$ rpki-client -vvf repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e3131362e3130382e302f32342d3234203d3e20313331373835.roa File: 3130332e3131362e3130382e302f32342d3234203d3e20313331373835.roa (raw, json) Hash identifier: LY7WT+w7FguQLmfrSOP0mKv6BUNq2KCw3SGoAGK1WaA= Subject key identifier: B2:45:7F:E2:1D:63:94:89:74:E0:73:E1:24:F4:04:00:8C:E3:82:05 Certificate issuer: /CN=6D4B1748DE52DCE397B868772E128F7C58ACA8AB Certificate serial: 5D87CA6B065E4B2BE29A8D782E029C5671F47D89 Authority key identifier: 6D:4B:17:48:DE:52:DC:E3:97:B8:68:77:2E:12:8F:7C:58:AC:A8:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e3131362e3130382e302f32342d3234203d3e20313331373835.roa Signing time: Sat 01 Feb 2025 12:00:01 +0000 ROA not before: Sat 01 Feb 2025 11:55:01 +0000 ROA not after: Sat 31 Jan 2026 12:00:01 +0000 asID: 131785 IP address blocks: 103.116.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.crl rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 03:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:87:ca:6b:06:5e:4b:2b:e2:9a:8d:78:2e:02:9c:56:71:f4:7d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D4B1748DE52DCE397B868772E128F7C58ACA8AB Validity Not Before: Feb 1 11:55:01 2025 GMT Not After : Jan 31 12:00:01 2026 GMT Subject: CN=B2457FE21D63948974E073E124F404008CE38205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:1c:a5:28:77:3f:7d:3c:dc:30:1d:2d:0e:3d: 04:5d:fd:00:b5:db:0b:dd:ca:a8:03:0b:d4:71:ef: 61:57:91:2d:d7:39:52:1a:f7:92:2b:a9:86:96:94: 67:98:87:77:a8:08:ad:36:ff:da:49:97:ae:ef:37: 2f:0d:48:c4:64:84:86:57:85:3d:1a:01:59:6a:20: e7:e7:46:69:cc:e3:19:83:b8:8c:59:cd:64:9d:86: 8d:af:a0:67:d1:54:04:4b:f3:ad:97:3b:37:eb:71: 5e:d2:e4:bf:c8:fb:f0:6c:f5:5d:6a:c8:02:20:98: 61:07:41:36:dc:6e:03:83:d7:91:b3:bd:b0:00:7f: fe:7f:0e:c3:fa:32:d9:71:06:14:de:e4:17:4d:d2: d2:fa:10:a4:50:97:39:e1:46:84:31:9f:3d:0d:d2: a2:f9:2a:08:93:70:96:4e:93:64:0c:03:d5:67:4e: a4:f0:0f:b3:d6:a8:87:af:4b:b1:b8:02:46:42:ff: 41:d5:2d:59:55:5e:57:e0:25:4c:be:e9:a7:f7:3d: 49:25:b9:56:62:8a:f6:00:7d:45:88:1e:33:39:ec: b4:c7:ee:6b:35:df:7b:c0:25:32:79:27:6b:ec:04: 61:f1:8f:ba:a0:70:d4:9c:28:bc:9b:4c:7c:22:35: 12:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:45:7F:E2:1D:63:94:89:74:E0:73:E1:24:F4:04:00:8C:E3:82:05 X509v3 Authority Key Identifier: keyid:6D:4B:17:48:DE:52:DC:E3:97:B8:68:77:2E:12:8F:7C:58:AC:A8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e3131362e3130382e302f32342d3234203d3e20313331373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.108.0/24 Signature Algorithm: