$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: jfQj9Xe+FFUAvRMk0Cart8oc9Moe7xONTWgrujdxqvw= Subject key identifier: 96:1A:B4:F4:D5:CC:F0:12:A0:05:F0:C2:E5:A0:5C:15:2F:39:E4:95 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 7C366A1C772B8C6A6AD6D66D15DC05CAB33FFFC1 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 16 Apr 2025 04:16:22 +0000 ROA not before: Wed 16 Apr 2025 04:11:22 +0000 ROA not after: Wed 15 Apr 2026 04:16:22 +0000 asID: 38515 IP address blocks: 2402:600:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:36:6a:1c:77:2b:8c:6a:6a:d6:d6:6d:15:dc:05:ca:b3:3f:ff:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Apr 16 04:11:22 2025 GMT Not After : Apr 15 04:16:22 2026 GMT Subject: CN=961AB4F4D5CCF012A005F0C2E5A05C152F39E495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d7:2c:95:7d:a4:72:9d:9d:e8:c1:2b:3b:89: b2:d0:d0:a2:ce:e6:c5:be:46:38:24:cc:82:91:69: ee:a6:a3:66:ce:f7:58:dd:88:a7:7e:6e:b6:fe:c4: 9b:df:63:b8:ee:a7:d6:2f:4b:4f:d9:24:f4:1d:d5: 48:0b:9c:5f:1e:dd:c5:d5:8a:9e:c6:14:7c:9e:de: 36:6c:8c:fa:33:e6:e0:22:e4:05:58:66:49:00:b4: c1:84:aa:06:b0:c8:3d:09:b4:60:50:05:ce:8f:31: dd:33:8c:68:91:19:da:0f:b2:ff:19:df:4c:25:45: f5:ca:9d:58:97:f3:dc:44:b9:b1:76:89:8d:8b:08: e7:d3:46:de:8f:d2:db:fc:97:40:1a:81:a2:d4:8b: 1d:89:b5:34:bc:0d:74:0a:ff:21:0a:a1:e8:57:15: dc:58:97:60:71:c7:35:2c:d4:6f:de:a0:82:db:83: 0f:44:af:4a:b4:32:b6:a6:9c:cf:2c:0b:37:cc:51: 82:6f:8d:d4:07:12:45:3e:89:3e:94:30:79:b6:f8: b8:f9:93:da:8e:af:a1:16:14:cc:45:5b:e8:dd:3c: 1f:9a:e4:b2:df:bb:7f:88:65:9c:92:f5:bd:9e:12: c2:7a:07:6f:f7:a2:6e:f8:8c:eb:18:79:57:0f:0c: 50:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1A:B4:F4:D5:CC:F0:12:A0:05:F0:C2:E5:A0:5C:15:2F:39:E4:95 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a643a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:d::/48 Signature Algorithm: sha256WithRSAEncryption 80:f1:db:dc:2a:dc:92:c4:6e:a9:5d:2a:aa:05:fd:39:09:c4: f5:4d:24:e0:28:02:ba:dd:1a:72:ba:ac:fc:5a:42:cf:a3:58: fa:62:58:33:4c:ab:79:70:d0:3d:74:bd:c2:a6:40:9b:6a:4a: 01:d8:25:6f:44:ce:99:77:cd:94:36:33:e7:8d:8c:f2:a8:99: 40:25:04:11:c3:7c:7e:26:44:a1:57:e6:4a:b7:12:39:73:31: 8c:2a:52:3f:f5:04:e8:c7:d6:89:ca:c2:ee:c8:16:21:56:75: 09:29:fd:98:d8:95:79:47:3d:76:f8:6a:2d:7c:92:c8:9f:04: f2:1d:8d:4c:c0:17:e5:f7:47:a0:71:01:11:db:58:31:d5:00: b7:1d:6e:50:e6:93:d3:1f:74:9c:40:95:eb:3d:c0:bb:c6:71: 46:68:32:dc:19:74:d6:76:8b:55:24:6b:cf:48:1a:07:a3:8c: 5c:e2:55:78:56:be:76:0c:55:a1:df:0a:3e:8c:3a:52:46:05: 04:ac:25:65:d8:90:c1:0e:fe:6d:68:0e:f0:6b:73:1a:1a:48: a1:a6:3f:75:c6:ae:49:50:05:72:f6:a6:10:68:f9:b7:bd:f3: 99:75:aa:e1:9a:cb:d6:31:a7:bd:df:2e:2c:22:c2:72:1d:e9: 38:c9:f9:5f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUfDZqHHcrjGpq1tZtFdwFyrM//8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA0MTYwNDExMjJaFw0yNjA0MTUwNDE2MjJaMDMxMTAvBgNV BAMTKDk2MUFCNEY0RDVDQ0YwMTJBMDA1RjBDMkU1QTA1QzE1MkYzOUU0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1yyVfaRynZ3owSs7ibLQ0KLO 5sW+RjgkzIKRae6mo2bO91jdiKd+brb+xJvfY7jup9YvS0/ZJPQd1UgLnF8e3cXV ip7GFHye3jZsjPoz5uAi5AVYZkkAtMGEqgawyD0JtGBQBc6PMd0zjGiRGdoPsv8Z 30wlRfXKnViX89xEubF2iY2LCOfTRt6P0tv8l0AagaLUix2JtTS8DXQK/yEKoehX FdxYl2BxxzUs1G/eoILbgw9Er0q0MramnM8sCzfMUYJvjdQHEkU+iT6UMHm2+Lj5 k9qOr6EWFMxFW+jdPB+a5LLfu3+IZZyS9b2eEsJ6B2/3om74jOsYeVcPDFBtAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUlhq09NXM8BKgBfDC5aBcFS855JUwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTY0M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAADTANBgkq hkiG9w0BAQsFAAOCAQEAgPHb3CrcksRuqV0qqgX9OQnE9U0k4CgCut0acrqs/FpC z6NY+mJYM0yreXDQPXS9wqZAm2pKAdglb0TOmXfNlDYz542M8qiZQCUEEcN8fiZE oVfmSrcSOXMxjCpSP/UE6MfWicrC7sgWIVZ1CSn9mNiVeUc9dvhqLXySyJ8E8h2N TMAX5fdHoHEBEdtYMdUAtx1uUOaT0x90nECV6z3Au8ZxRmgy3Bl01naLVSRrz0ga B6OMXOJVeFa+dgxVod8KPow6UkYFBKwlZdiQwQ7+bWgO8GtzGhpIoaY/dcauSVAF cvamEGj5t73zmXWq4ZrL1jGnvd8uLCLCch3pOMn5Xw== -----END CERTIFICATE-----Generated at Fri Apr 25 08:21:08 2025 by rpki-client on console.sobornost.net