$ rpki-client -vvf repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa File: 323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa (raw, json) Hash identifier: EPGT5ryhDc35QQ+8DPj3Jot3CoQO1ERUPuwysJ3MS7U= Subject key identifier: 25:E0:98:33:78:BB:72:A8:02:2D:33:00:FC:2E:56:7C:94:22:B0:75 Certificate issuer: /CN=6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F Certificate serial: 7B604CEA7A09BBD0A8F2255BCEEE71C0E8F62430 Authority key identifier: 6F:29:B5:AE:A0:FD:7E:C5:68:AA:45:A1:72:1D:8E:5D:EA:92:6C:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa Signing time: Fri 25 Apr 2025 17:02:19 +0000 ROA not before: Fri 25 Apr 2025 16:57:19 +0000 ROA not after: Fri 24 Apr 2026 17:02:19 +0000 asID: 152756 IP address blocks: 2001:df3:cf40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.crl rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 19:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:60:4c:ea:7a:09:bb:d0:a8:f2:25:5b:ce:ee:71:c0:e8:f6:24:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F Validity Not Before: Apr 25 16:57:19 2025 GMT Not After : Apr 24 17:02:19 2026 GMT Subject: CN=25E0983378BB72A8022D3300FC2E567C9422B075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:94:51:ae:67:b9:e1:fb:a5:ab:3f:4c:93:f6: 08:ca:41:0e:22:01:07:37:bd:19:38:a8:f9:0a:d0: af:ae:25:3a:4e:11:10:2f:ee:b7:31:76:52:b5:b5: 7b:76:8d:eb:5d:f9:78:db:61:d4:04:80:b0:19:d2: cc:72:8f:38:92:25:19:6b:3c:b4:69:5e:5d:92:1b: 48:ea:3d:91:72:0b:fa:d5:90:fc:8c:26:f0:04:a9: 53:32:22:bf:94:c8:4a:bd:24:2b:1e:2c:77:f7:c5: 0b:65:81:f6:d5:70:74:92:4e:64:2c:30:ec:0d:f8: 8f:c8:1f:31:cf:a4:42:d1:35:d7:ce:4a:c8:ea:b3: a7:a7:3f:a2:00:40:a6:b3:af:ef:24:80:68:46:26: 4b:a7:73:30:8b:74:9e:7f:6d:36:42:e5:a3:3f:b2: f0:5c:cd:9d:ca:63:bd:9c:f3:c2:99:83:87:63:31: de:4d:93:42:3d:ec:86:21:78:ca:c0:7b:c0:77:39: 2a:56:bd:97:9e:4c:99:c7:2e:57:6a:28:75:e4:f7: 58:e5:22:89:cb:9f:40:21:71:9e:10:33:1c:08:82: 0c:1e:c8:23:5b:50:05:e3:10:01:b0:55:c5:d8:aa: 13:c0:21:2c:99:de:07:03:24:2f:7b:5a:68:0e:8b: 24:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E0:98:33:78:BB:72:A8:02:2D:33:00:FC:2E:56:7C:94:22:B0:75 X509v3 Authority Key Identifier: keyid:6F:29:B5:AE:A0:FD:7E:C5:68:AA:45:A1:72:1D:8E:5D:EA:92:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/323030313a6466333a636634303a3a2f34382d3438203d3e20313532373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:cf40::/48 Signature Algorithm: sha256WithRSAEncryption 7e:d6:e3:5c:d8:4f:3f:41:46:65:75:74:f1:6f:55:f6:5b:41: