$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: Z1axM0kuScQ1wsgtnc4QX9GvMZLuIsV8v/ScHLgFtiU= Subject key identifier: F4:DA:DF:42:0F:40:45:A7:6E:AC:96:2A:70:65:22:11:93:64:12:7D Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 4E77AFF0E03223AB32063A91414C3A066D34896E Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 03:00:00 +0000 ROA not before: Thu 10 Apr 2025 02:55:00 +0000 ROA not after: Thu 09 Apr 2026 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:77:af:f0:e0:32:23:ab:32:06:3a:91:41:4c:3a:06:6d:34:89:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 02:55:00 2025 GMT Not After : Apr 9 03:00:00 2026 GMT Subject: CN=F4DADF420F4045A76EAC962A706522119364127D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cd:15:34:04:13:23:59:e2:08:a3:cd:5d:56: 27:b8:0f:df:50:b0:ee:99:8f:c7:5f:c8:7f:c3:f4: aa:29:19:a0:79:5a:93:3c:58:07:09:f0:0f:bb:c7: 13:62:43:c9:9d:a6:b0:06:a2:f0:1c:b7:84:03:28: fa:6f:bb:b2:8b:05:6a:94:d7:ea:3c:b7:8a:11:90: 2c:55:26:c3:51:2f:15:6b:71:e0:11:16:4e:d4:25: 9a:89:59:e3:90:d2:b8:b0:50:39:6a:a5:66:aa:36: 62:79:5d:3a:98:7f:17:89:74:1a:a0:56:f2:27:d8: 34:9b:70:84:62:30:18:18:b4:b7:d0:d9:92:9f:62: b1:14:bc:43:30:18:e1:fd:0b:02:37:71:2b:13:07: 30:ee:83:2e:40:71:74:1b:6e:a9:57:34:68:f1:a6: 8c:5d:cf:f6:96:0f:29:5d:ce:8f:b8:5a:aa:b9:ee: 39:ea:83:71:ae:0a:b1:e0:a7:a4:a2:83:f6:3d:40: e0:9d:6d:60:ac:b0:1f:d3:29:81:35:63:2b:c8:8f: 03:49:c3:3b:58:f0:67:23:63:b9:21:2d:47:80:35: f2:01:f8:bb:a6:af:4f:4a:d5:2f:f3:e5:03:af:82: 37:13:2b:3d:1b:87:18:1e:bb:88:a3:b4:81:bd:87: e8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DA:DF:42:0F:40:45:A7:6E:AC:96:2A:70:65:22:11:93:64:12:7D X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:7::/48 Signature Algorithm: sha256WithRSAEncryption 45:3f:f4:83:90:c4:df:93:4b:77:95:82:7d:16:0b:37:ce:39: 22:ed:71:22:4e:ee:99:58:da:b8:31:56:76:e6:d4:d9:98:00: 16:23:94:6e:e2:8b:b7:4d:da:95:34:24:97:4f:85:93:d9:a5: 41:c0:0d:6d:6f:80:fd:66:38:7e:a7:f0:3c:35:f4:34:78:60: 10:5f:28:14:57:5c:9b:15:b4:5c:14:7f:fb:9e:62:99:f3:39: 36:bc:b2:cc:e7:83:0a:0b:e1:24:de:3f:1d:9a:46:d0:c7:b8: 75:50:ea:d7:02:7a:6d:ef:08:5d:d4:47:56:dc:af:77:69:af: 13:69:e6:76:d0:30:5f:13:05:a7:8e:ce:3d:73:b4:6b:4e:17: 5b:df:54:cc:3c:66:7f:46:ed:95:71:cd:a5:22:2d:39:f7:0e: 5d:86:04:df:b4:92:53:c0:30:09:2d:e3:9b:a5:f2:cf:60:54: 11:78:b6:29:27:5c:1d:24:d7:38:b3:ed:8c:f3:c6:0f:9b:1d: 25:c0:a8:52:dc:9c:5d:96:87:da:7f:fe:9b:ed:92:5d:07:13: 5c:ff:11:c7:06:97:ea:25:0c:da:8b:d5:14:20:d7:1f:90:ad: 66:69:29:73:1e:b0:6a:42:f2:72:e9:d8:bc:09:11:b0:fb:8d: e6:f7:e1:b4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTnev8OAyI6syBjqRQUw6Bm00iW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwMjU1MDBaFw0yNjA0MDkwMzAwMDBaMDMxMTAvBgNV BAMTKEY0REFERjQyMEY0MDQ1QTc2RUFDOTYyQTcwNjUyMjExOTM2NDEyN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjzRU0BBMjWeIIo81dVie4D99Q sO6Zj8dfyH/D9KopGaB5WpM8WAcJ8A+7xxNiQ8mdprAGovAct4QDKPpvu7KLBWqU 1+o8t4oRkCxVJsNRLxVrceARFk7UJZqJWeOQ0riwUDlqpWaqNmJ5XTqYfxeJdBqg VvIn2DSbcIRiMBgYtLfQ2ZKfYrEUvEMwGOH9CwI3cSsTBzDugy5AcXQbbqlXNGjx poxdz/aWDyldzo+4Wqq57jnqg3GuCrHgp6Sig/Y9QOCdbWCssB/TKYE1YyvIjwNJ wztY8GcjY7khLUeANfIB+Lumr09K1S/z5QOvgjcTKz0bhxgeu4ijtIG9h+iTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU9NrfQg9ARadurJYqcGUiEZNkEn0wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAcw DQYJKoZIhvcNAQELBQADggEBAEU/9IOQxN+TS3eVgn0WCzfOOSLtcSJO7plY2rgx Vnbm1NmYABYjlG7ii7dN2pU0JJdPhZPZpUHADW1vgP1mOH6n8Dw19DR4YBBfKBRX XJsVtFwUf/ueYpnzOTa8sszngwoL4STePx2aRtDHuHVQ6tcCem3vCF3UR1bcr3dp rxNp5nbQMF8TBaeOzj1ztGtOF1vfVMw8Zn9G7ZVxzaUiLTn3Dl2GBN+0klPAMAkt 45ul8s9gVBF4tiknXB0k1ziz7Yzzxg+bHSXAqFLcnF2Wh9p//pvtkl0HE1z/EccG l+olDNqL1RQg1x+QrWZpKXMesGpC8nLp2LwJEbD7jeb34bQ= -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net