$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: YPCHB9+pVaURl8+dAGmuKHWAAYIp9zXHQ5RNjAvQlWA= Subject key identifier: D5:CD:5B:42:AF:7E:CC:24:A4:09:24:30:C4:F1:DE:ED:74:A5:27:E8 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 700C2043D061C7F26FD43618B99E54A56080ACEF Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 16 Apr 2025 04:16:52 +0000 ROA not before: Wed 16 Apr 2025 04:11:52 +0000 ROA not after: Wed 15 Apr 2026 04:16:52 +0000 asID: 38515 IP address blocks: 2402:600:b1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:0c:20:43:d0:61:c7:f2:6f:d4:36:18:b9:9e:54:a5:60:80:ac:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Apr 16 04:11:52 2025 GMT Not After : Apr 15 04:16:52 2026 GMT Subject: CN=D5CD5B42AF7ECC24A4092430C4F1DEED74A527E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:05:bf:98:c0:0a:81:9c:22:c9:9b:85:a4:59: 2e:06:0d:fb:0b:65:b2:96:ae:0c:da:3e:da:db:29: 98:41:68:7d:f8:a8:69:a0:a0:50:a3:3e:23:8f:3b: 18:c1:da:a8:35:2b:be:18:ce:d1:79:e5:88:5e:7b: c0:29:e6:42:9a:87:7a:e8:ea:65:db:ff:79:cb:78: bc:77:b7:ab:f5:d2:59:89:5f:25:ad:d6:b2:7d:9f: 3d:d8:05:fb:20:88:ad:b7:60:c2:a2:5b:db:14:cc: cb:cc:16:57:93:d7:95:a5:7c:af:5a:17:db:01:78: 85:bc:c8:c2:e8:cb:07:ab:07:a1:19:b4:8f:2c:8f: 1a:2a:bb:b4:ee:ee:34:c2:f6:e1:cf:74:32:4c:75: d9:a6:a7:50:84:fb:cb:81:37:de:b6:63:91:ce:cc: aa:75:cd:97:d0:e0:f8:a7:4e:c7:4f:87:1c:fe:82: 92:0f:0d:10:73:45:29:ff:08:36:31:7c:69:13:cf: 65:bb:09:20:a7:c7:10:d0:6b:a5:30:9a:dd:ac:cf: a8:43:91:3c:20:8b:7b:7c:9e:05:e9:27:69:6f:8a: 7f:10:e2:69:97:ed:a1:97:06:1d:08:e9:e5:40:f1: 5c:b8:77:36:38:6f:ed:02:a0:86:3f:0c:18:30:de: 20:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CD:5B:42:AF:7E:CC:24:A4:09:24:30:C4:F1:DE:ED:74:A5:27:E8 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a62313a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:b1::/48 Signature Algorithm: sha256WithRSAEncryption 31:e4:a7:18:cb:44:b1:f1:3c:84:4e:a6:ae:2d:3a:25:70:c1: 67:1e:9b:27:8b:cc:99:ea:55:d4:49:be:7c:d5:e7:28:19:c6: db:d2:7c:13:ee:61:0c:d2:a2:49:25:de:e7:f7:2a:80:c0:6f: e3:b8:d1:b0:bb:b3:59:c4:8a:e1:14:5d:0a:35:72:ac:d6:eb: 6e:b0:26:c1:f2:58:8b:62:c9:b0:7d:78:be:00:dd:b0:e1:db: 4e:bd:8c:41:57:57:6f:46:70:b3:20:62:bd:4a:c1:50:fd:9c: d4:93:12:6a:40:8e:a7:97:5b:af:67:bb:55:e8:3b:aa:0f:04: d9:1c:bf:fa:7c:7e:c3:63:35:bd:ab:b2:34:15:2c:52:fa:63: a8:11:6f:99:7f:2c:29:89:a3:2e:f5:42:1a:a3:4c:5b:c3:4e: a0:f6:31:5c:34:9b:bf:53:75:1f:86:09:75:81:bb:cb:5f:c3: 46:91:d2:bd:7a:b1:ee:41:5b:6d:ff:80:38:af:76:6b:2d:30: 89:be:86:70:db:e8:a9:28:8a:68:10:a9:18:18:23:cb:a4:8a: 23:a4:ee:fe:39:11:96:19:b3:8f:47:2a:ff:6a:20:fd:01:15: 5c:27:0c:55:d0:d8:59:76:24:85:3d:4d:31:27:b1:d1:68:83: 6e:1a:4f:ec -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcAwgQ9Bhx/Jv1DYYuZ5UpWCArO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA0MTYwNDExNTJaFw0yNjA0MTUwNDE2NTJaMDMxMTAvBgNV BAMTKEQ1Q0Q1QjQyQUY3RUNDMjRBNDA5MjQzMEM0RjFERUVENzRBNTI3RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYBb+YwAqBnCLJm4WkWS4GDfsL ZbKWrgzaPtrbKZhBaH34qGmgoFCjPiOPOxjB2qg1K74YztF55Yhee8Ap5kKah3ro 6mXb/3nLeLx3t6v10lmJXyWt1rJ9nz3YBfsgiK23YMKiW9sUzMvMFleT15WlfK9a F9sBeIW8yMLoywerB6EZtI8sjxoqu7Tu7jTC9uHPdDJMddmmp1CE+8uBN962Y5HO zKp1zZfQ4PinTsdPhxz+gpIPDRBzRSn/CDYxfGkTz2W7CSCnxxDQa6Uwmt2sz6hD kTwgi3t8ngXpJ2lvin8Q4mmX7aGXBh0I6eVA8Vy4dzY4b+0CoIY/DBgw3iCDAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU1c1bQq9+zCSkCSQwxPHe7XSlJ+gwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTYyMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAIGAACxMA0G CSqGSIb3DQEBCwUAA4IBAQAx5KcYy0Sx8TyETqauLTolcMFnHpsni8yZ6lXUSb58 1ecoGcbb0nwT7mEM0qJJJd7n9yqAwG/juNGwu7NZxIrhFF0KNXKs1utusCbB8liL YsmwfXi+AN2w4dtOvYxBV1dvRnCzIGK9SsFQ/ZzUkxJqQI6nl1uvZ7tV6DuqDwTZ HL/6fH7DYzW9q7I0FSxS+mOoEW+ZfywpiaMu9UIao0xbw06g9jFcNJu/U3Ufhgl1 gbvLX8NGkdK9erHuQVtt/4A4r3ZrLTCJvoZw2+ipKIpoEKkYGCPLpIojpO7+ORGW GbOPRyr/aiD9ARVcJwxV0NhZdiSFPU0xJ7HRaINuGk/s -----END CERTIFICATE-----Generated at Fri Apr 25 08:21:08 2025 by rpki-client on console.sobornost.net