$ rpki-client -vvf repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa File: 323430373a633663303a3a2f33322d3438203d3e20313432333634.roa (raw, json) Hash identifier: 9tX10629DnRQzpDIgIuzgeSKAyZ1U8PLF0M4h+rm+Qk= Subject key identifier: 76:49:56:A6:F2:A8:C8:14:4A:DA:94:11:BE:D7:9E:F8:D7:AD:BE:EF Certificate issuer: /CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F Certificate serial: 09968E1B22AC388AF264CDC6CFC0E8E6AF119240 Authority key identifier: CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa Signing time: Sun 09 Feb 2025 07:00:02 +0000 ROA not before: Sun 09 Feb 2025 06:55:02 +0000 ROA not after: Sun 08 Feb 2026 07:00:02 +0000 asID: 142364 IP address blocks: 2407:c6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 18:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:96:8e:1b:22:ac:38:8a:f2:64:cd:c6:cf:c0:e8:e6:af:11:92:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F Validity Not Before: Feb 9 06:55:02 2025 GMT Not After : Feb 8 07:00:02 2026 GMT Subject: CN=764956A6F2A8C8144ADA9411BED79EF8D7ADBEEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5e:1c:80:83:f4:66:80:d0:79:3c:71:40:a8: d6:d1:91:51:04:85:c3:a9:ac:76:17:a9:f6:3f:0d: c3:77:0e:e8:2a:80:bd:46:13:a0:4b:bd:97:ca:4c: e9:8c:e0:73:81:93:48:db:23:5a:82:27:28:07:9c: dc:c9:c2:c3:57:61:bf:59:7d:ce:9a:57:be:46:fd: 5a:fb:bb:61:78:4b:d2:de:56:6d:d8:9b:8d:d1:e3: ca:49:aa:ab:93:27:f4:80:81:df:ec:20:b1:02:48: 86:fa:2a:d7:32:a9:ce:85:3b:e1:84:e9:9f:84:8a: 22:da:53:51:c2:ff:1f:c8:44:32:b2:6e:73:47:22: b0:4b:41:8a:fb:4b:76:0b:28:ab:77:07:7c:35:f2: a4:dc:e1:ad:95:7c:98:bb:94:3f:ca:1a:41:f0:20: dd:47:31:1c:6c:e9:ae:18:2c:6d:13:9f:d0:fd:3d: 29:2e:67:c3:10:30:7c:05:09:89:67:ba:64:ee:93: c6:0b:67:17:8c:7f:99:65:c5:8c:23:a5:8b:c2:46: e1:1e:e3:0b:12:cc:84:77:49:75:cd:39:67:10:f6: c0:0d:35:8f:d4:77:80:27:12:e1:65:a7:8e:c3:03: 94:39:c4:04:50:b8:33:5c:f4:5b:e3:3a:6d:85:bc: 85:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:49:56:A6:F2:A8:C8:14:4A:DA:94:11:BE:D7:9E:F8:D7:AD:BE:EF X509v3 Authority Key Identifier: keyid:CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:c6c0::/32 Signature Algorithm: sha256WithRSAEncryption 97:e3:a2:be:f5:0c:91:ee:ec:c6:f3:ac:40:27:8d:29:60:e2: 45:fd:86:af:9b:e9:e3:8a:54:69:c3:58:3b:8f:98:ec:ac:fb: fe:8e:05:6c:2b:f4:3f:f3:d8:62:49:59:3b:a8:ed:34:f5:3d: