$ rpki-client -vvf repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/323430303a613334303a3a2f33322d3332203d3e20313336303735.roa File: 323430303a613334303a3a2f33322d3332203d3e20313336303735.roa (raw, json) Hash identifier: lN/0N+kBLkh9oCnDV7GHH4dEry+Eu95iWP1NL/JaKa0= Subject key identifier: 1F:08:E4:CC:71:E6:F5:5B:26:2F:6F:97:AA:83:99:4B:70:73:0B:82 Certificate issuer: /CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Certificate serial: 349F296427B8105140A2F40F853D0D309C7A4E28 Authority key identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/323430303a613334303a3a2f33322d3332203d3e20313336303735.roa Signing time: Sat 19 Apr 2025 21:00:00 +0000 ROA not before: Sat 19 Apr 2025 20:55:00 +0000 ROA not after: Sat 18 Apr 2026 21:00:00 +0000 asID: 136075 IP address blocks: 2400:a340::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.crl rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9f:29:64:27:b8:10:51:40:a2:f4:0f:85:3d:0d:30:9c:7a:4e:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Validity Not Before: Apr 19 20:55:00 2025 GMT Not After : Apr 18 21:00:00 2026 GMT Subject: CN=1F08E4CC71E6F55B262F6F97AA83994B70730B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:c5:76:63:0a:ce:16:21:9d:02:44:49:a7: df:eb:bf:03:ab:60:6f:48:68:76:93:26:13:e9:47: ce:00:20:8a:7b:e3:90:55:aa:6d:44:ee:ef:8c:f5: d4:2d:bc:3b:3c:bf:78:79:a9:7a:92:f6:29:3a:d4: a5:7e:51:e1:54:01:47:da:cd:9f:15:fa:c3:76:54: f9:9c:4f:56:d9:bd:c0:46:72:1d:70:cb:e5:0f:1e: 08:d6:43:f5:d8:23:8b:6e:7a:98:3e:c7:af:bf:3a: e7:e0:83:e7:7c:0b:e6:7a:4c:07:da:bb:f1:42:7f: a9:2b:d2:1a:e3:21:f1:c1:95:4e:72:86:09:8c:96: b8:3a:fa:55:13:23:25:91:c2:99:44:94:41:a4:bf: 7e:2b:64:fa:1c:93:f8:e2:1a:8f:41:d8:41:09:1d: 61:43:17:b6:b6:ef:2f:1e:a3:d3:d0:95:8c:34:ca: c4:5c:b5:2c:07:75:e3:90:ac:29:8d:27:e3:c5:92: 91:0d:5c:55:c6:b7:46:b6:0d:28:36:4d:52:79:c5: d8:3c:19:e3:24:1c:72:a3:d7:02:fd:3a:a8:32:34: 6b:83:81:a8:f1:6a:c4:83:6c:8e:16:7c:ad:a2:00: 01:0e:69:0b:24:ff:90:b6:9a:b7:55:f2:a5:fb:d3: 53:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:08:E4:CC:71:E6:F5:5B:26:2F:6F:97:AA:83:99:4B:70:73:0B:82 X509v3 Authority Key Identifier: keyid:0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/323430303a613334303a3a2f33322d3332203d3e20313336303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:a340::/32 Signature Algorithm: sha256WithRSAEncryption 14:2b:c0:57:b9:15:fd:bd:3d:7c:ca:12:d4:5e:f1:3f:1f:c7: 