$ rpki-client -vvf repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa File: 3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: k8S4ytxUaj76beyPRcDHD1fQEEQNVlrOr14776a6SbE= Subject key identifier: 45:60:36:49:2B:2A:9A:20:40:C0:EF:F4:CE:5F:BC:4C:D5:F1:E7:DF Certificate issuer: /CN=6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF Certificate serial: 3E0D6AF0FAD93829930C256CE6B57B1399DC058D Authority key identifier: 6A:2F:66:2B:6D:6A:DE:8B:FC:30:D2:CD:E4:9E:36:01:52:FD:38:BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa Signing time: Thu 17 Apr 2025 04:02:19 +0000 ROA not before: Thu 17 Apr 2025 03:57:19 +0000 ROA not after: Thu 16 Apr 2026 04:02:19 +0000 asID: 38320 IP address blocks: 103.158.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.crl rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 02:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0d:6a:f0:fa:d9:38:29:93:0c:25:6c:e6:b5:7b:13:99:dc:05:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF Validity Not Before: Apr 17 03:57:19 2025 GMT Not After : Apr 16 04:02:19 2026 GMT Subject: CN=456036492B2A9A2040C0EFF4CE5FBC4CD5F1E7DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dc:c2:6f:e1:10:ac:1c:20:e6:8f:7f:a8:55: ef:11:64:2b:32:a9:e5:c9:d7:4f:21:4f:25:2a:c9: 05:9e:25:cd:62:b1:e9:bc:4f:bc:a9:46:c1:c4:53: 18:d6:37:92:0f:a4:13:91:f0:2b:90:ea:78:1b:4c: 32:f4:bf:a5:4a:31:35:bc:41:43:c9:01:a9:49:a8: 0e:97:a9:99:13:1a:05:b9:3b:89:8d:e6:c9:cd:a7: a4:d9:74:27:1f:56:14:7c:41:a7:f0:41:e6:6b:d4: 04:83:d4:4f:9f:05:0d:97:8a:2b:b7:ca:aa:6d:d2: 04:13:a5:c7:aa:8c:9a:5e:cb:fd:eb:dc:ed:ad:77: 73:14:42:ef:93:08:ac:6e:40:aa:39:88:0d:bf:5a: fa:68:fb:d2:77:b5:eb:37:7d:35:bf:55:6e:54:73: 7f:6f:40:0f:59:55:d4:16:ef:33:f3:2f:c2:ed:bd: c7:c1:2b:e6:2e:7b:bc:12:ca:25:b1:d4:fe:7c:e6: 9d:df:c5:a2:e5:e0:32:e6:7f:6f:3c:65:47:39:37: b3:ff:21:b1:24:53:6a:34:f5:c5:5c:66:9c:76:cc: 02:75:14:89:78:5f:10:69:5e:91:a3:a8:74:85:ed: 3b:ba:ce:ad:d3:0a:f0:bb:94:9f:85:4f:26:bf:d7: ca:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:60:36:49:2B:2A:9A:20:40:C0:EF:F4:CE:5F:BC:4C:D5:F1:E7:DF X509v3 Authority Key Identifier: keyid:6A:2F:66:2B:6D:6A:DE:8B:FC:30:D2:CD:E4:9E:36:01:52:FD:38:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.128.0/23 Signature Algorithm: sha256WithRSAEncryption 99:2b:b0:0a:8b:b1:b1:a2:04:e3:de:c0:45:d4:e3:47:df:f9: ce:30:18:37:fc:fc:50:cc:7c:53:ff:64:08:43:81:fe:79:6d: