$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: ts0AEf7tiHhCVv2ig8cqn7e5DacXGcYUg0GU/UCUV0c= Subject key identifier: 34:85:E5:8C:1B:8F:64:43:F5:CD:7C:15:D6:39:52:E0:F1:A0:6B:AC Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 66FDC57D48CF029DDEC4C1B121E23E151F4C8106 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa Signing time: Tue 22 Apr 2025 04:02:50 +0000 ROA not before: Tue 22 Apr 2025 03:57:50 +0000 ROA not after: Tue 21 Apr 2026 04:02:50 +0000 asID: 23671 IP address blocks: 2403:b200:230::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:fd:c5:7d:48:cf:02:9d:de:c4:c1:b1:21:e2:3e:15:1f:4c:81:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Apr 22 03:57:50 2025 GMT Not After : Apr 21 04:02:50 2026 GMT Subject: CN=3485E58C1B8F6443F5CD7C15D63952E0F1A06BAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7e:b6:d3:99:ec:2a:d3:a8:2c:f6:95:95:a5: 75:a6:1e:c3:2a:94:3c:79:1c:46:3b:c5:b3:9e:fc: 6f:bf:d2:6f:da:db:18:52:03:e7:26:1e:2d:6e:1e: 47:e9:ed:e2:62:37:05:c1:75:db:61:07:5e:8f:e3: 6c:03:0a:6d:41:a9:25:63:a2:45:63:6d:15:a7:40: 2c:50:61:c3:c1:0e:c2:10:1c:8c:a8:9e:52:df:5d: 7d:ee:94:cd:76:47:ca:13:77:1c:4f:8f:c3:be:5b: be:66:24:d8:f3:9a:fb:d3:3e:80:1e:c6:be:cc:ed: 1b:92:37:cd:5c:00:6c:4c:a1:eb:84:67:ff:ce:56: 5a:fe:92:1f:0d:ea:41:0e:96:40:b9:4c:89:75:9c: 54:58:df:da:66:5a:a4:6f:78:0d:ff:a1:cd:ee:18: d6:90:c1:19:35:d5:3b:d7:71:b6:1d:c5:7d:76:4e: fa:96:d7:6c:1e:4c:74:aa:69:93:f9:ca:f0:2a:4a: b9:88:35:6a:e1:6b:dc:cf:23:be:f2:91:a4:f3:79: c8:3f:72:15:95:f0:2b:9c:3b:f7:bf:f2:ca:0b:4f: 58:23:1d:31:e7:7e:8f:62:4a:c1:7b:8d:ff:3c:9e: 04:1b:9b:70:91:aa:34:e7:e3:62:63:a5:73:4b:5a: 53:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:85:E5:8C:1B:8F:64:43:F5:CD:7C:15:D6:39:52:E0:F1:A0:6B:AC X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:230::/48 Signature Algorithm: sha256WithRSAEncryption a5:46:4d:c6:6e:73:13:1a:1b:ed:5c:20:b2:87:db:4c:30:9e: f1:b1:ec:5b:60:f8:f4:02:c2:c7:37:a7:7b:56:40:cf:ad:19: 30:da:0b:1e:36:96:d9:c3:30:57:fa:ae:2e:44:d0:b4:04:52: c0:e5:ce:ba:ce:f8:88:66:86:ba:69:b4:6c:a0:f6:29:a1:a2: ac:89:19:47:43:68:02:82:10:cb:73:8b:2a:bd:9c:7d:1a:1a: bd:fd:08:72:d3:5c:89:eb:fd:e1:ef:21:d0:57:0e:be:7a:ae: c7:7e:81:5c:94:24:8c:18:20:88:8d:59:9f:be:fb:59:38:b6: 31:9b:89:6b:66:bd:d2:ed:5f:04:87:a9:dc:a8:bc:fe:ef:c0: c0:7e:7a:cf:69:ff:3b:6e:cb:4d:d5:6b:47:36:c5:f2:a5:cd: 12:84:84:46:28:38:ca:4b:f9:31:71:b5:4a:6e:84:50:1b:23: 35:30:1e:9e:d8:32:e6:45:70:8a:21:85:fb:52:bb:f4:56:1a: 56:4c:fa:33:0f:d8:9b:f9:56:67:d0:d4:3c:c3:ff:0b:f1:70: e9:e3:44:ac:01:d0:a7:a9:d3:63:ef:88:ce:2c:3e:22:92:5e: 69:7d:03:6f:d7:f9:d9:7b:72:e4:19:70:97:ca:df:13:56:1f: 7e:6c:2c:7e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZv3FfUjPAp3exMGxIeI+FR9MgQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA0MjIwMzU3NTBaFw0yNjA0MjEwNDAyNTBaMDMxMTAvBgNV BAMTKDM0ODVFNThDMUI4RjY0NDNGNUNEN0MxNUQ2Mzk1MkUwRjFBMDZCQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKfrbTmewq06gs9pWVpXWmHsMq lDx5HEY7xbOe/G+/0m/a2xhSA+cmHi1uHkfp7eJiNwXBddthB16P42wDCm1BqSVj okVjbRWnQCxQYcPBDsIQHIyonlLfXX3ulM12R8oTdxxPj8O+W75mJNjzmvvTPoAe xr7M7RuSN81cAGxMoeuEZ//OVlr+kh8N6kEOlkC5TIl1nFRY39pmWqRveA3/oc3u GNaQwRk11TvXcbYdxX12TvqW12weTHSqaZP5yvAqSrmINWrha9zPI77ykaTzecg/ chWV8CucO/e/8soLT1gjHTHnfo9iSsF7jf88ngQbm3CRqjTn42JjpXNLWlOdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUNIXljBuPZEP1zXwV1jlS4PGga6wwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzIzMzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAC MDANBgkqhkiG9w0BAQsFAAOCAQEApUZNxm5zExob7VwgsofbTDCe8bHsW2D49ALC xzene1ZAz60ZMNoLHjaW2cMwV/quLkTQtARSwOXOus74iGaGumm0bKD2KaGirIkZ R0NoAoIQy3OLKr2cfRoavf0IctNciev94e8h0FcOvnqux36BXJQkjBggiI1Zn777 WTi2MZuJa2a90u1fBIep3Ki8/u/AwH56z2n/O27LTdVrRzbF8qXNEoSERig4ykv5 MXG1Sm6EUBsjNTAentgy5kVwiiGF+1K79FYaVkz6Mw/Ym/lWZ9DUPMP/C/Fw6eNE rAHQp6nTY++Iziw+IpJeaX0Db9f52Xty5Blwl8rfE1Yffmwsfg== -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:38 2025 by rpki-client on console.sobornost.net