$ rpki-client -vvf repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/3130332e33302e3231322e302f32342d3234203d3e20313530313838.roa File: 3130332e33302e3231322e302f32342d3234203d3e20313530313838.roa (raw, json) Hash identifier: sF8zLAMjgs1FczFI2Z8JpQ/VusAoAJ74LI3j1E4hYto= Subject key identifier: 0E:E4:3C:FD:4E:E5:86:6D:BC:E3:30:6D:BB:F1:EE:2A:BD:69:3B:DC Certificate issuer: /CN=AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C Certificate serial: 4E0A5E8D83BAAF83D04F104C35B4BDE0B2C625CE Authority key identifier: AF:CF:00:A9:0B:7E:9E:A1:E3:01:82:B0:BF:F9:34:BE:4D:C0:97:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/3130332e33302e3231322e302f32342d3234203d3e20313530313838.roa Signing time: Mon 10 Mar 2025 06:05:05 +0000 ROA not before: Mon 10 Mar 2025 06:00:05 +0000 ROA not after: Mon 09 Mar 2026 06:05:05 +0000 asID: 150188 IP address blocks: 103.30.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.crl rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:0a:5e:8d:83:ba:af:83:d0:4f:10:4c:35:b4:bd:e0:b2:c6:25:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C Validity Not Before: Mar 10 06:00:05 2025 GMT Not After : Mar 9 06:05:05 2026 GMT Subject: CN=0EE43CFD4EE5866DBCE3306DBBF1EE2ABD693BDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ea:2f:35:57:52:7b:e2:66:70:70:c8:1a:9e: af:ae:ad:58:75:03:ab:a1:b6:eb:c4:18:ac:2b:37: 58:5e:a8:5c:d8:34:fc:dc:1e:3e:12:bc:15:3d:01: e3:91:cb:0a:db:49:5f:28:c9:62:20:e9:fc:dd:77: 2e:56:ed:0e:a0:bf:f4:bd:92:84:ca:ce:66:4c:02: 10:3f:bc:09:49:51:da:42:d8:f6:3d:07:e8:ea:f2: b7:2c:ec:e6:3d:ec:06:e9:6a:0b:13:7b:71:ba:36: 10:58:de:b7:b1:d9:01:4f:77:73:28:04:5d:7b:91: 2d:d4:8e:d3:09:e6:b3:ca:0b:64:26:2a:07:18:8d: 55:2a:6e:89:dd:a9:1d:34:02:54:05:d4:84:5e:1b: d0:8d:16:4a:93:02:71:aa:b6:f8:e7:17:2f:29:7e: 80:71:c2:5f:31:b6:21:56:57:b2:7c:2d:43:e3:4f: 28:89:57:d8:09:a0:50:b7:78:82:08:9a:c3:23:e0: 1a:d7:96:41:9b:76:80:e0:73:50:39:05:13:9a:fa: c1:55:6d:ba:1d:a4:b0:ab:12:be:f7:a9:09:4b:55: 19:2e:b5:7f:3d:3a:f2:fc:dc:74:51:8b:bf:b6:15: ca:b9:fa:2b:64:03:e1:ed:60:ab:93:bf:50:ad:b2: 58:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E4:3C:FD:4E:E5:86:6D:BC:E3:30:6D:BB:F1:EE:2A:BD:69:3B:DC X509v3 Authority Key Identifier: keyid:AF:CF:00:A9:0B:7E:9E:A1:E3:01:82:B0:BF:F9:34:BE:4D:C0:97:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/3130332e33302e3231322e302f32342d3234203d3e20313530313838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.212.0/24 Signature Algorithm: sha256WithRSAEncryption 30:74:6f:16:28:f6:12:e5:0e:1e:da:95:cd:88:b6:16:ac:37: 