$ rpki-client -vvf repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/323430353a636534303a3a2f33322d3438203d3e20313339393838.roa File: 323430353a636534303a3a2f33322d3438203d3e20313339393838.roa (raw, json) Hash identifier: lyCNDP9EqWqz+HEfKh+8ATTipD904Rt+hS0G+abC8oQ= Subject key identifier: 42:BE:7D:27:94:07:2A:96:5A:73:95:A6:65:C9:13:4F:73:F9:32:91 Certificate issuer: /CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55 Certificate serial: 30AFD76561D6165A9C0BFE8A6E9B72209A226566 Authority key identifier: 53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/323430353a636534303a3a2f33322d3438203d3e20313339393838.roa Signing time: Fri 11 Apr 2025 08:00:41 +0000 ROA not before: Fri 11 Apr 2025 07:55:41 +0000 ROA not after: Fri 10 Apr 2026 08:00:41 +0000 asID: 139988 IP address blocks: 2405:ce40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.crl rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:af:d7:65:61:d6:16:5a:9c:0b:fe:8a:6e:9b:72:20:9a:22:65:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55 Validity Not Before: Apr 11 07:55:41 2025 GMT Not After : Apr 10 08:00:41 2026 GMT Subject: CN=42BE7D2794072A965A7395A665C9134F73F93291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3a:ca:71:86:de:cb:f4:75:e0:7c:41:bf:66: 3a:81:76:38:25:39:49:ec:73:79:c3:58:17:42:08: 5d:d7:ff:5f:c5:5b:5d:2f:c0:e6:78:34:67:3a:9f: ce:2b:ea:db:18:1e:c9:51:7a:0a:78:98:e8:1c:94: df:b4:fd:03:64:b9:69:f9:23:5f:5d:f0:9c:2f:28: f7:14:0c:8b:37:23:40:51:11:15:8b:02:88:39:7c: 66:56:56:08:24:b3:c4:57:dd:89:aa:27:16:d3:64: af:c8:54:8d:b1:0c:ab:46:ba:e1:5b:bb:02:18:21: f1:48:fe:bf:9f:4a:7d:69:b7:6d:77:51:d7:22:7c: 5e:3a:2d:15:2e:53:ce:ab:ef:e2:40:6f:c8:20:eb: 07:4b:bf:09:b6:0b:e5:9e:ce:d4:4f:5d:f2:5a:30: 7d:f7:86:21:56:34:87:7e:99:6c:7a:e7:63:8f:e9: 66:64:35:58:19:89:6b:20:58:8d:82:ce:37:ff:9f: 41:e9:6b:9b:83:98:0d:7a:e2:65:d2:e8:00:c0:fc: e2:bc:99:0b:3c:83:37:73:6c:19:97:21:b0:06:47: 48:90:a6:b2:bc:7c:36:e4:6e:7c:21:ea:e8:57:f5: fd:1c:16:c4:4a:cb:ec:f2:2b:a0:6d:1d:5d:f1:4f: f1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BE:7D:27:94:07:2A:96:5A:73:95:A6:65:C9:13:4F:73:F9:32:91 X509v3 Authority Key Identifier: keyid:53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/323430353a636534303a3a2f33322d3438203d3e20313339393838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:ce40::/32 Signature Algorithm: sha256WithRSAEncryption 09:53:7a:da:f3:17:8d:dc:e0:b7:c8:21:2a:dc:2e:90:92:9c: 