$ rpki-client -vvf repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa File: 3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: QReThr3L/8y8L/3AEdob8H7epOdOKEjss3T3HzyvfMI= Subject key identifier: 8D:2E:E8:38:E5:A9:7C:C8:2E:49:9E:58:C9:34:D2:CF:63:75:12:57 Certificate issuer: /CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Certificate serial: 284C9436E9EDCF2AC8DC58C940A660BFD4BD4764 Authority key identifier: 6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa Signing time: Thu 24 Apr 2025 05:00:00 +0000 ROA not before: Thu 24 Apr 2025 04:55:00 +0000 ROA not after: Thu 23 Apr 2026 05:00:00 +0000 asID: 131111 IP address blocks: 103.158.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:4c:94:36:e9:ed:cf:2a:c8:dc:58:c9:40:a6:60:bf:d4:bd:47:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Validity Not Before: Apr 24 04:55:00 2025 GMT Not After : Apr 23 05:00:00 2026 GMT Subject: CN=8D2EE838E5A97CC82E499E58C934D2CF63751257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:92:c2:48:c2:b5:ce:d3:00:59:40:6a:9b:fc: 66:0a:e5:fb:6d:a0:ab:33:bc:a6:fc:71:74:39:d6: e5:a5:30:48:c5:e0:78:ce:f5:70:c4:50:f5:dd:9a: 5f:be:c1:ea:b1:14:09:1a:0f:3f:91:00:2d:e4:14: 1b:8e:0a:32:f9:88:da:cd:f9:17:70:cb:60:93:d4: ea:1f:71:66:fc:81:54:82:ab:a5:24:d1:65:d6:9e: fa:97:96:ca:22:7a:48:14:62:a3:27:50:6d:b5:53: 67:bc:4d:06:91:ff:6e:50:c2:3e:26:72:18:5e:f6: 9f:02:6c:bc:d4:5c:df:00:4a:f3:42:bc:f3:f4:c9: ca:95:29:56:83:15:4b:3c:a6:d8:c4:2e:20:6c:48: aa:50:bb:bc:80:2c:ad:6e:2f:e8:3d:76:da:41:43: ff:c5:17:ea:a4:3a:12:dd:f5:c5:03:0f:7b:c5:81: 51:4d:04:cd:a9:c3:56:c6:85:af:ed:83:3d:31:e4: 7f:78:89:ca:f0:e6:9d:d1:30:50:9a:8f:eb:5d:4d: a8:52:3e:5f:5e:0f:1f:7f:09:07:8c:ae:9d:bb:4f: f3:5c:8b:b1:7a:6a:e7:6f:aa:3d:a6:2d:ef:a8:c9: ad:96:3e:09:f7:17:87:c9:34:f5:01:90:de:01:19: 12:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2E:E8:38:E5:A9:7C:C8:2E:49:9E:58:C9:34:D2:CF:63:75:12:57 X509v3 Authority Key Identifier: keyid:6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139342e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.194.0/24 Signature Algorithm: sha256WithRSAEncryption 69:59:67:c4:d4:0d:4b:d3:28:7e:0d:1d:19:68:1e:33:70:20: 9a:f9:a3:e6:b0:e9:bb:29:aa:53:76:09:86:be:07:ac:72:73: ff:f7:07:59:75:0d:93:b1:eb:a8:eb:0e:95:36:26:5b:28:18: 93:df:05:1e:0a:bd:1d:8a:bd:04:63:9a:41:58:c9:18:04:f5: 18:8a:a0:0b:53:db:35:b0:58:07:b2:67:09:18:ba:20:3b:4e: 0a:fd:68:36:aa:c9:d2:7f:b0:e1:b0:ce:f5:66:ca:75:77:d3: 54:52:a3:00:4e:a1:c1:64:5f:7b:19:02:b0:ad:91:3a:e2:af: 43:ee:4a:dc:fa:50:d5:93:fb:70:e9:1c:dc:6e:6e:01:ad:6b: 2d:df:16:28:e5:82:12:09:63:90:66:5a:dd:da:74:ee:55:3b: 2e:f6:3f:a6:a2:c2:ba:d3:61:85:b0:0d:70:22:be:68:01:a9: d3:7f:68:1d:5d:b8:d9:a3:d6:5a:36:65:6f:57:1f:00:f5:e9: d4:1a:1b:3c:7d:39:6a:28:64:4c:51:38:08:41:f9:dd:44:61: f4:44:12:c6:3a:88:6f:9f:f5:05:a9:57:ae:98:f8:69:a4:21: 72:c8:4d:e2:19:02:7b:1b:d0:4f:2c:1c:3c:98:04:e9:42:6a: 8b:b7:9c:05 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKEyUNuntzyrI3FjJQKZgv9S9R2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlD MEYyRTNGNzAeFw0yNTA0MjQwNDU1MDBaFw0yNjA0MjMwNTAwMDBaMDMxMTAvBgNV BAMTKDhEMkVFODM4RTVBOTdDQzgyRTQ5OUU1OEM5MzREMkNGNjM3NTEyNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAksJIwrXO0wBZQGqb/GYK5ftt oKszvKb8cXQ51uWlMEjF4HjO9XDEUPXdml++weqxFAkaDz+RAC3kFBuOCjL5iNrN +Rdwy2CT1OofcWb8gVSCq6Uk0WXWnvqXlsoiekgUYqMnUG21U2e8TQaR/25Qwj4m chhe9p8CbLzUXN8ASvNCvPP0ycqVKVaDFUs8ptjELiBsSKpQu7yALK1uL+g9dtpB Q//FF+qkOhLd9cUDD3vFgVFNBM2pw1bGha/tgz0x5H94icrw5p3RMFCaj+tdTahS Pl9eDx9/CQeMrp27T/Nci7F6audvqj2mLe+oya2WPgn3F4fJNPUBkN4BGRLPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjS7oOOWpfMguSZ5YyTTSz2N1ElcwHwYDVR0j BBgwFoAUagLcEPQfzg60l5jdvPMfycDy4/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTQ2YmRhZC1mMTMwLTQ4YTktODUzNC01NGJhM2U4ZWQ2MWYvMC82QTAyREMxMEY0 MUZDRTBFQjQ5Nzk4RERCQ0YzMUZDOUMwRjJFM0Y3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlDMEYy RTNGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNDZiZGFkLWYxMzAtNDhhOS04 NTM0LTU0YmEzZThlZDYxZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsIwDQYJ KoZIhvcNAQELBQADggEBAGlZZ8TUDUvTKH4NHRloHjNwIJr5o+aw6bspqlN2CYa+ B6xyc//3B1l1DZOx66jrDpU2JlsoGJPfBR4KvR2KvQRjmkFYyRgE9RiKoAtT2zWw WAeyZwkYuiA7Tgr9aDaqydJ/sOGwzvVmynV301RSowBOocFkX3sZArCtkTrir0Pu Stz6UNWT+3DpHNxubgGtay3fFijlghIJY5BmWt3adO5VOy72P6aiwrrTYYWwDXAi vmgBqdN/aB1duNmj1lo2ZW9XHwD16dQaGzx9OWooZExROAhB+d1EYfREEsY6iG+f 9QWpV66Y+GmkIXLITeIZAnsb0E8sHDyYBOlCaou3nAU= -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:49 2025 by rpki-client on console.sobornost.net