$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: cplcGCMTKNbyST3IWkDxcP/n/AeMzarnQF1LNyGc5EY= Subject key identifier: 3C:A3:E4:A6:A7:6D:58:F2:42:78:AA:B6:F7:41:1F:89:A6:50:2C:E6 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6178EE522E99F4390CFF18879544293B77B5A927 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 04:00:01 +0000 ROA not before: Thu 10 Apr 2025 03:55:01 +0000 ROA not after: Thu 09 Apr 2026 04:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:78:ee:52:2e:99:f4:39:0c:ff:18:87:95:44:29:3b:77:b5:a9:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 03:55:01 2025 GMT Not After : Apr 9 04:00:01 2026 GMT Subject: CN=3CA3E4A6A76D58F24278AAB6F7411F89A6502CE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:b8:e8:ab:79:5c:54:52:35:32:a8:bc:80: fe:bd:43:c6:b7:2e:69:f9:10:cd:f6:aa:05:77:7f: 75:e6:93:f7:f8:f3:ec:07:a4:83:1e:ee:5e:7a:af: 81:a4:cf:e4:1d:b0:f8:dc:21:09:4f:23:87:d5:ce: 1b:2f:1b:05:bc:47:88:ad:d3:4f:46:a9:10:0b:4a: 2b:07:4d:f4:6d:12:9c:d2:be:54:06:cc:97:ed:b6: b7:1c:a2:af:14:66:3e:01:f1:fb:a3:5b:98:8e:b5: 1a:a7:3a:94:ec:ea:33:df:f1:24:84:59:95:ea:37: 4e:8d:09:4e:86:fa:b2:14:36:1f:eb:db:17:a8:b7: 45:f8:54:06:27:a0:c4:e2:9f:03:66:4d:2c:7a:d0: fd:5d:da:d4:df:59:9b:8d:c0:08:50:a1:a3:df:4e: 3c:a3:88:e1:dd:05:86:15:f4:2a:b9:cf:8d:13:94: 74:b9:ba:77:a3:bd:32:67:aa:30:0a:25:bd:d5:fe: 37:ed:56:b5:7a:53:87:29:da:64:d7:53:7d:31:6b: 0b:a5:8c:c8:01:1a:19:2e:8f:42:9a:94:70:fe:a1: cf:39:15:05:32:67:fd:22:c6:3c:58:ef:b6:62:3c: ff:12:c7:af:70:e5:fa:c8:46:3e:50:94:f2:13:69: f1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A3:E4:A6:A7:6D:58:F2:42:78:AA:B6:F7:41:1F:89:A6:50:2C:E6 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:15::/48 Signature Algorithm: sha256WithRSAEncryption 96:5a:c1:27:b2:28:36:f5:f4:7f:42:c5:75:6d:db:89:05:de: 97:de:79:c1:3f:94:18:5c:48:1b:c2:44:76:af:70:9f:82:76: a7:3b:59:7a:30:0d:dd:1e:50:d4:63:e0:4c:9e:d3:25:f5:dc: cd:de:a1:45:2a:62:0f:fb:28:82:9c:0d:59:8f:f6:e3:7e:8c: fd:5a:3f:1b:66:49:da:c8:4e:ca:19:c0:d8:19:e5:16:0c:0c: 79:19:5b:fe:bf:62:7f:1d:f6:c8:ac:68:77:21:11:bb:0d:ba: 56:b4:43:fd:0f:fa:b9:a6:7a:ae:9e:75:19:b6:60:cf:1f:17: 2c:a2:b3:94:84:df:fa:a6:6e:03:1e:25:19:d3:cd:b8:cd:fc: 71:62:5b:07:55:1b:1a:2e:71:10:73:30:15:2a:fb:6e:90:16: b8:40:a5:15:4a:70:74:fb:6f:0d:db:7e:3d:c7:7b:77:2d:65: e1:19:98:b6:c5:85:9c:72:6f:e2:72:72:ce:c6:4a:22:f4:66: 65:a7:0c:47:ae:71:68:ec:44:65:e9:b2:c2:47:74:82:85:01: da:b0:9f:fb:6c:8b:2f:6a:28:fa:fc:69:8c:99:54:92:bb:59: 98:7f:54:0c:e6:1d:bd:8d:fa:25:5b:2e:99:51:7d:54:aa:f9: 91:4e:92:b7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYXjuUi6Z9DkM/xiHlUQpO3e1qScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwMzU1MDFaFw0yNjA0MDkwNDAwMDFaMDMxMTAvBgNV BAMTKDNDQTNFNEE2QTc2RDU4RjI0Mjc4QUFCNkY3NDExRjg5QTY1MDJDRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/qbjoq3lcVFI1Mqi8gP69Q8a3 Lmn5EM32qgV3f3Xmk/f48+wHpIMe7l56r4Gkz+QdsPjcIQlPI4fVzhsvGwW8R4it 009GqRALSisHTfRtEpzSvlQGzJfttrccoq8UZj4B8fujW5iOtRqnOpTs6jPf8SSE WZXqN06NCU6G+rIUNh/r2xeot0X4VAYnoMTinwNmTSx60P1d2tTfWZuNwAhQoaPf TjyjiOHdBYYV9Cq5z40TlHS5unejvTJnqjAKJb3V/jftVrV6U4cp2mTXU30xawul jMgBGhkuj0KalHD+oc85FQUyZ/0ixjxY77ZiPP8Sx69w5frIRj5QlPITafF5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPKPkpqdtWPJCeKq290EfiaZQLOYwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FTANBgkqhkiG9w0BAQsFAAOCAQEAllrBJ7IoNvX0f0LFdW3biQXel955wT+UGFxI G8JEdq9wn4J2pztZejAN3R5Q1GPgTJ7TJfXczd6hRSpiD/sogpwNWY/2436M/Vo/ G2ZJ2shOyhnA2BnlFgwMeRlb/r9ifx32yKxodyERuw26VrRD/Q/6uaZ6rp51GbZg zx8XLKKzlITf+qZuAx4lGdPNuM38cWJbB1UbGi5xEHMwFSr7bpAWuEClFUpwdPtv Ddt+Pcd7dy1l4RmYtsWFnHJv4nJyzsZKIvRmZacMR65xaOxEZemywkd0goUB2rCf +2yLL2oo+vxpjJlUkrtZmH9UDOYdvY36JVsumVF9VKr5kU6Stw== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net