$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa File: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (raw, json) Hash identifier: 6LOGBCF5zTr7iAtxuc25TGgWiHmJgXAtcLTxMujO3no= Subject key identifier: 1A:9D:8D:81:50:3D:73:3A:E8:92:AC:26:E5:42:84:BA:4A:8A:78:27 Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 67C48386DDCA350F8216E3B9A9242125D804808B Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa Signing time: Thu 10 Apr 2025 08:00:02 +0000 ROA not before: Thu 10 Apr 2025 07:55:02 +0000 ROA not after: Thu 09 Apr 2026 08:00:02 +0000 asID: 149909 IP address blocks: 2001:df1:c2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c4:83:86:dd:ca:35:0f:82:16:e3:b9:a9:24:21:25:d8:04:80:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Apr 10 07:55:02 2025 GMT Not After : Apr 9 08:00:02 2026 GMT Subject: CN=1A9D8D81503D733AE892AC26E54284BA4A8A7827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ff:57:51:89:0f:e1:20:7c:8c:63:49:83:e4: 4c:9d:6d:95:1e:a7:23:78:d5:a7:1c:b3:56:16:58: c8:89:cb:0e:37:28:4b:b6:cd:01:cc:df:50:c8:ef: 2e:05:a1:66:3f:f0:d0:86:7c:99:f9:a9:eb:d3:1d: 97:73:c9:88:39:c8:61:99:de:3e:5d:26:6c:cb:16: 6e:e6:28:5f:16:4b:5d:2e:b4:91:5d:8f:80:77:b6: cc:e7:0a:ef:eb:af:bd:30:e7:02:ab:81:cd:c7:6b: 2e:5b:77:87:d7:83:df:8d:bd:69:be:e0:a0:a3:72: 1e:ca:65:f0:8c:0e:0c:97:45:c1:9d:c6:92:96:09: 97:32:2d:3a:01:82:2e:5d:7f:54:9c:b9:e0:90:13: 0e:59:aa:96:4a:3c:47:79:20:fe:a0:c9:57:1b:b9: 3c:ba:5f:6c:72:af:90:b7:58:72:b1:0b:cf:d8:28: 2a:96:15:66:83:ef:c9:a6:86:35:14:96:76:35:a5: 75:22:42:72:65:69:aa:f1:2d:f7:d0:c6:1c:8a:06: 1c:7d:2d:d2:76:65:94:9c:be:77:ce:a9:0e:2f:b3: bf:88:78:12:2e:5c:3d:92:78:b1:87:19:bd:55:05: 22:4e:1a:b6:eb:76:41:ea:44:a9:47:ae:39:2f:d4: 5b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9D:8D:81:50:3D:73:3A:E8:92:AC:26:E5:42:84:BA:4A:8A:78:27 X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:c2c0::/48 Signature Algorithm: sha256WithRSAEncryption 53:44:a9:53:3b:b3:35:cf:13:14:09:30:cd:55:f1:95:a4:e4: 8c:9a:0f:6f:69:fd:2f:08:81:cd:bc:70:fe:9c:eb:2b:db:b3: e9:2f:8f:86:79:7b:de:71:8e:46:e6:b2:86:00:40:fc:d6:7b: f4:44:bf:dd:6d:9b:c3:32:2d:74:c3:1c:b7:1a:f6:e8:bd:30: 68:fe:1b:9d:07:58:a5:9a:8d:8c:e0:f8:37:8f:d3:b9:a0:04: d3:be:36:7b:aa:c2:e1:7d:a0:bd:70:75:fc:31:92:e2:98:8c: a0:fe:c2:05:77:2a:42:ab:63:a6:50:8b:c3:7a:55:f4:23:53: aa:f6:27:e2:80:df:c3:d3:cb:ad:43:0b:78:4d:1a:58:9b:7f: 7d:0d:ac:d9:23:5c:91:93:66:16:46:76:7b:5e:40:b2:3d:90: 22:eb:97:e4:aa:bb:0a:ce:d2:2a:5e:a5:1c:ce:df:3a:50:0e: e6:c3:51:dc:13:10:41:bb:40:79:4f:03:60:45:a8:bd:b4:e4: 70:50:33:11:c5:a6:8f:58:ff:81:a4:62:a2:07:eb:b4:2d:5c: eb:6d:a9:31:f3:4e:91:44:89:b3:fa:02:8f:80:4f:62:eb:b4: 78:51:8f:6d:63:2c:d2:ec:5d:b7:89:e8:60:5b:f1:12:7e:80: fb:15:42:cc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ8SDht3KNQ+CFuO5qSQhJdgEgIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNTA0MTAwNzU1MDJaFw0yNjA0MDkwODAwMDJaMDMxMTAvBgNV BAMTKDFBOUQ4RDgxNTAzRDczM0FFODkyQUMyNkU1NDI4NEJBNEE4QTc4MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk/1dRiQ/hIHyMY0mD5EydbZUe pyN41accs1YWWMiJyw43KEu2zQHM31DI7y4FoWY/8NCGfJn5qevTHZdzyYg5yGGZ 3j5dJmzLFm7mKF8WS10utJFdj4B3tsznCu/rr70w5wKrgc3Hay5bd4fXg9+NvWm+ 4KCjch7KZfCMDgyXRcGdxpKWCZcyLToBgi5df1ScueCQEw5ZqpZKPEd5IP6gyVcb uTy6X2xyr5C3WHKxC8/YKCqWFWaD78mmhjUUlnY1pXUiQnJlaarxLffQxhyKBhx9 LdJ2ZZScvnfOqQ4vs7+IeBIuXD2SeLGHGb1VBSJOGrbrdkHqRKlHrjkv1Ft3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGp2NgVA9czrokqwm5UKEukqKeCcwHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYmU2ODE1LTMxMGUtNDIwNi1h NTAwLTZiYjlkMzI2M2FiZi8wLzMyMzAzMDMxM2E2NDY2MzEzYTYzMzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzMDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8cLAMA0GCSqGSIb3DQEBCwUAA4IBAQBTRKlTO7M1zxMUCTDNVfGVpOSMmg9vaf0v CIHNvHD+nOsr27PpL4+GeXvecY5G5rKGAED81nv0RL/dbZvDMi10wxy3GvbovTBo /hudB1ilmo2M4Pg3j9O5oATTvjZ7qsLhfaC9cHX8MZLimIyg/sIFdypCq2OmUIvD elX0I1Oq9ifigN/D08utQwt4TRpYm399DazZI1yRk2YWRnZ7XkCyPZAi65fkqrsK ztIqXqUczt86UA7mw1HcExBBu0B5TwNgRai9tORwUDMRxaaPWP+BpGKiB+u0LVzr bakx806RRImz+gKPgE9i67R4UY9tYyzS7F23iehgW/ESfoD7FULM -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:26 2025 by rpki-client on console.sobornost.net