$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31312e302f32342d3234203d3e203535363632.roa File: 3130332e37312e31312e302f32342d3234203d3e203535363632.roa (raw, json) Hash identifier: 5bVYCcNqY9j6oBeZC80VBloRfTW/bvT7v0Ia+JzjUok= Subject key identifier: 92:4A:71:90:B1:BE:FD:D6:66:3E:88:08:EA:25:F1:13:45:0C:B8:38 Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 42EF9DAE90A374FEEE3691AFFAAADE02870DA443 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31312e302f32342d3234203d3e203535363632.roa Signing time: Tue 15 Apr 2025 08:02:22 +0000 ROA not before: Tue 15 Apr 2025 07:57:22 +0000 ROA not after: Tue 14 Apr 2026 08:02:22 +0000 asID: 55662 IP address blocks: 103.71.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ef:9d:ae:90:a3:74:fe:ee:36:91:af:fa:aa:de:02:87:0d:a4:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Apr 15 07:57:22 2025 GMT Not After : Apr 14 08:02:22 2026 GMT Subject: CN=924A7190B1BEFDD6663E8808EA25F113450CB838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0d:c7:f3:27:d2:b4:69:5e:8b:09:82:87:c9: 78:ad:54:54:e1:ee:b2:19:70:22:49:15:71:2e:86: 2b:13:6b:48:61:a3:cd:c7:d5:4c:41:27:c7:7b:9b: c5:6c:ab:f3:2d:0e:72:5f:1d:d8:60:3d:c4:0a:53: 91:91:86:03:74:78:79:27:f6:a6:7f:e9:23:55:ab: 52:5d:2c:1a:21:58:23:ff:dd:75:da:42:73:e1:18: 3e:8e:2e:b0:64:f1:a7:86:c4:2a:15:81:a1:f3:98: 5d:a2:a5:9e:81:a1:b4:09:4a:8f:d1:52:f9:e9:47: 82:12:b6:89:97:92:74:08:12:f4:aa:2f:eb:0b:21: 7c:b7:8e:bc:96:20:e3:82:1a:40:bb:72:6a:24:fa: cb:1e:c1:2a:43:e7:7b:a3:29:94:45:34:12:2b:01: 84:3d:3c:b5:e6:16:c9:fc:05:1a:dd:8e:ad:e3:65: 5e:fb:6a:4d:4a:75:fb:d9:73:6b:5c:f3:cf:8e:f3: c8:c9:63:14:90:91:4f:13:ac:78:f2:83:e6:1d:0f: a1:d5:07:00:d6:ae:f9:65:84:5c:d9:d0:5f:11:76: 1a:d3:61:54:2f:be:b0:25:e2:34:bf:fb:b1:27:5c: f0:a2:e7:f4:07:91:74:29:99:6b:c7:0a:c7:6f:68: 40:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4A:71:90:B1:BE:FD:D6:66:3E:88:08:EA:25:F1:13:45:0C:B8:38 X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e31312e302f32342d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.11.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:0d:3b:4c:ee:ee:ac:6d:7a:98:57:99:21:9e:9d:c8:c5:10: 10:11:83:e2:64:8b:1d:35:4f:ad:f3:82:d2:b7:55:f7:12:e2: 74:16:ac:0d:e5:b1:4f:0d:43:9a:94:af:d4:38:55:f5:58:29: a0:19:93:3d:a2:69:6d:2f:9d:90:11:51:0f:c1:6d:7d:c6:17: 08:fb:91:a1:3f:2e:79:ef:b3:4c:6c:05:63:4e:45:0b:64:05: bd:a3:85:33:af:8d:9a:1a:94:47:c5:93:01:2a:7e:bf:4d:bd: 4c:6f:19:68:07:5c:be:fa:a5:ac:3b:e2:c5:d0:f4:06:bf:dc: 07:af:01:47:f4:08:7e:f1:54:dd:3d:b3:4c:13:c6:29:8a:48: 22:63:17:2f:4f:dd:c5:10:11:4b:5a:7c:93:8c:a7:94:57:c9: 6d:18:25:af:19:ac:75:e8:44:2e:cc:0c:1b:af:b7:76:24:5c: bb:1a:ec:46:3c:23:0c:d5:24:46:15:a1:ed:05:18:e5:ab:fb: e7:22:0d:96:c1:15:25:15:40:4b:d0:e2:c6:dd:34:c2:ce:d0: 82:28:d2:e1:f4:0a:e9:8a:92:d7:6b:3f:1e:fc:38:c3:13:70: ef:37:38:49:13:7e:53:f6:fc:20:ca:b9:64:ba:2f:5b:d7:02: 10:db:2d:69 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQu+drpCjdP7uNpGv+qreAocNpEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNTA0MTUwNzU3MjJaFw0yNjA0MTQwODAyMjJaMDMxMTAvBgNV BAMTKDkyNEE3MTkwQjFCRUZERDY2NjNFODgwOEVBMjVGMTEzNDUwQ0I4MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvDcfzJ9K0aV6LCYKHyXitVFTh 7rIZcCJJFXEuhisTa0hho83H1UxBJ8d7m8Vsq/MtDnJfHdhgPcQKU5GRhgN0eHkn 9qZ/6SNVq1JdLBohWCP/3XXaQnPhGD6OLrBk8aeGxCoVgaHzmF2ipZ6BobQJSo/R UvnpR4IStomXknQIEvSqL+sLIXy3jryWIOOCGkC7cmok+ssewSpD53ujKZRFNBIr AYQ9PLXmFsn8BRrdjq3jZV77ak1KdfvZc2tc88+O88jJYxSQkU8TrHjyg+YdD6HV BwDWrvllhFzZ0F8RdhrTYVQvvrAl4jS/+7EnXPCi5/QHkXQpmWvHCsdvaEDbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkkpxkLG+/dZmPogI6iXxE0UMuDgwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNDk2MDgyLWEwYWEtNDgzNi1i NTg3LTk3M2RkN2UyOTdhZi8wLzMxMzAzMzJlMzczMTJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnRwswDQYJKoZIhvcN AQELBQADggEBAI4NO0zu7qxtephXmSGencjFEBARg+Jkix01T63zgtK3VfcS4nQW rA3lsU8NQ5qUr9Q4VfVYKaAZkz2iaW0vnZARUQ/BbX3GFwj7kaE/Lnnvs0xsBWNO RQtkBb2jhTOvjZoalEfFkwEqfr9NvUxvGWgHXL76paw74sXQ9Aa/3AevAUf0CH7x VN09s0wTximKSCJjFy9P3cUQEUtafJOMp5RXyW0YJa8ZrHXoRC7MDBuvt3YkXLsa 7EY8IwzVJEYVoe0FGOWr++ciDZbBFSUVQEvQ4sbdNMLO0IIo0uH0CumKktdrPx78 OMMTcO83OEkTflP2/CDKuWS6L1vXAhDbLWk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net