$ rpki-client -vvf repo-rpki.idnic.net/repo/1635a451-c304-45f5-b7db-5687e2b10807/0/3130332e3135342e37362e302f32342d3234203d3e20313430343831.roa File: 3130332e3135342e37362e302f32342d3234203d3e20313430343831.roa (raw, json) Hash identifier: AokcwqbiC4agd4vuQFD9ZPFGfzBXJyXcGsAxju/Umd8= Subject key identifier: D3:C1:7F:BC:FF:42:B6:C3:8D:41:76:08:B9:37:7A:DA:73:BA:9F:EF Certificate issuer: /CN=CEAE4F7759EE21BA652E0FB89D01A309B65D17D3 Certificate serial: 298463503459E59F39B7EF4D1680D197412A2D63 Authority key identifier: CE:AE:4F:77:59:EE:21:BA:65:2E:0F:B8:9D:01:A3:09:B6:5D:17:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEAE4F7759EE21BA652E0FB89D01A309B65D17D3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1635a451-c304-45f5-b7db-5687e2b10807/0/3130332e3135342e37362e302f32342d3234203d3e20313430343831.roa Signing time: Mon 03 Mar 2025 03:34:31 +0000 ROA not before: Mon 03 Mar 2025 03:29:31 +0000 ROA not after: Mon 02 Mar 2026 03:34:31 +0000 asID: 140481 IP address blocks: 103.154.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1635a451-c304-45f5-b7db-5687e2b10807/0/CEAE4F7759EE21BA652E0FB89D01A309B65D17D3.crl rsync://repo-rpki.idnic.net/repo/1635a451-c304-45f5-b7db-5687e2b10807/0/CEAE4F7759EE21BA652E0FB89D01A309B65D17D3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEAE4F7759EE21BA652E0FB89D01A309B65D17D3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:84:63:50:34:59:e5:9f:39:b7:ef:4d:16:80:d1:97:41:2a:2d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEAE4F7759EE21BA652E0FB89D01A309B65D17D3 Validity Not Before: Mar 3 03:29:31 2025 GMT Not After : Mar 2 03:34:31 2026 GMT Subject: CN=D3C17FBCFF42B6C38D417608B9377ADA73BA9FEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:01:b6:98:fb:a0:a3:de:e6:d1:74:6b:da: a2:37:3f:fd:33:57:88:12:37:6c:f5:03:2d:be:93: 50:95:21:19:bf:43:d3:4e:ef:3b:8c:20:27:03:33: 12:0e:c1:65:57:69:0e:dc:ee:f5:77:c8:7f:7c:f2: ff:f2:70:36:dd:ef:d0:9f:86:60:3e:c9:8e:80:c9: 06:45:48:4c:36:6a:f6:0a:f5:fd:33:99:f0:5f:72: cc:00:08:bd:dd:9f:d9:ea:66:9b:8d:c2:9d:10:08: e4:ff:2d:c0:99:98:a6:e9:2b:b1:4b:a3:3d:78:9d: 28:6e:80:20:77:1d:ea:cb:91:e9:73:54:47:4e:33: a6:b0:6b:82:19:00:60:76:f7:23:2f:a5:56:f0:41: 62:ca:3a:4b:27:a7:81:41:59:3d:86:79:df:de:f1: cb:8c:e9:15:1d:e1:fd:7c:36:b9:4e:04:65:9e:c4: d0:24:65:4f:f7:4b:62:90:38:bf:f4:dd:a6:bb:7d: 75:f0:c2:99:13:10:eb:4a:21:34:bf:f2:00:d7:cd: 90:04:53:48:b7:c6:57:bd:ce:bf:94:65:15:4d:6a: f0:47:10:44:1c:07:65:25:4c:9f:d1:7e:8c:76:f7: b4:1f:28:53:45:1f:e7:f7:21:dc:c4:15:79:55:a9: 48:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C1:7F:BC:FF:42:B6:C3:8D:41:76:08:B9:37:7A:DA:73:BA:9F:EF X509v3 Authority Key Identifier: