$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: uXjjFF8r0bZTRb9FAMyxiQMT6f66pjylh6TLVp8RaRI= Subject key identifier: 45:91:90:D5:B4:05:16:A3:6F:30:61:07:32:7D:A3:1A:9B:B8:5B:2C Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 36E318E2D670001E2A162E752B44F662EA999016 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 16 Apr 2025 04:15:29 +0000 ROA not before: Wed 16 Apr 2025 04:10:29 +0000 ROA not after: Wed 15 Apr 2026 04:15:29 +0000 asID: 38515 IP address blocks: 2402:600:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e3:18:e2:d6:70:00:1e:2a:16:2e:75:2b:44:f6:62:ea:99:90:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Apr 16 04:10:29 2025 GMT Not After : Apr 15 04:15:29 2026 GMT Subject: CN=459190D5B40516A36F306107327DA31A9BB85B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:a1:27:d1:8c:51:9f:51:a4:dc:e1:17:a7: d4:f4:f8:be:44:0e:28:54:fe:b0:b1:32:b2:32:98: 01:e7:ac:66:fe:24:19:e0:d0:66:8f:ee:8d:cb:9e: 66:cf:f4:f5:93:13:96:42:15:22:16:37:90:93:5d: c1:3f:15:70:81:1c:55:ca:a9:d4:7e:07:71:0c:d9: 9b:93:ae:cb:47:33:14:f7:02:69:d0:63:94:61:3a: b6:29:2c:7e:16:38:03:26:34:10:4f:5e:4c:51:f2: f8:ea:96:2a:d1:69:bd:11:2e:4a:e6:c6:41:93:18: cc:4b:be:6d:d0:54:c8:2e:56:45:5a:aa:96:eb:14: 8a:30:4c:9c:19:7f:8d:90:ce:17:7b:9b:2d:68:7b: 7f:a8:aa:5e:98:e6:32:ab:c5:96:9e:b4:40:5c:fe: 06:b8:3e:43:37:89:4e:76:84:3d:ad:e5:54:73:e2: 29:c6:d3:2b:39:34:1d:f6:84:6d:12:e0:27:fe:ab: ee:26:69:af:65:a0:ea:c3:3a:39:43:e4:61:ca:a7: 9b:c4:82:df:f8:d4:98:0d:31:37:b5:80:ad:4a:87: c8:24:40:b2:13:87:9f:00:9e:88:58:fe:60:61:ec: 02:fb:67:e2:ed:6a:52:38:15:07:bc:3b:e0:59:c2: bf:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:91:90:D5:B4:05:16:A3:6F:30:61:07:32:7D:A3:1A:9B:B8:5B:2C X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a313a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:1::/48 Signature Algorithm: sha256WithRSAEncryption 4d:32:86:ed:f1:7f:b7:78:38:54:13:6f:0e:48:02:a4:93:a2: 24:2f:68:5c:6b:9f:db:30:0d:01:19:67:cc:7d:26:42:ac:83: 9f:a2:ac:e6:0a:d8:e3:24:6e:bf:1f:38:ed:4c:26:7a:89:c6: fc:9a:c8:62:25:20:9b:5a:fa:26:2d:60:42:2e:2d:44:ce:78: c0:8f:07:e0:39:a7:be:d8:45:a8:a9:96:85:c9:b6:b3:85:54: dc:65:33:c3:10:ec:2f:95:ce:a3:57:2f:73:ea:81:16:5f:a7: fb:fc:17:f0:a3:dd:1f:a9:51:8e:60:2e:ec:9a:cb:8e:64:76: 80:d0:64:ba:5c:42:a5:0b:3b:46:58:2e:61:1c:3d:50:aa:ba: ea:62:a7:c2:6f:8b:58:95:f6:4c:46:a9:33:f6:bd:88:04:a2: c5:de:21:2c:5e:36:56:ab:dd:e9:00:4d:77:db:15:8b:56:ad: 15:e1:89:21:2e:71:3d:9a:db:bd:14:c1:54:af:91:2c:0d:9f: 7c:2b:3b:e9:9e:52:33:9e:d7:4e:40:cb:86:4b:ad:b7:95:6e: c6:b7:3b:55:ba:85:0a:8e:bc:2e:75:3f:de:e0:bc:fa:7c:e2: 6c:b7:41:cd:f4:e9:34:d3:af:55:cd:16:15:09:e6:40:97:33: 8c:a7:4d:39 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUNuMY4tZwAB4qFi51K0T2YuqZkBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA0MTYwNDEwMjlaFw0yNjA0MTUwNDE1MjlaMDMxMTAvBgNV BAMTKDQ1OTE5MEQ1QjQwNTE2QTM2RjMwNjEwNzMyN0RBMzFBOUJCODVCMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDORqEn0YxRn1Gk3OEXp9T0+L5E DihU/rCxMrIymAHnrGb+JBng0GaP7o3LnmbP9PWTE5ZCFSIWN5CTXcE/FXCBHFXK qdR+B3EM2ZuTrstHMxT3AmnQY5RhOrYpLH4WOAMmNBBPXkxR8vjqlirRab0RLkrm xkGTGMxLvm3QVMguVkVaqpbrFIowTJwZf42Qzhd7my1oe3+oql6Y5jKrxZaetEBc /ga4PkM3iU52hD2t5VRz4inG0ys5NB32hG0S4Cf+q+4maa9loOrDOjlD5GHKp5vE gt/41JgNMTe1gK1Kh8gkQLITh58AnohY/mBh7AL7Z+LtalI4FQe8O+BZwr83AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQURZGQ1bQFFqNvMGEHMn2jGpu4WywwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTMxM2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAAATANBgkq hkiG9w0BAQsFAAOCAQEATTKG7fF/t3g4VBNvDkgCpJOiJC9oXGuf2zANARlnzH0m QqyDn6Ks5grY4yRuvx847UwmeonG/JrIYiUgm1r6Ji1gQi4tRM54wI8H4DmnvthF qKmWhcm2s4VU3GUzwxDsL5XOo1cvc+qBFl+n+/wX8KPdH6lRjmAu7JrLjmR2gNBk ulxCpQs7RlguYRw9UKq66mKnwm+LWJX2TEapM/a9iASixd4hLF42Vqvd6QBNd9sV i1atFeGJIS5xPZrbvRTBVK+RLA2ffCs76Z5SM57XTkDLhkutt5Vuxrc7VbqFCo68 LnU/3uC8+nzibLdBzfTpNNOvVc0WFQnmQJczjKdNOQ== -----END CERTIFICATE-----Generated at Fri Apr 25 08:21:08 2025 by rpki-client on console.sobornost.net