$ rpki-client -vvf repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/3130332e342e3234302e302f32342d3234203d3e20313439363834.roa File: 3130332e342e3234302e302f32342d3234203d3e20313439363834.roa (raw, json) Hash identifier: FXE5GAFeqGpeEgNYhdu+NiOVWPi7nwVOKlyxLEU4cy8= Subject key identifier: 20:2F:53:F1:EA:D6:8C:F2:A0:05:FB:50:EC:9E:AA:6D:27:AB:5B:52 Certificate issuer: /CN=21F8D88DCD7D814618247F203F04126E51C2D65E Certificate serial: 7687D677014BCC420A9C7F853F104815AF9AABA1 Authority key identifier: 21:F8:D8:8D:CD:7D:81:46:18:24:7F:20:3F:04:12:6E:51:C2:D6:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F8D88DCD7D814618247F203F04126E51C2D65E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/3130332e342e3234302e302f32342d3234203d3e20313439363834.roa Signing time: Fri 21 Mar 2025 04:00:02 +0000 ROA not before: Fri 21 Mar 2025 03:55:02 +0000 ROA not after: Fri 20 Mar 2026 04:00:02 +0000 asID: 149684 IP address blocks: 103.4.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/21F8D88DCD7D814618247F203F04126E51C2D65E.crl rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/21F8D88DCD7D814618247F203F04126E51C2D65E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F8D88DCD7D814618247F203F04126E51C2D65E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 01:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:87:d6:77:01:4b:cc:42:0a:9c:7f:85:3f:10:48:15:af:9a:ab:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F8D88DCD7D814618247F203F04126E51C2D65E Validity Not Before: Mar 21 03:55:02 2025 GMT Not After : Mar 20 04:00:02 2026 GMT Subject: CN=202F53F1EAD68CF2A005FB50EC9EAA6D27AB5B52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:23:a9:fb:81:54:4d:7e:61:d8:86:b0:e8:1d: 97:91:d5:9e:44:5a:72:79:4e:6a:05:c5:c3:32:f8: 79:52:5d:61:cf:a3:4e:4d:24:6d:96:1b:ad:ee:d7: 34:cd:15:1d:d7:ee:32:f7:83:03:90:e9:2c:16:af: bc:71:6e:44:ef:64:20:87:ef:32:b1:e1:2e:38:d5: 09:b5:fe:c7:f3:85:51:86:7f:8a:0c:cb:80:46:ea: 4a:54:b9:d2:90:34:85:cb:09:b3:87:5f:77:c0:32: 29:8c:3a:20:8d:6c:40:fc:55:6f:94:2a:88:e3:a1: eb:d9:36:c6:54:bc:d1:1d:27:f3:1f:d7:34:36:3d: 71:43:b7:e5:50:a1:59:a3:59:84:2d:29:07:17:2d: 11:96:19:89:8b:06:5a:0b:5b:c4:a8:ab:4e:49:f3: 26:7a:02:f3:cf:63:55:2b:94:02:6a:2d:cf:d6:3f: 88:bb:69:8f:48:8f:73:a5:79:f8:90:59:4c:85:70: 69:68:c0:8c:19:c7:6d:d1:66:fe:e2:a0:4e:f0:23: e6:e8:56:f2:9c:24:13:de:70:5d:70:37:f0:84:54: fb:0a:fa:75:ba:96:c4:40:3f:9f:94:15:4a:55:21: 03:a2:a9:d6:b6:fa:f3:ed:8a:47:95:70:f8:58:cd: c6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2F:53:F1:EA:D6:8C:F2:A0:05:FB:50:EC:9E:AA:6D:27:AB:5B:52 X509v3 Authority Key Identifier: keyid:21:F8:D8:8D:CD:7D:81:46:18:24:7F:20:3F:04:12:6E:51:C2:D6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/21F8D88DCD7D814618247F203F04126E51C2D65E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F8D88DCD7D814618247F203F04126E51C2D65E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/3130332e342e3234302e302f32342d3234203d3e20313439363834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.240.