$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e392e302f32342d3234203d3e203535363632.roa File: 3130332e37312e392e302f32342d3234203d3e203535363632.roa (raw, json) Hash identifier: bclkgIIHxYvNhhuq/hH1lA6EKs8X7SbQPbYIFdc9uTw= Subject key identifier: AF:CF:E5:16:24:C0:D0:32:F4:4F:16:40:12:2C:2B:72:32:3C:06:F6 Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 25B8D87C3CE0F3A3B911F26F50EC8DB86F452423 Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e392e302f32342d3234203d3e203535363632.roa Signing time: Tue 15 Apr 2025 08:02:23 +0000 ROA not before: Tue 15 Apr 2025 07:57:23 +0000 ROA not after: Tue 14 Apr 2026 08:02:23 +0000 asID: 55662 IP address blocks: 103.71.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b8:d8:7c:3c:e0:f3:a3:b9:11:f2:6f:50:ec:8d:b8:6f:45:24:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: Apr 15 07:57:23 2025 GMT Not After : Apr 14 08:02:23 2026 GMT Subject: CN=AFCFE51624C0D032F44F1640122C2B72323C06F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:45:e2:19:33:2c:44:f1:91:fb:82:c4:d1:b9: d7:81:d2:ff:75:80:f9:18:7c:3f:e3:b3:77:7d:6b: 90:73:f0:d6:67:cd:73:08:3a:08:85:6e:8a:61:54: ed:42:14:1d:ad:1c:ba:1a:f6:aa:4d:bc:f9:bc:16: 79:7e:b1:17:a8:57:37:e4:95:41:48:53:78:5f:95: fc:ff:49:58:88:65:a1:36:a9:44:cc:e1:f0:a3:00: 6d:0f:b0:76:a7:59:a8:c9:2e:be:91:5b:39:bf:68: af:0a:3a:5c:20:21:62:ca:3f:06:4b:d8:9f:d5:ef: f7:b1:47:c9:f1:5e:13:41:a4:5e:17:f1:d2:00:8d: fd:72:70:c0:41:9a:20:01:19:8a:af:68:0f:6a:d8: f2:eb:fa:14:90:35:c1:37:3c:6c:d4:3f:5b:53:8a: 9b:82:7c:0d:21:09:b5:c3:b7:de:17:ee:c8:bf:88: d8:a5:3b:61:2a:65:1d:ab:e6:be:a8:50:e9:8d:4e: 88:13:4a:f2:b1:6b:43:e1:c6:c1:36:41:b9:27:44: a3:51:41:55:4a:92:ec:54:de:f6:e1:6e:dc:5d:c7: 57:f7:6c:cf:d3:e4:07:a6:5e:07:8d:cf:ab:7a:48: 58:ec:77:8f:49:e6:c4:82:78:63:c0:d6:1a:66:74: ba:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:CF:E5:16:24:C0:D0:32:F4:4F:16:40:12:2C:2B:72:32:3C:06:F6 X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e392e302f32342d3234203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.9.0/24 Signature Algorithm: sha256WithRSAEncryption b0:19:97:19:f1:d8:1b:61:ad:f5:57:cf:d6:4a:3f:28:20:79: ed:71:dc:50:8e:36:0e:58:ef:c6:4e:4d:d4:fc:07:f7:f2:ce: 02:8d:b8:e5:91:32:e8:83:20:b9:f0:e1:51:4b:5c:8c:51:f0: 0f:d8:01:78:1b:98:4d:1c:a5:e0:84:36:f8:d7:d1:9e:de:f8: be:bc:35:1d:1d:91:cd:eb:62:a7:42:47:41:a0:a4:07:5d:14: 0c:31:51:38:4a:b7:77:b2:d6:30:61:ee:64:19:c2:58:0a:84: 67:aa:99:5f:45:8d:72:46:a2:bc:30:7e:84:3c:f2:e7:75:8e: 56:4d:af:06:e1:97:fe:87:4c:2d:01:00:56:b1:5b:e9:f8:f5: 8f:56:9a:a6:17:27:b9:64:d6:7f:1d:ed:bb:5e:33:6e:4a:ee: 2a:f3:fc:02:0c:f5:78:4a:77:d3:60:83:19:e3:5e:7c:a8:d5: 0f:4c:65:2f:31:6b:77:fb:d9:fb:47:bc:09:a5:0c:77:5c:08: fe:e0:df:38:cf:6c:40:1d:38:19:17:60:8d:e4:21:2d:dd:7b: 86:df:42:d2:ac:c3:6c:92:2f:82:a7:8d:2b:9f:72:43:a2:f0: 9f:c0:2c:ca:06:5e:36:f1:42:06:a1:c8:5d:59:d8:55:23:f5: 38:a6:99:7c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUJbjYfDzg86O5EfJvUOyNuG9FJCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNTA0MTUwNzU3MjNaFw0yNjA0MTQwODAyMjNaMDMxMTAvBgNV BAMTKEFGQ0ZFNTE2MjRDMEQwMzJGNDRGMTY0MDEyMkMyQjcyMzIzQzA2RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqReIZMyxE8ZH7gsTRudeB0v91 gPkYfD/js3d9a5Bz8NZnzXMIOgiFbophVO1CFB2tHLoa9qpNvPm8Fnl+sReoVzfk lUFIU3hflfz/SViIZaE2qUTM4fCjAG0PsHanWajJLr6RWzm/aK8KOlwgIWLKPwZL 2J/V7/exR8nxXhNBpF4X8dIAjf1ycMBBmiABGYqvaA9q2PLr+hSQNcE3PGzUP1tT ipuCfA0hCbXDt94X7si/iNilO2EqZR2r5r6oUOmNTogTSvKxa0PhxsE2QbknRKNR QVVKkuxU3vbhbtxdx1f3bM/T5AemXgeNz6t6SFjsd49J5sSCeGPA1hpmdLrBAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUr8/lFiTA0DL0TxZAEiwrcjI8BvYwHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1 ODctOTczZGQ3ZTI5N2FmLzAvMzEzMDMzMmUzNzMxMmUzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnRwkwDQYJKoZIhvcNAQEL BQADggEBALAZlxnx2BthrfVXz9ZKPyggee1x3FCONg5Y78ZOTdT8B/fyzgKNuOWR MuiDILnw4VFLXIxR8A/YAXgbmE0cpeCENvjX0Z7e+L68NR0dkc3rYqdCR0GgpAdd FAwxUThKt3ey1jBh7mQZwlgKhGeqmV9FjXJGorwwfoQ88ud1jlZNrwbhl/6HTC0B AFaxW+n49Y9WmqYXJ7lk1n8d7bteM25K7irz/AIM9XhKd9NggxnjXnyo1Q9MZS8x a3f72ftHvAmlDHdcCP7g3zjPbEAdOBkXYI3kIS3de4bfQtKsw2ySL4KnjSufckOi 8J/ALMoGXjbxQgahyF1Z2FUj9TimmXw= -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net