9c:58:c2:bb:eb:b2:37:86:97:17:49:99:30:80:b6:7e:35:50: c3:82:b0:ab:f5:7c:11:9f:55:8e:16:b0:5d:69:61:8b:aa:41: d3:b7:bb:c8:71:e6:ae:25:6e:25:92:a0:17:99:b3:25:a6:34: c7:c6:f5:f9:ed:6b:0e:43:b3:20:20:9f:5b:09:a5:9f:cf:e5: 6f:18:f5:83:f8:30:f3:72:33:76:6d:4b:88:13:53:09:9c:f5: 00:d4:3b:cc:48:9d:31:30:bb:1f:cb:b9:98:14:a0:63:ce:6f: b4:fa:de:98:2f:b5:36:f0:68:d9:a5:ae:e5:c9:80:ca:75:c9: 0c:2f:62:af:c0:03:69:87:bc:e6:3f:00:f6:95:f0:31:89:55: 80:64:f7:04:9a:f4:6e:74:50:03:fc:1c:20:8f:61:33:37:0d: 03:a6:f4:63:d1:85:3e:ec:e9:ab:6f:49:9f:50:bd:08:ba:56: 81:6b:9b:c3:ee:d2:c0:b3:ed:ab:43:3e:48:58:de:e0:9c:2f: ed:e1:79:b7:fc:f0:c9:26:a3:ac:66:63:d5:83:52:13:9b:50: a8:58:65:1b:43:0f:0e:97:47:43:25:10:45:91:b9:68:0e:d7: 6c:db:35:8d -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMK/XZWHWFlqcC/6KbptyIJoiZWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMzNTA3NkI5NUYyOTc4QkUzQUNEQjM5MzYwQUU1QTIy RDBENEI1NTAeFw0yNTA0MTEwNzU1NDFaFw0yNjA0MTAwODAwNDFaMDMxMTAvBgNV BAMTKDQyQkU3RDI3OTQwNzJBOTY1QTczOTVBNjY1QzkxMzRGNzNGOTMyOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNOspxht7L9HXgfEG/ZjqBdjgl OUnsc3nDWBdCCF3X/1/FW10vwOZ4NGc6n84r6tsYHslRegp4mOgclN+0/QNkuWn5 I19d8JwvKPcUDIs3I0BRERWLAog5fGZWVggks8RX3YmqJxbTZK/IVI2xDKtGuuFb uwIYIfFI/r+fSn1pt213UdcifF46LRUuU86r7+JAb8gg6wdLvwm2C+WeztRPXfJa MH33hiFWNId+mWx652OP6WZkNVgZiWsgWI2Czjf/n0Hpa5uDmA164mXS6ADA/OK8 mQs8gzdzbBmXIbAGR0iQprK8fDbkbnwh6uhX9f0cFsRKy+zyK6BtHV3xT/EpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUQr59J5QHKpZac5WmZckTT3P5MpEwHwYDVR0j BBgwFoAUUzUHa5Xyl4vjrNs5Ngrloi0NS1UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MmQ2NmQxMC1iODU3LTRiZWYtOTM5NS00NWQ1YWIyYzQ0ZjkvMC81MzM1MDc2Qjk1 RjI5NzhCRTNBQ0RCMzkzNjBBRTVBMjJEMEQ0QjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTMzNTA3NkI5NUYyOTc4QkUzQUNEQjM5MzYwQUU1QTIyRDBE NEI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyZDY2ZDEwLWI4NTctNGJlZi05 Mzk1LTQ1ZDVhYjJjNDRmOS8wLzMyMzQzMDM1M2E2MzY1MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFzkAwDQYJKoZI hvcNAQELBQADggEBAAlTetrzF43c4LfIISrcLpCSnJxYwrvrsjeGlxdJmTCAtn41 UMOCsKv1fBGfVY4WsF1pYYuqQdO3u8hx5q4lbiWSoBeZsyWmNMfG9fntaw5DsyAg n1sJpZ/P5W8Y9YP4MPNyM3ZtS4gTUwmc9QDUO8xInTEwux/LuZgUoGPOb7T63pgv tTbwaNmlruXJgMp1yQwvYq/AA2mHvOY/APaV8DGJVYBk9wSa9G50UAP8HCCPYTM3 DQOm9GPRhT7s6atvSZ9QvQi6VoFrm8Pu0sCz7atDPkhY3uCcL+3hebf88Mkmo6xm Y9WDUhObUKhYZRtDDw6XR0MlEEWRuWgO12zbNY0= -----END CERTIFICATE-----Generated at Fri Apr 25 00:06:29 2025 by rpki-client on console.sobornost.net