$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa File: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (raw, json) Hash identifier: uLA8drzoTGDdLRLknWkZIaOJdJxpC+UKHzjWLF3FpOA= Subject key identifier: 17:F1:3C:2A:15:4C:24:18:F3:C9:30:B7:AD:45:AC:12:0B:05:78:BB Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 31D2244DF56AECEBF05339432EEEDDB9127DCFC8 Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa Signing time: Thu 10 Apr 2025 08:00:02 +0000 ROA not before: Thu 10 Apr 2025 07:55:02 +0000 ROA not after: Thu 09 Apr 2026 08:00:02 +0000 asID: 149909 IP address blocks: 103.191.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:d2:24:4d:f5:6a:ec:eb:f0:53:39:43:2e:ee:dd:b9:12:7d:cf:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Apr 10 07:55:02 2025 GMT Not After : Apr 9 08:00:02 2026 GMT Subject: CN=17F13C2A154C2418F3C930B7AD45AC120B0578BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c4:d0:4e:5e:b0:4a:26:0e:a0:91:2a:ff:2e: f3:26:a5:ad:4b:b9:06:b4:ab:13:a7:53:d7:68:b0: 92:52:00:cb:4a:89:83:d0:a0:1b:1a:ce:9d:f3:aa: 0d:b5:1c:07:b3:86:d7:1f:f1:77:11:d4:56:a0:9d: 66:c9:d8:3e:51:fe:d9:b9:44:50:dc:f2:66:4d:95: 73:ce:9f:42:22:5f:0e:7e:15:35:b3:93:12:8e:a4: 72:ea:8b:b3:91:5e:d3:97:bf:2b:38:1c:34:bf:ba: 44:d8:62:16:19:75:4a:84:11:a3:85:25:0e:1e:fb: 28:24:68:b7:26:7c:f5:5f:52:b9:f2:e1:e6:69:c6: 87:85:0d:af:18:0f:df:72:95:ff:f7:1e:27:4e:d4: 87:2f:9a:20:1a:56:52:b6:90:9f:e7:0b:25:15:a1: 07:7a:05:29:5f:4b:07:7a:64:f8:bd:0b:d6:17:b0: 30:99:a9:c6:f1:31:06:9a:05:9c:fd:ae:91:fd:ec: 80:39:f8:f7:d7:4a:a1:94:ba:70:ce:02:83:e8:1e: c9:75:cc:69:5c:52:08:9f:93:ef:ac:6a:ea:f3:d5: 23:61:ed:58:10:e2:ba:5f:3f:5b:4b:61:f4:4f:2b: 84:4a:9f:68:c2:28:db:88:51:e7:cb:5b:2c:91:4d: 1b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F1:3C:2A:15:4C:24:18:F3:C9:30:B7:AD:45:AC:12:0B:05:78:BB X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.58.0/23 Signature Algorithm: sha256WithRSAEncryption 28:68:71:93:2e:ea:ea:94:87:36:92:75:39:96:c6:11:fd:e7: df:d6:bc:5f:c0:39:42:a6:09:f8:e2:8a:1e:ae:37:97:8c:47: 56:05:81:cf:a3:44:ba:db:79:05:66:b9:d4:88:a6:80:5c:7f: dd:c2:ea:d7:05:88:15:84:2f:6e:07:0e:76:a9:51:d0:a5:41: 5c:93:92:f1:df:fa:3c:af:c3:64:f5:eb:6a:24:4c:ac:e3:be: ce:39:77:d6:ba:9b:1a:e6:64:ec:7a:76:ec:45:ae:25:0a:f6: 7c:60:31:59:3b:1e:fd:81:93:6c:67:7a:ce:4d:3a:ba:c6:1f: 11:e3:0b:00:3f:b9:72:07:e3:b8:e9:79:48:66:2d:13:65:7b: b0:46:4d:f8:82:c2:f3:94:00:92:d2:3b:f2:6c:bc:1f:7b:4e: c6:6a:75:0e:72:91:91:88:20:97:bc:11:ef:19:f8:30:81:df: 37:9d:99:c2:51:3c:8d:f5:c9:fe:96:19:19:cf:16:14:11:4f: 86:0f:e2:84:e9:32:f7:1c:cd:d2:72:57:56:98:37:e8:6a:ee: c4:d6:f6:08:57:9a:ae:34:a0:1d:b7:3d:0c:31:51:81:a1:eb: f7:24:a8:cc:80:78:93:d1:73:3d:34:75:2d:a4:d6:97:9b:1d: aa:c8:74:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMdIkTfVq7OvwUzlDLu7duRJ9z8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNTA0MTAwNzU1MDJaFw0yNjA0MDkwODAwMDJaMDMxMTAvBgNV BAMTKDE3RjEzQzJBMTU0QzI0MThGM0M5MzBCN0FENDVBQzEyMEIwNTc4QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzxNBOXrBKJg6gkSr/LvMmpa1L uQa0qxOnU9dosJJSAMtKiYPQoBsazp3zqg21HAezhtcf8XcR1FagnWbJ2D5R/tm5 RFDc8mZNlXPOn0IiXw5+FTWzkxKOpHLqi7ORXtOXvys4HDS/ukTYYhYZdUqEEaOF JQ4e+ygkaLcmfPVfUrny4eZpxoeFDa8YD99ylf/3HidO1IcvmiAaVlK2kJ/nCyUV oQd6BSlfSwd6ZPi9C9YXsDCZqcbxMQaaBZz9rpH97IA5+PfXSqGUunDOAoPoHsl1 zGlcUgifk++saurz1SNh7VgQ4rpfP1tLYfRPK4RKn2jCKNuIUefLWyyRTRtrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUF/E8KhVMJBjzyTC3rUWsEgsFeLswHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYmU2ODE1LTMxMGUtNDIwNi1h NTAwLTZiYjlkMzI2M2FiZi8wLzMxMzAzMzJlMzEzOTMxMmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ786MA0GCSqG SIb3DQEBCwUAA4IBAQAoaHGTLurqlIc2knU5lsYR/eff1rxfwDlCpgn44ooerjeX jEdWBYHPo0S623kFZrnUiKaAXH/dwurXBYgVhC9uBw52qVHQpUFck5Lx3/o8r8Nk 9etqJEys477OOXfWupsa5mTsenbsRa4lCvZ8YDFZOx79gZNsZ3rOTTq6xh8R4wsA P7lyB+O46XlIZi0TZXuwRk34gsLzlACS0jvybLwfe07GanUOcpGRiCCXvBHvGfgw gd83nZnCUTyN9cn+lhkZzxYUEU+GD+KE6TL3HM3ScldWmDfoau7E1vYIV5quNKAd tz0MMVGBoev3JKjMgHiT0XM9NHUtpNaXmx2qyHTR -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:26 2025 by rpki-client on console.sobornost.net