$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: ra0Qf+ys3TjTOOjzu7G6xBCVp6PgE8NBjiFHNgjZfy0= Subject key identifier: A2:AA:6B:0B:71:6B:B6:E0:04:6C:08:10:88:01:02:EC:A1:66:D0:73 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6D01904FD028896E72F723B44FC26CDF0DD42B29 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 04:00:01 +0000 ROA not before: Thu 10 Apr 2025 03:55:01 +0000 ROA not after: Thu 09 Apr 2026 04:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:01:90:4f:d0:28:89:6e:72:f7:23:b4:4f:c2:6c:df:0d:d4:2b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 03:55:01 2025 GMT Not After : Apr 9 04:00:01 2026 GMT Subject: CN=A2AA6B0B716BB6E0046C0810880102ECA166D073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3a:dd:a2:41:22:4e:6a:7f:76:a3:35:ea:6a: a9:fa:56:ca:da:8f:f2:9d:a4:c2:39:aa:c5:f8:68: de:c4:80:6b:ab:a5:50:c7:23:d3:eb:df:a7:18:88: 28:10:f2:a8:e7:0e:b4:59:f9:fd:83:bf:c4:a0:08: 77:d7:9a:ee:8c:b3:f2:6f:8e:65:aa:72:cc:94:7b: 2c:9f:7c:04:97:21:78:84:3e:ac:e7:f6:5b:75:52: 89:96:4a:50:10:28:b8:47:f1:3d:b9:05:3c:84:41: f7:1e:3a:a2:88:ad:39:68:4b:ad:6d:c2:af:b9:64: 3a:99:86:9c:4d:46:db:58:df:8b:85:ce:f2:2f:b7: 16:15:d5:25:e4:a4:17:74:38:44:b3:cd:62:e0:fa: 60:82:60:0a:d5:ae:fa:23:cd:f3:05:72:52:5a:51: e9:ae:32:01:38:34:f4:72:08:39:ea:3a:28:f7:5d: 79:72:6f:42:fc:10:74:ab:77:74:3d:38:20:f0:c7: d7:26:f7:68:6a:6c:90:dc:f2:c7:eb:7b:d9:7a:02: 70:45:9f:4c:21:cf:84:f3:49:fb:e9:61:95:d8:fd: 0f:d1:bf:a8:4a:a0:cf:bb:c5:02:6d:d0:f7:dc:1b: 81:53:e6:1f:4b:88:7f:c3:39:4c:0d:3f:d0:91:db: a0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:AA:6B:0B:71:6B:B6:E0:04:6C:08:10:88:01:02:EC:A1:66:D0:73 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:14::/48 Signature Algorithm: sha256WithRSAEncryption 96:0e:13:67:7e:55:73:93:b4:f0:f7:4e:06:2f:79:ef:d9:e7: 5d:3c:81:ea:3b:c7:11:46:5e:7e:b2:d0:98:4b:44:ee:4a:80: e1:31:7c:49:d7:ac:f2:c9:88:d7:f4:9e:38:95:4d:ae:c7:29: 5b:c7:56:23:71:b6:90:55:e3:5a:2b:2b:80:29:79:8b:59:18: 43:a8:b8:c4:7e:80:bf:25:a1:2c:43:f8:ea:8f:f9:6d:59:88: db:17:c9:1b:d7:cc:8d:7e:01:48:54:c9:62:d9:91:fd:c1:6c: 5a:7c:62:66:f6:f9:62:a5:f9:4b:a5:3c:89:0d:a4:34:dc:5f: 9b:b1:05:68:13:5e:bf:2d:44:ff:e7:45:6c:a2:af:78:27:91: 5f:b4:2a:23:2b:04:43:55:ff:99:3c:35:ee:af:a6:0e:8c:4e: 0e:ec:4e:bb:fb:ba:41:4b:62:96:f2:cd:1e:ac:2d:e9:5a:a7: 85:b6:c4:f1:75:4c:20:7d:9a:94:08:45:0d:73:ca:cf:68:91: c1:eb:63:a1:dd:18:7c:3f:87:b2:f3:93:bf:96:cc:d2:d0:28: cc:2e:2a:ff:53:ad:3d:90:79:37:8a:0a:93:6e:a0:b4:fb:30: 2d:aa:e0:00:ae:06:dd:26:83:77:e5:ef:03:ed:8d:c5:60:d8: 48:3a:95:3c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbQGQT9AoiW5y9yO0T8Js3w3UKykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwMzU1MDFaFw0yNjA0MDkwNDAwMDFaMDMxMTAvBgNV BAMTKEEyQUE2QjBCNzE2QkI2RTAwNDZDMDgxMDg4MDEwMkVDQTE2NkQwNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDROt2iQSJOan92ozXqaqn6Vsra j/KdpMI5qsX4aN7EgGurpVDHI9Pr36cYiCgQ8qjnDrRZ+f2Dv8SgCHfXmu6Ms/Jv jmWqcsyUeyyffASXIXiEPqzn9lt1UomWSlAQKLhH8T25BTyEQfceOqKIrTloS61t wq+5ZDqZhpxNRttY34uFzvIvtxYV1SXkpBd0OESzzWLg+mCCYArVrvojzfMFclJa UemuMgE4NPRyCDnqOij3XXlyb0L8EHSrd3Q9OCDwx9cm92hqbJDc8sfre9l6AnBF n0whz4TzSfvpYZXY/Q/Rv6hKoM+7xQJt0PfcG4FT5h9LiH/DOUwNP9CR26AbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUoqprC3FrtuAEbAgQiAEC7KFm0HMwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FDANBgkqhkiG9w0BAQsFAAOCAQEAlg4TZ35Vc5O08PdOBi9579nnXTyB6jvHEUZe frLQmEtE7kqA4TF8Sdes8smI1/SeOJVNrscpW8dWI3G2kFXjWisrgCl5i1kYQ6i4 xH6AvyWhLEP46o/5bVmI2xfJG9fMjX4BSFTJYtmR/cFsWnxiZvb5YqX5S6U8iQ2k NNxfm7EFaBNevy1E/+dFbKKveCeRX7QqIysEQ1X/mTw17q+mDoxODuxOu/u6QUti lvLNHqwt6VqnhbbE8XVMIH2alAhFDXPKz2iRwetjod0YfD+HsvOTv5bM0tAozC4q /1OtPZB5N4oKk26gtPswLargAK4G3SaDd+XvA+2NxWDYSDqVPA== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net