$ rpki-client -vvf repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/3130332e3136302e31352e302f32342d3234203d3e20313338303936.roa File: 3130332e3136302e31352e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: TXQIRXriJht3JOgCTd7/J9Hx21TMhiLYd4Rp6KeHOGg= Subject key identifier: 85:B3:D4:93:B1:99:F7:5B:FE:71:6D:93:6E:6F:C7:D5:0D:67:D5:3F Certificate issuer: /CN=BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7 Certificate serial: 2340AF63AA4169E48C29BBB8CFC134822E76596C Authority key identifier: BA:65:CD:04:3C:E7:E9:AE:0C:DA:AE:BF:12:E3:3D:86:46:7A:8F:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/3130332e3136302e31352e302f32342d3234203d3e20313338303936.roa Signing time: Mon 14 Apr 2025 09:02:24 +0000 ROA not before: Mon 14 Apr 2025 08:57:24 +0000 ROA not after: Mon 13 Apr 2026 09:02:24 +0000 asID: 138096 IP address blocks: 103.160.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.crl rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:40:af:63:aa:41:69:e4:8c:29:bb:b8:cf:c1:34:82:2e:76:59:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7 Validity Not Before: Apr 14 08:57:24 2025 GMT Not After : Apr 13 09:02:24 2026 GMT Subject: CN=85B3D493B199F75BFE716D936E6FC7D50D67D53F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cf:dc:20:9a:8f:02:4c:b9:bc:c4:ec:46:42: 93:22:1b:24:0d:9a:e0:10:8c:44:61:fe:7f:2d:d7: 66:9b:ec:2d:cd:27:4f:4c:55:c2:6f:b6:6c:50:f0: 11:94:18:38:58:3e:6c:cd:55:63:e3:e2:58:e2:9b: 48:f7:fb:95:72:0d:05:76:b3:f8:f4:4e:68:49:21: a3:3c:22:1a:a0:fc:d6:98:85:c2:bf:f7:4f:61:6c: 01:fd:a1:a4:f7:f0:f7:94:6d:ea:b5:58:15:88:97: ec:5c:4b:e6:02:3f:db:b2:d5:76:cc:20:ef:64:31: 71:48:87:3f:40:de:c0:a1:58:f7:13:99:b8:58:5a: 99:7c:7d:16:9f:2e:f9:c5:ac:37:81:d6:1c:bc:b8: f3:23:01:fe:46:7a:b5:8c:29:71:fd:b5:17:e2:49: 83:71:b4:68:d7:4a:09:70:d3:58:c8:d1:1b:a2:75: fa:68:35:30:68:cd:e8:a9:1c:1e:3f:8e:9f:b6:05: 67:f5:83:56:e1:f8:a6:b7:2f:b7:86:d6:a6:69:03: c9:60:4e:54:d2:f3:2f:80:02:4e:7f:83:33:1b:eb: 16:2f:18:55:af:8d:b6:68:bd:98:10:8c:b2:40:c8: cd:2b:7c:4b:7c:18:23:11:0a:2b:59:14:ca:9f:4a: f7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B3:D4:93:B1:99:F7:5B:FE:71:6D:93:6E:6F:C7:D5:0D:67:D5:3F X509v3 Authority Key Identifier: keyid:BA:65:CD:04:3C:E7:E9:AE:0C:DA:AE:BF:12:E3:3D:86:46:7A:8F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/3130332e3136302e31352e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.15.