$ rpki-client -vvf repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa File: 3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa (raw, json) Hash identifier: oXvL0/k0WHWI4BGdx4XTZRDqMThL/fYCoj5eA1L5u4Y= Subject key identifier: E7:C9:D5:B0:CA:92:90:C0:FC:53:09:AE:1B:65:DC:7B:16:20:8E:5A Certificate issuer: /CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Certificate serial: 318848E7BA61C8E53264B51A6B2C5D699F2FDC67 Authority key identifier: 28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject info access: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa Signing time: Thu 10 Apr 2025 04:01:34 +0000 ROA not before: Thu 10 Apr 2025 03:56:34 +0000 ROA not after: Thu 09 Apr 2026 04:01:34 +0000 asID: 139447 IP address blocks: 103.145.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 01:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:88:48:e7:ba:61:c8:e5:32:64:b5:1a:6b:2c:5d:69:9f:2f:dc:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Validity Not Before: Apr 10 03:56:34 2025 GMT Not After : Apr 9 04:01:34 2026 GMT Subject: CN=E7C9D5B0CA9290C0FC5309AE1B65DC7B16208E5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:36:00:c1:98:da:c6:b3:cd:e7:60:59:c9: 3d:ea:ae:92:28:b6:ba:8b:bd:d0:eb:3b:bd:0f:cf: 19:e7:09:bd:6a:2c:49:8b:97:85:00:e5:88:b8:8e: b4:fb:70:8b:19:35:e8:04:8a:02:d9:89:6d:5c:84: 29:d1:45:e3:15:cd:70:5c:c2:2c:e7:9c:9f:e8:56: 34:c5:51:ce:7b:d8:86:89:7d:31:89:f1:a7:6f:df: 03:6d:bf:77:b7:c9:b5:71:6d:cc:8f:8e:4d:2c:b7: 9c:c5:60:55:86:69:e2:9e:e1:6f:b0:cd:5f:24:e3: 9f:52:86:2f:7e:ad:0a:a8:64:a8:9c:f1:dc:30:56: 4b:b7:c5:5e:94:5b:ed:ca:6f:01:a1:7e:8c:63:24: e7:78:f7:c2:77:dc:67:32:2e:6d:de:58:4d:16:22: ed:38:9e:01:8e:a1:cc:ba:65:d4:36:94:ad:a9:e3: db:38:07:7f:e7:b4:36:eb:76:0a:e8:75:10:7b:43: fe:a8:f6:ff:bd:98:59:60:db:86:d8:e9:cb:b9:bc: da:ca:fa:c6:80:c0:87:f3:c2:c9:4e:2d:8f:ac:e7: 9b:63:1d:ac:6e:fd:cd:70:38:fa:f4:56:8e:64:a3: be:99:91:ae:3d:93:65:fe:8c:ae:b3:4f:5b:9a:b6: ed:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C9:D5:B0:CA:92:90:C0:FC:53:09:AE:1B:65:DC:7B:16:20:8E:5A X509v3 Authority Key Identifier: keyid:28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.125.0/24 Signature Algorithm: sha256WithRSAEncryption 22:26:c4:fb:58:77:3e:60:30:2d:4b:83:17:4c:9d:dd:60:f9: 88:ad:7f:fe:58:21:ab:1a:b3:c3:27:3a:51:0a:f6:73:fb:ef: a8:d7:e9:9b:89:90:fb:73:87:4a:5b:e4:c0:b4:dc:f0:49:a3: 7f:97:11:66:bc:65:a3:c7:1a:49:2e:47:83:e9:b1:4d:4e:de: 13:22:fb:d3:f5:f4:33:0f:53:ce:47:01:77:aa:8c:7f:5d:eb: dd:53:58:0b:f4:fe:2c:7a:9b:1b:fd:5c:f2:a4:e3:5d:a1:1a: 22:fc:7a:79:c3:bd:b4:9f:be:c4:d5:ef:ce:9a:21:b0:b9:56: 0e:59:56:72:9e:b5:53:f9:66:50:1c:3b:33:9d:76:78:04:46: 87:10:8a:3c:20:77:81:1f:ac:f9:12:40:06:cb:58:22:cd:d9: b6:57:93:0c:73:a1:1a:6e:76:fd:8e:70:b5:2c:5a:54:50:b5: ea:6e:7f:a3:87:cb:e6:e0:61:67:21:f3:79:5f:7c:d8:41:fa: c3:63:88:4c:67:f5:77:27:74:55:25:ae:97:e7:c2:b5:98:fc: 2e:c9:a0:08:2e:04:8d:3e:a1:25:cd:cb:3e:dd:dd:54:e5:f6: 37:40:7c:0a:3b:6b:72:0e:7b:4d:cf:55:b1:d5:b6:73:07:14: c5:27:95:82 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMYhI57phyOUyZLUaayxdaZ8v3GcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNC QTcwQTgyMjAeFw0yNTA0MTAwMzU2MzRaFw0yNjA0MDkwNDAxMzRaMDMxMTAvBgNV BAMTKEU3QzlENUIwQ0E5MjkwQzBGQzUzMDlBRTFCNjVEQzdCMTYyMDhFNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVfzYAwZjaxrPN52BZyT3qrpIo trqLvdDrO70PzxnnCb1qLEmLl4UA5Yi4jrT7cIsZNegEigLZiW1chCnRReMVzXBc wiznnJ/oVjTFUc572IaJfTGJ8adv3wNtv3e3ybVxbcyPjk0st5zFYFWGaeKe4W+w zV8k459Shi9+rQqoZKic8dwwVku3xV6UW+3KbwGhfoxjJOd498J33GcyLm3eWE0W Iu04ngGOocy6ZdQ2lK2p49s4B3/ntDbrdgrodRB7Q/6o9v+9mFlg24bY6cu5vNrK +saAwIfzwslOLY+s55tjHaxu/c1wOPr0Vo5ko76Zka49k2X+jK6zT1uatu0DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU58nVsMqSkMD8UwmuG2XcexYgjlowHwYDVR0j BBgwFoAUKCiB5rQ9IG+vvRh57VZ47LpwqCIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTdkNGQ4MS0zYmU4LTQyMzAtODk1OS0yZGMyYWY5ZDA4NWUvMC8yODI4ODFFNkI0 M0QyMDZGQUZCRDE4NzlFRDU2NzhFQ0JBNzBBODIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNCQTcw QTgyMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1N2Q0ZDgxLTNiZTgtNDIzMC04 OTU5LTJkYzJhZjlkMDg1ZS8wLzMxMzAzMzJlMzEzNDM1MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkX0wDQYJ KoZIhvcNAQELBQADggEBACImxPtYdz5gMC1LgxdMnd1g+Yitf/5YIasas8MnOlEK 9nP776jX6ZuJkPtzh0pb5MC03PBJo3+XEWa8ZaPHGkkuR4PpsU1O3hMi+9P19DMP U85HAXeqjH9d691TWAv0/ix6mxv9XPKk412hGiL8ennDvbSfvsTV786aIbC5Vg5Z VnKetVP5ZlAcOzOddngERocQijwgd4EfrPkSQAbLWCLN2bZXkwxzoRpudv2OcLUs WlRQtepuf6OHy+bgYWch83lffNhB+sNjiExn9XcndFUlrpfnwrWY/C7JoAguBI0+ oSXNyz7d3VTl9jdAfAo7a3IOe03PVbHVtnMHFMUnlYI= -----END CERTIFICATE-----Generated at Wed Apr 23 19:50:40 2025 by rpki-client on console.sobornost.net