$ rpki-client -vvf repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa File: 323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa (raw, json) Hash identifier: lAwEnKyw5OHxCplSawk5HVEotvU+5HwJxxtoSxrjtdo= Subject key identifier: B5:19:F4:BA:D4:C9:6C:CD:DE:20:86:6D:A3:8B:44:39:05:36:49:CD Certificate issuer: /CN=DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE Certificate serial: 5D5F9A0D5DB3455608D3AF1A19D3191B2BF61186 Authority key identifier: DB:F7:1D:6F:8C:24:BD:B8:0D:69:2B:E8:6D:6F:7A:D3:95:1B:6C:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa Signing time: Mon 06 Jan 2025 15:47:26 +0000 ROA not before: Mon 06 Jan 2025 15:42:26 +0000 ROA not after: Mon 05 Jan 2026 15:47:26 +0000 asID: 137361 IP address blocks: 2001:df5:2700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.crl rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:5f:9a:0d:5d:b3:45:56:08:d3:af:1a:19:d3:19:1b:2b:f6:11:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE Validity Not Before: Jan 6 15:42:26 2025 GMT Not After : Jan 5 15:47:26 2026 GMT Subject: CN=B519F4BAD4C96CCDDE20866DA38B4439053649CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7d:d9:bd:f1:41:22:6a:b9:5b:9d:9c:0d:a5: 26:52:10:54:95:31:14:6f:81:b0:c9:75:d1:71:b3: 34:f8:5e:0a:c1:c4:24:0a:57:0a:00:ee:54:ca:8b: 3f:d8:a2:b3:0d:56:48:87:8c:fc:00:1d:2a:df:96: 66:ab:9f:9b:43:d7:7a:d9:cb:12:04:b5:12:79:6f: be:01:f5:14:bb:ae:cf:9a:06:ea:12:b0:62:f0:bb: c3:f2:d5:65:67:a5:dd:7e:51:9b:ea:63:31:4d:e4: ff:4c:f3:a8:16:82:1b:08:4b:5b:b9:68:84:f4:43: 01:6e:cd:c4:59:1f:60:7e:32:57:d7:9d:b1:83:f6: cd:7d:32:08:61:31:3f:ad:14:e4:28:f0:48:4f:24: fc:d6:f8:fe:33:b1:95:e1:69:f7:a1:37:47:87:ab: 9c:2b:8a:2b:bd:95:de:d6:bb:b0:f9:be:7b:a3:9b: bc:68:a9:a5:28:97:a1:de:49:08:3c:97:15:04:bc: a0:ab:dd:fa:00:15:c3:18:f2:14:2c:60:20:77:7f: be:3c:c6:40:91:84:bc:72:37:a1:29:66:97:10:f4: 8a:e3:a9:09:cd:0c:2e:18:20:63:3c:ea:b4:75:0c: 21:cc:3a:26:39:c2:fa:7e:90:c3:df:fd:69:17:8d: c8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:19:F4:BA:D4:C9:6C:CD:DE:20:86:6D:A3:8B:44:39:05:36:49:CD X509v3 Authority Key Identifier: keyid:DB:F7:1D:6F:8C:24:BD:B8:0D:69:2B:E8:6D:6F:7A:D3:95:1B:6C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:2700::/48 Signature Algorithm: sha256WithRSAEncryption 74:78:cf:c1:92:44:54:7c:13:e2:2f:98:fe:53:90:0c:88:8a: c6:13:98:02:6a:ed:74:bc:5d:b9:a0:10:3c:b0:2d:11:91:a1: 