$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa File: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: 4zJcjhi99V9+23NjQKwrFy3Y4HQGoSDMxwY4qblbwdg= Subject key identifier: 7F:37:31:4B:A9:5E:63:8A:35:B2:9C:46:B0:FB:FE:1C:8C:57:24:27 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 79DC64D946734EEC8187AAA28CDE1CDBB9D945B9 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa Signing time: Wed 16 Apr 2025 13:29:09 +0000 ROA not before: Wed 16 Apr 2025 13:24:09 +0000 ROA not after: Wed 15 Apr 2026 13:29:09 +0000 asID: 55701 IP address blocks: 202.73.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 12:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:dc:64:d9:46:73:4e:ec:81:87:aa:a2:8c:de:1c:db:b9:d9:45:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Apr 16 13:24:09 2025 GMT Not After : Apr 15 13:29:09 2026 GMT Subject: CN=7F37314BA95E638A35B29C46B0FBFE1C8C572427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:23:93:e6:b9:62:c4:7f:5c:c2:4a:62:6f: 92:58:5f:4a:82:a0:16:0b:6b:f1:7a:46:78:0d:bc: 74:d5:f2:8b:ef:c3:4e:a8:54:a0:67:a5:69:40:32: 6b:b5:32:31:77:0a:6f:ff:d7:7f:02:71:80:ed:b8: 5c:e9:94:80:39:6a:79:b5:9a:9f:92:7d:b2:6a:fd: 86:a0:05:cd:18:0c:8b:dd:8d:ac:9f:e9:af:3d:6e: 55:1c:01:f6:1f:b9:f1:8f:67:b6:86:38:28:53:88: ab:d4:e5:9d:87:b9:ba:7d:33:db:5e:33:09:f8:cb: a6:1b:a7:3e:ed:f0:24:d4:3a:ed:da:d4:a1:8c:6b: 87:67:71:e2:b9:bf:2f:92:5f:74:7b:44:70:11:6d: 58:be:e6:c7:a4:51:61:c7:07:de:32:c2:b8:b6:1c: 81:a9:e8:a1:05:57:89:ab:f4:95:0f:55:a6:8a:2a: 28:25:61:1f:cc:4a:73:75:f7:9b:7a:12:10:5d:a5: 45:93:d3:42:b3:aa:9d:5f:73:9c:bb:28:bd:91:07: 4f:cf:e3:dc:bb:d9:2c:9f:70:ce:df:28:47:17:5c: 6c:52:e7:b3:58:b5:23:d3:1d:4a:02:08:d0:40:8d: b4:39:a0:00:8b:e4:ac:be:b6:5a:d4:af:de:bc:52: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:37:31:4B:A9:5E:63:8A:35:B2:9C:46:B0:FB:FE:1C:8C:57:24:27 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.24.0/24 Signature Algorithm: sha256WithRSAEncryption c6:89:04:f8:c1:0e:5d:eb:e9:af:01:b2:d4:d9:cf:9c:74:72: 44:be:9f:2c:14:65:2c:2c:d1:11:fe:01:10:4e:7d:54:b1:5b: 88:32:8c:1c:53:8b:e0:e4:d3:b8:79:01:52:d6:46:9d:d5:55: 66:f4:10:73:ff:c2:97:c2:ba:54:30:cf:74:08:cb:e3:7f:f9: bb:00:df:21:c9:32:2b:51:33:c0:59:92:4e:12:cf:18:e0:c5: 97:f2:04:b5:53:81:f3:b7:d4:99:06:08:5c:39:b5:73:9b:1b: 39:a3:39:67:27:4c:ed:92:1b:da:55:ab:fe:e7:fd:78:58:70: 67:ac:a2:f2:e7:4e:81:e3:d5:31:f8:77:9a:15:57:84:0c:bb: f5:7d:1e:d2:16:46:ef:9f:0f:c1:56:7f:fc:9a:57:b4:5f:4c: 43:c8:41:a1:d3:c3:7a:87:88:32:e9:05:f9:99:9d:64:64:6f: dd:0d:60:62:b0:b7:05:a0:de:ce:56:59:91:ee:40:fb:b9:0e: 1d:07:49:b1:3b:ab:2b:5e:4e:55:e1:18:e4:c9:02:5b:e2:d8: da:9a:15:26:6d:c5:35:1f:1d:2c:0f:6a:f7:5c:b9:39:d4:c9: ca:cb:0e:d1:30:73:8e:8e:ea:3b:81:4d:d4:eb:fe:11:f4:ee: 29:3f:fc:55 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUedxk2UZzTuyBh6qijN4c27nZRbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNTA0MTYxMzI0MDlaFw0yNjA0MTUxMzI5MDlaMDMxMTAvBgNV BAMTKDdGMzczMTRCQTk1RTYzOEEzNUIyOUM0NkIwRkJGRTFDOEM1NzI0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrgiOT5rlixH9cwkpib5JYX0qC oBYLa/F6RngNvHTV8ovvw06oVKBnpWlAMmu1MjF3Cm//138CcYDtuFzplIA5anm1 mp+SfbJq/YagBc0YDIvdjayf6a89blUcAfYfufGPZ7aGOChTiKvU5Z2Hubp9M9te Mwn4y6Ybpz7t8CTUOu3a1KGMa4dnceK5vy+SX3R7RHARbVi+5sekUWHHB94ywri2 HIGp6KEFV4mr9JUPVaaKKiglYR/MSnN195t6EhBdpUWT00Kzqp1fc5y7KL2RB0/P 49y72SyfcM7fKEcXXGxS57NYtSPTHUoCCNBAjbQ5oACL5Ky+tlrUr968UipHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfzcxS6leY4o1spxGsPv+HIxXJCcwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRgwDQYJKoZIhvcN AQELBQADggEBAMaJBPjBDl3r6a8BstTZz5x0ckS+nywUZSws0RH+ARBOfVSxW4gy jBxTi+Dk07h5AVLWRp3VVWb0EHP/wpfCulQwz3QIy+N/+bsA3yHJMitRM8BZkk4S zxjgxZfyBLVTgfO31JkGCFw5tXObGzmjOWcnTO2SG9pVq/7n/XhYcGesovLnToHj 1TH4d5oVV4QMu/V9HtIWRu+fD8FWf/yaV7RfTEPIQaHTw3qHiDLpBfmZnWRkb90N YGKwtwWg3s5WWZHuQPu5Dh0HSbE7qyteTlXhGOTJAlvi2NqaFSZtxTUfHSwPavdc uTnUycrLDtEwc46O6juBTdTr/hH07ik//FU= -----END CERTIFICATE-----Generated at Wed Apr 23 08:55:51 2025 by rpki-client on console.sobornost.net