$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa File: 3130332e37312e382e302f32322d3234203d3e203535363632.roa (raw, json) Hash identifier: sUAwamKHCQX+Nbe3UFwDzpaZhPWtBNMMXdH/RR2Wg1w= Subject key identifier: 64:47:7B:7D:08:8C:EA:04:34:6C:58:CA:91:82:99:A9:3F:F8:7D:73 Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 741F4477780B8DFEC0BB8865AECF05C19A722CE7 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa Signing time: Tue 15 Apr 2025 08:02:23 +0000 ROA not before: Tue 15 Apr 2025 07:57:23 +0000 ROA not after: Tue 14 Apr 2026 08:02:23 +0000 asID: 55662 IP address blocks: 103.71.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1f:44:77:78:0b:8d:fe:c0:bb:88:65:ae:cf:05:c1:9a:72:2c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Apr 15 07:57:23 2025 GMT Not After : Apr 14 08:02:23 2026 GMT Subject: CN=64477B7D088CEA04346C58CA918299A93FF87D73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d8:ae:19:68:fb:6a:fa:24:1f:7f:24:57:ef: ec:92:04:02:2d:48:5b:d8:2a:e0:2e:cc:d0:08:40: 72:cd:dc:dc:01:89:aa:44:c9:49:14:18:4b:ee:30: 5d:07:06:96:a8:68:dd:38:9d:b0:40:b1:fc:52:9f: c3:1e:a4:61:31:ab:2a:d6:f1:f9:ce:ea:ea:3f:87: 49:cd:53:75:d1:3d:5d:bf:85:02:2b:33:84:20:36: b6:92:f8:ab:46:c2:e3:d6:14:f8:ef:60:c8:15:be: 8d:f3:0b:93:f0:d0:5e:0d:cb:49:e4:a0:e8:5b:32: d9:f0:9e:bb:67:a7:5e:e1:8a:a2:19:1b:d7:76:36: 2f:08:07:dd:70:0b:a7:b4:23:05:f1:52:07:68:66: 81:5f:c1:a2:90:60:67:a1:17:e6:b3:98:0a:0c:39: fc:87:b9:43:55:6e:b4:6b:6c:45:02:5a:b3:21:b2: bb:91:ce:f9:6d:b3:25:29:02:1a:dd:33:05:c6:cc: 79:67:fe:bd:d5:33:f5:5e:33:c4:d8:da:b9:7a:6a: 68:25:56:be:27:e8:3f:cc:ba:8a:1d:dd:3a:5f:5d: 04:1a:45:96:ba:c4:00:af:ff:99:88:ab:c5:94:50: 71:ee:d0:0f:ac:98:9d:5b:42:b7:9d:8b:2a:8c:fc: 20:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:47:7B:7D:08:8C:EA:04:34:6C:58:CA:91:82:99:A9:3F:F8:7D:73 X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.8.0/22 Signature Algorithm: sha256WithRSAEncryption 82:4c:f4:d9:2b:a8:1a:f3:db:8a:be:34:ca:c1:9a:d5:85:7d: 6e:88:72:fe:58:a2:ca:8a:3d:5a:90:74:56:6f:ed:ed:b1:f2: a4:e5:d2:d3:43:73:b7:8b:22:b1:73:a4:44:4c:c9:4a:47:5f: 9a:fc:e7:08:f0:c6:be:b9:59:bc:07:07:20:6a:f6:46:f3:89: ff:4b:33:5b:7e:c5:a4:ed:60:84:dc:c5:23:c8:74:20:ed:9d: cf:a3:9d:31:d8:9f:4f:dd:c8:78:38:36:2b:7a:1e:8c:ff:6a: d1:a9:ab:a6:e7:22:23:75:66:c4:54:40:87:bb:79:84:d4:0d: 65:5f:11:56:c6:5e:b1:b1:06:99:69:62:c2:8b:51:df:63:84: fc:fd:39:c3:06:6a:f9:34:90:7c:6c:10:1b:81:1f:9d:4f:66: e4:02:0c:ef:ae:82:44:5a:78:7e:ff:e4:c6:26:b0:3b:0d:57: aa:98:0c:c9:6e:32:e4:65:6f:0e:60:31:18:a1:74:f3:47:fb: 36:9b:df:69:9f:21:e3:25:9d:93:dd:35:23:0c:e6:0d:e2:f9: 6a:62:c2:f2:61:c5:d9:75:4d:f5:47:61:49:29:fd:d7:8a:f0: df:34:18:e8:1a:74:a8:17:8f:13:96:0f:b9:37:3c:1a:58:43: 20:3f:3e:48 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdB9Ed3gLjf7Au4hlrs8FwZpyLOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNTA0MTUwNzU3MjNaFw0yNjA0MTQwODAyMjNaMDMxMTAvBgNV BAMTKDY0NDc3QjdEMDg4Q0VBMDQzNDZDNThDQTkxODI5OUE5M0ZGODdENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi2K4ZaPtq+iQffyRX7+ySBAIt SFvYKuAuzNAIQHLN3NwBiapEyUkUGEvuMF0HBpaoaN04nbBAsfxSn8MepGExqyrW 8fnO6uo/h0nNU3XRPV2/hQIrM4QgNraS+KtGwuPWFPjvYMgVvo3zC5Pw0F4Ny0nk oOhbMtnwnrtnp17hiqIZG9d2Ni8IB91wC6e0IwXxUgdoZoFfwaKQYGehF+azmAoM OfyHuUNVbrRrbEUCWrMhsruRzvltsyUpAhrdMwXGzHln/r3VM/VeM8TY2rl6amgl Vr4n6D/Muood3TpfXQQaRZa6xACv/5mIq8WUUHHu0A+smJ1bQrediyqM/CD5AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUZEd7fQiM6gQ0bFjKkYKZqT/4fXMwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1 ODctOTczZGQ3ZTI5N2FmLzAvMzEzMDMzMmUzNzMxMmUzODJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnRwgwDQYJKoZIhvcNAQEL BQADggEBAIJM9NkrqBrz24q+NMrBmtWFfW6Icv5YosqKPVqQdFZv7e2x8qTl0tND c7eLIrFzpERMyUpHX5r85wjwxr65WbwHByBq9kbzif9LM1t+xaTtYITcxSPIdCDt nc+jnTHYn0/dyHg4Nit6Hoz/atGpq6bnIiN1ZsRUQIe7eYTUDWVfEVbGXrGxBplp YsKLUd9jhPz9OcMGavk0kHxsEBuBH51PZuQCDO+ugkRaeH7/5MYmsDsNV6qYDMlu MuRlbw5gMRihdPNH+zab32mfIeMlnZPdNSMM5g3i+WpiwvJhxdl1TfVHYUkp/deK 8N80GOgadKgXjxOWD7k3PBpYQyA/Pkg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net