$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a3a2f33322d3438203d3e20313338383232.roa File: 323430343a613463303a3a2f33322d3438203d3e20313338383232.roa (raw, json) Hash identifier: jd8RzIV4pb6xOSx8M2iJByCvMa7m6mddhFLRaUaFvoI= Subject key identifier: 6E:86:F7:40:75:86:DE:11:CA:20:05:65:C4:49:67:3B:3A:23:95:19 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 143807CB8EBF89DBA07EF945AF7FB2293DC3E5C9 Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a3a2f33322d3438203d3e20313338383232.roa Signing time: Sat 19 Apr 2025 11:00:01 +0000 ROA not before: Sat 19 Apr 2025 10:55:01 +0000 ROA not after: Sat 18 Apr 2026 11:00:01 +0000 asID: 138822 IP address blocks: 2404:a4c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:38:07:cb:8e:bf:89:db:a0:7e:f9:45:af:7f:b2:29:3d:c3:e5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Apr 19 10:55:01 2025 GMT Not After : Apr 18 11:00:01 2026 GMT Subject: CN=6E86F7407586DE11CA200565C449673B3A239519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:57:20:da:e8:7a:9a:79:ab:26:c1:0c:40:34: 14:a4:a4:ee:82:ed:3a:83:a2:9f:0c:57:a0:d1:3f: 49:55:05:49:bc:5c:76:c4:ca:05:e3:fc:7b:83:e7: 17:2c:49:fb:0c:c2:53:4e:cc:1a:94:0e:cb:c2:e5: 55:12:81:28:fd:4b:12:04:c1:4e:37:24:42:8f:c7: 24:3c:32:77:6f:ec:70:d3:52:7f:1c:98:89:44:cb: 76:77:ab:c8:be:17:4a:7b:01:5f:a3:55:ad:83:6f: b8:73:bb:f9:cd:b5:88:df:7b:31:d6:b7:1c:3d:31: 91:a1:7b:1f:dd:14:f9:83:ef:f4:c5:81:eb:a3:09: 7a:37:60:46:b5:0b:dc:58:ad:97:ff:19:d9:eb:fd: f6:d2:81:46:a5:ab:b9:a2:1f:79:5f:e1:dd:7d:a5: bd:d0:fe:42:f2:9a:ac:67:f2:93:fa:81:99:9c:2f: 99:1b:3d:a2:73:92:2c:2a:12:4f:ad:43:34:ce:96: 6f:9f:50:8d:91:fd:d3:f8:dc:cf:37:fe:e8:1a:17: 8a:a1:27:e8:80:e3:6b:d8:53:00:8d:71:60:a4:af: 48:2e:ac:03:6b:16:de:f2:9b:5e:2e:68:46:50:6e: 53:d1:8a:aa:1e:76:82:c9:51:61:94:9e:fb:97:5d: 28:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:86:F7:40:75:86:DE:11:CA:20:05:65:C4:49:67:3B:3A:23:95:19 X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a3a2f33322d3438203d3e20313338383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a4c0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:9f:b9:4a:38:b2:9d:3d:cd:64:a6:cd:31:82:f6:aa:8c:5e: 89:aa:7f:5d:3f:59:b2:0a:e5:c3:57:b2:04:93:b7:2d:3a:89: c2:c0:27:9a:e9:18:a4:a3:39:55:39:77:13:c9:6d:77:67:0b: 3d:56:c8:e9:cc:29:cb:0f:5e:f4:77:8b:6d:cc:f7:9b:3d:55: fd:33:95:cb:6a:f7:71:bc:1c:e0:8f:05:fc:64:a0:d0:f5:a7: 40:08:fd:f9:c7:be:3d:c1:d2:37:e2:91:3e:a6:91:81:89:9d: 57:60:7e:e8:8b:bf:31:7b:1b:b6:e6:a8:f1:6a:94:fe:84:23: d6:63:05:49:ee:d9:02:a1:e9:2a:ec:37:02:11:6c:d4:99:be: 2c:33:ec:47:70:df:e5:05:33:59:a7:8a:21:c8:68:91:68:d4: df:e6:7e:03:01:e5:76:75:0e:07:78:22:ef:f8:8f:63:e4:e4: 41:96:56:f8:20:bd:e9:91:50:94:ac:b3:b9:ba:fb:4a:0b:e8: 94:4b:0d:ad:73:94:7c:95:17:83:ba:df:a8:5e:b0:6e:cb:9d: 0c:1c:c3:41:e1:f8:84:0b:1e:69:5b:69:6a:26:04:79:4e:66: ca:21:29:74:3c:e6:01:4f:86:80:65:bb:cc:92:7c:aa:fe:6a: 5b:97:f0:23 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUFDgHy46/idugfvlFr3+yKT3D5ckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNTA0MTkxMDU1MDFaFw0yNjA0MTgxMTAwMDFaMDMxMTAvBgNV BAMTKDZFODZGNzQwNzU4NkRFMTFDQTIwMDU2NUM0NDk2NzNCM0EyMzk1MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNVyDa6HqaeasmwQxANBSkpO6C 7TqDop8MV6DRP0lVBUm8XHbEygXj/HuD5xcsSfsMwlNOzBqUDsvC5VUSgSj9SxIE wU43JEKPxyQ8Mndv7HDTUn8cmIlEy3Z3q8i+F0p7AV+jVa2Db7hzu/nNtYjfezHW txw9MZGhex/dFPmD7/TFgeujCXo3YEa1C9xYrZf/Gdnr/fbSgUalq7miH3lf4d19 pb3Q/kLymqxn8pP6gZmcL5kbPaJzkiwqEk+tQzTOlm+fUI2R/dP43M83/ugaF4qh J+iA42vYUwCNcWCkr0gurANrFt7ym14uaEZQblPRiqoedoLJUWGUnvuXXShTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUbob3QHWG3hHKIAVlxElnOzojlRkwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMyMzQzMDM0M2E2MTM0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEpMAwDQYJKoZI hvcNAQELBQADggEBAE+fuUo4sp09zWSmzTGC9qqMXomqf10/WbIK5cNXsgSTty06 icLAJ5rpGKSjOVU5dxPJbXdnCz1WyOnMKcsPXvR3i23M95s9Vf0zlctq93G8HOCP BfxkoND1p0AI/fnHvj3B0jfikT6mkYGJnVdgfuiLvzF7G7bmqPFqlP6EI9ZjBUnu 2QKh6SrsNwIRbNSZviwz7Edw3+UFM1mniiHIaJFo1N/mfgMB5XZ1Dgd4Iu/4j2Pk 5EGWVvggvemRUJSss7m6+0oL6JRLDa1zlHyVF4O636hesG7LnQwcw0Hh+IQLHmlb aWomBHlOZsohKXQ85gFPhoBlu8ySfKr+aluX8CM= -----END CERTIFICATE-----Generated at Sat Apr 26 11:16:30 2025 by rpki-client on console.sobornost.net