$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3333203d3e20313430343037.roa (raw, json) Hash identifier: Z5+uNWUf96970QClR9BPMdc27gS6j7yhVrlhFjZhEWY= Subject key identifier: 4D:69:F3:E8:AF:06:65:2A:D6:E3:D4:C4:48:DD:79:82:C6:71:09:15 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 7EF1873AD399E257A0A39EAA6144D43C7D9B43D0 Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa Signing time: Wed 16 Apr 2025 09:02:26 +0000 ROA not before: Wed 16 Apr 2025 08:57:26 +0000 ROA not after: Wed 15 Apr 2026 09:02:26 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f1:87:3a:d3:99:e2:57:a0:a3:9e:aa:61:44:d4:3c:7d:9b:43:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Apr 16 08:57:26 2025 GMT Not After : Apr 15 09:02:26 2026 GMT Subject: CN=4D69F3E8AF06652AD6E3D4C448DD7982C6710915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:26:40:f4:5f:ef:b0:a4:f0:a1:c3:de:4e:a6: c9:b0:07:bd:d3:68:d2:8d:81:15:ee:60:95:c3:bf: 91:82:a9:32:c9:53:d3:21:4d:6d:8a:33:ef:b2:c3: 82:ba:05:8f:a2:90:3e:f2:98:3b:03:2a:8f:40:91: ef:c5:4a:a8:da:d1:97:b0:bc:58:29:91:cd:b2:31: 2a:07:e4:55:b7:b9:96:e9:b1:4d:23:d9:b8:a6:5d: 36:db:b3:b0:24:18:d4:e4:54:4c:39:7e:ad:a3:82: d2:9f:b7:7f:f1:9d:4a:27:c7:13:5e:ba:95:73:1e: ff:3b:e5:0f:41:74:b5:ad:e0:3c:66:19:0e:47:aa: 06:28:2e:f1:d6:7d:f6:dd:98:86:d9:a7:ee:98:de: 77:06:05:8d:76:ae:dd:87:41:3f:5a:88:81:f0:d4: b3:03:dc:75:32:1e:f7:a4:82:1a:83:0c:99:66:9a: 5e:9d:05:aa:d2:b3:fd:2d:2a:10:52:62:1d:55:f9: 3c:18:67:b0:f5:ec:8e:eb:a0:58:65:99:14:4f:5d: 6d:af:c5:66:96:26:ea:2d:1a:39:d8:c7:f7:78:8e: 0b:dd:eb:87:72:16:03:e0:e7:71:e3:6e:cd:e3:52: 9e:bf:4f:08:2a:03:34:b7:0a:b8:be:bd:33:ba:18: 26:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:69:F3:E8:AF:06:65:2A:D6:E3:D4:C4:48:DD:79:82:C6:71:09:15 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 42:dd:e5:3e:f2:4a:64:ab:21:42:3e:9e:47:f3:11:70:80:5b: 80:e9:61:d4:14:55:fa:b2:79:3a:00:a7:ea:19:2f:cf:82:15: 4c:6b:8e:3d:9f:e9:f9:df:9c:49:ce:82:5c:4c:30:96:77:7f: f1:73:d6:be:19:65:3e:a4:1f:34:6b:6b:02:72:15:0d:38:df: 66:1c:c7:e0:c4:52:20:89:43:13:f9:94:91:09:49:fb:38:59: 2b:bf:a6:92:3b:38:c7:ae:b3:03:a8:56:54:15:38:a7:3a:32: 2d:cd:f4:aa:5b:35:1d:98:51:d8:a1:e4:cb:28:81:eb:8c:43: cd:ae:90:20:07:3e:28:35:e7:dc:67:2a:d8:b3:95:b7:6c:0d: 53:f9:b5:a9:01:a4:10:1d:55:48:1f:d0:bf:ea:79:84:56:60: e3:1c:e1:d6:84:7a:32:92:8c:15:e7:57:e1:83:a3:da:51:09: 9d:c0:f6:f5:f0:a5:06:a7:9d:75:87:1d:3c:6f:e8:1d:74:45: 45:30:e4:87:6f:ee:7f:b2:31:40:60:a5:bf:6d:69:a7:cf:4d: 27:6e:5d:6e:c9:d0:41:65:88:e9:d4:d0:96:b7:c6:c7:ec:22: 77:bd:07:b7:3a:b1:33:00:02:22:84:7c:ec:bf:a6:5f:1d:a1: 54:66:4e:1e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUfvGHOtOZ4lego56qYUTUPH2bQ9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNTA0MTYwODU3MjZaFw0yNjA0MTUwOTAyMjZaMDMxMTAvBgNV BAMTKDRENjlGM0U4QUYwNjY1MkFENkUzRDRDNDQ4REQ3OTgyQzY3MTA5MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/JkD0X++wpPChw95OpsmwB73T aNKNgRXuYJXDv5GCqTLJU9MhTW2KM++yw4K6BY+ikD7ymDsDKo9Ake/FSqja0Zew vFgpkc2yMSoH5FW3uZbpsU0j2bimXTbbs7AkGNTkVEw5fq2jgtKft3/xnUonxxNe upVzHv875Q9BdLWt4DxmGQ5HqgYoLvHWffbdmIbZp+6Y3ncGBY12rt2HQT9aiIHw 1LMD3HUyHvekghqDDJlmml6dBarSs/0tKhBSYh1V+TwYZ7D17I7roFhlmRRPXW2v xWaWJuotGjnYx/d4jgvd64dyFgPg53Hjbs3jUp6/TwgqAzS3Cri+vTO6GCbVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUTWnz6K8GZSrW49TESN15gsZxCRUwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAELd5T7ySmSrIUI+nkfzEXCAW4DpYdQUVfqyeToAp+oZL8+C FUxrjj2f6fnfnEnOglxMMJZ3f/Fz1r4ZZT6kHzRrawJyFQ0432Ycx+DEUiCJQxP5 lJEJSfs4WSu/ppI7OMeuswOoVlQVOKc6Mi3N9KpbNR2YUdih5MsogeuMQ82ukCAH Pig159xnKtizlbdsDVP5takBpBAdVUgf0L/qeYRWYOMc4daEejKSjBXnV+GDo9pR CZ3A9vXwpQannXWHHTxv6B10RUUw5Idv7n+yMUBgpb9taafPTSduXW7J0EFliOnU 0Ja3xsfsIne9B7c6sTMAAiKEfOy/pl8doVRmTh4= -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:23 2025 by rpki-client on console.sobornost.net