sha256WithRSAEncryption 03:df:ee:f1:0b:61:c0:57:aa:9c:fb:90:ef:07:aa:72:95:f5: a8:7f:60:fb:ed:2a:08:16:ea:e7:24:4e:e0:68:6f:b3:ea:a3: a9:14:51:9b:cc:89:86:cb:4e:30:bc:7a:86:88:98:f5:1c:83: 96:13:cb:c3:d5:fd:78:83:48:c7:eb:51:1e:fb:c6:44:3c:af: c1:b5:ef:86:06:76:d2:67:97:e8:00:75:05:95:b5:c8:af:38: 73:10:dc:a5:7e:a7:1f:74:c1:6f:46:31:eb:5c:be:35:50:bc: 3e:8d:f5:dd:07:d0:7a:24:80:5a:4f:9a:dc:1a:ba:ef:c4:9e: 29:24:e0:fc:ff:14:5d:1a:08:45:9c:f1:5f:22:7f:3c:0a:1e: e6:f3:c1:5b:67:dc:83:64:74:d0:df:ac:fb:75:95:7f:44:c1: 11:63:4e:76:b5:82:96:4f:7e:b4:28:74:ad:a0:25:01:e4:f9: fc:01:16:55:0e:04:f1:d9:7d:46:70:16:aa:64:b9:be:76:d9: 3a:a7:5e:4f:d2:a2:ae:68:95:d4:4e:93:d0:25:18:59:05:84: ae:a8:c6:9e:b9:24:20:d7:8c:1b:d1:c7:23:cf:54:5b:e3:1b: 60:26:44:81:2e:6e:ea:8d:ec:db:95:64:81:32:5f:ac:f3:7c: da:8b:d3:0a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXYfKawZeSyvimo14LgKcVnH0fYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ0QjE3NDhERTUyRENFMzk3Qjg2ODc3MkUxMjhGN0M1 OEFDQThBQjAeFw0yNTAyMDExMTU1MDFaFw0yNjAxMzExMjAwMDFaMDMxMTAvBgNV BAMTKEIyNDU3RkUyMUQ2Mzk0ODk3NEUwNzNFMTI0RjQwNDAwOENFMzgyMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmHKUodz99PNwwHS0OPQRd/QC1 2wvdyqgDC9Rx72FXkS3XOVIa95IrqYaWlGeYh3eoCK02/9pJl67vNy8NSMRkhIZX hT0aAVlqIOfnRmnM4xmDuIxZzWSdho2voGfRVARL862XOzfrcV7S5L/I+/Bs9V1q yAIgmGEHQTbcbgOD15GzvbAAf/5/DsP6MtlxBhTe5BdN0tL6EKRQlznhRoQxnz0N 0qL5KgiTcJZOk2QMA9VnTqTwD7PWqIevS7G4AkZC/0HVLVlVXlfgJUy+6af3PUkl uVZiivYAfUWIHjM57LTH7ms133vAJTJ5J2vsBGHxj7qgcNScKLybTHwiNRKVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUskV/4h1jlIl04HPhJPQEAIzjggUwHwYDVR0j BBgwFoAUbUsXSN5S3OOXuGh3LhKPfFisqKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDIwNzUyMy1kNWY1LTRhY2MtYjBhYy1iZmIwOTU0ZmE0ZTAvMC82RDRCMTc0OERF NTJEQ0UzOTdCODY4NzcyRTEyOEY3QzU4QUNBOEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ0QjE3NDhERTUyRENFMzk3Qjg2ODc3MkUxMjhGN0M1OEFD QThBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MjA3NTIzLWQ1ZjUtNGFjYy1i MGFjLWJmYjA5NTRmYTRlMC8wLzMxMzAzMzJlMzEzMTM2MmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndGwwDQYJ KoZIhvcNAQELBQADggEBAAPf7vELYcBXqpz7kO8HqnKV9ah/YPvtKggW6uckTuBo b7Pqo6kUUZvMiYbLTjC8eoaImPUcg5YTy8PV/XiDSMfrUR77xkQ8r8G174YGdtJn l+gAdQWVtcivOHMQ3KV+px90wW9GMetcvjVQvD6N9d0H0HokgFpPmtwauu/Enikk 4Pz/FF0aCEWc8V8ifzwKHubzwVtn3INkdNDfrPt1lX9EwRFjTna1gpZPfrQodK2g JQHk+fwBFlUOBPHZfUZwFqpkub522TqnXk/Soq5oldROk9AlGFkFhK6oxp65JCDX jBvRxyPPVFvjG2AmRIEubuqN7NuVZIEyX6zzfNqL0wo= -----END CERTIFICATE-----Generated at Sat Apr 26 06:13:30 2025 by rpki-client on console.sobornost.net