$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa File: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (raw, json) Hash identifier: VaGZ2rtQiVhlvvEqhey8VuIsjUW/H1CymqkYlv2nCyM= Subject key identifier: EA:9C:97:87:04:55:69:11:50:5C:76:E5:68:7D:53:B0:E4:9F:C4:A5 Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 05CA89B8D50F98A59A99EAD5F213293AB1B09B3D Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa Signing time: Mon 21 Apr 2025 04:00:00 +0000 ROA not before: Mon 21 Apr 2025 03:55:00 +0000 ROA not after: Mon 20 Apr 2026 04:00:00 +0000 asID: 140443 IP address blocks: 2001:df3:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 14:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:ca:89:b8:d5:0f:98:a5:9a:99:ea:d5:f2:13:29:3a:b1:b0:9b:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Apr 21 03:55:00 2025 GMT Not After : Apr 20 04:00:00 2026 GMT Subject: CN=EA9C978704556911505C76E5687D53B0E49FC4A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:be:80:e1:db:0c:82:c4:0e:47:d1:df:3e:9c: cf:11:d0:e7:0a:77:c3:04:43:8c:75:dd:68:70:23: e0:b7:3d:c0:be:8f:fe:86:d2:60:47:cf:f7:d2:e5: de:6b:7d:6a:ae:0d:4d:39:a6:d7:b2:96:7c:a5:c0: a4:70:d1:6b:93:17:69:05:9f:cf:32:2b:a7:92:f9: aa:52:0b:3d:59:ea:d7:5c:53:26:e7:8d:3f:28:8c: 76:f5:a9:7f:e7:bd:b8:d9:a9:29:23:be:25:ca:7e: a1:b8:10:f3:58:cd:cb:ed:1e:52:e1:73:c9:52:00: f3:fc:74:54:1f:25:f7:d5:57:6f:fa:76:f1:1b:36: c4:5a:aa:83:b9:7e:2d:aa:54:1e:c2:22:2b:33:50: b6:cd:6c:45:46:a9:89:58:41:ba:26:79:30:a4:a9: 6a:e2:68:49:c0:e9:35:49:3d:b4:0b:5d:9f:f1:18: 76:05:5b:b0:ee:d3:dc:91:f3:18:43:8d:8b:c5:67: 70:f4:e0:b9:e4:83:08:e5:6a:d1:86:0c:86:1c:97: 4f:d9:34:ba:0c:34:26:b5:b5:b3:7c:64:f6:1b:8e: f5:e8:9e:54:db:df:66:a7:fa:5e:fb:d7:42:c3:d7: 7c:82:f6:39:13:a9:98:5f:92:a4:a1:9a:5d:ed:96: 37:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9C:97:87:04:55:69:11:50:5C:76:E5:68:7D:53:B0:E4:9F:C4:A5 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:3480::/48 Signature Algorithm: sha256WithRSAEncryption 4c:75:fa:12:dc:9d:e8:81:e9:f3:cf:be:fb:08:c7:78:27:11: 7d:1f:f6:bf:49:65:f3:fb:54:7a:3e:65:b7:5a:89:f4:48:51: 66:84:8f:f0:d8:57:80:41:ab:52:96:1a:4f:31:00:a3:2c:29: 10:80:d7:59:a2:9e:75:4a:39:43:be:3c:1b:5d:05:d6:91:2b: 2b:31:b8:4d:19:79:aa:5d:52:db:e1:9d:98:03:42:7e:94:50: 7b:fa:30:86:47:b2:8d:12:d4:90:32:30:e1:42:45:d7:04:c2: 6e:53:63:b4:12:be:9c:8f:82:03:61:90:9b:66:29:52:2f:db: 00:6d:94:65:e0:c2:f9:25:b1:27:ae:5f:e6:63:22:75:5a:a1: f8:65:33:df:5e:89:c9:1f:a3:6d:6b:cb:e2:a2:fd:6a:c1:2c: e1:19:62:61:cb:43:05:50:7f:6c:87:2f:a2:71:74:18:89:27: 15:68:4e:d4:d8:08:33:93:d2:07:1e:e5:e2:c8:39:23:84:24: 55:32:28:de:73:2c:67:1a:5f:f9:3e:41:1f:7b:c9:3e:04:2f: 62:76:17:93:e2:d0:85:27:64:5d:ce:cd:c2:09:4f:f3:13:c2: 06:0d:81:ad:56:7e:95:a5:5b:76:1b:68:a2:61:c8:33:c8:83: b4:06:67:b6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBcqJuNUPmKWamerV8hMpOrGwmz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNTA0MjEwMzU1MDBaFw0yNjA0MjAwNDAwMDBaMDMxMTAvBgNV BAMTKEVBOUM5Nzg3MDQ1NTY5MTE1MDVDNzZFNTY4N0Q1M0IwRTQ5RkM0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNvoDh2wyCxA5H0d8+nM8R0OcK d8MEQ4x13WhwI+C3PcC+j/6G0mBHz/fS5d5rfWquDU05pteylnylwKRw0WuTF2kF n88yK6eS+apSCz1Z6tdcUybnjT8ojHb1qX/nvbjZqSkjviXKfqG4EPNYzcvtHlLh c8lSAPP8dFQfJffVV2/6dvEbNsRaqoO5fi2qVB7CIiszULbNbEVGqYlYQbomeTCk qWriaEnA6TVJPbQLXZ/xGHYFW7Du09yR8xhDjYvFZ3D04LnkgwjlatGGDIYcl0/Z NLoMNCa1tbN8ZPYbjvXonlTb32an+l7710LD13yC9jkTqZhfkqShml3tljd/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6pyXhwRVaRFQXHblaH1TsOSfxKUwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMyMzAzMDMxM2E2NDY2MzMzYTMzMzQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8zSAMA0GCSqGSIb3DQEBCwUAA4IBAQBMdfoS3J3ogenzz777CMd4JxF9H/a/SWXz +1R6PmW3Won0SFFmhI/w2FeAQatSlhpPMQCjLCkQgNdZop51SjlDvjwbXQXWkSsr MbhNGXmqXVLb4Z2YA0J+lFB7+jCGR7KNEtSQMjDhQkXXBMJuU2O0Er6cj4IDYZCb ZilSL9sAbZRl4ML5JbEnrl/mYyJ1WqH4ZTPfXonJH6Nta8viov1qwSzhGWJhy0MF UH9shy+icXQYiScVaE7U2Agzk9IHHuXiyDkjhCRVMijecyxnGl/5PkEfe8k+BC9i dheT4tCFJ2Rdzs3CCU/zE8IGDYGtVn6VpVt2G2iiYcgzyIO0Bme2 -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:40 2025 by rpki-client on console.sobornost.net