y0foFPn2/yoEljok0Dtcol/xQ24pjWCdll4 ovEyRA7TWHd0kxW8xXH3y7Lw+CzkB1wlIIq03KaB8ULXVUI58itW30h5JVxSogGv 283DR8bQadS55Zm5P5rvdqiX7HrifmM1g0Qcwvg= -----END CERTIFICATE-----Generated at Sun Jul 27 07:54:08 2025 by rpki-client