$ rpki-client -vvf repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/3131372e3130332e36342e302f32322d3234203d3e203435373138.roa File: 3131372e3130332e36342e302f32322d3234203d3e203435373138.roa (raw, json) Hash identifier: dcaXEHmtpvgdp2B+61+9NSsaEhu3dJ+pR5a99XJxHq0= Subject key identifier: 7C:4E:76:58:00:76:EE:57:95:16:C7:E1:02:5E:03:A5:21:33:EC:E1 Certificate issuer: /CN=E475A8B018BAE58448DDE55D9487442B3BD31D1D Certificate serial: 1DDDB7FFB65C8FBEA4B3DDF163CC35C03078952B Authority key identifier: E4:75:A8:B0:18:BA:E5:84:48:DD:E5:5D:94:87:44:2B:3B:D3:1D:1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/3131372e3130332e36342e302f32322d3234203d3e203435373138.roa Signing time: Sat 22 Mar 2025 09:00:01 +0000 ROA not before: Sat 22 Mar 2025 08:55:01 +0000 ROA not after: Sat 21 Mar 2026 09:00:01 +0000 asID: 45718 IP address blocks: 117.103.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.crl rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:dd:b7:ff:b6:5c:8f:be:a4:b3:dd:f1:63:cc:35:c0:30:78:95:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E475A8B018BAE58448DDE55D9487442B3BD31D1D Validity Not Before: Mar 22 08:55:01 2025 GMT Not After : Mar 21 09:00:01 2026 GMT Subject: CN=7C4E76580076EE579516C7E1025E03A52133ECE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:96:e6:06:f3:42:eb:9d:be:b7:b0:c1:d5: d6:ab:00:dc:10:83:36:94:69:4c:7e:3c:2f:2a:41: de:37:74:b4:37:28:26:aa:fe:40:50:8c:77:44:fd: 24:67:32:39:6e:c9:e3:58:7e:1c:88:fe:2a:90:ba: 20:d5:b2:af:b4:41:46:87:69:79:cd:52:86:29:43: 0a:70:80:bb:ed:fd:fb:e7:cb:c8:74:ee:45:8d:b9: 0c:40:8a:e8:7c:23:fa:89:4a:a7:71:eb:de:d2:1e: af:8f:08:e2:5e:ca:b7:74:73:2b:57:4c:85:94:b7: 57:ed:a3:30:ee:15:a3:15:16:c6:44:af:09:4f:30: 99:37:ad:7e:39:d4:70:70:95:c3:4d:d5:3f:83:a7: db:4d:ad:68:b9:7e:72:33:0c:98:a7:ed:57:bd:d2: ca:bc:37:88:5b:fd:33:c5:19:45:c6:17:c7:6d:27: d3:ab:8f:07:dc:96:97:b0:a8:2a:e4:f3:81:04:a3: aa:39:e3:32:3a:e5:ef:8a:99:91:c2:ee:a0:83:98: 35:fc:ee:c2:8c:80:02:8d:32:b4:f1:36:36:ad:6f: 8a:a7:f5:e5:bf:93:16:6b:dd:3d:d2:a4:c7:82:13: 9e:da:27:76:db:a6:0c:1b:f8:55:51:36:5f:e7:65: 81:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4E:76:58:00:76:EE:57:95:16:C7:E1:02:5E:03:A5:21:33:EC:E1 X509v3 Authority Key Identifier: keyid:E4:75:A8:B0:18:BA:E5:84:48:DD:E5:5D:94:87:44:2B:3B:D3:1D:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/E475A8B018BAE58448DDE55D9487442B3BD31D1D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E475A8B018BAE58448DDE55D9487442B3BD31D1D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2049c210-f365-432f-a7ca-0b5eb86b01c6/0/3131372e3130332e36342e302f32322d3234203d3e203435373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.64.0/22 