$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa File: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (raw, json) Hash identifier: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4= Subject key identifier: 19:BC:1C:3D:37:10:3D:CF:CA:98:7B:ED:CE:77:C5:88:73:C1:06:D5 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 25F6C2E57D93F219169B53010D7AC5C007F9C9F3 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa Signing time: Sat 26 Apr 2025 21:00:00 +0000 ROA not before: Sat 26 Apr 2025 20:55:00 +0000 ROA not after: Sat 25 Apr 2026 21:00:00 +0000 asID: 141983 IP address blocks: 103.167.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 20:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f6:c2:e5:7d:93:f2:19:16:9b:53:01:0d:7a:c5:c0:07:f9:c9:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Apr 26 20:55:00 2025 GMT Not After : Apr 25 21:00:00 2026 GMT Subject: CN=19BC1C3D37103DCFCA987BEDCE77C58873C106D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:18:27:4f:df:82:80:bd:a8:68:99:38:4c:cd: 6c:c6:27:3a:bf:ad:44:9e:5f:2c:79:a2:ee:b5:07: 9e:8c:ae:62:4a:0f:5f:78:78:e7:e7:6c:33:e6:12: e2:f0:1d:8c:ec:76:ec:ea:22:59:e1:6f:17:c7:87: 19:f3:5b:1b:ed:c7:75:bd:99:4e:eb:04:10:3a:c1: 86:a8:58:78:12:0b:0b:c2:99:14:2c:e0:5a:41:4b: 6c:8a:19:c0:bd:00:b0:bb:c8:cc:ee:ee:de:3d:a0: 45:ee:70:7b:9d:4c:a2:45:07:18:da:a1:38:49:ed: fa:0a:26:c3:a2:4c:99:66:e5:08:dd:6f:f1:d4:75: 04:81:57:5f:4d:f0:5a:27:d0:cb:4d:ae:63:2b:42: ab:ff:2f:64:ca:80:32:d0:c3:67:7d:fb:73:98:ee: 37:42:7a:30:2a:29:4d:f6:11:fb:00:b2:8a:4e:16: 24:0c:40:a9:4a:c3:17:f7:ea:7e:02:f0:7c:58:42: d5:49:3c:21:04:70:26:72:c3:2e:01:6d:22:a0:73: 1b:cd:f4:93:a4:fa:87:5e:54:0b:13:2c:89:ae:74: 3b:20:a2:56:63:cc:d7:68:ad:62:02:c8:d2:c5:3e: 30:6f:51:5f:08:10:e0:51:9d:91:5a:42:12:88:90: 00:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BC:1C:3D:37:10:3D:CF:CA:98:7B:ED:CE:77:C5:88:73:C1:06:D5 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.170.0/23 Signature Algorithm: sha256WithRSAEncryption 32:14:6a:31:b2:17:97:92:2e:0b:cb:3a:a4:f8:01:f4:61:74: f5:c6:1c:90:86:66:25:1d:87:47:a0:fa:db:53:e1:8a:37:fd: 96:98:bb:2e:6c:85:2e:d4:2d:33:d1:e4:67:56:73:8d:48:7c: 04:eb:88:0e:9b:fa:cd:7a:99:05:48:3f:c2:f3:57:4b:49:1b: b3:fd:bf:52:d8:1e:d1:a1:84:d6:06:4f:10:a0:15:2a:e2:26: ac:7c:b4:59:6f:90:75:0f:cc:f1:b6:d5:4a:d9:ff:e2:ce:13: f1:c2:e0:4b:68:09:26:ec:01:15:82:54:f1:db:de:7b:e3:c6: 49:d4:e4:59:23:f6:6a:77:95:45:6c:44:f2:be:80:b9:15:0a: 9e:48:06:df:8f:45:41:bf:a3:ac:cf:cd:25:36:ca:ba:f4:01: 17:d5:ff:66:22:50:18:69:7b:8a:e6:de:6d:05:a6:36:91:1b: eb:86:d4:53:b0:fb:33:95:11:91:c9:b1:e8:e3:d0:5d:75:ac: 3e:cb:ee:20:50:08:63:ba:fb:4e:56:e4:9f:8a:0f:fd:a9:e4: 87:c2:e2:56:60:48:48:b6:8b:fb:12:9d:f0:c0:c3:3f:ca:e3: 95:1e:de:44:c5:eb:75:30:79:69:e3:5a:e6:ad:f9:ca:9e:e9: 42:9f:7c:66 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJfbC5X2T8hkWm1MBDXrFwAf5yfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA0MjYyMDU1MDBaFw0yNjA0MjUyMTAwMDBaMDMxMTAvBgNV BAMTKDE5QkMxQzNEMzcxMDNEQ0ZDQTk4N0JFRENFNzdDNTg4NzNDMTA2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9GCdP34KAvahomThMzWzGJzq/ rUSeXyx5ou61B56MrmJKD194eOfnbDPmEuLwHYzsduzqIlnhbxfHhxnzWxvtx3W9 mU7rBBA6wYaoWHgSCwvCmRQs4FpBS2yKGcC9ALC7yMzu7t49oEXucHudTKJFBxja oThJ7foKJsOiTJlm5Qjdb/HUdQSBV19N8Fon0MtNrmMrQqv/L2TKgDLQw2d9+3OY 7jdCejAqKU32EfsAsopOFiQMQKlKwxf36n4C8HxYQtVJPCEEcCZywy4BbSKgcxvN 9JOk+odeVAsTLImudDsgolZjzNdorWICyNLFPjBvUV8IEOBRnZFaQhKIkAApAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGbwcPTcQPc/KmHvtznfFiHPBBtUwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp6owDQYJ KoZIhvcNAQELBQADggEBADIUajGyF5eSLgvLOqT4AfRhdPXGHJCGZiUdh0eg+ttT 4Yo3/ZaYuy5shS7ULTPR5GdWc41IfATriA6b+s16mQVIP8LzV0tJG7P9v1LYHtGh hNYGTxCgFSriJqx8tFlvkHUPzPG21UrZ/+LOE/HC4EtoCSbsARWCVPHb3nvjxknU 5Fkj9mp3lUVsRPK+gLkVCp5IBt+PRUG/o6zPzSU2yrr0ARfV/2YiUBhpe4rm3m0F pjaRG+uG1FOw+zOVEZHJsejj0F11rD7L7iBQCGO6+05W5J+KD/2p5IfC4lZgSEi2 i/sSnfDAwz/K45Ue3kTF63UweWnjWuat+cqe6UKffGY= -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:01 2025 by rpki-client on console.sobornost.net