29:04:4b:32:37:b9:5b:0b:19:6a:ab:ee:25:a1:06:6e:57:18: bb:c9:b8:91:ac:87:72:77:ef:1c:74:aa:83:c9:c0:78:e4:0a: 0b:b5:50:e1:3f:78:ef:1e:4e:1b:f5:bd:b9:be:15:c2:1e:ae: 61:be:11:95:07:03:bb:37:17:ac:03:a4:5b:b4:7a:65:0b:fe: 4c:3d:7c:49:2c:e4:ba:8f:58:29:31:b8:78:1a:66:f5:c2:67: 5d:65:13:bb:d0:4b:19:90:fa:c2:5d:1e:f9:77:cb:9e:a3:d0: 5c:f7:f8:79:0a:2c:71:ca:16:31:45:da:58:d5:2c:0d:43:54: e4:57:f0:f9:27:66:b7:1f:ec:44:28:53:62:7c:0b:ed:81:63: a6:8a:c4:87:90:6b:b3:1c:e6:9b:a3:c2:55:b1:d5:c0:7a:76: 01:30:52:72:69:ee:fe:c4:bd:f1:ed:b1:38:13:30:dc:93:c9: 6c:30:e0:86:a8:78:16:f5:80:d5:44:fd:cc:d8:9f:ea:ef:e0: 45:02:ee:33:de:8e:48:a6:48:cb:f7:22:69:cb:b0:8b:aa:83: bc:eb:75:cf:ca:3b:76:77:b2:98:30:44:81:cb:01:24:af:71: b7:db:f0:e4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNJ8pZCe4EFFAovQPhT0NMJx6TigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0MjI2QTVGMTc2NkFFQUU3NjhBMkE2NzZDM0U4QjJD QUVBREM5NjAeFw0yNTA0MTkyMDU1MDBaFw0yNjA0MTgyMTAwMDBaMDMxMTAvBgNV BAMTKDFGMDhFNENDNzFFNkY1NUIyNjJGNkY5N0FBODM5OTRCNzA3MzBCODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAH8V2YwrOFiGdAkRJp9/rvwOr YG9IaHaTJhPpR84AIIp745BVqm1E7u+M9dQtvDs8v3h5qXqS9ik61KV+UeFUAUfa zZ8V+sN2VPmcT1bZvcBGch1wy+UPHgjWQ/XYI4tuepg+x6+/Oufgg+d8C+Z6TAfa u/FCf6kr0hrjIfHBlU5yhgmMlrg6+lUTIyWRwplElEGkv34rZPock/jiGo9B2EEJ HWFDF7a27y8eo9PQlYw0ysRctSwHdeOQrCmNJ+PFkpENXFXGt0a2DSg2TVJ5xdg8 GeMkHHKj1wL9OqgyNGuDgajxasSDbI4WfK2iAAEOaQsk/5C2mrdV8qX701MVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUHwjkzHHm9VsmL2+XqoOZS3BzC4IwHwYDVR0j BBgwFoAUDkImpfF2aurnaKKmdsPossrq3JYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTBlNWFjMi1iNmJiLTRiZWMtOWRjOS1lNDMwYTY3MzMyMTYvMC8wRTQyMjZBNUYx NzY2QUVBRTc2OEEyQTY3NkMzRThCMkNBRUFEQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU0MjI2QTVGMTc2NkFFQUU3NjhBMkE2NzZDM0U4QjJDQUVB REM5Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMyLWI2YmItNGJlYy05 ZGM5LWU0MzBhNjczMzIxNi8wLzMyMzQzMDMwM2E2MTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAo0AwDQYJKoZI hvcNAQELBQADggEBABQrwFe5Ff29PXzKEtRe8T8fxykESzI3uVsLGWqr7iWhBm5X GLvJuJGsh3J37xx0qoPJwHjkCgu1UOE/eO8eThv1vbm+FcIermG+EZUHA7s3F6wD pFu0emUL/kw9fEks5LqPWCkxuHgaZvXCZ11lE7vQSxmQ+sJdHvl3y56j0Fz3+HkK LHHKFjFF2ljVLA1DVORX8PknZrcf7EQoU2J8C+2BY6aKxIeQa7Mc5pujwlWx1cB6 dgEwUnJp7v7EvfHtsTgTMNyTyWww4IaoeBb1gNVE/czYn+rv4EUC7jPejkimSMv3 ImnLsIuqg7zrdc/KO3Z3spgwRIHLASSvcbfb8OQ= -----END CERTIFICATE-----Generated at Mon Apr 28 17:37:46 2025 by rpki-client on console.sobornost.net