$ rpki-client -vvf repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa File: 323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa (raw, json) Hash identifier: RA3iDpSCkWtT/yyfxgJEQ4woQglWjmr40o6UbmeiCAk= Subject key identifier: C4:05:7C:5C:BF:89:2E:83:5D:64:81:90:99:B5:44:70:DC:CC:33:75 Certificate issuer: /CN=05671A0ACAB26B342648AFFAC0C66ECB5A493DAB Certificate serial: 476D99A58A208C9224591B01528919764780B4CB Authority key identifier: 05:67:1A:0A:CA:B2:6B:34:26:48:AF:FA:C0:C6:6E:CB:5A:49:3D:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa Signing time: Wed 26 Mar 2025 20:00:00 +0000 ROA not before: Wed 26 Mar 2025 19:55:00 +0000 ROA not after: Wed 25 Mar 2026 20:00:00 +0000 asID: 152419 IP address blocks: 2001:df3:9040::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.crl rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:6d:99:a5:8a:20:8c:92:24:59:1b:01:52:89:19:76:47:80:b4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05671A0ACAB26B342648AFFAC0C66ECB5A493DAB Validity Not Before: Mar 26 19:55:00 2025 GMT Not After : Mar 25 20:00:00 2026 GMT Subject: CN=C4057C5CBF892E835D64819099B54470DCCC3375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8f:ff:8a:4a:a8:13:95:58:fb:ba:01:3e:f2: 5a:f0:ed:7f:94:2c:12:ac:8d:56:b1:1e:45:23:d3: e9:78:e6:6e:2c:94:a8:bf:b6:b8:53:c8:13:2c:d5: 71:55:19:af:f2:7c:c6:78:ce:ce:40:46:83:0a:7e: e0:1c:6a:b4:de:25:94:c0:a0:ce:ab:4c:a2:7d:cc: 70:84:b5:3f:f5:37:e7:ff:f8:3d:03:90:fe:70:64: 38:d9:fd:a9:79:e2:9c:95:6e:1a:85:36:1a:98:2f: 2f:5a:06:63:87:c1:0f:4e:ff:4d:46:b7:2c:43:6e: 81:bc:e5:d9:c2:fc:f6:ed:75:ac:3e:a5:37:78:48: 60:df:4c:fc:94:57:a2:7f:40:3f:6b:dc:10:31:57: 9d:c8:3d:d5:5e:c3:56:2f:d2:03:7a:be:4f:cc:e6: ef:d3:4f:94:4b:d1:09:ed:84:64:03:cf:fb:52:7b: 64:10:e9:2c:91:2e:29:c2:10:db:a8:c9:ce:50:a4: 6d:55:0a:92:03:96:5b:2b:1f:66:7c:0e:44:6b:f3: 1f:8c:07:2d:91:fe:d1:e2:e6:11:81:6e:5b:d0:31: 4a:fa:a5:ac:49:9b:aa:3f:d1:41:fd:4b:c1:35:32: 12:5a:a3:3d:ba:bc:76:0c:6d:63:3a:78:e7:f8:a3: 16:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:05:7C:5C:BF:89:2E:83:5D:64:81:90:99:B5:44:70:DC:CC:33:75 X509v3 Authority Key Identifier: keyid:05:67:1A:0A:CA:B2:6B:34:26:48:AF:FA:C0:C6:6E:CB:5A:49:3D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/05671A0ACAB26B342648AFFAC0C66ECB5A493DAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d823bb3-5a01-4658-a783-f8e89fadcf45/1/323030313a6466333a393034303a3a2f34382d3438203d3e20313532343139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:9040::/48 Signature Algorithm: sha256WithRSAEncryption 2f:a6:00:0f:f0:cb:61:67:70:4c:10:6f:62:23:ee:a1:d1:60: 