$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: sjFkPQRbAFB+/y9Sh73guddwprpnyTSYhc+NK3cVMUk= Subject key identifier: 9B:BF:B7:97:9C:15:55:C3:9A:3C:D1:A4:C1:07:72:4E:E0:AE:BC:73 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 4A6C8A6669DB407A3E07EC7D984A37B334BCCA9B Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:02 +0000 ROA not before: Fri 11 Jul 2025 11:55:02 +0000 ROA not after: Fri 10 Jul 2026 12:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:103::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6c:8a:66:69:db:40:7a:3e:07:ec:7d:98:4a:37:b3:34:bc:ca:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jul 11 11:55:02 2025 GMT Not After : Jul 10 12:00:02 2026 GMT Subject: CN=9BBFB7979C1555C39A3CD1A4C107724EE0AEBC73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5c:8d:c4:32:dc:e2:fa:74:e7:f5:e1:cd:60: 31:4f:cd:14:25:04:68:33:2d:c4:56:0a:dc:62:ee: df:b9:f0:12:38:1c:0b:43:2b:74:69:f1:c7:79:a0: 89:6a:e2:e3:d5:da:7d:89:1b:63:71:93:bf:b3:a9: cc:fe:2d:6d:35:8e:b3:41:0f:d9:39:de:1c:6a:d3: 11:97:94:b9:3a:11:e9:a7:1b:05:ea:e6:6f:9e:de: 8f:dd:e8:92:2a:bd:99:47:e6:27:a7:d5:0f:43:2d: 9c:f3:3d:f4:42:22:9d:45:ba:ca:58:ca:48:01:ae: 96:51:e9:eb:08:2c:c3:d3:5b:22:40:f7:99:9f:c0: 54:67:40:aa:ea:2d:8e:90:5d:82:a4:3e:28:d7:3f: db:0c:18:2c:4d:a9:71:44:5f:59:df:95:05:70:09: fe:89:97:f6:35:ca:01:53:88:b0:aa:fc:cd:9b:b2: f9:83:66:49:c9:91:03:13:8c:64:b1:26:aa:9b:cc: bd:5d:2a:fa:62:90:44:1f:ea:f1:fb:ad:42:97:1c: b1:1d:07:f0:66:57:73:a3:34:68:53:20:a6:17:46: 3c:e9:03:d9:59:03:58:71:09:25:87:42:f5:2b:c7: 50:71:bd:a4:08:e8:fe:03:6a:a2:33:be:48:19:e2: 44:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BF:B7:97:9C:15:55:C3:9A:3C:D1:A4:C1:07:72:4E:E0:AE:BC:73 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:103::/48 Signature Algorithm: sha256WithRSAEncryption 9b:91:78:58:8b:cf:04:15:9b:d9:e4:38:08:7d:83:11:da:e4: 65:4f:29:d4:29:af:14:bb:71:43:d6:45:43:1c:19:a8:9b:c4: 20:4c:73:a7:aa:cd:63:e5:dd:53:4b:fd:d0:19:17:a6:4b:cc: 2f:3e:16:04:76:ef:cd:61:af:8e:22:d7:c9:c5:a6:cb:19:19: 7e:3e:30:b3:73:73:3b:37:21:24:66:46:8d:e2:2a:9a:8b:44: 4e:31:9e:e3:c2:d1:ec:da:5a:bd:2b:e4:c8:02:76:27:d9:8e: 37:a3:b2:4e:7c:2c:88:14:6d:08:b9:96:d4:ad:39:74:77:12: f8:8c:a7:89:28:35:d2:59:30:25:10:97:b9:2b:93:0c:c1:c3: 85:72:eb:39:1d:50:07:0d:d4:03:a4:7f:7c:9e:00:1e:c2:0f: ce:ed:a4:6c:17:73:3a:48:91:97:a2:95:8d:2c:35:99:71:2c: 8d:94:fc:c8:11:75:3e:b1:aa:9a:30:87:67:0a:44:61:04:1e: 01:f0:b3:83:22:1b:8d:73:e1:c9:28:19:36:2f:a4:51:77:cd: 41:ba:6b:a1:4a:ea:0e:e8:5d:11:80:5f:6f:cf:e8:ed:12:23: 81:0c:55:8d:7f:fd:8d:6d:d1:dc:cf:9d:fe:ca:e9:02:33:d5: 24:24:b5:d1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSmyKZmnbQHo+B+x9mEo3szS8ypswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTA3MTExMTU1MDJaFw0yNjA3MTAxMjAwMDJaMDMxMTAvBgNV BAMTKDlCQkZCNzk3OUMxNTU1QzM5QTNDRDFBNEMxMDc3MjRFRTBBRUJDNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgXI3EMtzi+nTn9eHNYDFPzRQl BGgzLcRWCtxi7t+58BI4HAtDK3Rp8cd5oIlq4uPV2n2JG2Nxk7+zqcz+LW01jrNB D9k53hxq0xGXlLk6EemnGwXq5m+e3o/d6JIqvZlH5ien1Q9DLZzzPfRCIp1FuspY ykgBrpZR6esILMPTWyJA95mfwFRnQKrqLY6QXYKkPijXP9sMGCxNqXFEX1nflQVw Cf6Jl/Y1ygFTiLCq/M2bsvmDZknJkQMTjGSxJqqbzL1dKvpikEQf6vH7rUKXHLEd B/BmV3OjNGhTIKYXRjzpA9lZA1hxCSWHQvUrx1BxvaQI6P4DaqIzvkgZ4kSBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm7+3l5wVVcOaPNGkwQdyTuCuvHMwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQCbkXhYi88EFZvZ5DgIfYMR2uRlTynUKa8U u3FD1kVDHBmom8QgTHOnqs1j5d1TS/3QGRemS8wvPhYEdu/NYa+OItfJxabLGRl+ PjCzc3M7NyEkZkaN4iqai0ROMZ7jwtHs2lq9K+TIAnYn2Y43o7JOfCyIFG0IuZbU rTl0dxL4jKeJKDXSWTAlEJe5K5MMwcOFcus5HVAHDdQDpH98ngAewg/O7aRsF3M6 SJGXopWNLDWZcSyNlPzIEXU+saqaMIdnCkRhBB4B8LODIhuNc+HJKBk2L6RRd81B umuhSuoO6F0RgF9vz+jtEiOBDFWNf/2NbdHcz53+yukCM9UkJLXR -----END CERTIFICATE-----Generated at Sat Jul 26 06:55:42 2025 by rpki-client