Signature Algorithm: sha256WithRSAEncryption a4:31:5b:23:f4:80:1b:b8:fc:9c:44:d0:70:6d:dd:63:df:f9: ea:60:d8:8a:2a:ff:8d:a4:5c:be:eb:ec:50:a0:02:cb:33:8a: 94:12:a7:fc:60:96:0f:9e:66:c0:85:cf:83:75:62:13:54:60: 83:ac:96:35:01:dc:fe:54:07:74:6c:32:95:65:3a:13:de:24: dd:76:6e:f7:d0:c3:4b:bc:3a:a9:c0:34:53:2b:e0:31:09:9b: 8c:2e:54:ad:84:6a:ab:d3:c0:d3:50:11:be:14:fd:9d:61:6b: 2c:c3:79:12:ac:23:c4:45:ef:91:d6:34:56:f9:79:ab:c8:05: f0:d0:da:01:9d:1f:8e:b0:7a:0a:be:ad:77:14:d7:c6:c6:18: 3d:26:f9:ad:a0:5a:0d:ca:e7:c7:7b:af:c9:5b:7d:28:b9:16: a4:4c:cc:59:2a:0d:0b:82:9d:bf:7e:e6:26:85:6c:08:5f:a9: 3d:7f:23:02:0e:28:c7:18:dc:46:74:b3:34:e6:03:fe:5f:2b: 66:01:66:26:eb:17:c2:db:f9:b6:28:67:1e:cf:78:b8:e1:3c: b3:4d:3e:50:ea:d8:0f:ce:15:5e:5d:9e:9b:8e:42:35:73:9c: ed:de:1d:88:13:7b:f9:f1:65:e0:78:9d:fe:4c:30:15:72:f1: ed:38:c7:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHd23/7Zcj76ks93xY8w1wDB4lSswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ3NUE4QjAxOEJBRTU4NDQ4RERFNTVEOTQ4NzQ0MkIz QkQzMUQxRDAeFw0yNTAzMjIwODU1MDFaFw0yNjAzMjEwOTAwMDFaMDMxMTAvBgNV BAMTKDdDNEU3NjU4MDA3NkVFNTc5NTE2QzdFMTAyNUUwM0E1MjEzM0VDRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC79ZbmBvNC652+t7DB1darANwQ gzaUaUx+PC8qQd43dLQ3KCaq/kBQjHdE/SRnMjluyeNYfhyI/iqQuiDVsq+0QUaH aXnNUoYpQwpwgLvt/fvny8h07kWNuQxAiuh8I/qJSqdx697SHq+PCOJeyrd0cytX TIWUt1ftozDuFaMVFsZErwlPMJk3rX451HBwlcNN1T+Dp9tNrWi5fnIzDJin7Ve9 0sq8N4hb/TPFGUXGF8dtJ9OrjwfclpewqCrk84EEo6o54zI65e+KmZHC7qCDmDX8 7sKMgAKNMrTxNjatb4qn9eW/kxZr3T3SpMeCE57aJ3bbpgwb+FVRNl/nZYGnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfE52WAB27leVFsfhAl4DpSEz7OEwHwYDVR0j BBgwFoAU5HWosBi65YRI3eVdlIdEKzvTHR0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDQ5YzIxMC1mMzY1LTQzMmYtYTdjYS0wYjVlYjg2YjAxYzYvMC9FNDc1QThCMDE4 QkFFNTg0NDhEREU1NUQ5NDg3NDQyQjNCRDMxRDFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQ3NUE4QjAxOEJBRTU4NDQ4RERFNTVEOTQ4NzQ0MkIzQkQz MUQxRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwNDljMjEwLWYzNjUtNDMyZi1h N2NhLTBiNWViODZiMDFjNi8wLzMxMzEzNzJlMzEzMDMzMmUzNjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTM3MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnVnQDANBgkqhkiG 9w0BAQsFAAOCAQEApDFbI/SAG7j8nETQcG3dY9/56mDYiir/jaRcvuvsUKACyzOK lBKn/GCWD55mwIXPg3ViE1Rgg6yWNQHc/lQHdGwylWU6E94k3XZu99DDS7w6qcA0 UyvgMQmbjC5UrYRqq9PA01ARvhT9nWFrLMN5EqwjxEXvkdY0Vvl5q8gF8NDaAZ0f jrB6Cr6tdxTXxsYYPSb5raBaDcrnx3uvyVt9KLkWpEzMWSoNC4Kdv37mJoVsCF+p PX8jAg4oxxjcRnSzNOYD/l8rZgFmJusXwtv5tihnHs94uOE8s00+UOrYD84VXl2e m45CNXOc7d4diBN7+fFl4Hid/kwwFXLx7TjHRA== -----END CERTIFICATE-----Generated at Thu Apr 24 11:25:12 2025 by rpki-client on console.sobornost.net