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:48:f6:20:a4:37:13:d9:e6:6a:63:45:b8:89:e2:69:12:47: 94:9d:e3:82:15:be:b4:af:28:5d:d5:76:0e:d9:85:a3:19:8d: 77:64:fd:e1:01:2b:d0:1e:ff:00:f5:c5:1f:89:59:67:f9:4c: 22:88:73:54:ea:3d:51:e6:4d:ff:6e:3b:3c:42:df:9a:d4:1f: bb:4c:59:eb:66:f0:37:47:de:8b:1f:16:0d:4e:f1:b3:5c:00: 12:f8:f7:d6:f5:3f:51:75:89:da:d6:35:ae:58:67:ca:d6:fa: d0:42:69:a4:2f:1d:b6:5d:cb:17:c9:45:ec:ef:4c:3f:1d:65: 3f:6b:e1:67:bb:1f:cd:4d:04:05:01:38:62:d8:9b:05:3f:7d: de:09:46:50:37:f8:b1:04:a2:8a:0d:4a:3e:1f:2c:a0:26:66: 0d:b9:70:d1:e6:bc:4d:56:40:72:31:68:df:09:3e:c2:0f:dc: 1a:b5:1b:2a:89:73:98:d3:75:57:f4:a4:bd:14:91:ec:2f:43: ba:d2:aa:7c:21:fd:7c:c8:99:b9:06:9f:49:f7:a4:24:3e:59: 1c:9e:09:8a:6b:f1:c8:36:b3:12:fc:21:df:e2:84:68:b6:a8: d6:c7:3c:1b:2e:2e:35:b9:1b:07:b0:50:21:e1:11:ac:82:8f: 59:92:7a:65 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdofWdwFLzEIKnH+FPxBIFa+aq6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGOEQ4OERDRDdEODE0NjE4MjQ3RjIwM0YwNDEyNkU1 MUMyRDY1RTAeFw0yNTAzMjEwMzU1MDJaFw0yNjAzMjAwNDAwMDJaMDMxMTAvBgNV BAMTKDIwMkY1M0YxRUFENjhDRjJBMDA1RkI1MEVDOUVBQTZEMjdBQjVCNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3I6n7gVRNfmHYhrDoHZeR1Z5E WnJ5TmoFxcMy+HlSXWHPo05NJG2WG63u1zTNFR3X7jL3gwOQ6SwWr7xxbkTvZCCH 7zKx4S441Qm1/sfzhVGGf4oMy4BG6kpUudKQNIXLCbOHX3fAMimMOiCNbED8VW+U KojjoevZNsZUvNEdJ/Mf1zQ2PXFDt+VQoVmjWYQtKQcXLRGWGYmLBloLW8Soq05J 8yZ6AvPPY1UrlAJqLc/WP4i7aY9Ij3OlefiQWUyFcGlowIwZx23RZv7ioE7wI+bo VvKcJBPecF1wN/CEVPsK+nW6lsRAP5+UFUpVIQOiqda2+vPtikeVcPhYzcZ9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIC9T8erWjPKgBftQ7J6qbSerW1IwHwYDVR0j BBgwFoAUIfjYjc19gUYYJH8gPwQSblHC1l4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U4ZGQ0MC1iYjk0LTRkNDMtYjg4OS04YTA5OGQ3ZjQ1YWMvMC8yMUY4RDg4RENE N0Q4MTQ2MTgyNDdGMjAzRjA0MTI2RTUxQzJENjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGOEQ4OERDRDdEODE0NjE4MjQ3RjIwM0YwNDEyNkU1MUMy RDY1RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZThkZDQwLWJiOTQtNGQ0My1i ODg5LThhMDk4ZDdmNDVhYy8wLzMxMzAzMzJlMzQyZTMyMzQzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM2MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcE8DANBgkqhkiG 9w0BAQsFAAOCAQEAnEj2IKQ3E9nmamNFuIniaRJHlJ3jghW+tK8oXdV2DtmFoxmN d2T94QEr0B7/APXFH4lZZ/lMIohzVOo9UeZN/247PELfmtQfu0xZ62bwN0feix8W DU7xs1wAEvj31vU/UXWJ2tY1rlhnytb60EJppC8dtl3LF8lF7O9MPx1lP2vhZ7sf zU0EBQE4YtibBT993glGUDf4sQSiig1KPh8soCZmDblw0ea8TVZAcjFo3wk+wg/c GrUbKolzmNN1V/SkvRSR7C9DutKqfCH9fMiZuQafSfekJD5ZHJ4JimvxyDazEvwh 3+KEaLao1sc8Gy4uNbkbB7BQIeERrIKPWZJ6ZQ== -----END CERTIFICATE-----Generated at Thu Apr 24 04:31:37 2025 by rpki-client on console.sobornost.net