f3:43:79:b6:98:5d:a2:89:d6:1c:90:ff:1d:b1:78:6f:4b:d8: 99:5d:8a:f8:56:2a:13:99:d1:d1:2c:7c:01:e3:4d:16:b1:2d: 23:17:3a:1b:64:27:b6:f3:18:6e:36:15:68:9a:a8:7f:34:29: b6:7e:36:6b:da:2e:7c:f3:ce:b0:0f:f2:34:56:4a:11:6b:b0: 1f:d8:f1:6a:65:c1:bc:2f:0d:e9:f2:73:a5:36:45:71:92:59: ea:ad:c2:ed:2b:fe:e6:a4:51:ef:b5:34:d4:2f:85:48:41:a7: cf:f6:bf:33:5a:3a:4e:88:e5:61:9d:e9:4b:51:f3:ea:2d:ba: 95:17:16:5a:81:f4:cc:20:ac:75:55:3d:ca:36:3b:a3:a2:dd: d2:ec:65:a4:ac:25:a7:01:f6:56:12:30:d2:ee:6e:de:51:eb: 54:f7:73:0b:bf:95:c4:bf:02:04:35:28:c8:61:e7:a6:97:40: 94:29:fd:25:3a:c6:91:f5:16:f9:0a:77:1d:10:ba:01:08:c2: ea:7c:ee:c3:9f:54:fc:06:b1:7b:24:b7:6d:94:0d:86:cf:83: 0c:38:6f:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPg1q8PrZOCmTDCVs5rV7E5ncBY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEyRjY2MkI2RDZBREU4QkZDMzBEMkNERTQ5RTM2MDE1 MkZEMzhCRjAeFw0yNTA0MTcwMzU3MTlaFw0yNjA0MTYwNDAyMTlaMDMxMTAvBgNV BAMTKDQ1NjAzNjQ5MkIyQTlBMjA0MEMwRUZGNENFNUZCQzRDRDVGMUU3REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC3MJv4RCsHCDmj3+oVe8RZCsy qeXJ108hTyUqyQWeJc1isem8T7ypRsHEUxjWN5IPpBOR8CuQ6ngbTDL0v6VKMTW8 QUPJAalJqA6XqZkTGgW5O4mN5snNp6TZdCcfVhR8QafwQeZr1ASD1E+fBQ2Xiiu3 yqpt0gQTpceqjJpey/3r3O2td3MUQu+TCKxuQKo5iA2/Wvpo+9J3tes3fTW/VW5U c39vQA9ZVdQW7zPzL8LtvcfBK+Yue7wSyiWx1P585p3fxaLl4DLmf288ZUc5N7P/ IbEkU2o09cVcZpx2zAJ1FIl4XxBpXpGjqHSF7Tu6zq3TCvC7lJ+FTya/18pDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURWA2SSsqmiBAwO/0zl+8TNXx598wHwYDVR0j BBgwFoAUai9mK21q3ov8MNLN5J42AVL9OL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x M2YwYTgzYy0yYmMwLTQyYTUtYTRhZS0xMWE1Mzg4MmRmMTAvMC82QTJGNjYyQjZE NkFERThCRkMzMEQyQ0RFNDlFMzYwMTUyRkQzOEJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEyRjY2MkI2RDZBREU4QkZDMzBEMkNERTQ5RTM2MDE1MkZE MzhCRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzZjBhODNjLTJiYzAtNDJhNS1h NGFlLTExYTUzODgyZGYxMC8wLzMxMzAzMzJlMzEzNTM4MmUzMTMyMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ56AMA0GCSqG SIb3DQEBCwUAA4IBAQCZK7AKi7GxogTj3sBF1ONH3/nOMBg3/PxQzHxT/2QIQ4H+ eW3zQ3m2mF2iidYckP8dsXhvS9iZXYr4VioTmdHRLHwB400WsS0jFzobZCe28xhu NhVomqh/NCm2fjZr2i58886wD/I0VkoRa7Af2PFqZcG8Lw3p8nOlNkVxklnqrcLt K/7mpFHvtTTUL4VIQafP9r8zWjpOiOVhnelLUfPqLbqVFxZagfTMIKx1VT3KNjuj ot3S7GWkrCWnAfZWEjDS7m7eUetU93MLv5XEvwIENSjIYeeml0CUKf0lOsaR9Rb5 CncdELoBCMLqfO7Dn1T8BrF7JLdtlA2Gz4MMOG/D -----END CERTIFICATE-----Generated at Wed Apr 23 22:12:03 2025 by rpki-client on console.sobornost.net