$ rpki-client -vvf repo-rpki.idnic.net/repo/7f3404e6-bb2a-44b0-bede-a8b35014612d/0/323030313a6466303a643730303a3a2f34382d3438203d3e20313336313031.roa File: 323030313a6466303a643730303a3a2f34382d3438203d3e20313336313031.roa (raw, json) Hash identifier: XbVDn1xPJRDbPissRw2Bd3CFuuLlmjdc5fNqxvpM/iY= Subject key identifier: 35:AF:02:35:84:48:1D:9C:34:04:9C:20:07:5D:21:6F:81:10:4A:71 Certificate issuer: /CN=0104E70C07F39CF9F3B1D592DF9043B5EABBD171 Certificate serial: 760C6EED739C433F025ED7CF2DED0B064A5BC4AD Authority key identifier: 01:04:E7:0C:07:F3:9C:F9:F3:B1:D5:92:DF:90:43:B5:EA:BB:D1:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0104E70C07F39CF9F3B1D592DF9043B5EABBD171.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7f3404e6-bb2a-44b0-bede-a8b35014612d/0/323030313a6466303a643730303a3a2f34382d3438203d3e20313336313031.roa Signing time: Thu 17 Apr 2025 03:02:24 +0000 ROA not before: Thu 17 Apr 2025 02:57:24 +0000 ROA not after: Thu 16 Apr 2026 03:02:24 +0000 asID: 136101 IP address blocks: 2001:df0:d700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7f3404e6-bb2a-44b0-bede-a8b35014612d/0/0104E70C07F39CF9F3B1D592DF9043B5EABBD171.crl rsync://repo-rpki.idnic.net/repo/7f3404e6-bb2a-44b0-bede-a8b35014612d/0/0104E70C07F39CF9F3B1D592DF9043B5EABBD171.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0104E70C07F39CF9F3B1D592DF9043B5EABBD171.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:0c:6e:ed:73:9c:43:3f:02:5e:d7:cf:2d:ed:0b:06:4a:5b:c4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0104E70C07F39CF9F3B1D592DF9043B5EABBD171 Validity Not Before: Apr 17 02:57:24 2025 GMT Not After : Apr 16 03:02:24 2026 GMT Subject: CN=35AF023584481D9C34049C20075D216F81104A71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:58:62:14:e7:fc:41:35:e9:72:f7:d9:40:05: e1:9b:e3:13:14:90:b9:9c:99:18:34:91:6e:27:d7: 16:d9:21:81:c8:09:8f:78:ab:53:b8:f7:ba:91:30: 55:ee:64:89:3b:e8:c3:a7:ba:ed:01:eb:0e:7d:2a: 46:de:4e:05:49:93:5e:e6:d5:c6:41:69:3a:b9:e8: 43:aa:35:47:29:59:b2:93:e1:6f:7c:3b:a1:8e:92: c2:b1:c1:8e:86:0b:64:01:f5:c5:10:6a:ba:6b:54: 74:19:f8:d9:56:6e:d6:a7:db:7e:47:39:8b:47:26: 03:50:51:a5:8d:54:15:6a:96:53:9f:0a:5d:64:d0: ab:63:f5:4d:7a:11:f0:3c:27:87:8e:59:75:9d:80: 73:51:ba:98:70:dd:71:46:a1:0d:c6:3d:d6:8d:e4: a7:3d:ae:f7:e9:89:25:17:53:6f:ab:c2:0f:85:a9: 20:f4:a8:10:bd:e0:11:06:b5:e8:8f:f9:c1:b0:17: c0:42:af:4c:2f:a5:fa:99:01:cd:46:94:9d:1a:f0: 01:2f:70:b1:9f:2a:14:75:41:3a:38:af:7c:d3:a8: 5a:3d:0a:b5:be:1b:dc:73:3b:7a:05:e6:85:b0:1e: 62:c3:c0:e6:1d:ef:fa:61:b2:c3:ff:54:2a:f1:d4: 6a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AF:02:35:84:48:1D:9C:34:04:9C:20:07:5D:21:6F:81:10:4A:71 X509v3 Authority Key Identifier: keyid:01:04:E7:0C:07:F3:9C:F9:F3:B1:D5:92:DF:90:43:B5:EA:BB:D1:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7f3404e6-bb2a-44b0-bede-a8b35014612d/0/0104E70C07F39CF9F3B1D592DF9043B5EABBD171.