$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa File: 323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa (raw, json) Hash identifier: nq4zy1af72x204AkF+u1PwnoA4FxaLfpw4t+rXKovzs= Subject key identifier: B4:85:5A:11:93:20:30:B7:18:53:99:2B:6F:CA:CD:4E:9F:51:5B:4F Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 38A66E92FFCCD58AC86671BF46781C1C34A5643C Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa Signing time: Wed 09 Apr 2025 07:01:37 +0000 ROA not before: Wed 09 Apr 2025 06:56:37 +0000 ROA not after: Wed 08 Apr 2026 07:01:37 +0000 asID: 138129 IP address blocks: 2404:4240:138::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a6:6e:92:ff:cc:d5:8a:c8:66:71:bf:46:78:1c:1c:34:a5:64:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Apr 9 06:56:37 2025 GMT Not After : Apr 8 07:01:37 2026 GMT Subject: CN=B4855A11932030B71853992B6FCACD4E9F515B4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e0:50:f0:b1:f7:17:1b:c7:68:82:04:75:e1: ad:cb:32:5a:dd:ec:89:75:df:fa:e8:57:41:1b:a8: 56:8c:c1:79:74:94:86:4e:d8:a5:db:9c:d3:ec:0f: 31:cf:20:91:ac:1c:ac:46:7d:db:60:ff:78:a8:a0: 98:44:18:be:f6:86:ef:e4:84:6e:b2:20:75:5b:0c: 8e:7f:b9:ce:85:5f:0c:65:1f:e5:8d:c3:26:e6:9b: 55:40:52:dd:13:7c:b3:fe:e8:ac:eb:58:8b:e6:fa: e9:8d:b1:77:2f:01:0b:6c:3e:09:aa:87:87:75:49: 57:f6:fb:c3:36:2e:dc:8e:c4:80:ef:8e:5a:6a:e1: ac:38:a3:6c:73:d2:ee:2d:ee:70:c9:6d:55:a7:52: 66:c6:18:5e:ec:41:fb:fe:b0:9a:a7:1d:ff:46:59: 84:d5:61:70:6b:90:67:27:8d:b1:11:04:25:26:a1: fd:0f:e9:9e:5e:f9:09:f2:56:47:aa:f8:c5:ae:2f: 5c:23:fe:15:2d:2b:12:64:2f:ec:9a:85:6a:ac:f8: 6b:06:c5:bc:18:6f:50:f3:99:5a:98:26:dd:38:87: 06:cf:10:12:28:e0:05:05:22:fb:0c:e2:2b:30:da: e7:95:df:f3:c9:0d:49:09:52:d0:d0:64:6b:51:82: 11:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:85:5A:11:93:20:30:B7:18:53:99:2B:6F:CA:CD:4E:9F:51:5B:4F X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3133383a3a2f34382d3438203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4240:138::/48 Signature Algorithm: sha256WithRSAEncryption c2:53:a6:2d:dd:d8:93:8f:c4:0c:5b:dc:ed:14:96:3e:40:df: 6c:89:19:8f:62:57:67:bc:c0:1d:44:c5:eb:bc:e0:a3:c2:c6: 4f:7a:14:23:b8:0e:35:69:05:13:d1:2d:90:9d:03:21:ad:75: bd:53:9d:16:01:5c:55:4a:60:a0:d5:7b:6b:70:49:b8:f9:99: 4d:cd:e4:23:84:86:0c:eb:78:e2:00:63:29:02:74:c6:63:6d: f2:a4:ee:fb:93:45:7c:4d:6e:54:7a:b5:bc:9a:0d:27:e4:9f: b5:50:f0:9e:3b:1e:56:c8:ad:a0:0c:19:93:f7:8f:1b:2d:2a: c5:b2:78:d8:87:bd:ef:6d:bd:e3:40:cf:e0:56:b1:8b:48:3e: d7:46:3d:0d:3d:49:26:76:f6:88:3c:08:b4:16:c7:ee:3f:38: a7:57:6a:e9:5b:3e:2d:e9:c2:8f:af:24:60:69:79:62:3c:ad: ae:1c:b2:e5:34:8d:47:80:41:5e:a5:27:36:cd:62:bf:99:30: c4:94:ed:1b:45:af:b9:81:42:97:9f:dc:ea:e1:12:f4:0f:94: df:66:1e:3c:1a:a5:2f:a0:30:74:0d:49:b1:82:9e:0f:8b:19: c0:26:6b:ed:88:f2:1c:e2:3a:72:89:f9:55:db:66:8a:c9:26: 8b:33:97:71 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOKZukv/M1YrIZnG/RngcHDSlZDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNTA0MDkwNjU2MzdaFw0yNjA0MDgwNzAxMzdaMDMxMTAvBgNV BAMTKEI0ODU1QTExOTMyMDMwQjcxODUzOTkyQjZGQ0FDRDRFOUY1MTVCNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu4FDwsfcXG8doggR14a3LMlrd 7Il13/roV0EbqFaMwXl0lIZO2KXbnNPsDzHPIJGsHKxGfdtg/3iooJhEGL72hu/k hG6yIHVbDI5/uc6FXwxlH+WNwybmm1VAUt0TfLP+6KzrWIvm+umNsXcvAQtsPgmq h4d1SVf2+8M2LtyOxIDvjlpq4aw4o2xz0u4t7nDJbVWnUmbGGF7sQfv+sJqnHf9G WYTVYXBrkGcnjbERBCUmof0P6Z5e+QnyVkeq+MWuL1wj/hUtKxJkL+yahWqs+GsG xbwYb1DzmVqYJt04hwbPEBIo4AUFIvsM4isw2ueV3/PJDUkJUtDQZGtRghGfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtIVaEZMgMLcYU5krb8rNTp9RW08wHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMyMzQzMDM0M2EzNDMyMzQzMDNhMzEzMzM4M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJARC QAE4MA0GCSqGSIb3DQEBCwUAA4IBAQDCU6Yt3diTj8QMW9ztFJY+QN9siRmPYldn vMAdRMXrvOCjwsZPehQjuA41aQUT0S2QnQMhrXW9U50WAVxVSmCg1XtrcEm4+ZlN zeQjhIYM63jiAGMpAnTGY23ypO77k0V8TW5UerW8mg0n5J+1UPCeOx5WyK2gDBmT 948bLSrFsnjYh73vbb3jQM/gVrGLSD7XRj0NPUkmdvaIPAi0FsfuPzinV2rpWz4t 6cKPryRgaXliPK2uHLLlNI1HgEFepSc2zWK/mTDElO0bRa+5gUKXn9zq4RL0D5Tf Zh48GqUvoDB0DUmxgp4PixnAJmvtiPIc4jpyiflV22aKySaLM5dx -----END CERTIFICATE-----Generated at Fri Apr 25 03:46:17 2025 by rpki-client on console.sobornost.net