d9:e6:04:2f:8c:61:6d:cf:33:49:33:ff:20:25:35:66:eb:82: da:83:42:34:04:bc:23:cf:76:7e:8e:b4:68:36:e2:3e:8d:99: 45:44:5f:c7:50:a3:0d:3a:0d:af:d5:06:1a:89:57:df:fd:1a: d5:60:1a:75:d2:76:b1:a5:d7:54:0b:48:21:cc:4a:78:d0:75: e1:c7:77:a7:be:97:79:20:0c:7c:ed:1d:88:98:dc:3e:56:6b: 5f:d8:7a:0a:de:e4:01:2c:67:a7:c5:fc:9f:6b:a9:ec:87:84: 49:ca:e7:84:c7:03:32:e0:cf:f5:3b:31:86:40:40:f9:d0:e0: 6b:c1:88:31:0d:56:05:65:31:6d:d2:b1:ed:61:a1:80:2b:55: 7a:2c:35:13:76:5c:3e:29:48:e9:6b:5b:b5:33:13:98:4f:71: ee:db:9e:1d:08:a1:d3:52:ba:35:01:df:d9:e1:65:27:26:2c: ff:9f:22:32:7a:fe:19:e0:12:84:08:19:0d:97:6e:28:1c:90: 79:c7:9c:75:9b:9b:32:ec:63:2f:d0:72:fc:0f:68:d6:91:cf: fd:48:8a:2d:00:47:87:06:4c:af:f2:2a:01:ce:db:ee:00:fe: ce:e0:82:a3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUe2BM6noJu9Co8iVbzu5xwOj2JDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkYyOUI1QUVBMEZEN0VDNTY4QUE0NUExNzIxRDhFNURF QTkyNkMwRjAeFw0yNTA0MjUxNjU3MTlaFw0yNjA0MjQxNzAyMTlaMDMxMTAvBgNV BAMTKDI1RTA5ODMzNzhCQjcyQTgwMjJEMzMwMEZDMkU1NjdDOTQyMkIwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAlFGuZ7nh+6WrP0yT9gjKQQ4i AQc3vRk4qPkK0K+uJTpOERAv7rcxdlK1tXt2jetd+XjbYdQEgLAZ0sxyjziSJRlr PLRpXl2SG0jqPZFyC/rVkPyMJvAEqVMyIr+UyEq9JCseLHf3xQtlgfbVcHSSTmQs MOwN+I/IHzHPpELRNdfOSsjqs6enP6IAQKazr+8kgGhGJkunczCLdJ5/bTZC5aM/ svBczZ3KY72c88KZg4djMd5Nk0I97IYheMrAe8B3OSpWvZeeTJnHLldqKHXk91jl IonLn0AhcZ4QMxwIggweyCNbUAXjEAGwVcXYqhPAISyZ3gcDJC97WmgOiyTtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJeCYM3i7cqgCLTMA/C5WfJQisHUwHwYDVR0j BBgwFoAUbym1rqD9fsVoqkWhch2OXeqSbA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWI0ZTE0ZC0wMjFkLTQwZGMtOTIzYS1jMTJkMWFmNDQzYjUvMS82RjI5QjVBRUEw RkQ3RUM1NjhBQTQ1QTE3MjFEOEU1REVBOTI2QzBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkYyOUI1QUVBMEZEN0VDNTY4QUE0NUExNzIxRDhFNURFQTky NkMwRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhYjRlMTRkLTAyMWQtNDBkYy05 MjNhLWMxMmQxYWY0NDNiNS8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzNjYzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 889AMA0GCSqGSIb3DQEBCwUAA4IBAQB+1uNc2E8/QUZldXTxb1X2W0HZ5gQvjGFt zzNJM/8gJTVm64Lag0I0BLwjz3Z+jrRoNuI+jZlFRF/HUKMNOg2v1QYaiVff/RrV YBp10naxpddUC0ghzEp40HXhx3envpd5IAx87R2ImNw+Vmtf2HoK3uQBLGenxfyf a6nsh4RJyueExwMy4M/1OzGGQED50OBrwYgxDVYFZTFt0rHtYaGAK1V6LDUTdlw+ KUjpa1u1MxOYT3Hu254dCKHTUro1Ad/Z4WUnJiz/nyIyev4Z4BKECBkNl24oHJB5 x5x1m5sy7GMv0HL8D2jWkc/9SIotAEeHBkyv8ioBztvuAP7O4IKj -----END CERTIFICATE-----Generated at Fri Apr 25 19:23:50 2025 by rpki-client on console.sobornost.net