$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: 7XF+7tNQBQV2Wy0AsX8lBCySJ+ATYXgli7NY4z4VmfM= Subject key identifier: 33:DE:9C:8C:3D:8E:D4:27:DE:CC:EE:53:28:26:6E:B0:BD:F8:F2:31 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 4FEC0656D22F50AC342F502F8744855C9EB8BCB9 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 16 Apr 2025 11:00:01 +0000 ROA not before: Wed 16 Apr 2025 10:55:01 +0000 ROA not after: Wed 15 Apr 2026 11:00:01 +0000 asID: 136131 IP address blocks: 2401:8440:131::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 09:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ec:06:56:d2:2f:50:ac:34:2f:50:2f:87:44:85:5c:9e:b8:bc:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Apr 16 10:55:01 2025 GMT Not After : Apr 15 11:00:01 2026 GMT Subject: CN=33DE9C8C3D8ED427DECCEE5328266EB0BDF8F231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:64:a0:09:5e:2c:30:7f:ab:82:e4:8b:c3: 44:60:41:12:ac:ab:12:dd:f8:2a:ac:5e:20:a5:fa: eb:b5:ad:58:10:a5:9b:fe:49:da:36:a0:7e:c3:50: 88:c7:bc:68:10:d7:72:9e:b5:60:09:37:36:df:d6: fe:63:c9:f4:4c:21:50:8d:e8:00:3c:97:9d:fb:04: 22:a0:5d:a7:9e:b0:75:cb:b3:f4:c1:dd:cd:4f:00: f4:46:0d:c3:6b:7a:51:a9:1b:95:84:4b:59:47:c1: 05:d9:4a:a8:1e:a5:80:42:a9:38:c6:13:c2:d0:d1: 17:ae:c2:38:f3:16:ff:3d:5b:81:ab:cf:81:67:14: 1f:ed:f8:31:fa:62:bc:ef:40:63:d2:01:b2:30:fb: 36:f2:38:25:61:2c:82:ae:86:c0:8f:10:a9:10:1e: ca:de:d9:d2:81:2f:1e:d5:6f:49:f0:20:6c:51:ec: 4f:15:43:a5:8e:41:0a:de:1a:9b:09:8e:31:16:1c: d0:94:8e:7e:5b:7e:8b:1a:c6:03:ea:84:64:b3:66: ea:19:4c:67:01:42:63:39:d5:7c:9e:a0:d8:fd:c0: ab:89:e6:bf:99:64:ba:26:de:fc:a5:bd:99:f8:78: 9c:7a:ec:98:40:ef:00:96:40:e0:49:43:5b:ad:a1: 4b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DE:9C:8C:3D:8E:D4:27:DE:CC:EE:53:28:26:6E:B0:BD:F8:F2:31 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:131::/48 Signature Algorithm: sha256WithRSAEncryption 50:ee:b7:69:7f:fc:37:02:89:62:b5:5c:2f:f7:37:a3:1a:a1: b1:82:32:1d:55:c5:66:2a:f1:be:e5:2a:b2:fe:84:28:f9:a0: e3:60:47:11:ab:9f:03:e0:3f:69:2c:2d:f6:0a:d1:e7:5a:ff: f0:39:92:de:61:be:95:ce:39:57:05:85:a2:1b:94:0d:41:aa: 66:99:58:31:11:0c:72:08:9b:ef:27:47:57:6e:6d:40:51:7e: 54:60:f8:20:90:7b:cb:3b:62:f5:81:dc:6e:02:b5:9e:a7:21: d6:44:5e:13:43:0b:bd:ca:81:c6:63:50:23:2d:f9:eb:c9:e5: 98:60:72:aa:12:50:0b:7a:34:ff:15:50:b8:fc:5d:52:b0:d9: 0d:43:02:b9:92:b9:85:7b:3d:63:82:de:fd:e2:0a:27:ad:54: 27:e7:b6:72:8f:fc:65:24:7d:b5:67:c4:a1:d7:2d:c3:b5:dc: 70:e5:56:a0:ff:43:f4:62:f8:67:6f:3b:00:5a:b6:e8:5c:bb: 7b:50:6a:99:85:3a:20:da:27:33:9a:5a:41:e8:07:df:15:4f: 68:ea:65:6b:4b:51:3c:8a:86:af:61:5a:49:be:03:4e:61:16: 45:3c:59:bf:97:a8:cb:72:ce:9b:8b:87:ab:c1:eb:4f:d5:66: 2a:c8:87:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT+wGVtIvUKw0L1Avh0SFXJ64vLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA0MTYxMDU1MDFaFw0yNjA0MTUxMTAwMDFaMDMxMTAvBgNV BAMTKDMzREU5QzhDM0Q4RUQ0MjdERUNDRUU1MzI4MjY2RUIwQkRGOEYyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC71WSgCV4sMH+rguSLw0RgQRKs qxLd+CqsXiCl+uu1rVgQpZv+Sdo2oH7DUIjHvGgQ13KetWAJNzbf1v5jyfRMIVCN 6AA8l537BCKgXaeesHXLs/TB3c1PAPRGDcNrelGpG5WES1lHwQXZSqgepYBCqTjG E8LQ0ReuwjjzFv89W4Grz4FnFB/t+DH6YrzvQGPSAbIw+zbyOCVhLIKuhsCPEKkQ Hsre2dKBLx7Vb0nwIGxR7E8VQ6WOQQreGpsJjjEWHNCUjn5bfosaxgPqhGSzZuoZ TGcBQmM51XyeoNj9wKuJ5r+ZZLom3vylvZn4eJx67JhA7wCWQOBJQ1utoUvTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUM96cjD2O1CfezO5TKCZusL348jEwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzEzMzMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGE QAExMA0GCSqGSIb3DQEBCwUAA4IBAQBQ7rdpf/w3AolitVwv9zejGqGxgjIdVcVm KvG+5Sqy/oQo+aDjYEcRq58D4D9pLC32CtHnWv/wOZLeYb6VzjlXBYWiG5QNQapm mVgxEQxyCJvvJ0dXbm1AUX5UYPggkHvLO2L1gdxuArWepyHWRF4TQwu9yoHGY1Aj LfnryeWYYHKqElALejT/FVC4/F1SsNkNQwK5krmFez1jgt794gonrVQn57Zyj/xl JH21Z8Sh1y3Dtdxw5Vag/0P0YvhnbzsAWrboXLt7UGqZhTog2iczmlpB6AffFU9o 6mVrS1E8ioavYVpJvgNOYRZFPFm/l6jLcs6bi4erwetP1WYqyIc6 -----END CERTIFICATE-----Generated at Wed Apr 23 11:12:12 2025 by rpki-client on console.sobornost.net