$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: bHPOsl0id8ywi42dfmFiPzvJWA1qMcOGam7EPyhOcHs= Subject key identifier: DD:E0:D0:E4:36:B7:BD:EF:3B:30:EF:AC:67:70:07:C8:9F:33:72:48 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 3980AAE5DFA5077B3AC21FB7298FC9A62F21C8FD Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 01 Jan 2025 04:00:37 +0000 ROA not before: Wed 01 Jan 2025 03:55:37 +0000 ROA not after: Wed 31 Dec 2025 04:00:37 +0000 asID: 23679 IP address blocks: 2401:2900:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 07:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:80:aa:e5:df:a5:07:7b:3a:c2:1f:b7:29:8f:c9:a6:2f:21:c8:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 1 03:55:37 2025 GMT Not After : Dec 31 04:00:37 2025 GMT Subject: CN=DDE0D0E436B7BDEF3B30EFAC677007C89F337248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:bb:cc:61:04:9c:27:7b:57:ed:47:af:b0: 38:38:a6:4a:8b:ee:13:84:75:89:5c:3e:9a:91:4e: 77:92:1d:7e:dc:4b:fe:bf:87:15:df:06:fa:e5:7c: 73:75:7f:c7:fb:ef:22:77:7d:8e:ee:40:b7:15:a2: a5:28:b3:6f:cd:17:ef:85:ab:80:a1:d9:20:c5:a0: e5:c0:8b:13:95:3a:ec:98:67:ba:1f:36:d6:2f:30: 1a:4d:60:4c:cd:57:07:80:9d:72:ca:84:b9:85:f0: b7:46:0b:20:2c:cf:d4:0c:bb:f1:c2:f6:c2:7c:65: 9b:14:bd:70:67:ff:88:9d:c5:9d:02:5e:c7:34:4d: 85:f6:44:d7:b8:4f:5f:bc:18:e0:da:10:d8:9a:a8: 34:59:86:25:07:52:9c:33:2a:3c:d1:41:09:2d:b7: d9:de:4e:83:42:69:6f:33:29:96:63:3d:0a:ee:68: 05:6f:26:7e:3e:fe:07:2f:ba:18:02:b4:af:b9:90: 94:71:39:5c:66:42:2d:f1:ab:19:b2:8a:e4:b2:7c: c5:ae:7e:91:0e:b3:0e:bc:c5:ca:4b:d4:51:3a:ee: 38:cc:e6:b8:4f:87:48:44:a0:25:9d:42:99:4e:1b: f6:b0:d1:71:26:3f:63:bc:53:13:19:b1:c1:7f:d1: ab:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E0:D0:E4:36:B7:BD:EF:3B:30:EF:AC:67:70:07:C8:9F:33:72:48 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8001::/48 Signature Algorithm: sha256WithRSAEncryption 9b:53:18:dd:d5:7f:cb:d5:db:fa:1f:e5:a8:c7:a9:31:53:c6: 59:42:0c:78:1b:3e:40:2b:78:4e:d7:79:cb:99:b8:76:0f:f4: 9e:ff:51:1e:97:ca:82:50:7a:55:11:87:8a:6e:a3:dc:bb:62: 16:fd:f5:a3:db:73:a9:a5:d3:42:0b:36:5f:4b:da:48:56:2b: aa:e7:14:90:3f:cb:3b:ae:09:57:8b:59:0a:f7:e1:99:0f:b3: e5:46:16:ce:b4:d6:1f:55:2f:c5:4d:c2:ca:8e:ba:80:67:f6: 93:86:10:0e:30:ec:42:ea:05:d4:86:12:44:8a:0c:0c:60:a7: 54:51:3a:1c:5a:3b:3b:93:fc:fa:0c:24:76:75:20:5c:54:fa: 3c:a7:e7:4c:db:46:ae:91:89:4f:17:c7:ae:01:6f:6b:61:d4: 4f:2f:12:1a:43:fe:5e:4a:fc:09:bb:e7:13:6e:1d:e2:14:c7: 04:42:27:1a:3f:09:0d:a3:70:fa:29:f9:71:2e:6a:ae:21:c7: 4a:2c:da:7a:fa:62:10:c4:09:7f:9f:67:c1:5c:28:82:a6:b3: b9:82:59:88:37:06:98:56:7b:fd:6a:9b:fe:0d:35:0a:51:27: 1c:f8:20:32:83:c6:15:89:5f:0f:7f:51:c0:a8:5a:7b:d3:8f: f0:74:db:75 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOYCq5d+lB3s6wh+3KY/Jpi8hyP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAxMDEwMzU1MzdaFw0yNTEyMzEwNDAwMzdaMDMxMTAvBgNV BAMTKERERTBEMEU0MzZCN0JERUYzQjMwRUZBQzY3NzAwN0M4OUYzMzcyNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSs7vMYQScJ3tX7UevsDg4pkqL 7hOEdYlcPpqRTneSHX7cS/6/hxXfBvrlfHN1f8f77yJ3fY7uQLcVoqUos2/NF++F q4Ch2SDFoOXAixOVOuyYZ7ofNtYvMBpNYEzNVweAnXLKhLmF8LdGCyAsz9QMu/HC 9sJ8ZZsUvXBn/4idxZ0CXsc0TYX2RNe4T1+8GODaENiaqDRZhiUHUpwzKjzRQQkt t9neToNCaW8zKZZjPQruaAVvJn4+/gcvuhgCtK+5kJRxOVxmQi3xqxmyiuSyfMWu fpEOsw68xcpL1FE67jjM5rhPh0hEoCWdQplOG/aw0XEmP2O8UxMZscF/0au5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3eDQ5Da3ve87MO+sZ3AHyJ8zckgwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIABMA0GCSqGSIb3DQEBCwUAA4IBAQCbUxjd1X/L1dv6H+Wox6kxU8ZZQgx4Gz5A K3hO13nLmbh2D/Se/1Eel8qCUHpVEYeKbqPcu2IW/fWj23OppdNCCzZfS9pIViuq 5xSQP8s7rglXi1kK9+GZD7PlRhbOtNYfVS/FTcLKjrqAZ/aThhAOMOxC6gXUhhJE igwMYKdUUTocWjs7k/z6DCR2dSBcVPo8p+dM20aukYlPF8euAW9rYdRPLxIaQ/5e SvwJu+cTbh3iFMcEQicaPwkNo3D6KflxLmquIcdKLNp6+mIQxAl/n2fBXCiCprO5 glmINwaYVnv9apv+DTUKUScc+CAyg8YViV8Pf1HAqFp704/wdNt1 -----END CERTIFICATE-----Generated at Thu Apr 24 04:31:37 2025 by rpki-client on console.sobornost.net