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:68:46:b3:b0:cd:43:00:84:4d:66:19:1b:eb:1a:5b:5b:2a: 69:68:a5:6b:fd:91:c5:d1:90:6e:7c:5b:17:17:9e:79:c7:5f: ed:d7:f5:d6:02:57:fb:48:d1:01:2a:04:26:6b:a5:d0:46:c2: 08:c2:27:b5:b8:93:24:3c:cc:bc:01:dc:54:6a:e6:3d:a3:2b: af:ea:c2:d7:9f:3a:d9:5b:04:2d:1d:f2:7f:b1:ab:bd:8d:08: 39:4c:43:23:b4:af:70:a0:d1:a4:47:da:5b:79:bf:2d:72:ef: c1:8b:bc:ab:13:9e:c6:ca:1e:b8:76:d3:85:41:73:62:87:cf: b8:e4:84:a1:39:a7:15:09:4f:42:8f:a6:09:f5:10:8a:66:f3: bc:67:19:0f:6f:8b:6d:3a:05:ca:c3:92:72:22:10:5c:91:ed: 71:55:14:db:b7:a5:d5:29:1c:4d:f6:bf:33:fb:45:ae:b9:fe: cd:e6:c2:5e:fe:05:5c:ca:23:d9:ab:21:11:35:13:98:f7:67: 08:49:f3:2a:84:36:1e:45:e4:c4:9c:a0:a6:fc:22:44:7d:59: e9:e0:6f:31:e9:36:f2:f1:07:c6:09:ef:1a:43:16:28:65:a3: 98:98:db:e5:6b:79:5a:58:b2:64:d5:50:7a:fb:dd:3b:d3:26: fc:15:ff:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI0CvY6pBaeSMKbu4z8E0gi52WWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE2NUNEMDQzQ0U3RTlBRTBDREFBRUJGMTJFMzNEODY0 NjdBOEZFNzAeFw0yNTA0MTQwODU3MjRaFw0yNjA0MTMwOTAyMjRaMDMxMTAvBgNV BAMTKDg1QjNENDkzQjE5OUY3NUJGRTcxNkQ5MzZFNkZDN0Q1MEQ2N0Q1M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxz9wgmo8CTLm8xOxGQpMiGyQN muAQjERh/n8t12ab7C3NJ09MVcJvtmxQ8BGUGDhYPmzNVWPj4ljim0j3+5VyDQV2 s/j0TmhJIaM8Ihqg/NaYhcK/909hbAH9oaT38PeUbeq1WBWIl+xcS+YCP9uy1XbM IO9kMXFIhz9A3sChWPcTmbhYWpl8fRafLvnFrDeB1hy8uPMjAf5GerWMKXH9tRfi SYNxtGjXSglw01jI0RuidfpoNTBozeipHB4/jp+2BWf1g1bh+Ka3L7eG1qZpA8lg TlTS8y+AAk5/gzMb6xYvGFWvjbZovZgQjLJAyM0rfEt8GCMRCitZFMqfSvf3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhbPUk7GZ91v+cW2Tbm/H1Q1n1T8wHwYDVR0j BBgwFoAUumXNBDzn6a4M2q6/EuM9hkZ6j+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmI3MTUzNi03MTdlLTQ1ZGItYTAzYS0zMzhmMWRmYTQ4OTMvMC9CQTY1Q0QwNDND RTdFOUFFMENEQUFFQkYxMkUzM0Q4NjQ2N0E4RkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkE2NUNEMDQzQ0U3RTlBRTBDREFBRUJGMTJFMzNEODY0NjdB OEZFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyYjcxNTM2LTcxN2UtNDVkYi1h MDNhLTMzOGYxZGZhNDg5My8wLzMxMzAzMzJlMzEzNjMwMmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6APMA0GCSqG SIb3DQEBCwUAA4IBAQBtaEazsM1DAIRNZhkb6xpbWyppaKVr/ZHF0ZBufFsXF555 x1/t1/XWAlf7SNEBKgQma6XQRsIIwie1uJMkPMy8AdxUauY9oyuv6sLXnzrZWwQt HfJ/sau9jQg5TEMjtK9woNGkR9pbeb8tcu/Bi7yrE57Gyh64dtOFQXNih8+45ISh OacVCU9Cj6YJ9RCKZvO8ZxkPb4ttOgXKw5JyIhBcke1xVRTbt6XVKRxN9r8z+0Wu uf7N5sJe/gVcyiPZqyERNROY92cISfMqhDYeReTEnKCm/CJEfVnp4G8x6Tby8QfG Ce8aQxYoZaOYmNvla3laWLJk1VB6+9070yb8Ff8l -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:21 2025 by rpki-client on console.sobornost.net