$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32332d3234203d3e203535363632.roa File: 3130332e37312e382e302f32332d3234203d3e203535363632.roa (raw, json) Hash identifier: BRdWe9yqfnGAQJZe6FUhFrj1MxqGaHwICnHhQTzDEoM= Subject key identifier: 60:ED:D8:A2:06:C8:9D:18:0A:19:37:4F:BA:C7:38:E7:68:C7:C1:BC Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 75CCCA2046D88F12F7AE2C823C53D8BAD4094716 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32332d3234203d3e203535363632.roa Signing time: Tue 15 Apr 2025 08:02:23 +0000 ROA not before: Tue 15 Apr 2025 07:57:23 +0000 ROA not after: Tue 14 Apr 2026 08:02:23 +0000 asID: 55662 IP address blocks: 103.71.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:cc:ca:20:46:d8:8f:12:f7:ae:2c:82:3c:53:d8:ba:d4:09:47:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Apr 15 07:57:23 2025 GMT Not After : Apr 14 08:02:23 2026 GMT Subject: CN=60EDD8A206C89D180A19374FBAC738E768C7C1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:04:54:8e:40:0d:c0:3c:4f:d8:e1:4d:25:6e: 26:6f:55:07:78:89:40:46:71:45:cc:d4:0e:f2:af: 71:f0:c8:b1:88:7f:f3:6c:25:1f:7b:11:3f:e2:95: 9c:1a:4d:b7:cd:bc:52:94:c2:ae:e4:19:a4:be:01: e3:8b:81:b2:f5:65:50:de:c7:41:69:72:3f:61:6d: a8:f6:df:f5:9c:bf:66:0a:de:93:f3:a6:90:7f:98: 70:8a:e1:36:02:44:ba:73:4f:8f:50:bb:b4:ad:1d: 11:bd:cc:a7:4e:1c:f3:40:cc:ef:72:59:fa:4d:4a: 82:dd:45:f4:b7:39:54:ec:d8:9c:5d:04:ec:60:0b: 14:0e:93:85:4c:5c:16:d5:d3:21:82:ec:85:92:b1: 15:a7:e2:50:63:97:dc:6d:d8:16:1d:7e:f1:8d:94: 8d:68:36:f5:c3:c1:6d:07:11:03:84:bc:a2:37:5d: f8:aa:9f:8b:a3:e0:01:7d:67:03:30:1b:2a:87:d3: 78:dc:36:53:0c:83:84:b7:16:b8:9f:f6:02:5e:9f: b9:3d:31:6c:a2:6d:ee:4f:47:b9:b4:e1:94:94:28: 04:02:f4:ee:fe:ce:0c:6a:0f:9f:87:5c:0a:52:cb: 08:ab:0b:c9:93:87:12:6f:04:43:35:40:ef:9c:ab: 94:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:ED:D8:A2:06:C8:9D:18:0A:19:37:4F:BA:C7:38:E7:68:C7:C1:BC X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32332d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.8.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:f1:ed:95:28:75:2d:31:b3:a7:37:41:30:79:07:8a:19:fc: e8:50:29:4a:e5:75:a9:2b:87:ec:80:85:74:ab:44:fa:07:66: 74:bb:fb:53:39:84:cf:17:33:7b:42:55:8d:1e:83:c9:af:cb: 64:98:f9:61:9f:5d:77:3e:e8:30:b7:92:7b:0f:74:83:30:27: a2:24:ab:d6:f6:f1:6a:9c:15:88:d4:17:bf:ab:af:da:47:7b: af:dd:9c:97:02:28:ca:4d:6a:80:7b:3d:46:0f:ff:55:ce:ff: ed:d5:4c:c9:6d:ae:e0:0d:4d:c0:9f:97:e5:0a:9a:99:3a:07: 8b:a0:f6:93:5b:5f:8b:de:0b:c4:6b:a7:35:63:77:dd:16:00: 86:d7:15:d3:43:6b:07:fd:39:e7:c2:c0:8c:b2:5f:f1:d8:23: ad:1b:b4:e3:b5:6a:22:5c:a2:f7:8a:31:0d:bb:12:01:d7:dc: 60:df:1a:a3:7e:62:36:f5:6f:f2:ad:45:5c:66:f3:b8:7d:df: 0b:52:fe:16:9c:00:7c:63:6e:70:0f:a1:ff:3c:de:45:dd:aa: f9:65:07:24:42:7c:4c:09:6e:bd:89:bc:20:dc:fc:9a:57:d2: 24:f9:33:f7:06:32:0a:90:c1:10:40:aa:d9:c1:2a:94:ca:42: c3:02:da:70 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdczKIEbYjxL3riyCPFPYutQJRxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNTA0MTUwNzU3MjNaFw0yNjA0MTQwODAyMjNaMDMxMTAvBgNV BAMTKDYwRUREOEEyMDZDODlEMTgwQTE5Mzc0RkJBQzczOEU3NjhDN0MxQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJBFSOQA3APE/Y4U0lbiZvVQd4 iUBGcUXM1A7yr3HwyLGIf/NsJR97ET/ilZwaTbfNvFKUwq7kGaS+AeOLgbL1ZVDe x0Fpcj9hbaj23/Wcv2YK3pPzppB/mHCK4TYCRLpzT49Qu7StHRG9zKdOHPNAzO9y WfpNSoLdRfS3OVTs2JxdBOxgCxQOk4VMXBbV0yGC7IWSsRWn4lBjl9xt2BYdfvGN lI1oNvXDwW0HEQOEvKI3Xfiqn4uj4AF9ZwMwGyqH03jcNlMMg4S3Frif9gJen7k9 MWyibe5PR7m04ZSUKAQC9O7+zgxqD5+HXApSywirC8mThxJvBEM1QO+cq5SNAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUYO3YogbInRgKGTdPusc452jHwbwwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1 ODctOTczZGQ3ZTI5N2FmLzAvMzEzMDMzMmUzNzMxMmUzODJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnRwgwDQYJKoZIhvcNAQEL BQADggEBAAzx7ZUodS0xs6c3QTB5B4oZ/OhQKUrldakrh+yAhXSrRPoHZnS7+1M5 hM8XM3tCVY0eg8mvy2SY+WGfXXc+6DC3knsPdIMwJ6Ikq9b28WqcFYjUF7+rr9pH e6/dnJcCKMpNaoB7PUYP/1XO/+3VTMltruANTcCfl+UKmpk6B4ug9pNbX4veC8Rr pzVjd90WAIbXFdNDawf9OefCwIyyX/HYI60btOO1aiJcoveKMQ27EgHX3GDfGqN+ Yjb1b/KtRVxm87h93wtS/hacAHxjbnAPof883kXdqvllByRCfEwJbr2JvCDc/JpX 0iT5M/cGMgqQwRBAqtnBKpTKQsMC2nA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net