$ rpki-client -vvf repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa File: 3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa (raw, json) Hash identifier: hqJzUmkGfm1tL5Cu+d0Y0jzRfSAbuU8h9B0SylrnKNo= Subject key identifier: FD:33:8F:3D:FA:59:D6:70:C5:8E:02:BC:24:19:09:F5:B7:6D:C0:11 Certificate issuer: /CN=DB1E31B6A9856791C31B99A73C0F390118E54EB8 Certificate serial: 25BAF190BA2B595336896F1E17C68B5149D4CD5F Authority key identifier: DB:1E:31:B6:A9:85:67:91:C3:1B:99:A7:3C:0F:39:01:18:E5:4E:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa Signing time: Thu 24 Apr 2025 03:02:13 +0000 ROA not before: Thu 24 Apr 2025 02:57:13 +0000 ROA not after: Thu 23 Apr 2026 03:02:13 +0000 asID: 141906 IP address blocks: 103.164.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.crl rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 07:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ba:f1:90:ba:2b:59:53:36:89:6f:1e:17:c6:8b:51:49:d4:cd:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB1E31B6A9856791C31B99A73C0F390118E54EB8 Validity Not Before: Apr 24 02:57:13 2025 GMT Not After : Apr 23 03:02:13 2026 GMT Subject: CN=FD338F3DFA59D670C58E02BC241909F5B76DC011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:23:2b:86:8e:12:11:4c:45:10:f4:5d:eb:84: c0:4c:04:b3:92:94:09:1d:71:0f:6a:3e:b8:1a:16: 1b:7c:cc:01:11:ad:77:2c:3b:f2:20:b2:1f:e0:1b: 3e:78:4a:9e:81:1d:19:74:ed:63:68:e1:78:57:63: 96:e6:36:ce:02:92:f9:e7:54:97:a0:ab:bd:5f:31: 7a:6d:84:96:be:de:4f:f3:64:42:53:58:43:d1:01: c0:8f:b3:96:f2:a5:6c:d8:c9:14:d4:b4:9a:ff:03: 23:d5:bc:89:b9:da:3a:3b:7a:fc:31:4b:fa:4c:7c: 1d:05:af:4f:a1:6a:6d:9d:99:a5:85:dc:86:08:b8: 08:f7:20:86:2c:ed:b0:cb:e3:43:54:cd:9f:73:7a: 33:e1:13:af:78:fc:a8:7e:4b:7f:bd:98:85:1d:99: 13:55:e9:5b:b0:3c:f8:2a:23:70:54:ca:88:6c:5b: 57:b2:2e:d2:bd:7b:fd:76:42:bd:93:af:77:b2:27: d4:31:e9:c6:b8:78:ab:62:33:6c:ba:66:2f:20:14: 48:44:43:9a:cb:54:d4:ea:67:c5:6b:37:4a:4c:09: 12:0e:38:62:26:97:c8:06:0f:5a:b5:1c:f4:75:80: 1c:75:ca:13:89:4d:4f:1e:0c:80:24:82:ab:0a:33: ca:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:33:8F:3D:FA:59:D6:70:C5:8E:02:BC:24:19:09:F5:B7:6D:C0:11 X509v3 Authority Key Identifier: keyid:DB:1E:31:B6:A9:85:67:91:C3:1B:99:A7:3C:0F:39:01:18:E5:4E:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.83.