f4:24:0e:53:68:c2:92:ab:10:04:c6:bc:f5:f2:cb:85:e7:fc: 54:2a:5d:d4:3e:55:53:00:ce:8b:d4:32:a7:42:8f:ba:ca:3d: 65:b0:47:e8:aa:67:a9:6d:a2:a3:5c:6b:d4:db:f7:7c:6a:6a: d4:b9:93:8a:25:c8:9c:e3:08:40:c2:08:08:00:8f:16:3e:a1: 6e:28:d6:3e:ba:15:2f:d9:f1:64:ee:f1:aa:a0:ae:40:00:26: f8:cc:f0:12:88:77:79:95:39:8a:e7:b4:8d:97:ed:74:ee:9a: 60:25:eb:23:ff:4d:23:0f:43:0c:c7:ba:c7:d7:bc:f8:63:3a: 4b:04:8b:25:a1:70:8c:13:f4:c5:64:31:75:1e:67:74:3d:a0: e0:56:65:85:f8:bc:33:ed:ea:02:b4:38:e5:b9:42:2f:fa:22: 64:d6:ed:93:a4:10:e3:82:0a:75:5c:75:d0:ea:cc:e0:02:5f: 52:dd:e6:26:70:d6:56:fd:82:8b:56:03:28:e3:c7:19:15:a9: 09:3f:96:fb -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCZaOGyKsOIryZM3Gz8Do5q8RkkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDNUZFMTgzQTM5MTA1QzlFMjcwMkNDMkJGMDg5MUZD MzVFMUU0RjAeFw0yNTAyMDkwNjU1MDJaFw0yNjAyMDgwNzAwMDJaMDMxMTAvBgNV BAMTKDc2NDk1NkE2RjJBOEM4MTQ0QURBOTQxMUJFRDc5RUY4RDdBREJFRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTXhyAg/RmgNB5PHFAqNbRkVEE hcOprHYXqfY/DcN3DugqgL1GE6BLvZfKTOmM4HOBk0jbI1qCJygHnNzJwsNXYb9Z fc6aV75G/Vr7u2F4S9LeVm3Ym43R48pJqquTJ/SAgd/sILECSIb6Ktcyqc6FO+GE 6Z+EiiLaU1HC/x/IRDKybnNHIrBLQYr7S3YLKKt3B3w18qTc4a2VfJi7lD/KGkHw IN1HMRxs6a4YLG0Tn9D9PSkuZ8MQMHwFCYlnumTuk8YLZxeMf5llxYwjpYvCRuEe 4wsSzIR3SXXNOWcQ9sANNY/Ud4AnEuFlp47DA5Q5xARQuDNc9FvjOm2FvIV/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUdklWpvKoyBRK2pQRvtee+Netvu8wHwYDVR0j BBgwFoAUzsX+GDo5EFyeJwLMK/CJH8NeHk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NjFjZjc3Ny04YWRmLTRlZjEtOGQ2Zi05ODYyYzU1NjIwZWEvMC9DRUM1RkUxODNB MzkxMDVDOUUyNzAyQ0MyQkYwODkxRkMzNUUxRTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDNUZFMTgzQTM5MTA1QzlFMjcwMkNDMkJGMDg5MUZDMzVF MUU0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU2MWNmNzc3LThhZGYtNGVmMS04 ZDZmLTk4NjJjNTU2MjBlYS8wLzMyMzQzMDM3M2E2MzM2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHxsAwDQYJKoZI hvcNAQELBQADggEBAJfjor71DJHu7MbzrEAnjSlg4kX9hq+b6eOKVGnDWDuPmOys +/6OBWwr9D/z2GJJWTuo7TT1PfQkDlNowpKrEATGvPXyy4Xn/FQqXdQ+VVMAzovU MqdCj7rKPWWwR+iqZ6ltoqNca9Tb93xqatS5k4olyJzjCEDCCAgAjxY+oW4o1j66 FS/Z8WTu8aqgrkAAJvjM8BKId3mVOYrntI2X7XTummAl6yP/TSMPQwzHusfXvPhj OksEiyWhcIwT9MVkMXUeZ3Q9oOBWZYX4vDPt6gK0OOW5Qi/6ImTW7ZOkEOOCCnVc ddDqzOACX1Ld5iZw1lb9gotWAyjjxxkVqQk/lvs= -----END CERTIFICATE-----Generated at Fri Apr 25 19:23:49 2025 by rpki-client on console.sobornost.net