$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: vTpYTNK2Iedt3x6MQB/Xrh13AhkarFJV4HWTUjcGM/Y= Subject key identifier: 31:BD:6F:7D:13:78:B2:63:4C:93:7D:5C:B4:78:0D:69:0F:08:A7:68 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 58DA5B35ED9243C5EB67B6359E4B1ECDE99167BD Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 05:00:02 +0000 ROA not before: Thu 10 Apr 2025 04:55:02 +0000 ROA not after: Thu 09 Apr 2026 05:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:da:5b:35:ed:92:43:c5:eb:67:b6:35:9e:4b:1e:cd:e9:91:67:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 04:55:02 2025 GMT Not After : Apr 9 05:00:02 2026 GMT Subject: CN=31BD6F7D1378B2634C937D5CB4780D690F08A768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:41:aa:47:af:66:35:f3:9e:5f:ae:bf:74:7e: 41:b7:ae:77:34:ab:bd:bd:91:fe:5d:0e:0b:82:dd: 20:95:5b:cc:e9:d9:c6:55:fd:ca:b5:6e:a4:56:9c: e0:f6:6b:02:44:f3:f5:f2:7b:88:80:d7:c9:b6:41: 57:51:66:15:8c:e1:5c:be:dc:f0:0f:75:3e:1f:c2: 19:f2:c8:f2:a1:53:3a:93:48:d2:0d:ec:62:ef:13: 2d:53:8f:28:1d:72:1f:4d:e6:02:cf:e1:39:8c:b0: de:a5:d4:9c:2d:5e:4d:0a:a7:9c:fd:5f:d3:47:06: c8:46:d1:83:7e:51:e7:ef:49:2d:d5:e4:7c:44:06: 2b:93:5d:16:07:69:c9:93:43:d5:ca:c9:19:b4:be: 9c:c1:03:56:e6:47:72:95:31:e9:32:04:5c:c2:53: 50:64:35:ec:55:62:2d:12:00:a8:25:8c:70:9d:c1: 63:71:20:70:42:92:2b:00:c2:79:1b:58:5a:40:02: 00:7d:70:0d:3b:83:a4:8f:f1:53:cd:d7:ef:d3:d3: 19:04:31:9e:d7:4d:dd:2e:b3:27:0a:3e:32:9a:59: a0:6e:21:fb:f0:77:3b:10:0d:36:df:0f:7c:91:33: 51:5d:d7:f5:ae:d3:12:f6:fc:da:bc:27:cc:85:0a: 85:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BD:6F:7D:13:78:B2:63:4C:93:7D:5C:B4:78:0D:69:0F:08:A7:68 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:2::/48 Signature Algorithm: sha256WithRSAEncryption 89:a4:c9:7c:38:99:42:79:64:c5:9a:5d:60:d2:13:6b:8b:bc: 6b:55:34:19:c2:ac:cb:58:69:ab:de:da:40:d7:1e:fa:0e:b0: 74:82:6f:1c:d3:a1:46:97:15:c2:65:40:78:d8:30:37:61:4b: 0b:a1:76:0a:d1:ae:b4:c0:fd:bc:f2:dc:d3:82:ea:d4:d1:48: 8d:63:05:6b:30:76:6e:e8:29:91:6f:43:e6:2f:d2:98:57:a5: ed:8d:47:19:93:0c:65:6f:d3:a9:75:0f:2a:6c:3c:67:cb:bf: 4a:93:df:58:4c:cc:ce:70:06:52:81:4b:81:51:0f:55:1b:7f: 02:2c:3c:5c:13:66:ba:68:59:98:09:4d:08:04:1e:57:97:86: 10:6d:08:1e:cd:72:c8:32:0c:e4:74:7d:84:d7:c9:0d:ea:ff: 00:45:00:8b:41:a6:16:a4:57:4a:11:bf:89:c6:19:ab:6c:8b: f2:d2:61:05:cb:5d:0e:58:6c:31:d5:52:68:fb:f8:48:12:cf: 93:6e:47:6e:23:82:9e:4d:9d:56:5a:f5:ab:92:06:f5:94:0c: 4f:2d:e9:b3:f3:92:ad:82:92:d9:ec:78:8c:82:6e:c3:bf:d0: da:cb:08:8e:b3:fc:dc:ff:bf:06:7e:69:d9:b6:6b:ef:45:00: 40:11:aa:ce -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWNpbNe2SQ8XrZ7Y1nksezemRZ70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwNDU1MDJaFw0yNjA0MDkwNTAwMDJaMDMxMTAvBgNV BAMTKDMxQkQ2RjdEMTM3OEIyNjM0QzkzN0Q1Q0I0NzgwRDY5MEYwOEE3NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrQapHr2Y1855frr90fkG3rnc0 q729kf5dDguC3SCVW8zp2cZV/cq1bqRWnOD2awJE8/Xye4iA18m2QVdRZhWM4Vy+ 3PAPdT4fwhnyyPKhUzqTSNIN7GLvEy1Tjygdch9N5gLP4TmMsN6l1JwtXk0Kp5z9 X9NHBshG0YN+UefvSS3V5HxEBiuTXRYHacmTQ9XKyRm0vpzBA1bmR3KVMekyBFzC U1BkNexVYi0SAKgljHCdwWNxIHBCkisAwnkbWFpAAgB9cA07g6SP8VPN1+/T0xkE MZ7XTd0usycKPjKaWaBuIfvwdzsQDTbfD3yRM1Fd1/Wu0xL2/Nq8J8yFCoUTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMb1vfRN4smNMk31ctHgNaQ8Ip2gwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAIw DQYJKoZIhvcNAQELBQADggEBAImkyXw4mUJ5ZMWaXWDSE2uLvGtVNBnCrMtYaave 2kDXHvoOsHSCbxzToUaXFcJlQHjYMDdhSwuhdgrRrrTA/bzy3NOC6tTRSI1jBWsw dm7oKZFvQ+Yv0phXpe2NRxmTDGVv06l1DypsPGfLv0qT31hMzM5wBlKBS4FRD1Ub fwIsPFwTZrpoWZgJTQgEHleXhhBtCB7NcsgyDOR0fYTXyQ3q/wBFAItBphakV0oR v4nGGatsi/LSYQXLXQ5YbDHVUmj7+EgSz5NuR24jgp5NnVZa9auSBvWUDE8t6bPz kq2CktnseIyCbsO/0NrLCI6z/Nz/vwZ+adm2a+9FAEARqs4= -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net