$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: imoDv7fNxiS0ABFe1mnjo4w6QxU9zgowGM6VjXLrifM= Subject key identifier: 90:4E:2D:83:B7:22:35:F4:10:CA:03:EE:0D:42:53:17:62:3E:68:CB Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 4FDBBB5DCE02CF71F8F51AD9020792DA1595E0F7 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 16 Apr 2025 11:00:01 +0000 ROA not before: Wed 16 Apr 2025 10:55:01 +0000 ROA not after: Wed 15 Apr 2026 11:00:01 +0000 asID: 136131 IP address blocks: 2401:8440:31::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 09:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:db:bb:5d:ce:02:cf:71:f8:f5:1a:d9:02:07:92:da:15:95:e0:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Apr 16 10:55:01 2025 GMT Not After : Apr 15 11:00:01 2026 GMT Subject: CN=904E2D83B72235F410CA03EE0D425317623E68CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fb:28:11:61:55:95:03:44:54:f7:b8:22:dd: 42:12:fd:31:c9:90:31:b1:0d:fb:c2:cb:da:04:99: 52:94:e3:e2:a0:80:7f:92:ce:29:43:60:3e:03:4a: 9b:eb:10:c1:1c:87:bc:09:49:09:42:42:6a:10:8f: d4:3e:a0:4a:05:c5:54:5f:ed:bb:dd:62:ff:0c:9a: 2d:20:5e:1c:ec:fb:1e:1a:9a:0e:fd:a3:da:15:2d: af:0f:1a:6d:2c:7a:5e:57:a2:d4:d4:e1:19:6f:eb: d1:e7:1d:b6:dc:28:56:7e:81:f6:62:e2:2a:f2:4f: 52:79:9a:4f:90:52:cf:49:45:e6:bb:33:fa:b8:ac: 7f:8c:e4:15:3c:ba:05:94:11:e3:80:0f:c1:4a:52: 43:81:eb:b5:c4:23:31:75:c1:11:3b:ec:32:89:09: 83:49:46:ad:fa:b9:1b:47:f6:58:3c:82:27:4f:fe: 70:d1:cb:aa:23:59:54:69:33:5e:c3:b8:79:a0:32: 96:a2:11:a2:01:bb:b4:a3:a2:00:e8:d8:4d:41:6e: 31:c5:6a:d2:7e:2b:a5:46:91:e8:37:70:64:76:f6: 16:0c:2f:72:d3:4f:eb:6e:9b:50:8c:2f:67:20:ec: e9:f7:51:ed:83:10:dd:0c:88:d4:fd:2c:e7:fa:3c: 4d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4E:2D:83:B7:22:35:F4:10:CA:03:EE:0D:42:53:17:62:3E:68:CB X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a33313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:31::/48 Signature Algorithm: sha256WithRSAEncryption 66:46:d7:f5:3a:89:e2:cd:c3:1e:b0:6f:e9:63:4f:df:f8:79: 1f:0a:32:dd:9f:bc:95:0e:cd:c5:98:64:9b:63:6d:26:62:44: c4:4f:fb:5a:a2:3d:fe:b8:5c:1b:a2:f8:f3:88:ff:32:d7:bb: 8b:19:33:e8:88:46:51:f5:26:43:81:be:bb:ce:36:3a:91:9f: e1:fe:6a:3f:23:37:62:fa:72:1c:b2:ce:86:49:34:23:a3:af: ba:c7:35:0e:45:6e:68:fc:3c:94:55:c8:e6:99:40:c8:96:cb: 47:1f:26:d8:2b:d9:d5:08:22:ff:a6:84:2d:8a:d3:7d:dd:da: 80:a1:a2:d9:33:d7:c7:63:48:6d:a2:cd:29:c7:e9:95:3c:92: 87:68:28:d7:c2:e2:49:65:9d:58:ed:be:5a:a1:e8:04:bd:e6: fb:26:cd:bc:52:41:fe:f7:14:f5:2b:30:54:ce:49:d1:24:cc: 13:44:46:20:65:7f:b0:46:18:bf:98:bc:28:ac:bc:8c:33:4e: 2b:24:db:d7:4c:a3:15:3b:1f:d8:51:3f:5b:ef:b2:5e:3e:e7: 53:fd:86:60:e1:47:2a:e7:77:38:bc:28:93:33:e9:c6:32:dc: f0:2e:d0:16:d2:a0:08:f2:ac:7f:cc:5a:e0:0e:21:45:83:d8: 41:d4:54:51 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUT9u7Xc4Cz3H49RrZAgeS2hWV4PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA0MTYxMDU1MDFaFw0yNjA0MTUxMTAwMDFaMDMxMTAvBgNV BAMTKDkwNEUyRDgzQjcyMjM1RjQxMENBMDNFRTBENDI1MzE3NjIzRTY4Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe+ygRYVWVA0RU97gi3UIS/THJ kDGxDfvCy9oEmVKU4+KggH+SzilDYD4DSpvrEMEch7wJSQlCQmoQj9Q+oEoFxVRf 7bvdYv8Mmi0gXhzs+x4amg79o9oVLa8PGm0sel5XotTU4Rlv69HnHbbcKFZ+gfZi 4iryT1J5mk+QUs9JRea7M/q4rH+M5BU8ugWUEeOAD8FKUkOB67XEIzF1wRE77DKJ CYNJRq36uRtH9lg8gidP/nDRy6ojWVRpM17DuHmgMpaiEaIBu7SjogDo2E1BbjHF atJ+K6VGkeg3cGR29hYML3LTT+tum1CML2cg7On3Ue2DEN0MiNT9LOf6PE1hAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUkE4tg7ciNfQQygPuDUJTF2I+aMswHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBhEAA MTANBgkqhkiG9w0BAQsFAAOCAQEAZkbX9TqJ4s3DHrBv6WNP3/h5Hwoy3Z+8lQ7N xZhkm2NtJmJExE/7WqI9/rhcG6L484j/Mte7ixkz6IhGUfUmQ4G+u842OpGf4f5q PyM3YvpyHLLOhkk0I6Ovusc1DkVuaPw8lFXI5plAyJbLRx8m2CvZ1Qgi/6aELYrT fd3agKGi2TPXx2NIbaLNKcfplTySh2go18LiSWWdWO2+WqHoBL3m+ybNvFJB/vcU 9SswVM5J0STME0RGIGV/sEYYv5i8KKy8jDNOKyTb10yjFTsf2FE/W++yXj7nU/2G YOFHKud3OLwokzPpxjLc8C7QFtKgCPKsf8xa4A4hRYPYQdRUUQ== -----END CERTIFICATE-----Generated at Wed Apr 23 11:12:12 2025 by rpki-client on console.sobornost.net