56:ff:2f:bd:0b:8f:ff:70:6c:73:64:78:9e:b8:7f:ed:dc:1d: 87:c5:39:0f:e7:d2:2b:ba:cf:cb:75:b2:ef:83:ad:72:c9:a5: ec:3e:f6:82:fb:a4:6d:49:5e:31:b9:99:9b:35:1b:f6:cf:c4: c6:13:1e:0c:35:0a:8a:3c:58:4d:4e:ab:5c:d2:16:ba:d9:d8: 4c:46:62:e5:14:fc:fb:75:db:a2:3b:97:1f:15:d3:ec:bf:2e: 35:b2:5a:8d:2e:e2:60:1f:80:76:a1:9e:a6:05:ac:12:86:f8: 3f:1b:b4:06:87:55:b3:cd:27:7d:bc:84:00:51:a7:b9:d6:2d: ee:03:17:24:79:00:10:f2:eb:fa:1b:e4:7a:a3:f2:3d:04:61: 15:58:a1:2f:64:60:2a:c1:d0:da:b3:62:22:b1:ea:cf:46:32: e3:5a:c2:a8:b8:88:54:fe:a3:de:d7:22:5d:11:9c:53:fc:8e: ac:1b:fd:b6:cb:59:e6:c4:48:93:ad:c2:3a:02:0a:98:cb:13: 47:d3:6f:60:4b:b5:26:43:62:fe:bd:bf:0b:9d:97:58:13:49: d4:35:15:93:ec:8f:b1:3b:6f:a4:14:87:1f:92:ca:3e:7c:21: 0e:ad:0e:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTgpejYO6r4PQTxBMNbS94LLGJc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZDRjAwQTkwQjdFOUVBMUUzMDE4MkIwQkZGOTM0QkU0 REMwOTcxQzAeFw0yNTAzMTAwNjAwMDVaFw0yNjAzMDkwNjA1MDVaMDMxMTAvBgNV BAMTKDBFRTQzQ0ZENEVFNTg2NkRCQ0UzMzA2REJCRjFFRTJBQkQ2OTNCREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl6i81V1J74mZwcMganq+urVh1 A6uhtuvEGKwrN1heqFzYNPzcHj4SvBU9AeORywrbSV8oyWIg6fzddy5W7Q6gv/S9 koTKzmZMAhA/vAlJUdpC2PY9B+jq8rcs7OY97AbpagsTe3G6NhBY3rex2QFPd3Mo BF17kS3UjtMJ5rPKC2QmKgcYjVUqbondqR00AlQF1IReG9CNFkqTAnGqtvjnFy8p foBxwl8xtiFWV7J8LUPjTyiJV9gJoFC3eIIImsMj4BrXlkGbdoDgc1A5BROa+sFV bbodpLCrEr73qQlLVRkutX89OvL83HRRi7+2Fcq5+itkA+HtYKuTv1CtslhHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDuQ8/U7lhm284zBtu/HuKr1pO9wwHwYDVR0j BBgwFoAUr88AqQt+nqHjAYKwv/k0vk3AlxwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NTY1YTFjZi0yOTUwLTQ3ZGMtYTIxMi1mNjUzYjhjM2Y1YTkvMC9BRkNGMDBBOTBC N0U5RUExRTMwMTgyQjBCRkY5MzRCRTREQzA5NzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZDRjAwQTkwQjdFOUVBMUUzMDE4MkIwQkZGOTM0QkU0REMw OTcxQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1NjVhMWNmLTI5NTAtNDdkYy1h MjEyLWY2NTNiOGMzZjVhOS8wLzMxMzAzMzJlMzMzMDJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzEzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx7UMA0GCSqG SIb3DQEBCwUAA4IBAQAwdG8WKPYS5Q4e2pXNiLYWrDdW/y+9C4//cGxzZHieuH/t 3B2HxTkP59Irus/LdbLvg61yyaXsPvaC+6RtSV4xuZmbNRv2z8TGEx4MNQqKPFhN Tqtc0ha62dhMRmLlFPz7dduiO5cfFdPsvy41slqNLuJgH4B2oZ6mBawShvg/G7QG h1WzzSd9vIQAUae51i3uAxckeQAQ8uv6G+R6o/I9BGEVWKEvZGAqwdDas2IiserP RjLjWsKouIhU/qPe1yJdEZxT/I6sG/22y1nmxEiTrcI6AgqYyxNH029gS7UmQ2L+ vb8LnZdYE0nUNRWT7I+xO2+kFIcfkso+fCEOrQ5F -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:49 2025 by rpki-client on console.sobornost.net