$ rpki-client -vvf repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/323430313a646234303a3a2f33322d3332203d3e20313336383635.roa File: 323430313a646234303a3a2f33322d3332203d3e20313336383635.roa (raw, json) Hash identifier: KGUF32Kc9eR09Ep+PLSsXC9//4a1BdJ7Q2PE9xYrp/A= Subject key identifier: C1:A8:FF:D6:76:8D:3B:FC:1A:54:CB:60:A3:29:76:63:27:20:59:0E Certificate issuer: /CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Certificate serial: 2058CC71E9B88CCF83B3C2487DF5CA39FB6FA1A3 Authority key identifier: 08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/323430313a646234303a3a2f33322d3332203d3e20313336383635.roa Signing time: Sat 19 Apr 2025 05:56:54 +0000 ROA not before: Sat 19 Apr 2025 05:51:54 +0000 ROA not after: Sat 18 Apr 2026 05:56:54 +0000 asID: 136865 IP address blocks: 2401:db40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 02:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:58:cc:71:e9:b8:8c:cf:83:b3:c2:48:7d:f5:ca:39:fb:6f:a1:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Validity Not Before: Apr 19 05:51:54 2025 GMT Not After : Apr 18 05:56:54 2026 GMT Subject: CN=C1A8FFD6768D3BFC1A54CB60A32976632720590E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7c:41:6a:79:55:8a:ea:f1:63:32:d8:c3:29: 71:f3:8d:83:ca:4d:a5:78:06:37:8d:98:af:51:d4: 0a:7a:b1:48:fa:c5:b5:4f:19:40:74:d7:8d:dc:06: ae:42:15:86:99:9d:f7:ca:0a:c5:27:53:b0:ef:6b: cc:9b:db:5b:b1:87:46:b0:64:e5:0c:84:78:ab:b4: 0b:43:ae:29:68:d3:d8:36:0a:87:61:10:73:43:32: 30:85:98:ed:df:e0:3b:b2:26:f5:e9:df:e0:1e:14: 2f:ee:71:01:26:11:12:44:c4:19:88:37:a5:32:ef: dc:5f:2f:a8:65:2f:ff:7f:d2:30:d7:ba:f7:90:71: e0:d7:57:01:2a:0c:10:a2:07:65:5d:ff:53:5a:2e: 48:20:de:ad:d7:3e:33:5e:9b:8d:42:a0:d8:40:0a: cd:79:e7:a1:62:56:64:83:d7:d0:e1:5d:bd:1b:e3: cf:a0:9e:75:9a:13:a4:20:2d:46:59:f9:c0:02:cd: 0f:a3:88:0f:f1:0c:76:ae:49:ee:c3:c2:3a:4a:10: c4:79:b5:23:ac:72:e2:c5:20:88:34:5d:5c:cd:c0: e0:78:59:e6:51:bd:f7:1e:68:23:55:e1:5b:a9:63: 50:c8:5f:ac:1e:11:a5:d3:60:f0:9c:54:dc:5b:7e: 61:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A8:FF:D6:76:8D:3B:FC:1A:54:CB:60:A3:29:76:63:27:20:59:0E X509v3 Authority Key Identifier: keyid:08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/323430313a646234303a3a2f33322d3332203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:db40::/32 Signature Algorithm: sha256WithRSAEncryption c2:74:da:36:9d:6c:ea:0e:ce:41:f3:66:28:cc:7e:f9:a3:4d: be:5d:a0:af:df:37:36:81:5b:1f:20:d4:b8:af:30:a5:cc:72: 18:31:0b:7b:5d:4f:69:67:54:80:fa:23:c3:f3:6c:02:59:50: 4b:ac:a4:ed:f7:b4:f0:04:37:40:52:b4:db:c9:ba:c5:db:16: 30:98:85:47:7e:fd:4e:8b:9e:4f:ec:d0:ca:72:32:b0:94:5d: 9f:21:f7:cc:0c:8a:49:88:dc:6e:76:c8:84:18:7f:37:91:8a: 2a:85:df:f0:7b:fe:1d:62:8f:e8:0c:27:15:70:3a:8a:67:e3: ab:2f:4b:b8:55:04:c5:88:92:d8:0b:5a:41:31:1b:09:3c:9e: 44:bf:b4:bb:e5:01:7f:34:e2:c5:4b:7a:02:1d:ff:31:3d:eb: f4:a9:8b:54:5a:eb:4e:7a:d2:2c:97:90:84:ce:94:c0:3a:23: 79:9c:d9:6b:24:8d:ff:49:12:3e:7c:80:27:42:a8:b6:07:49: 13:d3:1c:4a:c8:51:1a:60:2a:13:3b:20:46:1b:e3:29:20:21: 2e:06:6d:2d:b0:1c:f2:cf:b6:2e:4a:92:07:a6:ed:3e:76:66: de:15:8d:1e:00:dd:c5:6b:73:7d:d2:26:a9:2c:40:e5:91:9a: c0:e3:a1:b5 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIFjMcem4jM+Ds8JIffXKOftvoaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4 N0Y2M0MyNTAeFw0yNTA0MTkwNTUxNTRaFw0yNjA0MTgwNTU2NTRaMDMxMTAvBgNV BAMTKEMxQThGRkQ2NzY4RDNCRkMxQTU0Q0I2MEEzMjk3NjYzMjcyMDU5MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCffEFqeVWK6vFjMtjDKXHzjYPK TaV4BjeNmK9R1Ap6sUj6xbVPGUB0143cBq5CFYaZnffKCsUnU7Dva8yb21uxh0aw ZOUMhHirtAtDrilo09g2CodhEHNDMjCFmO3f4DuyJvXp3+AeFC/ucQEmERJExBmI N6Uy79xfL6hlL/9/0jDXuveQceDXVwEqDBCiB2Vd/1NaLkgg3q3XPjNem41CoNhA Cs1556FiVmSD19DhXb0b48+gnnWaE6QgLUZZ+cACzQ+jiA/xDHauSe7DwjpKEMR5 tSOscuLFIIg0XVzNwOB4WeZRvfceaCNV4VupY1DIX6weEaXTYPCcVNxbfmH1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUwaj/1naNO/waVMtgoyl2YycgWQ4wHwYDVR0j BBgwFoAUCHcxkfv8IaPIYVo+NqKssYf2PCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Zjg2YjEyZS1lNTc0LTQyNmItYWE2Yi00OTM5ZTNiMDMwYmEvMC8wODc3MzE5MUZC RkMyMUEzQzg2MTVBM0UzNkEyQUNCMTg3RjYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4N0Y2 M0MyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmODZiMTJlLWU1NzQtNDI2Yi1h YTZiLTQ5MzllM2IwMzBiYS8wLzMyMzQzMDMxM2E2NDYyMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB20AwDQYJKoZI hvcNAQELBQADggEBAMJ02jadbOoOzkHzZijMfvmjTb5doK/fNzaBWx8g1LivMKXM chgxC3tdT2lnVID6I8PzbAJZUEuspO33tPAEN0BStNvJusXbFjCYhUd+/U6Lnk/s 0MpyMrCUXZ8h98wMikmI3G52yIQYfzeRiiqF3/B7/h1ij+gMJxVwOopn46svS7hV BMWIktgLWkExGwk8nkS/tLvlAX804sVLegId/zE96/Spi1Ra60560iyXkITOlMA6 I3mc2Wskjf9JEj58gCdCqLYHSRPTHErIURpgKhM7IEYb4ykgIS4GbS2wHPLPti5K kgem7T52Zt4VjR4A3cVrc33SJqksQOWRmsDjobU= -----END CERTIFICATE-----Generated at Wed Apr 23 19:50:41 2025 by rpki-client on console.sobornost.net