$ rpki-client -vvf repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa File: 3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa (raw, json) Hash identifier: /EB5uVPByNIi8kXY9MVULDEpqEYMsLoCXri+MR4evTc= Subject key identifier: 3D:96:35:38:1F:38:4D:2B:EB:77:0B:61:90:F9:DA:DB:84:86:74:CE Certificate issuer: /CN=6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF Certificate serial: 0FE6733377905346BD4FF6CA7321E8B06A9AFE9B Authority key identifier: 6E:3C:89:E6:A3:E3:C6:1A:73:15:8A:3C:FF:82:90:9F:AE:F8:ED:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa Signing time: Wed 02 Apr 2025 08:02:01 +0000 ROA not before: Wed 02 Apr 2025 07:57:01 +0000 ROA not after: Wed 01 Apr 2026 08:02:01 +0000 asID: 142335 IP address blocks: 103.169.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.crl rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e6:73:33:77:90:53:46:bd:4f:f6:ca:73:21:e8:b0:6a:9a:fe:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF Validity Not Before: Apr 2 07:57:01 2025 GMT Not After : Apr 1 08:02:01 2026 GMT Subject: CN=3D9635381F384D2BEB770B6190F9DADB848674CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a9:d9:84:a9:b6:2f:e1:f3:66:ba:e4:c5:02: 9d:e5:41:b7:66:44:b6:1d:5d:94:fc:b6:1e:e5:1e: 00:87:fa:a8:cb:26:ff:66:cb:98:d0:96:8d:44:26: 62:87:81:c3:e2:ed:dc:0d:26:58:3f:82:60:bb:24: f4:15:f6:5b:a7:92:44:b7:df:5b:9d:7b:45:a8:49: ed:c8:ac:5c:21:0e:8a:66:b8:8f:88:16:9c:41:98: 5b:26:ca:d8:1d:67:63:96:1a:de:81:db:1d:41:5c: a9:84:38:dc:5b:df:9b:c3:8e:a0:19:79:42:e6:58: 15:b1:07:3c:18:96:33:49:fb:51:ff:19:42:36:54: cb:6a:14:43:4c:df:d7:84:be:ea:38:a5:03:30:c0: 9c:95:de:54:ac:7d:3c:12:26:66:d6:24:de:3c:07: 5f:94:21:08:52:88:7a:09:59:89:d3:cc:00:5a:48: 8d:98:93:12:27:bd:66:f2:38:b0:3b:89:93:d0:1f: a3:b7:d8:e9:89:63:71:d4:a0:de:ec:e2:f6:2d:5a: fa:90:cc:3c:65:ea:58:ae:8b:05:3d:cf:94:7c:b7: a4:ee:6b:2b:d5:b4:21:2f:b1:29:0f:d0:ca:4a:f0: 71:a2:9b:be:0d:1c:43:a0:8f:95:fb:22:bd:a7:85: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:96:35:38:1F:38:4D:2B:EB:77:0B:61:90:F9:DA:DB:84:86:74:CE X509v3 Authority Key Identifier: keyid:6E:3C:89:E6:A3:E3:C6:1A:73:15:8A:3C:FF:82:90:9F:AE:F8:ED:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E3C89E6A3E3C61A73158A3CFF82909FAEF8EDEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0eaa8cbe-718b-4953-b789-60fa857aec8d/0/3130332e3136392e31302e302f32332d3234203d3e20313432333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.10.0/23 Signature Algorithm: sha256WithRSAEncryption