$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: tvESeiO/FkhkGr5QGYYNc9W9X2RGp+TpHIHNR7HaBUU= Subject key identifier: 1C:AF:B6:52:A9:B7:4A:7E:04:20:0D:BD:CE:BC:87:95:C6:42:2C:AA Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 05FE3B036307D1E9ED87920FD6894CE8817D061F Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Nov 2024 05:00:01 +0000 ROA not before: Fri 29 Nov 2024 04:55:01 +0000 ROA not after: Fri 28 Nov 2025 05:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:16::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 12:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:fe:3b:03:63:07:d1:e9:ed:87:92:0f:d6:89:4c:e8:81:7d:06:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:01 2024 GMT Not After : Nov 28 05:00:01 2025 GMT Subject: CN=1CAFB652A9B74A7E04200DBDCEBC8795C6422CAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:29:5a:25:38:37:58:82:d9:a5:79:6c:81:12: 87:2f:6a:1f:d4:75:26:01:0d:b7:4b:5b:fe:34:09: 90:0b:63:8e:20:56:90:09:11:78:58:1c:bf:75:c4: fb:2d:84:4c:5a:97:f0:f2:16:12:10:35:1f:70:d1: cb:2a:7b:e5:35:68:8a:94:88:d9:e6:95:23:54:28: 9d:5c:3a:ab:07:d7:19:86:87:70:28:a5:03:c8:85: e4:76:36:d9:39:61:cf:62:13:f5:16:00:19:8b:f5: 65:d0:56:3d:2f:60:51:74:d1:d0:33:73:b5:8c:c5: 36:09:e3:71:45:53:35:86:a4:5d:ee:13:9e:42:f0: 1a:f1:fc:77:2b:d2:72:f0:cd:35:72:19:64:21:d4: 70:79:c2:49:57:33:20:e2:20:03:a2:bc:ca:bc:97: a0:47:16:fd:5d:ec:86:dd:5c:68:42:0c:1f:8a:04: 34:41:35:71:aa:79:67:e7:a1:39:b3:7e:ba:a9:63: 33:85:2d:db:06:80:d9:71:7a:52:bc:54:5e:98:9d: f3:6f:b4:92:86:e6:26:20:dc:90:70:05:b9:82:4d: 03:c2:0d:ba:60:93:ca:2f:30:35:83:7f:91:23:b8: 7c:6f:6d:26:6d:22:b7:5f:9c:15:6d:c7:57:da:00: fe:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:AF:B6:52:A9:B7:4A:7E:04:20:0D:BD:CE:BC:87:95:C6:42:2C:AA X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:16::/48 Signature Algorithm: sha256WithRSAEncryption 5c:bd:8e:3e:a9:b6:d8:d2:e0:40:ad:3e:07:82:7a:60:f5:d5: 16:05:2c:5a:03:1f:8e:37:bb:ca:22:87:e2:24:c6:94:53:8c: ef:d9:6f:67:38:4b:f1:c8:8a:ab:ff:54:8e:55:a1:97:8b:4b: 79:a3:80:6a:4c:b7:b2:ef:ee:c7:d9:a7:19:2f:9b:4b:80:0d: 31:22:1c:82:4c:a8:ac:90:57:f6:f2:64:37:82:ad:46:10:b3: 3c:6c:30:03:1d:6a:fc:32:72:5b:3b:9f:3e:77:40:cc:e9:69: 93:1a:44:ce:b5:e7:95:3d:be:79:2f:33:97:7e:48:79:19:ce: 80:68:9e:d8:05:18:f0:0e:a5:fa:99:7a:48:16:30:58:c0:d4: ae:bf:35:31:68:10:48:15:d1:18:84:6b:d6:5c:04:f4:39:fb: 58:1d:5b:0b:84:ab:9d:7a:77:a4:85:b5:11:97:14:8e:8f:0d: f9:57:e7:2f:98:ca:fb:1d:a1:3b:09:d9:1d:9d:32:d2:4d:8c: a1:de:3c:e7:24:f0:e2:4c:b5:1e:e5:57:d6:3c:d6:83:dc:6b: c1:e8:3c:4c:ce:8c:0d:14:d7:54:7f:8f:79:61:eb:08:04:0f: 4e:00:9c:eb:dc:81:5d:c3:74:94:41:af:65:88:5d:1a:a8:b7: 69:6a:6c:54 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBf47A2MH0enth5IP1olM6IF9Bh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDFaFw0yNTExMjgwNTAwMDFaMDMxMTAvBgNV BAMTKDFDQUZCNjUyQTlCNzRBN0UwNDIwMERCRENFQkM4Nzk1QzY0MjJDQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQKVolODdYgtmleWyBEocvah/U dSYBDbdLW/40CZALY44gVpAJEXhYHL91xPsthExal/DyFhIQNR9w0csqe+U1aIqU iNnmlSNUKJ1cOqsH1xmGh3AopQPIheR2Ntk5Yc9iE/UWABmL9WXQVj0vYFF00dAz c7WMxTYJ43FFUzWGpF3uE55C8Brx/Hcr0nLwzTVyGWQh1HB5wklXMyDiIAOivMq8 l6BHFv1d7IbdXGhCDB+KBDRBNXGqeWfnoTmzfrqpYzOFLdsGgNlxelK8VF6YnfNv tJKG5iYg3JBwBbmCTQPCDbpgk8ovMDWDf5EjuHxvbSZtIrdfnBVtx1faAP7HAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUHK+2Uqm3Sn4EIA29zryHlcZCLKowHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABYw DQYJKoZIhvcNAQELBQADggEBAFy9jj6pttjS4ECtPgeCemD11RYFLFoDH443u8oi h+IkxpRTjO/Zb2c4S/HIiqv/VI5VoZeLS3mjgGpMt7Lv7sfZpxkvm0uADTEiHIJM qKyQV/byZDeCrUYQszxsMAMdavwycls7nz53QMzpaZMaRM6155U9vnkvM5d+SHkZ zoBontgFGPAOpfqZekgWMFjA1K6/NTFoEEgV0RiEa9ZcBPQ5+1gdWwuEq516d6SF tRGXFI6PDflX5y+YyvsdoTsJ2R2dMtJNjKHePOck8OJMtR7lV9Y81oPca8HoPEzO jA0U11R/j3lh6wgED04AnOvcgV3DdJRBr2WIXRqot2lqbFQ= -----END CERTIFICATE-----Generated at Wed Apr 23 13:25:32 2025 by rpki-client on console.sobornost.net