$ rpki-client -vvf repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa File: 323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa (raw, json) Hash identifier: ksIEFNaSzeLI+q7xZzyqipfYLMI/o1zxI631Se0BC2U= Subject key identifier: 38:A6:56:64:B4:16:EA:C4:71:F2:12:D9:40:9B:72:99:85:C1:49:63 Certificate issuer: /CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26 Certificate serial: 08419B31DD33D7202C1294A79AAFF30FA6E5F99A Authority key identifier: EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa Signing time: Thu 10 Apr 2025 09:00:02 +0000 ROA not before: Thu 10 Apr 2025 08:55:02 +0000 ROA not after: Thu 09 Apr 2026 09:00:02 +0000 asID: 137342 IP address blocks: 2001:df2:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 18:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:41:9b:31:dd:33:d7:20:2c:12:94:a7:9a:af:f3:0f:a6:e5:f9:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26 Validity Not Before: Apr 10 08:55:02 2025 GMT Not After : Apr 9 09:00:02 2026 GMT Subject: CN=38A65664B416EAC471F212D9409B729985C14963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:db:f4:0a:99:0a:8a:39:a8:06:67:c2:c5: 5d:0d:7a:b5:7e:92:9f:87:42:28:61:9a:c5:ed:b7: f9:ed:de:c4:d2:e8:58:d7:00:83:05:c6:0c:ad:db: c1:ec:64:65:da:f3:62:ce:f1:ad:c5:58:5e:75:e4: ee:37:a2:59:f4:f2:a3:29:65:e0:14:55:f2:68:10: 1e:13:9b:a5:97:a8:c8:77:d5:cf:0b:68:44:8f:02: cc:0b:f3:79:3f:01:ba:7a:34:46:00:d6:7b:8e:da: 0e:b9:4d:2d:e2:59:a4:63:7b:c0:bc:6b:66:63:d2: 43:5a:36:32:83:d5:16:eb:ff:e3:8a:47:99:72:22: 99:ee:81:d9:bf:2c:55:23:f4:7a:38:73:1e:3e:d6: 75:2d:29:db:11:f7:43:7f:23:13:a0:71:2e:62:6e: 53:43:71:f4:a8:08:84:6b:ed:da:dd:80:aa:ed:cc: 51:7d:07:fc:f5:ae:54:ff:e6:d5:32:2c:9c:32:e7: 7e:10:6c:61:e4:95:48:4f:da:18:ba:1d:95:6e:7c: f3:26:da:29:e4:cc:c6:81:9f:3d:4e:46:b3:0c:e7: ab:3c:92:16:2a:0e:cc:cc:50:c3:75:17:56:f7:30: 64:20:b0:e5:9b:23:c0:7a:78:94:5a:c3:07:4b:c8: ff:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A6:56:64:B4:16:EA:C4:71:F2:12:D9:40:9B:72:99:85:C1:49:63 X509v3 Authority Key Identifier: keyid:EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/323030313a6466323a336130303a3a2f34382d3438203d3e20313337333432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 4b:7b:b3:7b:d7:1e:00:62:aa:44:31:b6:6d:13:73:34:74:8c: e6:a1:61:cf:c5:57:6c:c8:97:ed:dd:31:00:8e:6d:4b:62:30: 13:a5:5f:e9:22:d8:9c:bb:9e:81:02:25:39:fc:3b:52:c7:06: eb:06:75:84:0b:24:50:5f:cf:3e:d3:f2:bf:7e:9b:66:fe:8b: ad:f4:c6:0b:ed:e9:49:66:da:3d:24:28:97:51:3d:0e:05:c2: 4e:6b:55:fb:6f:ad:6e:76:19:9c:9d:e8:5c:46:fb:25:e7:28: 61:2f:76:cd:ce:f8:02:5c:f9:c8:44:31:c8:2a:3e:24:d4:5b: 51:78:03:a4:7f:42:08:6f:6c:c2:a9:e2:13:3c:7c:8f:34:1b: 9f:af:84:be:f5:fb:4e:b8:2e:38:44:48:10:a0:f4:ad:36:32: d6:6c:bf:6e:30:a8:e1:f2:7a:29:8f:0a:0b:59:8f:17:7c:64: c2:9d:50:e2:6e:a3:2c:e1:69:a9:6f:54:b2:6c:7e:99:0b:99: a0:87:f3:ba:01:08:20:3c:ef:1a:e4:12:51:ae:38:c4:c0:da: cc:a8:00:ed:b1:f2:93:b2:87:a2:08:da:19:28:f3:af:8f:5d: a3:a7:c9:f0:8c:74:44:7f:f6:0b:5d:40:22:63:ee:81:9e:c8: 3a:47:bc:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCEGbMd0z1yAsEpSnmq/zD6bl+ZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZEMjA5MTlCOTZGNEUzNEZBOUU0QTBDQ0MyMzQ3QTRC Q0Q5RUEyNjAeFw0yNTA0MTAwODU1MDJaFw0yNjA0MDkwOTAwMDJaMDMxMTAvBgNV BAMTKDM4QTY1NjY0QjQxNkVBQzQ3MUYyMTJEOTQwOUI3Mjk5ODVDMTQ5NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnNv0CpkKijmoBmfCxV0NerV+ kp+HQihhmsXtt/nt3sTS6FjXAIMFxgyt28HsZGXa82LO8a3FWF515O43oln08qMp ZeAUVfJoEB4Tm6WXqMh31c8LaESPAswL83k/Abp6NEYA1nuO2g65TS3iWaRje8C8 a2Zj0kNaNjKD1Rbr/+OKR5lyIpnugdm/LFUj9Ho4cx4+1nUtKdsR90N/IxOgcS5i blNDcfSoCIRr7drdgKrtzFF9B/z1rlT/5tUyLJwy534QbGHklUhP2hi6HZVufPMm 2inkzMaBnz1ORrMM56s8khYqDszMUMN1F1b3MGQgsOWbI8B6eJRawwdLyP9RAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOKZWZLQW6sRx8hLZQJtymYXBSWMwHwYDVR0j BBgwFoAU79IJGblvTjT6nkoMzCNHpLzZ6iYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWM0ODc1Ni1iNjYyLTQ2OGEtOTA2ZC02Y2Q0NjFjYjZlNDIvMC9FRkQyMDkxOUI5 NkY0RTM0RkE5RTRBMENDQzIzNDdBNEJDRDlFQTI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZEMjA5MTlCOTZGNEUzNEZBOUU0QTBDQ0MyMzQ3QTRCQ0Q5 RUEyNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYzQ4NzU2LWI2NjItNDY4YS05 MDZkLTZjZDQ2MWNiNmU0Mi8wLzMyMzAzMDMxM2E2NDY2MzIzYTMzNjEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8joAMA0GCSqGSIb3DQEBCwUAA4IBAQBLe7N71x4AYqpEMbZtE3M0dIzmoWHPxVds yJft3TEAjm1LYjATpV/pIticu56BAiU5/DtSxwbrBnWECyRQX88+0/K/fptm/out 9MYL7elJZto9JCiXUT0OBcJOa1X7b61udhmcnehcRvsl5yhhL3bNzvgCXPnIRDHI Kj4k1FtReAOkf0IIb2zCqeITPHyPNBufr4S+9ftOuC44REgQoPStNjLWbL9uMKjh 8nopjwoLWY8XfGTCnVDibqMs4Wmpb1SybH6ZC5mgh/O6AQggPO8a5BJRrjjEwNrM qADtsfKTsoeiCNoZKPOvj12jp8nwjHREf/YLXUAiY+6Bnsg6R7yc -----END CERTIFICATE-----Generated at Fri Apr 25 22:07:26 2025 by rpki-client on console.sobornost.net