$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3331313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a3331313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: uNKV4J4iyB42iT7YiJbc/obq8TacFQRWwVPHqjYHdt4= Subject key identifier: 5F:66:B4:5A:99:3B:DD:5B:C6:53:54:0F:B8:81:AC:47:25:CE:0E:47 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 6A2113631877B0C37198B33AD08023FAEEC4DE53 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3331313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 16 Apr 2025 11:00:01 +0000 ROA not before: Wed 16 Apr 2025 10:55:01 +0000 ROA not after: Wed 15 Apr 2026 11:00:01 +0000 asID: 136131 IP address blocks: 2401:8440:311::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 20:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:21:13:63:18:77:b0:c3:71:98:b3:3a:d0:80:23:fa:ee:c4:de:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Apr 16 10:55:01 2025 GMT Not After : Apr 15 11:00:01 2026 GMT Subject: CN=5F66B45A993BDD5BC653540FB881AC4725CE0E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b2:4e:12:09:91:84:80:cb:3c:b6:e3:94:ed: e0:1a:bf:60:c6:51:4c:72:1f:f2:c3:9a:ab:64:63: e6:b6:0a:7a:c8:79:93:34:44:5f:de:4c:1b:08:69: 18:f0:cd:2d:66:6e:ea:46:2e:63:9e:56:46:06:38: 4a:b8:7d:d1:58:d5:71:89:c6:de:be:da:61:f9:0d: 55:71:ba:ad:d1:ec:cc:0b:fe:67:22:6b:30:fd:71: 50:f2:1f:c1:14:25:2f:68:c9:9d:4f:a2:b4:80:ee: 46:b2:e0:2f:f5:c7:ce:6e:d3:0f:aa:24:bf:95:21: 70:94:77:8c:ca:90:54:12:01:54:f1:58:7b:d2:a3: 3c:57:9e:13:3f:04:cc:f7:6d:59:1e:ee:39:3f:f5: 1e:f5:9e:e0:d8:a4:41:42:34:da:bc:b7:44:22:c6: fd:57:12:aa:61:ee:66:0a:1b:7c:36:03:e3:2f:89: 89:82:b4:dd:7a:3b:c0:db:07:76:2a:e3:a8:0f:a2: b3:51:91:b2:73:60:7c:40:4a:df:98:cf:20:4d:6f: cc:cb:cc:63:be:df:bc:5d:2a:a4:98:57:f3:d3:15: 2d:2f:95:2c:da:3a:b3:32:4e:63:83:2c:54:ee:a2: 97:3b:aa:b8:94:e7:7d:d3:02:ac:e8:5d:48:ec:99: 83:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:66:B4:5A:99:3B:DD:5B:C6:53:54:0F:B8:81:AC:47:25:CE:0E:47 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3331313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:311::/48 Signature Algorithm: sha256WithRSAEncryption 1f:97:c9:3b:d5:2c:76:d8:18:92:9b:54:5f:59:f0:b9:25:87: 96:81:c2:ba:71:5e:7e:86:4d:97:a5:f2:36:17:9e:f7:3a:a7: a2:2c:1e:ff:86:6b:bd:7a:d4:34:6d:08:42:0a:5b:9e:7b:f1: fe:82:48:94:dd:05:b3:0e:6b:8c:9e:71:f2:bb:91:06:c6:ae: b8:fe:35:98:3e:b5:58:63:90:51:45:0e:8a:55:53:de:a5:41: 9b:ec:a2:60:64:fe:a5:d6:86:3b:3a:3e:1e:ba:0a:f3:53:b5: b1:93:7c:a1:82:6e:fb:5f:77:d2:b0:48:cd:ed:63:dc:0c:51: b0:d7:d9:cf:4f:06:47:d5:70:ae:b4:fc:20:c3:d8:e4:4c:6e: 9f:b8:ff:50:68:e5:da:b5:0b:25:39:34:15:5f:18:52:e3:05: de:ae:4a:46:9b:28:f9:66:a5:30:19:49:b4:de:f9:1c:ba:ae: e1:51:09:98:49:5f:92:6e:73:95:d1:b9:8e:d6:fb:ac:a7:99: 70:85:c4:16:18:64:34:4c:ba:bc:2f:72:80:af:65:ec:7e:86: 0f:1d:28:c4:c5:1c:a5:74:f7:45:f2:29:d5:7f:ce:b0:1a:6c: 21:32:e7:56:56:6c:78:60:58:2e:b6:d3:47:57:b8:88:ae:23: 43:26:01:58 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaiETYxh3sMNxmLM60IAj+u7E3lMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA0MTYxMDU1MDFaFw0yNjA0MTUxMTAwMDFaMDMxMTAvBgNV BAMTKDVGNjZCNDVBOTkzQkRENUJDNjUzNTQwRkI4ODFBQzQ3MjVDRTBFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZsk4SCZGEgMs8tuOU7eAav2DG UUxyH/LDmqtkY+a2CnrIeZM0RF/eTBsIaRjwzS1mbupGLmOeVkYGOEq4fdFY1XGJ xt6+2mH5DVVxuq3R7MwL/mciazD9cVDyH8EUJS9oyZ1PorSA7kay4C/1x85u0w+q JL+VIXCUd4zKkFQSAVTxWHvSozxXnhM/BMz3bVke7jk/9R71nuDYpEFCNNq8t0Qi xv1XEqph7mYKG3w2A+MviYmCtN16O8DbB3Yq46gPorNRkbJzYHxASt+YzyBNb8zL zGO+37xdKqSYV/PTFS0vlSzaOrMyTmODLFTuopc7qriU533TAqzoXUjsmYN9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUX2a0Wpk73VvGU1QPuIGsRyXODkcwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzMzMTMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGE QAMRMA0GCSqGSIb3DQEBCwUAA4IBAQAfl8k71Sx22BiSm1RfWfC5JYeWgcK6cV5+ hk2XpfI2F573OqeiLB7/hmu9etQ0bQhCCluee/H+gkiU3QWzDmuMnnHyu5EGxq64 /jWYPrVYY5BRRQ6KVVPepUGb7KJgZP6l1oY7Oj4eugrzU7Wxk3yhgm77X3fSsEjN 7WPcDFGw19nPTwZH1XCutPwgw9jkTG6fuP9QaOXatQslOTQVXxhS4wXerkpGmyj5 ZqUwGUm03vkcuq7hUQmYSV+SbnOV0bmO1vusp5lwhcQWGGQ0TLq8L3KAr2XsfoYP HSjExRyldPdF8inVf86wGmwhMudWVmx4YFguttNHV7iIriNDJgFY -----END CERTIFICATE-----Generated at Fri Apr 25 22:07:25 2025 by rpki-client on console.sobornost.net