$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: UH1OeEapN00xpdN52GP23gFWyVB860/o2X8O7dKpC+0= Subject key identifier: 24:BE:EA:AD:24:47:64:4E:B0:80:81:47:EB:34:F0:34:85:0E:8D:C2 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 7139E8E9EEBB3F6B90CB85E669999193513A0A9B Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 11 Jul 2025 12:00:01 +0000 ROA not before: Fri 11 Jul 2025 11:55:01 +0000 ROA not after: Fri 10 Jul 2026 12:00:01 +0000 asID: 153087 IP address blocks: 2404:97c0:97c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:39:e8:e9:ee:bb:3f:6b:90:cb:85:e6:69:99:91:93:51:3a:0a:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jul 11 11:55:01 2025 GMT Not After : Jul 10 12:00:01 2026 GMT Subject: CN=24BEEAAD2447644EB0808147EB34F034850E8DC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a5:72:0e:5e:31:4f:da:d7:2b:54:d9:d7:4b: 70:00:af:ba:84:f3:bf:db:31:b9:29:21:2c:2f:cf: 83:4d:46:fa:74:23:b7:bf:b8:4c:0a:9a:fc:3a:7f: 30:b1:2e:21:30:21:23:2d:49:dd:e8:82:1b:78:a5: 38:44:c0:56:cd:e1:13:f3:cb:b4:9a:dd:2b:3a:a2: 12:8f:82:65:28:4e:41:1b:7b:58:f8:17:f9:bf:4a: 4e:16:82:3a:c4:bb:f0:fd:7b:4c:17:56:63:27:45: 24:9b:26:b2:94:ed:16:96:8d:b9:f9:9c:ca:a0:ad: ae:22:e5:c1:7e:0a:26:34:86:e9:9b:80:81:41:0c: 47:5d:5e:64:d7:b2:a0:d6:78:7b:e8:b8:e2:6f:15: 43:de:97:01:37:7e:5f:73:e2:b8:da:b7:a9:cf:2d: d3:9b:7b:de:50:fb:61:bf:97:ec:ea:34:95:4c:31: a4:39:63:2e:a7:e7:68:e6:2c:9b:88:f5:03:d7:95: 90:1a:3c:00:f2:2e:12:bc:09:5c:51:d8:66:f6:4e: a6:40:b0:0f:24:c5:21:f8:c3:3f:d9:d2:da:8a:c8: 68:8c:53:98:e2:64:0d:47:d2:a0:20:27:66:4b:29: 2d:24:ef:5e:3c:18:d9:c2:45:4c:e1:ad:14:33:12: f4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BE:EA:AD:24:47:64:4E:B0:80:81:47:EB:34:F0:34:85:0E:8D:C2 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:97c0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:6b:eb:73:af:43:27:c2:8a:7d:83:a5:81:e5:1c:45:95:ab: f3:6f:41:a6:a0:9f:00:7a:ae:d6:56:b7:cf:df:fd:17:19:ad: 65:f1:67:79:d7:7f:68:68:8a:63:27:2f:f1:38:4c:0c:e1:89: ef:06:25:b4:b7:e9:72:5b:0d:88:ba:75:24:f9:c7:ec:7d:ab: 6c:5f:d5:d4:45:56:ee:f8:8e:65:7d:5a:08:bc:33:ee:77:79: 30:ad:e8:8b:0b:d3:d3:7b:dc:27:f2:2b:3b:45:1c:b9:29:0b: cc:20:60:ca:a4:46:a0:63:12:f9:4f:72:fd:87:95:51:e3:45: 1f:bd:0f:86:ef:b3:6e:0e:ed:f1:75:32:80:49:1a:e5:4f:4f: 9a:72:08:61:11:d0:6b:a1:ef:23:3f:3e:59:b8:8a:82:ff:40: 0f:78:32:30:7c:c8:7c:ad:60:1f:11:f6:a8:d9:67:62:78:e4: 20:17:fb:14:5b:8a:11:cb:b5:dc:7d:a9:ba:46:ba:1e:7b:03: e2:46:b3:45:25:52:22:4e:56:79:0f:f3:5f:7b:af:7f:fd:6a: 0d:5f:42:97:62:82:78:3c:f5:7d:d6:e9:b9:9b:51:ab:37:71: 52:44:46:d0:84:a1:59:2a:64:43:75:69:55:bd:6f:c6:4a:15: 0d:6f:a7:27 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcTno6e67P2uQy4XmaZmRk1E6CpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTA3MTExMTU1MDFaFw0yNjA3MTAxMjAwMDFaMDMxMTAvBgNV BAMTKDI0QkVFQUFEMjQ0NzY0NEVCMDgwODE0N0VCMzRGMDM0ODUwRThEQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOpXIOXjFP2tcrVNnXS3AAr7qE 87/bMbkpISwvz4NNRvp0I7e/uEwKmvw6fzCxLiEwISMtSd3oght4pThEwFbN4RPz y7Sa3Ss6ohKPgmUoTkEbe1j4F/m/Sk4WgjrEu/D9e0wXVmMnRSSbJrKU7RaWjbn5 nMqgra4i5cF+CiY0humbgIFBDEddXmTXsqDWeHvouOJvFUPelwE3fl9z4rjat6nP LdObe95Q+2G/l+zqNJVMMaQ5Yy6n52jmLJuI9QPXlZAaPADyLhK8CVxR2Gb2TqZA sA8kxSH4wz/Z0tqKyGiMU5jiZA1H0qAgJ2ZLKS0k7148GNnCRUzhrRQzEvQ/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUJL7qrSRHZE6wgIFH6zTwNIUOjcIwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzYzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAl8AwDQYJKoZIhvcNAQELBQADggEBACxr63OvQyfCin2DpYHlHEWVq/NvQaag nwB6rtZWt8/f/RcZrWXxZ3nXf2hoimMnL/E4TAzhie8GJbS36XJbDYi6dST5x+x9 q2xf1dRFVu74jmV9Wgi8M+53eTCt6IsL09N73CfyKztFHLkpC8wgYMqkRqBjEvlP cv2HlVHjRR+9D4bvs24O7fF1MoBJGuVPT5pyCGER0Guh7yM/Plm4ioL/QA94MjB8 yHytYB8R9qjZZ2J45CAX+xRbihHLtdx9qbpGuh57A+JGs0UlUiJOVnkP8197r3/9 ag1fQpdigng89X3W6bmbUas3cVJERtCEoVkqZEN1aVW9b8ZKFQ1vpyc= -----END CERTIFICATE-----Generated at Sat Jul 26 15:19:04 2025 by rpki-client