keyid:CE:AE:4F:77:59:EE:21:BA:65:2E:0F:B8:9D:01:A3:09:B6:5D:17:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1635a451-c304-45f5-b7db-5687e2b10807/0/CEAE4F7759EE21BA652E0FB89D01A309B65D17D3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEAE4F7759EE21BA652E0FB89D01A309B65D17D3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1635a451-c304-45f5-b7db-5687e2b10807/0/3130332e3135342e37362e302f32342d3234203d3e20313430343831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.76.0/24 Signature Algorithm: sha256WithRSAEncryption 34:10:0f:7b:8e:fd:ad:a3:74:8a:6f:be:b2:04:2e:ef:76:c5: 48:7d:b8:88:3e:81:42:24:a9:d3:30:0a:ed:ac:0c:f7:73:6d: 71:cc:cc:91:7a:7f:05:f1:ca:d4:c5:69:3f:94:d8:9b:0e:47: 72:5d:3c:a3:48:d6:c5:3c:a3:4f:f4:d7:92:a3:b9:54:7d:9b: 9e:af:87:7c:73:7b:bf:d8:c0:72:f3:2f:8d:25:ba:e7:5f:36: 5e:46:8b:c9:4a:d4:0b:fc:51:c3:ef:be:0b:0b:91:ed:31:5c: 75:30:aa:e0:f5:15:ae:da:fd:47:b6:37:de:75:1e:a5:05:75: 3c:37:fc:3f:7e:9e:a5:8f:a2:f7:05:6c:fd:fd:85:61:40:aa: cf:78:2a:70:bf:e3:e8:5a:09:9a:f6:bb:52:ef:d6:60:0d:4b: b2:4c:3c:87:12:23:e9:05:02:eb:8d:a1:47:6d:d4:2e:24:64: 8e:d8:34:84:a1:b8:42:f2:0c:b8:50:b8:6d:fc:ed:f0:01:c1: 8a:e9:51:50:9d:b5:90:0e:36:ac:9a:64:42:e0:c0:6b:f7:d6: 47:58:1d:62:1a:8b:40:7c:c8:4e:8e:14:43:24:5e:1f:47:df: 9e:52:04:35:24:8a:fd:a1:32:5b:4c:e1:96:95:8f:55:ca:e5: 1e:af:34:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKYRjUDRZ5Z85t+9NFoDRl0EqLWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBRTRGNzc1OUVFMjFCQTY1MkUwRkI4OUQwMUEzMDlC NjVEMTdEMzAeFw0yNTAzMDMwMzI5MzFaFw0yNjAzMDIwMzM0MzFaMDMxMTAvBgNV BAMTKEQzQzE3RkJDRkY0MkI2QzM4RDQxNzYwOEI5Mzc3QURBNzNCQTlGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCohwG2mPugo97m0XRr2qI3P/0z V4gSN2z1Ay2+k1CVIRm/Q9NO7zuMICcDMxIOwWVXaQ7c7vV3yH988v/ycDbd79Cf hmA+yY6AyQZFSEw2avYK9f0zmfBfcswACL3dn9nqZpuNwp0QCOT/LcCZmKbpK7FL oz14nShugCB3HerLkelzVEdOM6awa4IZAGB29yMvpVbwQWLKOksnp4FBWT2Ged/e 8cuM6RUd4f18NrlOBGWexNAkZU/3S2KQOL/03aa7fXXwwpkTEOtKITS/8gDXzZAE U0i3xle9zr+UZRVNavBHEEQcB2UlTJ/Rfox297QfKFNFH+f3IdzEFXlVqUhfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU08F/vP9CtsONQXYIuTd62nO6n+8wHwYDVR0j BBgwFoAUzq5Pd1nuIbplLg+4nQGjCbZdF9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjM1YTQ1MS1jMzA0LTQ1ZjUtYjdkYi01Njg3ZTJiMTA4MDcvMC9DRUFFNEY3NzU5 RUUyMUJBNjUyRTBGQjg5RDAxQTMwOUI2NUQxN0QzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBRTRGNzc1OUVFMjFCQTY1MkUwRkI4OUQwMUEzMDlCNjVE MTdEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2MzVhNDUxLWMzMDQtNDVmNS1i N2RiLTU2ODdlMmIxMDgwNy8wLzMxMzAzMzJlMzEzNTM0MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5pMMA0GCSqG SIb3DQEBCwUAA4IBAQA0EA97jv2to3SKb76yBC7vdsVIfbiIPoFCJKnTMArtrAz3 c21xzMyRen8F8crUxWk/lNibDkdyXTyjSNbFPKNP9NeSo7lUfZuer4d8c3u/2MBy 8y+NJbrnXzZeRovJStQL/FHD774LC5HtMVx1MKrg9RWu2v1HtjfedR6lBXU8N/w/ fp6lj6L3BWz9/YVhQKrPeCpwv+PoWgma9rtS79ZgDUuyTDyHEiPpBQLrjaFHbdQu JGSO2DSEobhC8gy4ULht/O3wAcGK6VFQnbWQDjasmmRC4MBr99ZHWB1iGotAfMhO jhRDJF4fR9+eUgQ1JIr9oTJbTOGWlY9VyuUerzTa -----END CERTIFICATE-----Generated at Thu Apr 24 09:03:02 2025 by rpki-client on console.sobornost.net