$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: Pt4kHivj/+/IoSa7PGPfSPyAlm/DgqrXfAGO9WlCDqE= Subject key identifier: 0C:D6:7C:85:3C:71:2B:08:72:7F:7E:82:2B:66:C9:16:9C:C2:2C:D7 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 3B1BA13BD0D84B5ABCD29F4D06E6FF9041FECEB5 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 05:00:00 +0000 ROA not before: Thu 10 Apr 2025 04:55:00 +0000 ROA not after: Thu 09 Apr 2026 05:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:1b:a1:3b:d0:d8:4b:5a:bc:d2:9f:4d:06:e6:ff:90:41:fe:ce:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 04:55:00 2025 GMT Not After : Apr 9 05:00:00 2026 GMT Subject: CN=0CD67C853C712B08727F7E822B66C9169CC22CD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fc:9c:ee:51:5d:55:df:5f:38:9f:6d:80:3f: ac:a6:4e:3d:3f:4b:73:d8:03:04:e6:47:54:f5:4f: e0:62:f7:37:59:93:e8:24:1e:0c:2b:d4:0b:d9:2f: 04:36:c5:5d:1e:13:49:83:64:53:3a:95:df:65:23: 68:bf:ce:b9:5d:ef:bc:04:89:52:f2:60:f4:89:b4: bb:b0:72:82:82:21:53:8a:63:b9:00:b6:3e:d3:60: 64:2c:72:8b:39:f9:c6:15:a4:7d:12:69:ea:08:cb: 8c:e8:f9:7e:3d:84:6c:90:75:0a:a4:ab:16:b3:c1: 25:f5:9e:28:ba:9f:1f:32:3d:5d:b8:61:c6:b4:b2: 2c:16:91:8d:45:c0:dd:b7:db:ed:a5:84:be:77:15: f8:11:82:91:99:45:e3:8c:ad:5b:c2:35:e4:16:14: 0d:3b:ac:f0:ed:28:8e:4f:2d:a2:35:98:03:95:1c: 47:bf:56:5a:4d:96:c2:0d:1b:10:8c:76:f3:cb:d7: fb:86:6e:cf:75:75:16:9a:4a:f0:51:aa:53:b7:fc: 37:84:76:ec:71:41:21:69:c2:94:2e:2c:dc:33:59: 20:60:cd:04:26:f8:34:73:75:0c:05:74:e9:f3:68: 12:45:fa:4b:1a:33:9d:e9:18:16:3f:7d:3c:ec:96: bb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D6:7C:85:3C:71:2B:08:72:7F:7E:82:2B:66:C9:16:9C:C2:2C:D7 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:5::/48 Signature Algorithm: sha256WithRSAEncryption 96:a0:2f:36:fc:b4:20:12:49:21:d8:18:42:85:10:d5:76:06: 3a:e9:fa:06:0b:62:69:79:96:fa:9e:13:02:57:df:65:79:4a: 1b:96:42:63:e0:94:c3:0f:bd:2c:28:46:94:ac:f8:dc:45:c5: b8:55:40:5f:8d:bd:6b:97:f7:a3:75:45:54:8a:38:0c:52:6c: 07:79:73:09:c0:d8:82:25:75:d6:2b:60:ca:c5:88:28:f2:27: e4:d5:6b:23:98:f5:9b:59:f1:e2:ec:3f:e5:c5:16:23:a1:9e: f8:4e:f7:9d:7f:46:6f:2d:a2:69:56:32:a1:a2:63:24:c2:5a: 6d:d4:44:0e:0b:81:98:da:36:fd:f1:fa:67:6b:99:71:00:23: 0c:e7:7b:13:9f:3c:c9:b6:6b:1c:d2:98:fa:dd:69:19:17:52: 8a:f7:13:e6:f8:06:f1:3f:53:65:18:4e:cf:38:cd:82:fa:61: 66:b1:90:54:cd:59:06:06:cc:de:8e:c3:38:3b:03:c3:2a:ab: 19:0f:25:40:04:be:6f:49:45:7c:d8:a7:89:0b:0f:07:a1:14: 4b:9b:cf:7d:85:41:81:9c:15:16:68:a2:0c:31:d6:57:15:a8: 5d:9d:c5:6b:a5:cf:20:cd:81:29:13:ca:c8:05:31:e6:d5:dd: fb:32:80:fe -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOxuhO9DYS1q80p9NBub/kEH+zrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwNDU1MDBaFw0yNjA0MDkwNTAwMDBaMDMxMTAvBgNV BAMTKDBDRDY3Qzg1M0M3MTJCMDg3MjdGN0U4MjJCNjZDOTE2OUNDMjJDRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO/JzuUV1V3184n22AP6ymTj0/ S3PYAwTmR1T1T+Bi9zdZk+gkHgwr1AvZLwQ2xV0eE0mDZFM6ld9lI2i/zrld77wE iVLyYPSJtLuwcoKCIVOKY7kAtj7TYGQscos5+cYVpH0SaeoIy4zo+X49hGyQdQqk qxazwSX1nii6nx8yPV24Yca0siwWkY1FwN232+2lhL53FfgRgpGZReOMrVvCNeQW FA07rPDtKI5PLaI1mAOVHEe/VlpNlsINGxCMdvPL1/uGbs91dRaaSvBRqlO3/DeE duxxQSFpwpQuLNwzWSBgzQQm+DRzdQwFdOnzaBJF+ksaM53pGBY/fTzslrstAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUDNZ8hTxxKwhyf36CK2bJFpzCLNcwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAUw DQYJKoZIhvcNAQELBQADggEBAJagLzb8tCASSSHYGEKFENV2Bjrp+gYLYml5lvqe EwJX32V5ShuWQmPglMMPvSwoRpSs+NxFxbhVQF+NvWuX96N1RVSKOAxSbAd5cwnA 2IIlddYrYMrFiCjyJ+TVayOY9ZtZ8eLsP+XFFiOhnvhO951/Rm8tomlWMqGiYyTC Wm3URA4LgZjaNv3x+mdrmXEAIwznexOfPMm2axzSmPrdaRkXUor3E+b4BvE/U2UY Ts84zYL6YWaxkFTNWQYGzN6Owzg7A8MqqxkPJUAEvm9JRXzYp4kLDwehFEubz32F QYGcFRZoogwx1lcVqF2dxWulzyDNgSkTysgFMebV3fsygP4= -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net