$ rpki-client -vvf repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa File: 3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa (raw, json) Hash identifier: BLd6q/emexfVlm7VngzEQ5OJ7RS62yZ/WvulX36XvOE= Subject key identifier: 30:4A:31:2C:36:FC:C0:65:52:4F:48:9D:FE:83:3B:DF:75:B6:D3:3F Certificate issuer: /CN=00CBB314A3396508984527DC9E3F91DA2A407863 Certificate serial: 583E59CD4F651189ECF31D976F8EB656DD45F466 Authority key identifier: 00:CB:B3:14:A3:39:65:08:98:45:27:DC:9E:3F:91:DA:2A:40:78:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer Subject info access: rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa Signing time: Sat 12 Apr 2025 09:00:01 +0000 ROA not before: Sat 12 Apr 2025 08:55:01 +0000 ROA not after: Sat 11 Apr 2026 09:00:01 +0000 asID: 150931 IP address blocks: 103.196.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.crl rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:3e:59:cd:4f:65:11:89:ec:f3:1d:97:6f:8e:b6:56:dd:45:f4:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00CBB314A3396508984527DC9E3F91DA2A407863 Validity Not Before: Apr 12 08:55:01 2025 GMT Not After : Apr 11 09:00:01 2026 GMT Subject: CN=304A312C36FCC065524F489DFE833BDF75B6D33F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:18:de:75:2c:6a:19:ab:7c:75:13:fd:38:6c: f2:07:d8:4c:10:69:ac:fd:bb:f5:89:d0:e4:20:70: 1a:5b:0b:95:11:18:e8:7b:f6:7c:a1:b6:bc:db:64: 66:b1:77:8a:0a:fa:a3:8f:83:74:04:57:71:9c:78: d9:56:43:0b:11:d9:24:49:69:81:66:04:be:84:32: f1:77:ef:b3:d8:93:59:de:37:6b:d9:29:8f:dd:a5: f6:6a:0a:b5:b3:7a:a3:b4:4f:0e:dd:a9:0e:3f:40: 47:0c:34:7e:1b:1d:04:f0:4e:bd:7d:34:d0:a1:4c: f1:be:14:12:98:32:d0:18:95:c8:12:66:5f:50:96: 92:da:a4:e4:1b:4c:e2:37:67:16:eb:ea:7c:25:d5: d9:69:ba:cf:a6:bc:fa:0f:b7:4c:88:2a:9e:38:a4: 90:a3:b1:e4:ac:fa:24:13:54:73:ae:ae:70:81:cc: a5:7e:56:ec:f2:c0:6d:6e:84:06:b4:85:8d:65:43: ee:f6:b3:e9:75:b9:76:f1:9c:ab:ca:59:4e:76:e4: 2d:83:2d:7b:9d:4f:96:e4:13:9c:73:34:17:9d:4d: 10:66:30:7a:1b:c2:4b:a0:d1:7a:ae:76:29:7b:d3: 12:8d:5a:3d:20:40:d6:85:2a:8f:98:9b:d5:b6:0d: 47:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4A:31:2C:36:FC:C0:65:52:4F:48:9D:FE:83:3B:DF:75:B6:D3:3F X509v3 Authority Key Identifier: keyid:00:CB:B3:14:A3:39:65:08:98:45:27:DC:9E:3F:91:DA:2A:40:78:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.85.