$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3233313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a3233313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: 9q0QjNfZ8ZidXQKSI35eyNIOpPTa4MZHY+H9XcdTGqQ= Subject key identifier: AA:57:15:6D:89:62:38:1C:30:80:48:C9:69:63:5F:3B:A0:EC:9F:A1 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 332DCE0DD4D86D28156E0F34FF535B8215440688 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3233313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 16 Apr 2025 11:00:01 +0000 ROA not before: Wed 16 Apr 2025 10:55:01 +0000 ROA not after: Wed 15 Apr 2026 11:00:01 +0000 asID: 136131 IP address blocks: 2401:8440:231::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 09:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:2d:ce:0d:d4:d8:6d:28:15:6e:0f:34:ff:53:5b:82:15:44:06:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Apr 16 10:55:01 2025 GMT Not After : Apr 15 11:00:01 2026 GMT Subject: CN=AA57156D8962381C308048C969635F3BA0EC9FA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c5:ff:d1:22:a5:ae:7b:7b:72:8d:74:2a:af: e7:6e:c9:29:82:ae:f4:5c:81:50:05:13:17:5a:e8: a9:55:65:16:34:eb:6b:f0:45:85:58:bb:fa:22:00: d5:f4:6c:48:c6:0b:77:7d:5a:24:12:49:62:9e:ca: 03:04:3f:7f:76:11:f6:bd:74:94:22:29:20:9b:62: 15:1c:22:c0:f6:48:9d:c3:01:77:ba:0a:83:9c:16: c6:31:5a:92:74:79:4c:fe:d3:de:b8:d0:db:e3:da: e7:dc:a3:fe:65:6a:96:74:8f:47:62:af:54:16:3a: 17:e6:85:60:52:d0:38:ce:dd:a2:80:32:61:80:7b: de:eb:a5:8b:bd:1f:73:a4:49:75:8e:fb:e8:ae:6c: 4b:72:58:e1:5e:30:d6:36:a1:55:67:12:23:10:b2: f9:8f:c3:46:00:da:03:36:af:02:7e:1b:85:2a:d8: 8f:a9:34:7e:ea:f4:a1:b8:b9:c1:e9:44:65:ee:01: 88:02:8e:43:16:39:d3:c6:62:8f:0c:b1:be:77:23: 08:e0:37:ef:62:90:5f:9b:ae:65:0e:bf:b3:a3:a3: 13:6b:61:09:14:67:24:e4:d6:8b:a1:58:eb:c9:ca: 53:53:95:b6:69:5a:e6:6f:14:d5:65:6f:e8:c4:f9: bd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:57:15:6D:89:62:38:1C:30:80:48:C9:69:63:5F:3B:A0:EC:9F:A1 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3233313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:231::/48 Signature Algorithm: sha256WithRSAEncryption 7d:d1:91:ea:7c:c6:ad:52:b4:45:78:24:0c:4e:80:9f:65:c3: 47:dc:a2:37:1a:cf:b6:c6:ae:3e:22:3b:04:8f:1c:ee:bd:33: e9:54:df:75:70:96:6c:62:72:1d:d5:cd:7a:92:f5:f0:a8:90: e6:85:31:d1:a9:a4:cb:ba:30:57:7c:f8:33:ef:e1:a7:03:b4: 96:1a:d1:be:bb:19:81:06:5a:e1:2f:f0:38:40:62:ba:53:05: 1b:6a:fe:6b:bf:8d:d9:b6:6e:a8:36:ed:68:48:47:d5:34:4e: 81:3e:0f:e5:7a:11:d5:97:45:47:60:43:ba:f5:68:f1:a0:a8: 80:02:08:c0:24:e4:06:dc:6d:2a:d1:fd:96:fb:d2:81:6c:d4: b1:ad:58:be:39:b2:a9:ca:d4:39:6a:25:64:cf:bd:78:19:df: 10:6e:db:c0:44:35:33:84:90:10:9f:ff:d2:e0:b4:71:2e:13: b0:b5:80:d8:7a:13:21:a8:a1:e9:ef:f2:03:75:cb:35:f9:2e: 62:c3:20:bf:23:55:e8:cc:20:58:c6:89:ac:da:64:ee:86:62: f7:9e:07:2e:df:1e:8d:5a:9a:a2:1b:f3:a5:29:dd:74:09:fa: 4d:75:4e:ab:b2:c1:8d:e6:1b:3c:7e:1a:bc:99:d7:e1:80:30: 91:63:9c:99 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMy3ODdTYbSgVbg80/1NbghVEBogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA0MTYxMDU1MDFaFw0yNjA0MTUxMTAwMDFaMDMxMTAvBgNV BAMTKEFBNTcxNTZEODk2MjM4MUMzMDgwNDhDOTY5NjM1RjNCQTBFQzlGQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqxf/RIqWue3tyjXQqr+duySmC rvRcgVAFExda6KlVZRY062vwRYVYu/oiANX0bEjGC3d9WiQSSWKeygMEP392Efa9 dJQiKSCbYhUcIsD2SJ3DAXe6CoOcFsYxWpJ0eUz+09640Nvj2ufco/5lapZ0j0di r1QWOhfmhWBS0DjO3aKAMmGAe97rpYu9H3OkSXWO++iubEtyWOFeMNY2oVVnEiMQ svmPw0YA2gM2rwJ+G4Uq2I+pNH7q9KG4ucHpRGXuAYgCjkMWOdPGYo8Msb53Iwjg N+9ikF+brmUOv7OjoxNrYQkUZyTk1ouhWOvJylNTlbZpWuZvFNVlb+jE+b3PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUqlcVbYliOBwwgEjJaWNfO6Dsn6EwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzIzMzMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGE QAIxMA0GCSqGSIb3DQEBCwUAA4IBAQB90ZHqfMatUrRFeCQMToCfZcNH3KI3Gs+2 xq4+IjsEjxzuvTPpVN91cJZsYnId1c16kvXwqJDmhTHRqaTLujBXfPgz7+GnA7SW GtG+uxmBBlrhL/A4QGK6UwUbav5rv43Ztm6oNu1oSEfVNE6BPg/lehHVl0VHYEO6 9WjxoKiAAgjAJOQG3G0q0f2W+9KBbNSxrVi+ObKpytQ5aiVkz714Gd8QbtvARDUz hJAQn//S4LRxLhOwtYDYehMhqKHp7/IDdcs1+S5iwyC/I1XozCBYxoms2mTuhmL3 ngcu3x6NWpqiG/OlKd10CfpNdU6rssGN5hs8fhq8mdfhgDCRY5yZ -----END CERTIFICATE-----Generated at Wed Apr 23 11:12:12 2025 by rpki-client on console.sobornost.net