$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: vAnV4g431JCqkwtUthm0ie5OhAW6+m/w0zGsqm8XSOo= Subject key identifier: B0:2B:B1:11:F8:CD:D3:5D:85:EF:05:6D:3F:45:E8:46:87:47:60:C4 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 4BBB159F96158B709BB94101F28980A65D7CBCC2 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 10 Apr 2025 03:00:00 +0000 ROA not before: Thu 10 Apr 2025 02:55:00 +0000 ROA not after: Thu 09 Apr 2026 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:bb:15:9f:96:15:8b:70:9b:b9:41:01:f2:89:80:a6:5d:7c:bc:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Apr 10 02:55:00 2025 GMT Not After : Apr 9 03:00:00 2026 GMT Subject: CN=B02BB111F8CDD35D85EF056D3F45E846874760C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bd:af:b2:e8:6a:da:5c:d8:cc:77:0d:c8:f5: be:db:9f:ee:2f:85:05:7e:de:68:22:df:6e:1a:9f: c2:93:a6:2e:59:75:39:5b:fa:7c:b1:58:be:59:45: 8c:b3:7b:40:87:a8:c9:1f:3a:2f:34:f3:fc:69:57: 4a:47:05:f8:61:23:21:e1:3d:20:58:16:d5:06:46: 87:10:5c:a9:92:a1:3a:a1:a2:8f:1f:45:92:03:b9: fe:5f:a2:d1:a8:63:74:b7:96:be:c0:79:3a:e6:0b: ca:21:20:39:81:73:6f:5b:9d:30:4d:e3:e7:01:a0: d9:b4:c7:fb:7f:6d:e0:de:7f:f9:4b:1f:0b:d7:f7: 4d:d7:9d:89:cd:db:db:0f:54:df:98:ec:e1:6e:b6: 51:67:a6:2b:d0:65:1e:3f:e7:5e:7a:fc:ef:ed:fb: 6c:3b:9b:5a:c5:10:63:a3:25:6b:f1:b0:c2:da:88: 18:89:93:93:44:93:9a:b6:50:9d:d0:ea:45:d4:dd: 6f:7f:63:01:01:c1:a6:15:98:35:c4:09:76:e0:ed: 2b:e8:01:b0:b4:df:7a:b4:e9:28:0b:7a:69:a5:9b: 26:a1:2c:4f:68:80:3b:ee:4e:1e:60:1a:e1:c4:07: 4c:81:33:33:33:15:e7:1c:4c:1a:ac:c6:d6:46:fd: 3c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2B:B1:11:F8:CD:D3:5D:85:EF:05:6D:3F:45:E8:46:87:47:60:C4 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:8::/48 Signature Algorithm: sha256WithRSAEncryption 10:52:5f:b8:2a:67:63:0f:a7:99:86:f1:df:65:38:6e:74:ad: 53:1d:66:eb:16:e3:6e:9e:70:c8:76:db:c5:46:51:b3:d1:f3: dd:22:7d:60:84:08:7e:52:f2:d1:88:4b:84:b6:fb:28:dd:b8: 41:6d:3b:eb:9b:64:ce:62:72:bf:59:30:47:2a:c6:a3:5e:7e: 0b:f8:cb:c7:3d:3c:c7:2b:50:19:7a:c6:33:40:e8:6e:95:c5: 74:d5:1b:f5:0f:c8:79:ec:86:e7:fe:cb:bb:06:ee:fe:fc:fc: 76:53:a8:f7:45:e7:1e:83:1c:92:07:57:57:2c:42:ca:3e:a9: 0c:fd:c8:dd:92:ad:1c:26:c8:0c:cf:0f:ec:82:04:e4:7f:eb: 54:95:c3:24:bc:7b:9f:18:17:1b:70:63:08:51:51:b9:ea:bc: 42:5b:2d:95:b6:57:47:ce:1c:10:2b:8b:7a:c6:e6:35:72:94: 04:5e:71:20:59:4a:c3:c4:53:67:28:16:15:74:3a:97:bc:d4: e5:50:04:57:f7:a2:6d:63:90:3f:10:b0:89:b4:29:ea:bb:eb: 72:42:2d:d4:64:1b:15:10:8e:f0:4c:b4:81:03:b9:d0:f6:1d: 8e:74:d1:a1:10:9f:2a:3b:30:ca:c8:c2:08:bd:37:ca:0f:12: 7e:95:ad:8d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUS7sVn5YVi3CbuUEB8omApl18vMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTA0MTAwMjU1MDBaFw0yNjA0MDkwMzAwMDBaMDMxMTAvBgNV BAMTKEIwMkJCMTExRjhDREQzNUQ4NUVGMDU2RDNGNDVFODQ2ODc0NzYwQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjva+y6GraXNjMdw3I9b7bn+4v hQV+3mgi324an8KTpi5ZdTlb+nyxWL5ZRYyze0CHqMkfOi808/xpV0pHBfhhIyHh PSBYFtUGRocQXKmSoTqhoo8fRZIDuf5fotGoY3S3lr7AeTrmC8ohIDmBc29bnTBN 4+cBoNm0x/t/beDef/lLHwvX903XnYnN29sPVN+Y7OFutlFnpivQZR4/5156/O/t +2w7m1rFEGOjJWvxsMLaiBiJk5NEk5q2UJ3Q6kXU3W9/YwEBwaYVmDXECXbg7Svo AbC033q06SgLemmlmyahLE9ogDvuTh5gGuHEB0yBMzMzFeccTBqsxtZG/TyTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsCuxEfjN012F7wVtP0XoRodHYMQwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAgw DQYJKoZIhvcNAQELBQADggEBABBSX7gqZ2MPp5mG8d9lOG50rVMdZusW426ecMh2 28VGUbPR890ifWCECH5S8tGIS4S2+yjduEFtO+ubZM5icr9ZMEcqxqNefgv4y8c9 PMcrUBl6xjNA6G6VxXTVG/UPyHnshuf+y7sG7v78/HZTqPdF5x6DHJIHV1csQso+ qQz9yN2SrRwmyAzPD+yCBOR/61SVwyS8e58YFxtwYwhRUbnqvEJbLZW2V0fOHBAr i3rG5jVylARecSBZSsPEU2coFhV0Ope81OVQBFf3om1jkD8QsIm0Keq763JCLdRk GxUQjvBMtIEDudD2HY500aEQnyo7MMrIwgi9N8oPEn6VrY0= -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net