$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: sfX//sKOJiEuG3MX815fs00hBV5qvYrVSNOlry6c+5c= Subject key identifier: AD:0F:D2:94:D3:D4:E0:18:E9:BE:2C:4B:1E:63:CC:33:7B:D9:6B:8E Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6BB7A5203A10AD33F67199EEB5879F8120D9B2EC Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 04:00:00 +0000 ROA not before: Thu 10 Apr 2025 03:55:00 +0000 ROA not after: Thu 09 Apr 2026 04:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:b7:a5:20:3a:10:ad:33:f6:71:99:ee:b5:87:9f:81:20:d9:b2:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 03:55:00 2025 GMT Not After : Apr 9 04:00:00 2026 GMT Subject: CN=AD0FD294D3D4E018E9BE2C4B1E63CC337BD96B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:cd:31:73:02:5e:e4:1c:63:da:97:6e:29: e6:59:90:e5:aa:58:f4:c8:78:db:09:e1:f8:2f:78: 20:6a:1f:49:e5:b3:4f:9e:ac:4b:44:39:5b:64:11: ad:c4:a2:1a:61:70:ea:55:aa:67:e0:e2:fa:17:32: 31:b6:1b:a5:66:53:43:47:1e:d4:e2:59:75:93:b8: 59:70:39:73:62:02:97:af:5b:57:67:ab:4a:31:b3: be:d3:7f:51:09:13:6d:ef:9a:ce:f2:f7:3e:c4:75: 5a:23:9f:cd:f7:23:da:2a:0c:6b:74:b8:40:c3:10: d4:8f:bd:0e:c5:12:36:96:db:81:d9:2c:e3:8d:43: e2:b7:24:25:4c:41:a0:ba:30:1d:4e:4a:0b:fe:83: 7f:d6:ef:92:1a:ca:13:b3:67:4e:78:86:99:fd:eb: cf:c2:5e:dc:7c:7f:df:6a:5e:c2:b0:c2:f3:72:2d: e8:db:b3:cc:8b:a7:e0:49:35:10:1d:7c:33:14:b9: a6:c1:74:01:48:ea:97:31:cd:9e:9a:4b:67:fa:68: 4a:f0:0d:4f:6b:b8:47:9c:e5:da:ad:7b:58:e6:e9: db:36:58:07:bb:2b:99:02:00:4a:a5:c4:b6:3f:6a: bf:fb:40:c6:25:87:75:9e:82:48:0a:45:ee:1d:f2: a3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0F:D2:94:D3:D4:E0:18:E9:BE:2C:4B:1E:63:CC:33:7B:D9:6B:8E X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:1::/48 Signature Algorithm: sha256WithRSAEncryption 51:f4:39:15:00:43:24:fb:1d:e7:4b:ab:1c:ba:5a:30:a2:21: 00:21:3a:b5:d5:63:d4:d0:c7:08:8d:0e:fd:6e:12:05:b3:fb: 02:45:f9:dd:5a:65:4d:67:f7:a3:5f:f1:dd:5e:c9:20:d1:b7: 03:72:68:06:90:6b:4d:8a:ba:b8:ff:18:79:20:25:16:09:db: 36:9a:ee:f7:70:ab:f5:12:2b:e9:ec:68:45:e8:58:a4:8d:72: 15:0b:92:85:0c:5b:a0:48:d5:3b:74:10:1b:c2:94:99:96:9e: e4:4b:71:8b:e4:fa:54:25:40:36:21:e9:56:d2:60:b6:ba:fa: 55:67:ff:24:de:6f:e9:83:a7:d2:85:42:46:59:13:21:ee:47: 78:34:3d:90:19:66:45:11:dd:0b:dc:d1:ae:cc:d9:09:1f:a3: de:90:bb:27:71:32:d0:f2:5d:8f:06:ad:b7:92:36:19:a1:51: d1:3b:8a:2e:39:30:bf:ec:5a:2d:90:e6:fa:52:0b:44:9d:c1: 5f:32:ed:63:59:26:59:79:c0:b8:a0:9e:08:e5:d8:e7:8e:f2: 6e:95:61:fa:c6:eb:34:c1:ef:c7:93:24:28:29:fa:1c:36:14: 08:29:94:d8:39:6e:7a:99:15:47:c3:3e:7a:23:83:ec:11:35: 37:91:f5:04 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUa7elIDoQrTP2cZnutYefgSDZsuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwMzU1MDBaFw0yNjA0MDkwNDAwMDBaMDMxMTAvBgNV BAMTKEFEMEZEMjk0RDNENEUwMThFOUJFMkM0QjFFNjNDQzMzN0JEOTZCOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HM0xcwJe5Bxj2pduKeZZkOWq WPTIeNsJ4fgveCBqH0nls0+erEtEOVtkEa3EohphcOpVqmfg4voXMjG2G6VmU0NH HtTiWXWTuFlwOXNiApevW1dnq0oxs77Tf1EJE23vms7y9z7EdVojn833I9oqDGt0 uEDDENSPvQ7FEjaW24HZLOONQ+K3JCVMQaC6MB1OSgv+g3/W75IayhOzZ054hpn9 68/CXtx8f99qXsKwwvNyLejbs8yLp+BJNRAdfDMUuabBdAFI6pcxzZ6aS2f6aErw DU9ruEec5dqte1jm6ds2WAe7K5kCAEqlxLY/ar/7QMYlh3WegkgKRe4d8qO3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrQ/SlNPU4BjpvixLHmPMM3vZa44wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAEw DQYJKoZIhvcNAQELBQADggEBAFH0ORUAQyT7HedLqxy6WjCiIQAhOrXVY9TQxwiN Dv1uEgWz+wJF+d1aZU1n96Nf8d1eySDRtwNyaAaQa02Kurj/GHkgJRYJ2zaa7vdw q/USK+nsaEXoWKSNchULkoUMW6BI1Tt0EBvClJmWnuRLcYvk+lQlQDYh6VbSYLa6 +lVn/yTeb+mDp9KFQkZZEyHuR3g0PZAZZkUR3Qvc0a7M2Qkfo96QuydxMtDyXY8G rbeSNhmhUdE7ii45ML/sWi2Q5vpSC0SdwV8y7WNZJll5wLigngjl2OeO8m6VYfrG 6zTB78eTJCgp+hw2FAgplNg5bnqZFUfDPnojg+wRNTeR9QQ= -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net