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e3:30:ab:1b:11:e5:29:2b:80:ea:b7:ef:a4:bb:73:e5:c2: 97:70:ee:f6:2a:d4:87:d4:58:29:eb:41:bd:84:18:e8:4d:11: 3c:ae:8e:7b:0c:a3:a5:bf:8e:0d:52:ce:76:4d:5b:26:f3:3f: 11:c0:15:2b:45:af:ac:79:3d:bc:f9:a5:02:3e:90:b1:f6:1e: 2c:39:0c:c6:ca:0a:db:37:f4:bb:9a:a7:12:07:2b:73:5f:45: 7b:bf:33:45:26:00:51:b8:6d:de:c0:ee:b7:83:db:b3:c3:4e: 01:1c:69:0a:81:b6:d1:77:e8:9e:d1:75:20:ea:8d:8b:cd:07: 0c:9e:15:81:11:36:9a:51:0b:0f:3c:59:51:f6:a2:85:95:12: 28:2d:e0:cd:9f:7d:68:71:5f:40:70:50:17:8e:af:fa:66:cf: fa:ae:a5:0e:74:49:01:f8:11:3b:76:be:23:59:2d:eb:fd:5f: 1b:79:2a:b4:02:ac:8a:c4:d5:8d:93:76:b1:40:f8:02:7f:eb: 99:d7:d6:6f:af:cb:60:d6:39:1e:a1:4a:67:b3:2c:d3:6c:6d: 19:de:e1:db:c5:ee:cc:23:02:f4:d8:47:0d:e7:54:bd:b8:2d: bf:99:b2:8e:9b:58:ee:04:8e:74:0a:05:03:2e:95:8c:94:17: 71:b6:60:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJbrxkLorWVM2iW8eF8aLUUnUzV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIxRTMxQjZBOTg1Njc5MUMzMUI5OUE3M0MwRjM5MDEx OEU1NEVCODAeFw0yNTA0MjQwMjU3MTNaFw0yNjA0MjMwMzAyMTNaMDMxMTAvBgNV BAMTKEZEMzM4RjNERkE1OUQ2NzBDNThFMDJCQzI0MTkwOUY1Qjc2REMwMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyIyuGjhIRTEUQ9F3rhMBMBLOS lAkdcQ9qPrgaFht8zAERrXcsO/Igsh/gGz54Sp6BHRl07WNo4XhXY5bmNs4Ckvnn VJegq71fMXpthJa+3k/zZEJTWEPRAcCPs5bypWzYyRTUtJr/AyPVvIm52jo7evwx S/pMfB0Fr0+ham2dmaWF3IYIuAj3IIYs7bDL40NUzZ9zejPhE694/Kh+S3+9mIUd mRNV6VuwPPgqI3BUyohsW1eyLtK9e/12Qr2Tr3eyJ9Qx6ca4eKtiM2y6Zi8gFEhE Q5rLVNTqZ8VrN0pMCRIOOGIml8gGD1q1HPR1gBx1yhOJTU8eDIAkgqsKM8orAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/TOPPfpZ1nDFjgK8JBkJ9bdtwBEwHwYDVR0j BBgwFoAU2x4xtqmFZ5HDG5mnPA85ARjlTrgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTE4ZjhhMC05M2FlLTQzNTktOGE1ZC0xY2E2NzhiZTU2NjgvMC9EQjFFMzFCNkE5 ODU2NzkxQzMxQjk5QTczQzBGMzkwMTE4RTU0RUI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREIxRTMxQjZBOTg1Njc5MUMzMUI5OUE3M0MwRjM5MDExOEU1 NEVCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhMThmOGEwLTkzYWUtNDM1OS04 YTVkLTFjYTY3OGJlNTY2OC8wLzMxMzAzMzJlMzEzNjM0MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6RTMA0GCSqG SIb3DQEBCwUAA4IBAQAw4zCrGxHlKSuA6rfvpLtz5cKXcO72KtSH1Fgp60G9hBjo TRE8ro57DKOlv44NUs52TVsm8z8RwBUrRa+seT28+aUCPpCx9h4sOQzGygrbN/S7 mqcSBytzX0V7vzNFJgBRuG3ewO63g9uzw04BHGkKgbbRd+ie0XUg6o2LzQcMnhWB ETaaUQsPPFlR9qKFlRIoLeDNn31ocV9AcFAXjq/6Zs/6rqUOdEkB+BE7dr4jWS3r /V8beSq0AqyKxNWNk3axQPgCf+uZ19Zvr8tg1jkeoUpnsyzTbG0Z3uHbxe7MIwL0 2EcN51S9uC2/mbKOm1juBI50CgUDLpWMlBdxtmCh -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:49 2025 by rpki-client on console.sobornost.net