$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32342d3234203d3e203535363632.roa File: 3130332e37312e31302e302f32342d3234203d3e203535363632.roa (raw, json) Hash identifier: 2L4HSmsxablCXx47JsgA2H0123ARvFCTuxEu4LuFJLc= Subject key identifier: DA:E1:8F:87:72:02:06:31:3C:47:35:98:97:33:B0:D1:8D:D7:E9:EA Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 19FEFC1FDDB33C912C347DA680E18C691E1D69C0 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32342d3234203d3e203535363632.roa Signing time: Tue 15 Apr 2025 08:02:23 +0000 ROA not before: Tue 15 Apr 2025 07:57:23 +0000 ROA not after: Tue 14 Apr 2026 08:02:23 +0000 asID: 55662 IP address blocks: 103.71.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:fe:fc:1f:dd:b3:3c:91:2c:34:7d:a6:80:e1:8c:69:1e:1d:69:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Apr 15 07:57:23 2025 GMT Not After : Apr 14 08:02:23 2026 GMT Subject: CN=DAE18F87720206313C4735989733B0D18DD7E9EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e9:f2:54:d3:66:e7:1b:b3:46:81:7f:7d:0f: 6f:81:45:4e:7f:be:2c:d4:2b:30:a0:05:a2:80:30: 72:d7:32:c7:b2:19:74:86:57:ff:f6:4a:91:1a:0a: 58:f7:b1:c3:ee:4d:76:a1:af:d2:0f:7d:78:4b:2e: 58:c3:ef:f2:46:71:29:c4:54:73:f1:a1:bf:ec:f7: 03:fb:4e:c5:df:01:75:eb:79:5a:ad:ff:8f:12:98: b9:eb:59:9e:15:ea:ea:d1:0f:af:e9:96:61:45:fa: 70:e4:4b:c4:a8:82:ab:d0:fd:56:a6:bf:54:25:de: 4c:8e:77:22:e1:c4:24:72:3d:e9:b7:c0:8a:04:87: e3:15:cc:07:18:ae:f5:1b:7c:0d:11:91:d2:33:6d: dd:16:4a:e8:84:48:b7:ee:a2:69:89:be:1c:72:18: df:bb:72:f6:1d:53:55:86:5e:89:85:3f:94:29:1e: a7:96:be:aa:9e:e1:0b:97:45:f6:a7:f9:91:0d:85: 11:86:ac:f4:00:40:39:21:66:b8:60:be:53:3f:58: 12:72:3e:23:d5:dc:ef:7e:89:9e:84:59:60:bc:1e: 80:0d:19:cf:bb:b0:31:27:70:bb:cd:57:f2:d4:fb: 07:fa:27:66:8c:0f:40:29:41:81:85:a6:b3:65:a8: 86:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:E1:8F:87:72:02:06:31:3C:47:35:98:97:33:B0:D1:8D:D7:E9:EA X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31302e302f32342d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.10.0/24 Signature Algorithm: sha256WithRSAEncryption 50:87:f1:ac:1a:a0:89:ad:68:a6:59:01:99:2a:fe:b8:0e:d3: 8d:ed:92:50:ee:b8:96:66:75:6d:5b:54:f2:50:55:dc:b5:90: f2:45:5f:a0:6f:5c:fa:ef:33:88:61:c5:47:5c:4f:d6:a5:05: 02:b9:91:d5:5f:b8:fd:2f:04:bc:13:be:06:4b:60:45:50:7f: 6c:dc:ad:54:ce:39:91:fb:ae:5f:cb:d4:a1:42:2e:27:b4:56: 6c:02:d7:e2:18:c9:4d:99:3b:62:6e:22:80:f8:9c:70:93:a1: 7c:74:74:9a:9e:c0:2e:4b:bb:4c:c9:d2:60:da:c1:d9:4b:b2: 29:20:28:e3:9d:c7:28:1a:cc:e2:69:50:1a:32:5a:be:13:28: 89:8c:eb:60:83:88:da:a2:34:c9:f8:7b:d7:f4:e6:17:a7:1d: af:71:35:81:34:b1:0d:bc:b7:d5:b9:c8:c3:f1:ea:81:4f:af: 97:6b:66:c6:c2:59:45:cc:83:8b:5b:4f:1f:c3:21:71:40:e8: 61:67:9d:d9:05:cd:6b:8b:11:8a:a0:43:00:f6:f5:ce:40:46: a5:dc:58:b1:76:f7:04:1b:47:e1:c6:74:f8:aa:b0:d2:86:b5: 83:06:5b:28:b3:2f:4d:7f:a5:6b:fe:67:98:17:4f:16:49:d5: 9a:b5:49:00 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGf78H92zPJEsNH2mgOGMaR4dacAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNTA0MTUwNzU3MjNaFw0yNjA0MTQwODAyMjNaMDMxMTAvBgNV BAMTKERBRTE4Rjg3NzIwMjA2MzEzQzQ3MzU5ODk3MzNCMEQxOEREN0U5RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi6fJU02bnG7NGgX99D2+BRU5/ vizUKzCgBaKAMHLXMseyGXSGV//2SpEaClj3scPuTXahr9IPfXhLLljD7/JGcSnE VHPxob/s9wP7TsXfAXXreVqt/48SmLnrWZ4V6urRD6/plmFF+nDkS8SogqvQ/Vam v1Ql3kyOdyLhxCRyPem3wIoEh+MVzAcYrvUbfA0RkdIzbd0WSuiESLfuommJvhxy GN+7cvYdU1WGXomFP5QpHqeWvqqe4QuXRfan+ZENhRGGrPQAQDkhZrhgvlM/WBJy PiPV3O9+iZ6EWWC8HoANGc+7sDEncLvNV/LU+wf6J2aMD0ApQYGFprNlqIZjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU2uGPh3ICBjE8RzWYlzOw0Y3X6eowHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNDk2MDgyLWEwYWEtNDgzNi1i NTg3LTk3M2RkN2UyOTdhZi8wLzMxMzAzMzJlMzczMTJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnRwowDQYJKoZIhvcN AQELBQADggEBAFCH8awaoImtaKZZAZkq/rgO043tklDuuJZmdW1bVPJQVdy1kPJF X6BvXPrvM4hhxUdcT9alBQK5kdVfuP0vBLwTvgZLYEVQf2zcrVTOOZH7rl/L1KFC Lie0VmwC1+IYyU2ZO2JuIoD4nHCToXx0dJqewC5Lu0zJ0mDawdlLsikgKOOdxyga zOJpUBoyWr4TKImM62CDiNqiNMn4e9f05henHa9xNYE0sQ28t9W5yMPx6oFPr5dr ZsbCWUXMg4tbTx/DIXFA6GFnndkFzWuLEYqgQwD29c5ARqXcWLF29wQbR+HGdPiq sNKGtYMGWyizL01/pWv+Z5gXTxZJ1Zq1SQA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net