$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3332203d3e20313430343037.roa (raw, json) Hash identifier: mRC3mdea6qCpcytvftKPOZzFacOZPZuXTr1Zl+8d16Q= Subject key identifier: CB:2A:98:33:B3:67:6D:98:88:CF:EE:72:2B:2A:B7:20:64:6C:BA:B7 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 06E09AD48E78EE98C128E03A63D8ECDDE83DD78B Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa Signing time: Wed 16 Apr 2025 09:02:26 +0000 ROA not before: Wed 16 Apr 2025 08:57:26 +0000 ROA not after: Wed 15 Apr 2026 09:02:26 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e0:9a:d4:8e:78:ee:98:c1:28:e0:3a:63:d8:ec:dd:e8:3d:d7:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Apr 16 08:57:26 2025 GMT Not After : Apr 15 09:02:26 2026 GMT Subject: CN=CB2A9833B3676D9888CFEE722B2AB720646CBAB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:22:04:0b:e4:e1:e4:67:ef:c2:9e:b2:5a:e8: 2c:c2:ed:71:02:74:b3:1f:6b:7e:ff:fa:e3:17:0f: 6d:54:c8:1a:40:56:b2:f5:f6:a6:40:8f:9c:17:53: 6f:c4:23:16:c5:f9:64:54:e8:e0:76:16:1c:bb:75: 17:00:c5:54:74:f0:4f:66:92:e9:a2:1d:ed:69:2a: c3:24:ec:55:b4:55:ae:39:b3:8f:76:64:c4:94:f7: 35:f6:0e:fe:ce:30:e4:b9:4c:a4:50:cc:a1:0c:33: d4:ee:99:eb:3d:33:2e:bf:1b:ef:af:14:1e:61:3f: 2f:f8:9f:3c:a1:1d:a9:59:03:94:3a:ca:69:4a:4a: c1:2d:b3:b5:b9:37:64:9e:ce:32:38:0c:dd:4a:59: 6b:d6:be:d7:26:69:be:b3:20:b4:9a:ff:a2:46:bc: dd:cf:30:93:56:71:51:55:8d:c7:63:9a:3f:61:2f: a8:a0:51:8f:03:b0:4f:c5:4b:60:a7:04:98:af:6b: fd:35:19:7b:66:da:d1:a9:be:c4:0d:c9:cc:3a:7b: 16:8d:4e:79:39:71:05:0e:7f:41:fc:54:90:f2:6b: 55:88:3a:6d:3c:ed:5f:40:8e:3b:05:9a:90:e1:2c: da:fe:26:8d:56:c8:bb:07:25:e8:58:8e:41:ea:7c: 96:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2A:98:33:B3:67:6D:98:88:CF:EE:72:2B:2A:B7:20:64:6C:BA:B7 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 8e:ec:01:6f:05:d8:bd:e7:b0:6a:1e:65:06:51:54:a7:ba:15: 3f:7c:46:a4:11:5d:c1:cc:66:a7:04:de:0f:58:66:84:9a:d7: 17:66:eb:f3:18:a9:1c:3e:61:52:81:31:3b:97:2c:d5:8d:b8: cd:ee:f9:e3:41:94:25:0c:97:0e:05:f7:37:2e:4b:ec:6e:c7: e2:c9:44:bf:28:42:0b:21:f9:d6:47:53:b4:23:41:af:82:3f: a4:88:31:30:e0:1e:7c:ff:4c:bc:ed:e4:17:08:ba:18:17:38: d8:b0:db:cd:df:2b:0d:82:28:7c:67:46:e8:f4:87:9a:57:f6: 82:ba:32:23:b1:d8:d9:b8:fb:ec:7f:1d:56:54:ad:b8:10:90: f0:8a:2e:63:84:82:2f:92:70:d6:be:0b:48:3f:de:04:43:dd: 02:12:b0:1e:c8:f2:f9:f8:42:f3:7b:17:e8:28:7f:25:a1:66: 76:f2:af:01:1b:a2:21:3e:0c:bd:58:1c:08:b0:85:59:6c:f5: 17:e4:e4:35:38:3f:0a:a0:bd:7d:d1:6a:37:4c:e3:25:4b:30: c9:da:27:ff:e7:3f:06:dd:7a:6c:ce:01:c4:15:c7:f2:cc:d2: 07:bb:9d:c4:a0:bb:07:7a:dd:56:5c:58:7c:ab:43:23:5b:b1: f4:79:05:29 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBuCa1I547pjBKOA6Y9js3eg914swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNTA0MTYwODU3MjZaFw0yNjA0MTUwOTAyMjZaMDMxMTAvBgNV BAMTKENCMkE5ODMzQjM2NzZEOTg4OENGRUU3MjJCMkFCNzIwNjQ2Q0JBQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfIgQL5OHkZ+/CnrJa6CzC7XEC dLMfa37/+uMXD21UyBpAVrL19qZAj5wXU2/EIxbF+WRU6OB2Fhy7dRcAxVR08E9m kumiHe1pKsMk7FW0Va45s492ZMSU9zX2Dv7OMOS5TKRQzKEMM9Tumes9My6/G++v FB5hPy/4nzyhHalZA5Q6ymlKSsEts7W5N2SezjI4DN1KWWvWvtcmab6zILSa/6JG vN3PMJNWcVFVjcdjmj9hL6igUY8DsE/FS2CnBJiva/01GXtm2tGpvsQNycw6exaN Tnk5cQUOf0H8VJDya1WIOm087V9AjjsFmpDhLNr+Jo1WyLsHJehYjkHqfJaZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUyyqYM7NnbZiIz+5yKyq3IGRsurcwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAI7sAW8F2L3nsGoeZQZRVKe6FT98RqQRXcHMZqcE3g9YZoSa 1xdm6/MYqRw+YVKBMTuXLNWNuM3u+eNBlCUMlw4F9zcuS+xux+LJRL8oQgsh+dZH U7QjQa+CP6SIMTDgHnz/TLzt5BcIuhgXONiw283fKw2CKHxnRuj0h5pX9oK6MiOx 2Nm4++x/HVZUrbgQkPCKLmOEgi+ScNa+C0g/3gRD3QISsB7I8vn4QvN7F+gofyWh ZnbyrwEboiE+DL1YHAiwhVls9Rfk5DU4PwqgvX3RajdM4yVLMMnaJ//nPwbdemzO AcQVx/LM0ge7ncSguwd63VZcWHyrQyNbsfR5BSk= -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:23 2025 by rpki-client on console.sobornost.net