06:f5:b6:d4:13:b5:85:06:86:01:d3:cf:1c:dd:e8:78:38:33: 9a:37:6b:14:e4:d4:68:18:34:dc:a0:da:72:64:1c:26:d8:55: d1:3c:0a:d8:b5:93:82:c5:ff:f9:f7:44:4d:58:5b:26:04:21: f8:7c:ef:50:52:61:2b:e7:e5:10:a5:04:76:7c:d3:72:28:90: 88:5a:4c:5c:2a:ea:56:68:33:af:69:75:47:5e:2d:07:63:45: ea:50:b9:10:f1:8d:0c:59:10:b7:1c:db:35:3c:39:8c:a7:8f: 4b:92:e8:50:97:2f:8a:5d:f0:14:f6:fa:26:2a:29:af:98:b5: d2:04:8f:62:4e:61:7c:00:41:04:07:2e:b8:c0:a2:c6:bb:3e: 4f:a7:49:2e:e8:59:46:78:d9:53:23:b1:17:57:7d:ec:14:f2: 18:fe:96:6c:7b:f8:07:9d:e4:b7:c4:39:94:39:de:d1:c1:f7: 98:a4:c8:1e:6e:11:c0:49:93:de:c2:66:4e:05:6b:7a:0a:9b: 73:69:35:93:60:7e:ae:d8:e3:f2:9a:2b:c1:dc:6d:81:4a:47: b3:d0:70:84 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXV+aDV2zRVYI068aGdMZGyv2EYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJGNzFENkY4QzI0QkRCODBENjkyQkU4NkQ2RjdBRDM5 NTFCNkNFRTAeFw0yNTAxMDYxNTQyMjZaFw0yNjAxMDUxNTQ3MjZaMDMxMTAvBgNV BAMTKEI1MTlGNEJBRDRDOTZDQ0RERTIwODY2REEzOEI0NDM5MDUzNjQ5Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fdm98UEiarlbnZwNpSZSEFSV MRRvgbDJddFxszT4XgrBxCQKVwoA7lTKiz/YorMNVkiHjPwAHSrflmarn5tD13rZ yxIEtRJ5b74B9RS7rs+aBuoSsGLwu8Py1WVnpd1+UZvqYzFN5P9M86gWghsIS1u5 aIT0QwFuzcRZH2B+MlfXnbGD9s19MghhMT+tFOQo8EhPJPzW+P4zsZXhafehN0eH q5wriiu9ld7Wu7D5vnujm7xoqaUol6HeSQg8lxUEvKCr3foAFcMY8hQsYCB3f748 xkCRhLxyN6EpZpcQ9IrjqQnNDC4YIGM86rR1DCHMOiY5wvp+kMPf/WkXjci1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtRn0utTJbM3eIIZto4tEOQU2Sc0wHwYDVR0j BBgwFoAU2/cdb4wkvbgNaSvobW9605UbbO4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzJjYWUzZi1iMzI5LTQ0MWItOTdmYy01YmI5ZmNjMDUxZDIvMC9EQkY3MUQ2RjhD MjRCREI4MEQ2OTJCRTg2RDZGN0FEMzk1MUI2Q0VFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJGNzFENkY4QzI0QkRCODBENjkyQkU4NkQ2RjdBRDM5NTFC NkNFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzMmNhZTNmLWIzMjktNDQxYi05 N2ZjLTViYjlmY2MwNTFkMi8wLzMyMzAzMDMxM2E2NDY2MzUzYTMyMzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9ScAMA0GCSqGSIb3DQEBCwUAA4IBAQB0eM/BkkRUfBPiL5j+U5AMiIrGE5gCau10 vF25oBA8sC0RkaEG9bbUE7WFBoYB088c3eh4ODOaN2sU5NRoGDTcoNpyZBwm2FXR PArYtZOCxf/590RNWFsmBCH4fO9QUmEr5+UQpQR2fNNyKJCIWkxcKupWaDOvaXVH Xi0HY0XqULkQ8Y0MWRC3HNs1PDmMp49LkuhQly+KXfAU9vomKimvmLXSBI9iTmF8 AEEEBy64wKLGuz5Pp0ku6FlGeNlTI7EXV33sFPIY/pZse/gHneS3xDmUOd7RwfeY pMgebhHASZPewmZOBWt6CptzaTWTYH6u2OPymivB3G2BSkez0HCE -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:21 2025 by rpki-client on console.sobornost.net