$ rpki-client -vvf repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa File: 3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: Qh5iXUaLz085YiAao5lIIV9guQY+sWYceEeZZ6zBDJs= Subject key identifier: 5A:A6:6D:B9:23:23:35:40:F4:75:D6:9D:0B:6E:7D:F6:1A:58:27:A8 Certificate issuer: /CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Certificate serial: 4F6789DA72AD444F8E5DD74675F3F330B889B0F4 Authority key identifier: BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa Signing time: Wed 16 Apr 2025 09:00:01 +0000 ROA not before: Wed 16 Apr 2025 08:55:01 +0000 ROA not after: Wed 15 Apr 2026 09:00:01 +0000 asID: 149746 IP address blocks: 103.189.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 12:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:67:89:da:72:ad:44:4f:8e:5d:d7:46:75:f3:f3:30:b8:89:b0:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307 Validity Not Before: Apr 16 08:55:01 2025 GMT Not After : Apr 15 09:00:01 2026 GMT Subject: CN=5AA66DB923233540F475D69D0B6E7DF61A5827A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:fa:95:21:12:a2:70:01:01:80:0a:79:09: 3a:25:bb:76:2e:3e:b4:44:2d:17:f3:58:2e:78:12: c2:c2:cb:b0:92:f6:16:f7:89:ee:d7:58:54:fe:25: d8:8a:7a:40:49:75:9a:fe:bb:e1:cd:73:d8:52:0c: 9f:10:8a:c5:c1:3e:02:c1:47:9b:1e:5a:84:99:ca: 2e:a1:af:a7:79:c4:65:c2:a5:4e:e5:2b:cf:86:c9: 6a:86:ca:a5:97:7c:84:93:48:eb:d7:15:86:03:1d: 61:fe:f1:39:6c:ec:18:f1:06:54:1f:c8:c1:30:b5: a1:be:68:0a:da:2a:28:3d:f9:01:9f:3f:35:a5:ae: 12:ac:56:2f:c9:26:f9:3b:f1:ab:6c:22:01:bf:a8: d8:7d:6a:af:14:e5:ac:f3:03:a5:73:b2:1e:ea:bc: 5b:51:c7:ef:28:83:13:aa:ef:42:71:03:3c:5d:38: c2:09:d5:d3:55:c2:43:e4:2c:98:8d:61:34:c3:e8: 5a:61:81:04:f8:fc:f9:2d:f6:d7:78:8c:96:49:62: 60:8c:4f:28:d6:da:18:a5:80:9e:85:f1:d1:ae:76: d2:52:77:c7:97:7e:62:94:a8:da:84:aa:9d:f0:9f: e3:7f:51:da:7a:c4:f8:9e:93:fe:e5:26:cd:c6:73: 4d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A6:6D:B9:23:23:35:40:F4:75:D6:9D:0B:6E:7D:F6:1A:58:27:A8 X509v3 Authority Key Identifier: keyid:BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.63.0/24 Signature Algorithm: sha256WithRSAEncryption a2:82:91:41:3f:ce:cf:48:9c:08:b9:96:f3:a9:7b:59:d8:05: c8:36:d9:40:3b:64:29:44:1f:16:db:4d:50:e5:d5:d5:35:fd: 86:ae:67:da:ea:12:85:a2:25:85:ea:bc:79:93:60:93:19:3c: 13:8f:7c:fb:66:05:6a:f0:aa:f1:63:5e:35:1a:54:b8:92:1d: 2f:6e:03:09:75:8a:c4:a4:0e:22:cb:5b:56:9c:e8:d2:15:9c: 43:2b:cd:ca:45:8b:5a:68:1d:68:0a:f2:eb:44:eb:2e:4f:f6: fa:c3:76:7a:a6:b5:7c:b4:44:b1:43:8e:8c:17:96:14:28:f6: d4:44:71:37:45:eb:6f:ad:2e:93:5c:3d:49:fd:48:b8:fa:a5: 86:7c:10:6b:1b:5e:12:e5:c6:32:b2:b4:95:26:c9:3b:cc:e0: 40:3e:f5:c4:79:1d:c8:32:55:c9:5a:7c:2d:0a:eb:05:27:d5: a7:86:57:e8:ae:53:d8:bf:98:d6:b2:73:52:28:d8:f3:4a:d3: 7c:dd:04:4b:23:97:43:0d:b7:7e:f7:47:fd:f4:1a:b6:7c:35: 23:d0:c0:09:4c:31:f2:6a:98:21:a6:bb:5a:fd:dd:44:14:db: d2:d1:83:10:ff:3e:f1:6e:bc:c9:d2:05:d7:bb:58:ae:cd:7b: 15:a9:8d:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT2eJ2nKtRE+OXddGdfPzMLiJsPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZF RTczRjMwNzAeFw0yNTA0MTYwODU1MDFaFw0yNjA0MTUwOTAwMDFaMDMxMTAvBgNV BAMTKDVBQTY2REI5MjMyMzM1NDBGNDc1RDY5RDBCNkU3REY2MUE1ODI3QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Y/qVIRKicAEBgAp5CTolu3Yu PrRELRfzWC54EsLCy7CS9hb3ie7XWFT+JdiKekBJdZr+u+HNc9hSDJ8QisXBPgLB R5seWoSZyi6hr6d5xGXCpU7lK8+GyWqGyqWXfISTSOvXFYYDHWH+8Tls7BjxBlQf yMEwtaG+aAraKig9+QGfPzWlrhKsVi/JJvk78atsIgG/qNh9aq8U5azzA6Vzsh7q vFtRx+8ogxOq70JxAzxdOMIJ1dNVwkPkLJiNYTTD6FphgQT4/Pkt9td4jJZJYmCM TyjW2hilgJ6F8dGudtJSd8eXfmKUqNqEqp3wn+N/Udp6xPiek/7lJs3Gc015AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWqZtuSMjNUD0ddadC2599hpYJ6gwHwYDVR0j BBgwFoAUvzjd1doqvwjrHdjYe1ZvNu5z8wcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjM0ZWYxZC03MzRkLTRjNzEtOGJhNy1kMzFlMTY4YjYzMmMvMC9CRjM4RERENURB MkFCRjA4RUIxREQ4RDg3QjU2NkYzNkVFNzNGMzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzOERERDVEQTJBQkYwOEVCMUREOEQ4N0I1NjZGMzZFRTcz RjMwNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMzRlZjFkLTczNGQtNGM3MS04 YmE3LWQzMWUxNjhiNjMyYy8wLzMxMzAzMzJlMzEzODM5MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ70/MA0GCSqG SIb3DQEBCwUAA4IBAQCigpFBP87PSJwIuZbzqXtZ2AXINtlAO2QpRB8W201Q5dXV Nf2Grmfa6hKFoiWF6rx5k2CTGTwTj3z7ZgVq8KrxY141GlS4kh0vbgMJdYrEpA4i y1tWnOjSFZxDK83KRYtaaB1oCvLrROsuT/b6w3Z6prV8tESxQ46MF5YUKPbURHE3 RetvrS6TXD1J/Ui4+qWGfBBrG14S5cYysrSVJsk7zOBAPvXEeR3IMlXJWnwtCusF J9WnhlforlPYv5jWsnNSKNjzStN83QRLI5dDDbd+90f99Bq2fDUj0MAJTDHyapgh prta/d1EFNvS0YMQ/z7xbrzJ0gXXu1iuzXsVqY1Y -----END CERTIFICATE-----Generated at Wed Apr 23 13:25:32 2025 by rpki-client on console.sobornost.net