$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3430203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3430203d3e20313430343037.roa (raw, json) Hash identifier: RKs88Pa9U5kYqNiJBgdcINbl38riDMLK7OKBJbDZxoU= Subject key identifier: 44:29:1E:98:F2:1C:F1:EA:95:FD:EB:BD:66:9F:F2:1E:52:90:7F:EF Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 2999AFB695E91AD666C90DC1CEDABC51CCBC980B Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3430203d3e20313430343037.roa Signing time: Wed 16 Apr 2025 09:02:26 +0000 ROA not before: Wed 16 Apr 2025 08:57:26 +0000 ROA not after: Wed 15 Apr 2026 09:02:26 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:99:af:b6:95:e9:1a:d6:66:c9:0d:c1:ce:da:bc:51:cc:bc:98:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: Apr 16 08:57:26 2025 GMT Not After : Apr 15 09:02:26 2026 GMT Subject: CN=44291E98F21CF1EA95FDEBBD669FF21E52907FEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:36:d6:19:ec:a7:73:d2:75:ef:09:20:71:cd: 58:8c:8a:34:ad:08:54:a2:8b:bc:4f:92:17:93:ae: 4a:59:6e:ca:41:68:72:64:18:67:af:83:3b:1a:b7: dd:69:94:75:7b:0c:99:64:5b:7b:96:ad:ca:24:c2: 86:45:0b:af:0c:88:a0:e1:af:59:60:57:bc:de:91: d3:0a:7f:0b:2a:20:2b:56:a3:cf:01:e2:7b:13:67: c0:41:b3:5c:10:97:8a:3b:a5:99:fa:a9:16:46:26: 73:4e:be:5e:83:4a:1c:50:ad:3b:8c:d4:ad:94:e5: 11:e1:ab:e6:a0:a0:fb:27:97:e8:1b:0e:27:15:7d: c9:00:a3:14:be:05:c3:6b:c7:89:4d:95:bd:a2:bf: 30:c7:b8:a7:9c:36:1d:4c:9e:fa:1a:bf:49:f8:e5: 98:b0:55:83:b8:77:8d:c3:da:c4:42:6d:bc:11:bf: e4:16:ae:36:85:c4:56:0d:ba:b3:52:84:ed:7b:9e: c1:aa:4d:20:67:1f:2e:f3:11:18:4d:1b:7b:e5:44: ac:b9:6a:f8:1e:96:e9:30:89:4b:56:6c:45:59:b9: 79:60:5f:fa:bd:0c:d5:22:0c:43:ea:ae:9c:4a:9f: 79:61:b4:00:da:b6:2a:05:a8:e3:8a:77:b0:89:08: 59:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:29:1E:98:F2:1C:F1:EA:95:FD:EB:BD:66:9F:F2:1E:52:90:7F:EF X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3430203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 0f:13:f0:fc:17:57:ea:1f:ad:17:d9:88:c9:4c:ef:2c:c7:5b: d9:57:62:1e:c0:74:c6:dc:3f:5b:01:66:4d:cb:11:b3:b3:36: 90:dd:cc:fa:ca:01:5a:16:c1:2d:fc:ff:dc:57:57:38:11:76: c6:91:92:9e:5b:ac:14:b3:01:19:90:94:dd:46:b3:4f:88:f2: a6:6a:11:a1:9a:a9:54:06:79:c7:04:8a:da:b0:8d:b8:03:d9: fa:8a:04:80:47:96:fd:af:7d:f2:eb:ce:a1:9b:dc:9e:a6:33: d4:e3:ce:26:9d:02:7d:48:52:3a:6c:b9:35:0a:96:b1:eb:4c: a8:30:02:9b:e5:67:9d:db:c0:4a:6a:38:e2:db:21:e6:3c:8a: b1:ab:95:18:0f:70:83:18:e1:0d:81:f1:38:e9:3a:c2:ad:a9: c1:67:a7:49:d1:b5:fd:72:40:1d:60:6e:06:ae:cd:db:c7:9d: 3a:10:5e:0d:a8:03:de:18:fb:93:ac:68:2d:85:77:64:92:68: f3:f9:f7:a6:fb:fa:d1:98:1a:ed:1b:71:83:f8:53:2c:45:8c: 30:25:79:95:2b:17:59:57:6e:de:36:9a:f0:13:ee:c7:86:87: f2:fb:eb:64:41:a4:26:7e:89:05:b0:11:32:cb:5a:e8:31:f4: d0:15:bd:89 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKZmvtpXpGtZmyQ3Bztq8Ucy8mAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNTA0MTYwODU3MjZaFw0yNjA0MTUwOTAyMjZaMDMxMTAvBgNV BAMTKDQ0MjkxRTk4RjIxQ0YxRUE5NUZERUJCRDY2OUZGMjFFNTI5MDdGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/NtYZ7Kdz0nXvCSBxzViMijSt CFSii7xPkheTrkpZbspBaHJkGGevgzsat91plHV7DJlkW3uWrcokwoZFC68MiKDh r1lgV7zekdMKfwsqICtWo88B4nsTZ8BBs1wQl4o7pZn6qRZGJnNOvl6DShxQrTuM 1K2U5RHhq+agoPsnl+gbDicVfckAoxS+BcNrx4lNlb2ivzDHuKecNh1Mnvoav0n4 5ZiwVYO4d43D2sRCbbwRv+QWrjaFxFYNurNShO17nsGqTSBnHy7zERhNG3vlRKy5 avgelukwiUtWbEVZuXlgX/q9DNUiDEPqrpxKn3lhtADatioFqOOKd7CJCFmnAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQURCkemPIc8eqV/eu9Zp/yHlKQf+8wHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDM0MzAyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAA8T8PwXV+ofrRfZiMlM7yzHW9lXYh7AdMbcP1sBZk3LEbOz NpDdzPrKAVoWwS38/9xXVzgRdsaRkp5brBSzARmQlN1Gs0+I8qZqEaGaqVQGeccE itqwjbgD2fqKBIBHlv2vffLrzqGb3J6mM9TjziadAn1IUjpsuTUKlrHrTKgwApvl Z53bwEpqOOLbIeY8irGrlRgPcIMY4Q2B8TjpOsKtqcFnp0nRtf1yQB1gbgauzdvH nToQXg2oA94Y+5OsaC2Fd2SSaPP596b7+tGYGu0bcYP4UyxFjDAleZUrF1lXbt42 mvAT7seGh/L762RBpCZ+iQWwETLLWugx9NAVvYk= -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:23 2025 by rpki-client on console.sobornost.net