$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32332d3234203d3e203535363632.roa File: 3130332e37312e31302e302f32332d3234203d3e203535363632.roa (raw, json) Hash identifier: NSfIe4c98EYffkAG0qIIx6zRI4oubKLrA0VIjXToHO8= Subject key identifier: 87:E1:1D:44:DA:7D:FC:8D:F9:0A:B8:44:CF:6D:24:60:E7:BB:8A:A1 Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 026539501B118A1F681CBB75C6E990BAF48A4F07 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32332d3234203d3e203535363632.roa Signing time: Tue 15 Apr 2025 08:02:22 +0000 ROA not before: Tue 15 Apr 2025 07:57:22 +0000 ROA not after: Tue 14 Apr 2026 08:02:22 +0000 asID: 55662 IP address blocks: 103.71.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:65:39:50:1b:11:8a:1f:68:1c:bb:75:c6:e9:90:ba:f4:8a:4f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Apr 15 07:57:22 2025 GMT Not After : Apr 14 08:02:22 2026 GMT Subject: CN=87E11D44DA7DFC8DF90AB844CF6D2460E7BB8AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:32:89:d9:8f:76:e3:52:19:01:f0:22:f8:94: 85:d8:95:d4:5f:3d:35:37:42:e6:a3:4d:1d:d3:a5: 2c:27:39:5a:29:19:00:77:7c:7e:fe:46:21:6a:50: 11:c0:5e:2f:00:b1:49:83:c9:fa:2a:dd:2f:5c:4c: 03:c9:fc:51:be:c8:1a:48:52:36:c2:ff:eb:36:03: f8:f0:50:46:1f:39:55:97:51:2d:0f:0a:db:c8:a0: 5c:88:15:63:38:28:ff:44:1b:a9:fd:d6:40:83:bd: 75:24:5e:0b:3a:af:3f:04:6b:7a:a8:0e:7d:34:f2: b3:a6:7b:37:53:f5:1c:37:1a:ad:e8:e5:b3:1c:c5: 75:aa:87:05:16:59:3f:cd:b7:a9:78:58:3c:a5:d4: 4d:5c:11:41:47:17:ea:93:08:92:eb:a1:80:9b:60: 43:fe:08:5d:49:31:76:7a:fc:e4:62:a6:3a:b5:75: cc:d7:c7:44:13:fa:6b:18:f6:f3:12:51:d6:c4:99: 2b:6b:5b:6f:1e:f4:64:29:54:fb:e8:fa:2b:c3:f4: 95:b2:0f:30:f2:5d:63:41:66:25:95:c5:7d:61:cc: f0:24:6b:dd:b5:e3:03:07:ec:33:1f:67:dd:01:29: 01:17:ff:30:10:99:02:e3:c9:0e:b0:7a:2d:1f:1e: 8f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E1:1D:44:DA:7D:FC:8D:F9:0A:B8:44:CF:6D:24:60:E7:BB:8A:A1 X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32332d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.10.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:0a:ed:b0:47:28:09:8f:5c:73:02:7b:43:77:c6:5d:00:27: 93:b6:64:9c:3c:bd:ac:35:94:02:f6:d6:57:f9:9e:96:a1:a2: 73:6e:3c:02:63:e9:59:f3:7e:61:34:10:05:0f:dc:af:a3:8c: 7b:9c:4f:cf:45:8c:06:8d:33:49:dd:3e:29:fa:c3:8c:33:d4: 96:05:e1:68:04:25:43:56:aa:f7:de:fa:c4:00:2b:3d:fa:ef: f2:db:fe:86:92:9d:62:39:cb:88:b6:18:99:2c:15:bd:9f:ed: c9:4b:da:bf:bb:fb:28:c1:df:90:75:f0:51:43:9f:06:f2:34: d4:4c:d9:cd:e2:06:40:02:b4:ef:8f:4b:bb:db:df:0d:59:7d: 21:37:c8:73:ef:fc:47:27:00:27:78:76:0b:1c:03:e7:fc:bf: 99:8f:d4:26:05:2f:19:16:d3:81:f0:33:5a:38:93:8c:ef:6b: 56:be:b3:44:e8:cc:63:14:28:31:8a:97:c0:c8:2b:c5:e8:82: 7f:99:11:e4:07:7e:e0:44:81:9b:b5:d2:c6:c7:63:84:b7:5a: b6:e4:4d:5b:4f:21:5e:f4:d0:56:aa:05:cb:34:cd:ce:72:87: f3:c4:71:d5:4b:db:39:d5:4b:2c:ae:f2:d7:c4:8e:1d:b5:0d: 2a:51:9b:c5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAmU5UBsRih9oHLt1xumQuvSKTwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNTA0MTUwNzU3MjJaFw0yNjA0MTQwODAyMjJaMDMxMTAvBgNV BAMTKDg3RTExRDQ0REE3REZDOERGOTBBQjg0NENGNkQyNDYwRTdCQjhBQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFMonZj3bjUhkB8CL4lIXYldRf PTU3QuajTR3TpSwnOVopGQB3fH7+RiFqUBHAXi8AsUmDyfoq3S9cTAPJ/FG+yBpI UjbC/+s2A/jwUEYfOVWXUS0PCtvIoFyIFWM4KP9EG6n91kCDvXUkXgs6rz8Ea3qo Dn008rOmezdT9Rw3Gq3o5bMcxXWqhwUWWT/Nt6l4WDyl1E1cEUFHF+qTCJLroYCb YEP+CF1JMXZ6/ORipjq1dczXx0QT+msY9vMSUdbEmStrW28e9GQpVPvo+ivD9JWy DzDyXWNBZiWVxX1hzPAka9214wMH7DMfZ90BKQEX/zAQmQLjyQ6wei0fHo/5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUh+EdRNp9/I35CrhEz20kYOe7iqEwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNDk2MDgyLWEwYWEtNDgzNi1i NTg3LTk3M2RkN2UyOTdhZi8wLzMxMzAzMzJlMzczMTJlMzEzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnRwowDQYJKoZIhvcN AQELBQADggEBAH4K7bBHKAmPXHMCe0N3xl0AJ5O2ZJw8vaw1lAL21lf5npahonNu PAJj6VnzfmE0EAUP3K+jjHucT89FjAaNM0ndPin6w4wz1JYF4WgEJUNWqvfe+sQA Kz367/Lb/oaSnWI5y4i2GJksFb2f7clL2r+7+yjB35B18FFDnwbyNNRM2c3iBkAC tO+PS7vb3w1ZfSE3yHPv/EcnACd4dgscA+f8v5mP1CYFLxkW04HwM1o4k4zva1a+ s0TozGMUKDGKl8DIK8Xogn+ZEeQHfuBEgZu10sbHY4S3WrbkTVtPIV700FaqBcs0 zc5yh/PEcdVL2znVSyyu8tfEjh21DSpRm8U= -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net