3e:82:aa:c6:ab:ea:b1:b1:9b:0c:10:0a:f6:27:58:c4:fe:bf: 46:99:84:2d:1e:0a:3b:af:dd:9e:60:75:01:c2:42:8e:60:67: ef:18:42:47:4a:c4:f9:29:6a:f5:6d:d0:c7:b3:58:c2:98:2c: 34:4e:2b:00:0a:9d:e5:b7:8f:37:b0:49:68:56:03:6f:a8:8b: 20:4a:99:fc:38:e4:42:b9:28:8a:5e:c3:e0:5d:45:88:d4:95: 7e:77:f8:95:4e:5c:8b:1f:7b:b1:df:6c:a8:af:9c:a8:db:6c: 46:de:1f:d3:98:42:48:60:f0:52:2f:7f:87:ad:61:a0:cd:56: d1:40:b9:2a:2f:2a:16:69:45:37:d2:05:45:e7:9e:a8:d8:73: 91:41:04:9d:db:00:6d:49:61:9a:bf:0d:ff:be:fd:b6:6b:a3: 33:65:4f:2a:dd:dc:c6:20:44:d4:c9:20:01:27:f1:9a:6f:49: 0f:3d:75:f1:ce:37:2b:44:25:96:10:cc:6a:f5:f7:38:f1:fc: e7:1f:fb:d6:49:72:0e:4e:45:fc:a9:e1:ed:f7:42:a8:87:da: a5:6d:65:a5:e6:ae:7a:f4:ca:ed:61:90:1d:76:b6:37:54:0d: 7f:8b:80:15 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR22ZpYogjJIkWRsBUokZdkeAtMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDU2NzFBMEFDQUIyNkIzNDI2NDhBRkZBQzBDNjZFQ0I1 QTQ5M0RBQjAeFw0yNTAzMjYxOTU1MDBaFw0yNjAzMjUyMDAwMDBaMDMxMTAvBgNV BAMTKEM0MDU3QzVDQkY4OTJFODM1RDY0ODE5MDk5QjU0NDcwRENDQzMzNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkj/+KSqgTlVj7ugE+8lrw7X+U LBKsjVaxHkUj0+l45m4slKi/trhTyBMs1XFVGa/yfMZ4zs5ARoMKfuAcarTeJZTA oM6rTKJ9zHCEtT/1N+f/+D0DkP5wZDjZ/al54pyVbhqFNhqYLy9aBmOHwQ9O/01G tyxDboG85dnC/Pbtdaw+pTd4SGDfTPyUV6J/QD9r3BAxV53IPdVew1Yv0gN6vk/M 5u/TT5RL0QnthGQDz/tSe2QQ6SyRLinCENuoyc5QpG1VCpIDllsrH2Z8DkRr8x+M By2R/tHi5hGBblvQMUr6paxJm6o/0UH9S8E1MhJaoz26vHYMbWM6eOf4oxYrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxAV8XL+JLoNdZIGQmbVEcNzMM3UwHwYDVR0j BBgwFoAUBWcaCsqyazQmSK/6wMZuy1pJPaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDgyM2JiMy01YTAxLTQ2NTgtYTc4My1mOGU4OWZhZGNmNDUvMS8wNTY3MUEwQUNB QjI2QjM0MjY0OEFGRkFDMEM2NkVDQjVBNDkzREFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDU2NzFBMEFDQUIyNkIzNDI2NDhBRkZBQzBDNjZFQ0I1QTQ5 M0RBQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkODIzYmIzLTVhMDEtNDY1OC1h NzgzLWY4ZTg5ZmFkY2Y0NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzAzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMTM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85BAMA0GCSqGSIb3DQEBCwUAA4IBAQAvpgAP8MthZ3BMEG9iI+6h0WA+gqrGq+qx sZsMEAr2J1jE/r9GmYQtHgo7r92eYHUBwkKOYGfvGEJHSsT5KWr1bdDHs1jCmCw0 TisACp3lt483sEloVgNvqIsgSpn8OORCuSiKXsPgXUWI1JV+d/iVTlyLH3ux32yo r5yo22xG3h/TmEJIYPBSL3+HrWGgzVbRQLkqLyoWaUU30gVF556o2HORQQSd2wBt SWGavw3/vv22a6MzZU8q3dzGIETUySABJ/Gab0kPPXXxzjcrRCWWEMxq9fc48fzn H/vWSXIOTkX8qeHt90Koh9qlbWWl5q569MrtYZAddrY3VA1/i4AV -----END CERTIFICATE-----Generated at Fri Apr 25 03:46:17 2025 by rpki-client on console.sobornost.net