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:3f:59:20:35:9a:e7:69:58:df:c1:59:ed:9f:3e:e8:d2:5f: 44:8e:78:ce:33:eb:b5:ab:85:92:8e:d8:f4:ae:35:89:33:85: 2b:bf:ec:cd:fa:cf:eb:fc:31:4c:2b:d1:77:92:da:a6:d3:d0: 19:6c:cd:fa:e4:bc:4d:2c:29:8c:cb:41:1e:da:46:f9:0a:41: fe:e8:be:76:a5:a0:13:5a:c9:a1:83:2b:4a:65:43:c4:ba:a3: bf:1c:d6:9b:a1:0e:c6:19:9f:b4:1e:45:da:92:da:de:e4:7d: e8:d5:b6:4b:9a:00:89:80:d1:9f:04:9b:39:e0:3b:34:bf:cc: 67:99:04:1c:bb:d6:17:3a:3f:d3:9e:17:48:19:50:f4:83:18: b2:2a:cd:73:76:72:81:9e:aa:eb:ef:41:0d:27:46:d6:75:77: 79:af:17:23:7a:84:90:ce:da:43:03:6a:6f:41:e5:9a:df:9c: 99:c0:2d:cd:86:05:c6:3f:94:4f:25:13:c7:52:ef:96:ab:58: ab:b6:e2:b5:8d:12:d2:c6:ac:f3:73:01:fe:19:5c:1e:19:52: 6d:ae:cc:30:b9:3d:d3:e5:0a:ea:e5:5a:f2:1e:93:80:6e:5a: aa:cd:d8:84:86:dc:75:55:b6:6e:07:d5:ae:cd:07:43:02:c4: 57:e1:58:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWD5ZzU9lEYns8x2Xb462Vt1F9GYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBDQkIzMTRBMzM5NjUwODk4NDUyN0RDOUUzRjkxREEy QTQwNzg2MzAeFw0yNTA0MTIwODU1MDFaFw0yNjA0MTEwOTAwMDFaMDMxMTAvBgNV BAMTKDMwNEEzMTJDMzZGQ0MwNjU1MjRGNDg5REZFODMzQkRGNzVCNkQzM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGN51LGoZq3x1E/04bPIH2EwQ aaz9u/WJ0OQgcBpbC5URGOh79nyhtrzbZGaxd4oK+qOPg3QEV3GceNlWQwsR2SRJ aYFmBL6EMvF377PYk1neN2vZKY/dpfZqCrWzeqO0Tw7dqQ4/QEcMNH4bHQTwTr19 NNChTPG+FBKYMtAYlcgSZl9QlpLapOQbTOI3Zxbr6nwl1dlpus+mvPoPt0yIKp44 pJCjseSs+iQTVHOurnCBzKV+VuzywG1uhAa0hY1lQ+72s+l1uXbxnKvKWU525C2D LXudT5bkE5xzNBedTRBmMHobwkug0Xqudil70xKNWj0gQNaFKo+Ym9W2DUcvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMEoxLDb8wGVST0id/oM733W20z8wHwYDVR0j BBgwFoAUAMuzFKM5ZQiYRSfcnj+R2ipAeGMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NzRkYzVlMS0xZDU1LTQ5ZDItOTNkNC01ZDk4ZWFkNzc5ZWQvMC8wMENCQjMxNEEz Mzk2NTA4OTg0NTI3REM5RTNGOTFEQTJBNDA3ODYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBDQkIzMTRBMzM5NjUwODk4NDUyN0RDOUUzRjkxREEyQTQw Nzg2My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3NGRjNWUxLTFkNTUtNDlkMi05 M2Q0LTVkOThlYWQ3NzllZC8wLzMxMzAzMzJlMzEzOTM2MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8RVMA0GCSqG SIb3DQEBCwUAA4IBAQCdP1kgNZrnaVjfwVntnz7o0l9EjnjOM+u1q4WSjtj0rjWJ M4Urv+zN+s/r/DFMK9F3ktqm09AZbM365LxNLCmMy0Ee2kb5CkH+6L52paATWsmh gytKZUPEuqO/HNaboQ7GGZ+0HkXaktre5H3o1bZLmgCJgNGfBJs54Ds0v8xnmQQc u9YXOj/TnhdIGVD0gxiyKs1zdnKBnqrr70ENJ0bWdXd5rxcjeoSQztpDA2pvQeWa 35yZwC3NhgXGP5RPJRPHUu+Wq1irtuK1jRLSxqzzcwH+GVweGVJtrswwuT3T5Qrq 5VryHpOAblqqzdiEhtx1VbZuB9WuzQdDAsRX4Vio -----END CERTIFICATE-----Generated at Fri Apr 25 22:07:24 2025 by rpki-client on console.sobornost.net