$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31333a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31333a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: jrNfGDSlGXEzxHOxg40yCG6SbX9z3FB3tiVldhoUUtI= Subject key identifier: 88:C7:A6:A3:5E:A7:69:7E:DE:89:81:3C:9D:AB:4F:6F:32:DA:23:67 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 31CC566949BC0F3106ACA8F6256929717E207282 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31333a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 21 Apr 2025 18:00:00 +0000 ROA not before: Mon 21 Apr 2025 17:55:00 +0000 ROA not after: Mon 20 Apr 2026 18:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:cc:56:69:49:bc:0f:31:06:ac:a8:f6:25:69:29:71:7e:20:72:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Apr 21 17:55:00 2025 GMT Not After : Apr 20 18:00:00 2026 GMT Subject: CN=88C7A6A35EA7697EDE89813C9DAB4F6F32DA2367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2a:8a:a5:d7:c0:df:26:b3:66:49:22:b0:b6: 93:05:73:f8:5c:a9:93:94:37:61:69:ba:44:ca:c8: ee:ea:91:c1:f5:12:51:d3:56:49:6e:c8:b3:c7:82: 32:c1:9b:b9:36:b6:ea:27:3f:3d:d5:04:f6:76:2b: 1f:14:be:8b:dd:c0:40:59:08:04:9d:59:00:ed:ea: a2:20:7d:26:8b:1a:8f:4d:13:c9:32:ef:39:14:75: 1f:a6:07:43:28:e2:e7:49:23:23:67:83:c0:0a:95: b2:ea:f0:0c:d4:ae:c7:ad:82:4c:c4:96:4a:26:16: f6:36:04:f2:04:8a:70:d7:7d:32:2e:ef:9e:4f:81: c6:2a:41:9c:30:9b:40:74:8e:49:fa:28:42:e8:b9: d7:66:5d:d2:73:14:66:05:9e:26:2a:45:3b:2e:d1: 75:40:b5:c2:40:a6:33:f3:60:c1:46:a3:01:61:a1: 0d:52:b9:91:56:4d:e8:58:af:91:c7:da:b8:ce:53: 14:cf:a2:75:f3:92:16:68:e9:9d:c5:ae:66:a5:4c: 09:c2:ba:a0:56:5d:6c:84:d1:29:6b:b0:65:06:ec: 26:af:81:3b:f7:9b:bf:5f:b4:3e:58:5a:3b:6d:da: 96:c2:e3:03:70:30:52:bf:92:24:ce:78:24:64:a5: 40:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C7:A6:A3:5E:A7:69:7E:DE:89:81:3C:9D:AB:4F:6F:32:DA:23:67 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31333a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:13::/48 Signature Algorithm: sha256WithRSAEncryption 02:90:ff:79:e9:8d:aa:48:c8:ad:81:f7:b3:b9:a6:fc:b6:1f: 1c:e7:99:9d:21:43:0d:d9:e2:7d:d4:0a:62:af:56:e1:f4:ee: a2:b2:41:ee:9f:aa:10:da:80:8b:19:ec:13:c3:ed:94:af:f7: 61:ae:0f:4d:10:4f:10:df:8c:43:12:c6:4c:cc:b2:f3:a5:18: 56:7a:41:6c:25:4c:1d:01:fb:06:10:03:d8:a4:9c:bf:e3:00: 91:22:3c:54:38:1f:0f:0a:c5:17:bd:52:d1:6a:ca:9d:be:dd: c5:52:78:50:7b:93:21:33:ba:97:17:39:98:5b:e2:ac:52:94: 92:07:6d:c1:4b:15:5f:26:53:5b:c7:5d:43:d2:4d:1f:ab:39: 34:7e:20:a3:8c:6b:03:05:6d:0b:99:e8:aa:64:ce:76:b8:71: 38:44:15:ca:5e:3a:44:cf:2b:e2:ff:96:bc:af:25:79:a3:2a: 3e:3c:2a:33:29:bd:ae:3f:50:c0:91:60:9a:59:6b:fc:5a:5e: 34:f7:5c:5c:b6:e1:78:b4:03:0e:02:a6:2d:52:d1:e8:f7:29: 73:d0:7d:a1:16:ba:00:bd:f0:70:5e:d8:54:3c:aa:82:63:e4: ea:17:37:f4:72:5b:2c:7a:7d:ec:8d:56:8a:30:52:5a:f3:32: 21:41:5d:8e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMcxWaUm8DzEGrKj2JWkpcX4gcoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA0MjExNzU1MDBaFw0yNjA0MjAxODAwMDBaMDMxMTAvBgNV BAMTKDg4QzdBNkEzNUVBNzY5N0VERTg5ODEzQzlEQUI0RjZGMzJEQTIzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOKoql18DfJrNmSSKwtpMFc/hc qZOUN2FpukTKyO7qkcH1ElHTVkluyLPHgjLBm7k2tuonPz3VBPZ2Kx8UvovdwEBZ CASdWQDt6qIgfSaLGo9NE8ky7zkUdR+mB0Mo4udJIyNng8AKlbLq8AzUrsetgkzE lkomFvY2BPIEinDXfTIu755PgcYqQZwwm0B0jkn6KELouddmXdJzFGYFniYqRTsu 0XVAtcJApjPzYMFGowFhoQ1SuZFWTehYr5HH2rjOUxTPonXzkhZo6Z3FrmalTAnC uqBWXWyE0SlrsGUG7CavgTv3m79ftD5YWjtt2pbC4wNwMFK/kiTOeCRkpUBDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUiMemo16naX7eiYE8natPbzLaI2cwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA EzANBgkqhkiG9w0BAQsFAAOCAQEAApD/eemNqkjIrYH3s7mm/LYfHOeZnSFDDdni fdQKYq9W4fTuorJB7p+qENqAixnsE8PtlK/3Ya4PTRBPEN+MQxLGTMyy86UYVnpB bCVMHQH7BhAD2KScv+MAkSI8VDgfDwrFF71S0WrKnb7dxVJ4UHuTITO6lxc5mFvi rFKUkgdtwUsVXyZTW8ddQ9JNH6s5NH4go4xrAwVtC5noqmTOdrhxOEQVyl46RM8r 4v+WvK8leaMqPjwqMym9rj9QwJFgmllr/FpeNPdcXLbheLQDDgKmLVLR6Pcpc9B9 oRa6AL3wcF7YVDyqgmPk6hc39HJbLHp97I1WijBSWvMyIUFdjg== -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:50 2025 by rpki-client on console.sobornost.net