$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: wzrRIRPSPMpZXs/6SqbPwUgiCefzNUlDE+HufEdbYVA= Subject key identifier: 60:73:D6:DB:35:47:16:24:58:04:F1:63:4C:06:30:34:CA:1F:D7:0E Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 417DCCD0E38878D35E64EC14E395C031858638E7 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:02 +0000 ROA not before: Fri 11 Jul 2025 11:55:02 +0000 ROA not after: Fri 10 Jul 2026 12:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7d:cc:d0:e3:88:78:d3:5e:64:ec:14:e3:95:c0:31:85:86:38:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jul 11 11:55:02 2025 GMT Not After : Jul 10 12:00:02 2026 GMT Subject: CN=6073D6DB354716245804F1634C063034CA1FD70E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:26:e8:6d:fd:42:86:18:cf:b3:60:c2:07:cb: 31:60:2a:bf:4d:0b:ec:ba:73:36:f8:b6:28:3e:6b: 9e:06:3d:ca:38:a0:5a:61:77:9d:66:a6:f8:ef:43: f0:88:f4:69:c6:b3:18:c9:61:65:55:57:df:46:21: ba:0a:07:e8:de:6e:2f:3e:da:64:01:1d:56:57:d3: ee:6f:71:2f:0c:d8:52:ad:98:bd:70:28:8d:3e:4f: c4:f0:a4:03:9b:f3:82:58:69:8b:3e:11:18:b5:15: 82:a7:20:c6:86:fb:e0:3b:e9:b1:65:6f:a6:aa:7b: fb:88:fe:b7:ad:e2:e2:0d:38:28:0b:89:2e:dd:7d: 63:05:93:67:2b:0a:b1:06:da:43:cb:c2:19:63:52: 90:5e:46:f2:58:13:9b:35:c1:55:2d:98:0a:6c:a9: 1b:65:f5:aa:47:0e:4e:97:23:8d:72:f1:c0:8b:e2: 00:2a:92:f7:76:47:88:2c:42:8f:1f:f4:f4:69:cc: ab:1f:fb:09:1d:60:f2:f0:ff:16:a5:93:a6:a3:91: fd:32:58:cd:76:7d:54:67:df:66:40:4a:1f:74:42: c0:5b:4f:a0:e6:a3:a1:68:7d:0c:bd:05:79:44:be: b4:49:37:6e:60:01:5f:b4:d1:9e:c2:1f:d5:b9:26: c7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:73:D6:DB:35:47:16:24:58:04:F1:63:4C:06:30:34:CA:1F:D7:0E X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:222::/48 Signature Algorithm: sha256WithRSAEncryption 81:7f:cf:a4:f9:73:22:f2:5e:88:a0:9c:0c:1c:59:9a:96:41: 97:b7:4b:be:8c:87:9c:51:ec:69:00:99:3a:bf:2b:1b:42:eb: 8f:9e:7c:53:77:13:ab:f6:d3:ef:72:03:b7:19:c2:16:b0:21: cb:74:54:36:17:04:bc:3c:b2:4e:8a:ec:a0:ab:81:8f:e1:39: b3:d1:7c:4f:1b:98:be:46:1a:05:9b:a1:99:c8:3a:e0:12:86: 0d:5a:a2:d3:be:99:0d:26:47:fc:50:42:5b:77:dd:a7:ea:47: be:7b:4d:f8:0f:a6:d1:c3:f2:44:ac:68:ee:18:73:9b:70:4b: 3e:f5:87:85:93:60:3f:3d:b9:21:af:a5:0a:62:84:50:a2:52: 1b:5f:c6:9a:86:cc:71:ed:ac:e0:58:ed:d6:5f:3c:e9:ac:9f: d2:69:a7:43:d3:d8:7b:0d:52:4c:d3:f0:ef:c1:fc:85:de:5b: 56:29:c9:8d:c4:12:58:20:77:01:dc:7d:c5:d8:fd:d3:fd:da: 1c:be:5b:62:4c:61:72:3c:92:68:94:e5:16:f6:10:fe:1e:c3: 1f:0d:36:20:12:4b:14:00:06:eb:97:cd:4d:cb:d2:88:97:8d: a4:5e:af:5d:a7:e2:07:22:7d:b1:54:21:ab:e2:80:33:30:bb: d8:7a:91:a1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQX3M0OOIeNNeZOwU45XAMYWGOOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTA3MTExMTU1MDJaFw0yNjA3MTAxMjAwMDJaMDMxMTAvBgNV BAMTKDYwNzNENkRCMzU0NzE2MjQ1ODA0RjE2MzRDMDYzMDM0Q0ExRkQ3MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIJuht/UKGGM+zYMIHyzFgKr9N C+y6czb4tig+a54GPco4oFphd51mpvjvQ/CI9GnGsxjJYWVVV99GIboKB+jebi8+ 2mQBHVZX0+5vcS8M2FKtmL1wKI0+T8TwpAOb84JYaYs+ERi1FYKnIMaG++A76bFl b6aqe/uI/ret4uINOCgLiS7dfWMFk2crCrEG2kPLwhljUpBeRvJYE5s1wVUtmAps qRtl9apHDk6XI41y8cCL4gAqkvd2R4gsQo8f9PRpzKsf+wkdYPLw/xalk6ajkf0y WM12fVRn32ZASh90QsBbT6Dmo6FofQy9BXlEvrRJN25gAV+00Z7CH9W5Jse9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYHPW2zVHFiRYBPFjTAYwNMof1w4wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQCBf8+k+XMi8l6IoJwMHFmalkGXt0u+jIec UexpAJk6vysbQuuPnnxTdxOr9tPvcgO3GcIWsCHLdFQ2FwS8PLJOiuygq4GP4Tmz 0XxPG5i+RhoFm6GZyDrgEoYNWqLTvpkNJkf8UEJbd92n6ke+e034D6bRw/JErGju GHObcEs+9YeFk2A/Pbkhr6UKYoRQolIbX8aahsxx7azgWO3WXzzprJ/SaadD09h7 DVJM0/DvwfyF3ltWKcmNxBJYIHcB3H3F2P3T/docvltiTGFyPJJolOUW9hD+HsMf DTYgEksUAAbrl81Ny9KIl42kXq9dp+IHIn2xVCGr4oAzMLvYepGh -----END CERTIFICATE-----Generated at Sat Jul 26 06:55:44 2025 by rpki-client