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0104E70C07F39CF9F3B1D592DF9043B5EABBD171.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f3404e6-bb2a-44b0-bede-a8b35014612d/0/323030313a6466303a643730303a3a2f34382d3438203d3e20313336313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:d700::/48 Signature Algorithm: sha256WithRSAEncryption a8:4f:fe:96:83:98:1e:71:ac:54:87:0d:c5:06:d9:e2:8c:ad: ba:98:93:64:de:d3:76:32:99:19:5d:1a:bf:ea:c4:81:1a:81: 38:b3:fd:1a:22:ce:5f:66:4f:a2:07:f6:fc:23:f8:ce:1c:dd: 00:84:37:4c:c0:cf:00:36:22:db:08:ae:b6:50:69:59:3c:2a: 4a:4e:43:d1:47:37:68:11:fe:11:ba:19:d4:5f:6f:9a:d6:ac: 39:a2:be:4f:aa:31:5d:db:9e:a3:f8:1a:2a:2b:90:dd:63:6a: 22:9d:ea:a4:f2:f7:37:d8:02:ba:d0:f2:00:ea:57:a1:09:d0: b0:43:15:5b:6b:10:74:98:cd:95:df:57:5a:63:a5:78:78:83: 59:c5:6e:c4:36:c5:31:ea:b6:73:a4:40:26:f9:51:a4:b6:35: e6:65:4b:6e:f0:f5:a1:cf:cb:17:1c:de:24:e1:b7:08:d1:45: 50:f0:47:b5:47:63:48:09:5d:94:4c:8b:53:d6:f4:42:98:0a: dd:16:a2:22:55:71:00:9c:01:80:77:01:f4:15:a1:3b:cc:ef: c0:a9:1a:aa:f4:57:68:3e:54:44:0b:c3:c4:64:6e:b6:42:5d: 1c:1c:f6:b1:15:42:9e:3c:2a:39:86:8b:e9:61:64:e2:b8:9c: 70:de:eb:71 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdgxu7XOcQz8CXtfPLe0LBkpbxK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEwNEU3MEMwN0YzOUNGOUYzQjFENTkyREY5MDQzQjVF QUJCRDE3MTAeFw0yNTA0MTcwMjU3MjRaFw0yNjA0MTYwMzAyMjRaMDMxMTAvBgNV BAMTKDM1QUYwMjM1ODQ0ODFEOUMzNDA0OUMyMDA3NUQyMTZGODExMDRBNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfWGIU5/xBNely99lABeGb4xMU kLmcmRg0kW4n1xbZIYHICY94q1O497qRMFXuZIk76MOnuu0B6w59KkbeTgVJk17m 1cZBaTq56EOqNUcpWbKT4W98O6GOksKxwY6GC2QB9cUQarprVHQZ+NlWbtan235H OYtHJgNQUaWNVBVqllOfCl1k0Ktj9U16EfA8J4eOWXWdgHNRuphw3XFGoQ3GPdaN 5Kc9rvfpiSUXU2+rwg+FqSD0qBC94BEGteiP+cGwF8BCr0wvpfqZAc1GlJ0a8AEv cLGfKhR1QTo4r3zTqFo9CrW+G9xzO3oF5oWwHmLDwOYd7/phssP/VCrx1GphAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNa8CNYRIHZw0BJwgB10hb4EQSnEwHwYDVR0j BBgwFoAUAQTnDAfznPnzsdWS35BDteq70XEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZjM0MDRlNi1iYjJhLTQ0YjAtYmVkZS1hOGIzNTAxNDYxMmQvMC8wMTA0RTcwQzA3 RjM5Q0Y5RjNCMUQ1OTJERjkwNDNCNUVBQkJEMTcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEwNEU3MEMwN0YzOUNGOUYzQjFENTkyREY5MDQzQjVFQUJC RDE3MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmMzQwNGU2LWJiMmEtNDRiMC1i ZWRlLWE4YjM1MDE0NjEyZC8wLzMyMzAzMDMxM2E2NDY2MzAzYTY0MzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8NcAMA0GCSqGSIb3DQEBCwUAA4IBAQCoT/6Wg5gecaxUhw3FBtnijK26mJNk3tN2 MpkZXRq/6sSBGoE4s/0aIs5fZk+iB/b8I/jOHN0AhDdMwM8ANiLbCK62UGlZPCpK TkPRRzdoEf4RuhnUX2+a1qw5or5PqjFd256j+BoqK5DdY2oineqk8vc32AK60PIA 6lehCdCwQxVbaxB0mM2V31daY6V4eINZxW7ENsUx6rZzpEAm+VGktjXmZUtu8PWh z8sXHN4k4bcI0UVQ8Ee1R2NICV2UTItT1vRCmArdFqIiVXEAnAGAdwH0FaE7zO/A qRqq9FdoPlREC8PEZG62Ql0cHPaxFUKePCo5hovpYWTiuJxw3utx -----END CERTIFICATE-----Generated at Thu Apr 24 04:31:38 2025 by rpki-client on console.sobornost.net