a7:6a:0c:d7:48:a7:51:a0:c2:b3:6c:fc:21:5d:30:e1:16:65: 9e:27:9a:9e:e6:c8:93:72:dd:da:45:f3:c4:de:5c:e5:dd:4e: 54:a1:c3:91:74:25:be:42:57:7e:17:55:7c:79:d4:7d:3d:9f: fb:53:b2:17:c8:3b:e3:04:78:e7:d4:19:b7:36:77:34:3a:bb: 31:4b:15:04:f2:5b:28:11:19:05:be:b6:c5:26:04:bc:8a:f9: f7:09:1d:89:05:d6:e0:8f:fa:80:f9:c6:aa:c0:b4:19:3b:d6: ef:8a:01:eb:ec:22:5f:93:3a:a0:1a:3b:60:4f:47:85:d5:cd: 7c:00:07:8d:b3:e8:88:06:2e:2e:7d:c5:1d:bc:41:37:1b:13: 80:e1:57:e6:c0:16:58:1d:64:8d:b3:c6:30:dc:40:cd:77:04: 5e:56:ee:5b:de:0d:e4:45:05:da:04:c8:00:7f:09:d6:a4:cd: 0f:20:c7:e0:d3:9d:a8:e9:3b:99:f1:2b:67:a7:15:bc:e4:9e: 6c:70:d7:ea:4c:4e:85:81:5c:fd:32:b3:8a:0a:fd:d8:7e:8c: fd:6c:f7:b3:be:47:e4:be:1d:cf:0b:1e:b8:31:16:b1:b1:e4: c2:59:85:8d:41:33:3c:79:05:b9:6a:e9:3e:b2:e2:14:e5:46: d8:c4:58:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD+ZzM3eQU0a9T/bKcyHosGqa/pswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUzQzg5RTZBM0UzQzYxQTczMTU4QTNDRkY4MjkwOUZB RUY4RURFRjAeFw0yNTA0MDIwNzU3MDFaFw0yNjA0MDEwODAyMDFaMDMxMTAvBgNV BAMTKDNEOTYzNTM4MUYzODREMkJFQjc3MEI2MTkwRjlEQURCODQ4Njc0Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbqdmEqbYv4fNmuuTFAp3lQbdm RLYdXZT8th7lHgCH+qjLJv9my5jQlo1EJmKHgcPi7dwNJlg/gmC7JPQV9lunkkS3 31ude0WoSe3IrFwhDopmuI+IFpxBmFsmytgdZ2OWGt6B2x1BXKmEONxb35vDjqAZ eULmWBWxBzwYljNJ+1H/GUI2VMtqFENM39eEvuo4pQMwwJyV3lSsfTwSJmbWJN48 B1+UIQhSiHoJWYnTzABaSI2YkxInvWbyOLA7iZPQH6O32OmJY3HUoN7s4vYtWvqQ zDxl6liuiwU9z5R8t6TuayvVtCEvsSkP0MpK8HGim74NHEOgj5X7Ir2nhZoFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPZY1OB84TSvrdwthkPna24SGdM4wHwYDVR0j BBgwFoAUbjyJ5qPjxhpzFYo8/4KQn6747e8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZWFhOGNiZS03MThiLTQ5NTMtYjc4OS02MGZhODU3YWVjOGQvMC82RTNDODlFNkEz RTNDNjFBNzMxNThBM0NGRjgyOTA5RkFFRjhFREVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUzQzg5RTZBM0UzQzYxQTczMTU4QTNDRkY4MjkwOUZBRUY4 RURFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYWE4Y2JlLTcxOGItNDk1My1i Nzg5LTYwZmE4NTdhZWM4ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6kKMA0GCSqG SIb3DQEBCwUAA4IBAQCnagzXSKdRoMKzbPwhXTDhFmWeJ5qe5siTct3aRfPE3lzl 3U5UocORdCW+Qld+F1V8edR9PZ/7U7IXyDvjBHjn1Bm3Nnc0OrsxSxUE8lsoERkF vrbFJgS8ivn3CR2JBdbgj/qA+caqwLQZO9bvigHr7CJfkzqgGjtgT0eF1c18AAeN s+iIBi4ufcUdvEE3GxOA4VfmwBZYHWSNs8Yw3EDNdwReVu5b3g3kRQXaBMgAfwnW pM0PIMfg052o6TuZ8StnpxW85J5scNfqTE6FgVz9MrOKCv3Yfoz9bPezvkfkvh3P Cx64MRaxseTCWYWNQTM8eQW5auk+suIU5UbYxFgy -----END CERTIFICATE-----Generated at Fri Apr 25 03:46:16 2025 by rpki-client on console.sobornost.net