$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 1NH1eG3Zfl97MOtxtfrsqqGCWGbmYZJJ7WvL5sj1ARU= Subject key identifier: E2:FF:A2:2E:6A:9F:36:A6:44:46:8E:47:0C:FB:3D:6B:10:64:FE:45 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 1955694809B925BC50A075B08F5BFB158A760E14 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:02 +0000 ROA not before: Fri 11 Jul 2025 11:55:02 +0000 ROA not after: Fri 10 Jul 2026 12:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:163::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:55:69:48:09:b9:25:bc:50:a0:75:b0:8f:5b:fb:15:8a:76:0e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jul 11 11:55:02 2025 GMT Not After : Jul 10 12:00:02 2026 GMT Subject: CN=E2FFA22E6A9F36A644468E470CFB3D6B1064FE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f8:24:73:af:60:f1:81:b4:be:7a:89:c4:d6: d0:e9:97:d4:7e:fc:da:3d:73:64:b8:86:8d:a6:e4: 0c:29:32:dc:80:bd:6c:cc:ff:68:a8:72:48:6b:2f: 64:80:6b:77:ce:db:78:ae:b6:cd:d5:e8:23:56:4b: 9a:2d:ed:18:47:7a:61:78:32:0d:81:94:81:6e:be: 4e:d6:0b:7e:9a:38:b9:e8:89:14:20:11:48:63:d8: 88:a3:93:cf:26:ff:db:ad:54:42:46:05:ff:8c:55: 03:41:8c:fe:95:03:6c:a0:81:f8:5b:e3:38:8d:57: d9:4f:fd:ca:32:17:31:5f:67:ac:e5:23:16:39:a9: 57:ae:6a:8b:54:ad:14:e6:be:64:76:58:9d:a9:a7: 0d:12:3d:19:17:fc:2d:81:f0:60:14:7d:5e:d0:0f: 25:87:e6:4d:8b:94:1b:ba:37:69:07:2b:ba:1d:c4: ec:46:ac:39:89:e4:61:20:e9:81:1a:c6:27:2d:09: 0e:9c:11:da:2c:67:91:85:d6:77:88:3f:44:0f:b5: 96:e8:f6:19:63:b0:6a:e3:76:ac:fb:f5:82:13:78: 2c:de:93:9d:b5:ed:46:90:e8:80:d6:26:9b:04:c2: ee:fd:d6:a0:79:0c:6f:44:7b:c4:17:51:d2:1a:c0: e5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FF:A2:2E:6A:9F:36:A6:44:46:8E:47:0C:FB:3D:6B:10:64:FE:45 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:163::/48 Signature Algorithm: sha256WithRSAEncryption 40:e1:bb:fa:46:40:f3:86:43:c3:b1:f1:af:94:ac:fb:f0:fb: fc:9d:8d:fe:d3:4f:ef:1f:9b:64:54:55:dd:a2:59:01:a3:39: 22:88:69:84:ea:85:52:f5:1a:cb:7b:f5:b7:e2:af:18:bb:94: 05:49:db:db:d3:36:f2:cb:97:b6:c3:4b:9b:d9:1c:42:23:f3: e4:de:d0:22:52:22:9e:5f:c1:73:29:4a:87:35:a1:d4:8e:e6: 51:57:cb:23:3f:af:6a:d3:39:38:5a:4e:fd:9e:e4:84:6a:1f: 86:68:ad:b5:cf:fb:5c:aa:ac:1a:6a:97:9e:cd:e0:04:e4:c9: 13:18:f1:99:7d:96:fa:60:0b:b3:7e:87:f6:21:0c:06:0a:43: 88:de:47:a0:b9:70:ff:79:60:1b:2f:36:17:be:0a:91:dc:c9: 0f:1b:7f:7f:58:8b:fb:8e:f5:41:c3:d4:9f:eb:28:9c:e8:e3: ae:fe:5b:64:a1:e4:ed:91:6b:aa:d0:09:50:a3:62:4a:96:64: cd:cc:25:74:4f:0b:80:eb:dd:c3:a4:49:27:b7:db:33:de:25: b6:1d:46:38:e6:6d:b6:bf:4a:27:be:1c:8e:a2:b5:11:25:2b: 8a:24:e5:e3:47:9b:62:bf:ed:05:e2:51:c2:b1:db:74:db:57: 86:cb:e5:6c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGVVpSAm5JbxQoHWwj1v7FYp2DhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTA3MTExMTU1MDJaFw0yNjA3MTAxMjAwMDJaMDMxMTAvBgNV BAMTKEUyRkZBMjJFNkE5RjM2QTY0NDQ2OEU0NzBDRkIzRDZCMTA2NEZFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq+CRzr2DxgbS+eonE1tDpl9R+ /No9c2S4ho2m5AwpMtyAvWzM/2iockhrL2SAa3fO23iuts3V6CNWS5ot7RhHemF4 Mg2BlIFuvk7WC36aOLnoiRQgEUhj2Iijk88m/9utVEJGBf+MVQNBjP6VA2yggfhb 4ziNV9lP/coyFzFfZ6zlIxY5qVeuaotUrRTmvmR2WJ2ppw0SPRkX/C2B8GAUfV7Q DyWH5k2LlBu6N2kHK7odxOxGrDmJ5GEg6YEaxictCQ6cEdosZ5GF1neIP0QPtZbo 9hljsGrjdqz79YITeCzek5217UaQ6IDWJpsEwu791qB5DG9Ee8QXUdIawOWVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4v+iLmqfNqZERo5HDPs9axBk/kUwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQBA4bv6RkDzhkPDsfGvlKz78Pv8nY3+00/v H5tkVFXdolkBozkiiGmE6oVS9RrLe/W34q8Yu5QFSdvb0zbyy5e2w0ub2RxCI/Pk 3tAiUiKeX8FzKUqHNaHUjuZRV8sjP69q0zk4Wk79nuSEah+GaK21z/tcqqwaapee zeAE5MkTGPGZfZb6YAuzfof2IQwGCkOI3keguXD/eWAbLzYXvgqR3MkPG39/WIv7 jvVBw9Sf6yic6OOu/ltkoeTtkWuq0AlQo2JKlmTNzCV0TwuA693DpEknt9sz3iW2 HUY45m22v0onvhyOorURJSuKJOXjR5tiv+0F4lHCsdt021eGy+Vs -----END CERTIFICATE-----Generated at Fri Jul 25 13:04:33 2025 by rpki-client