$ rpki-client -vvf repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e32302e35302e302f32342d3234203d3e20313530323138.roa File: 3130332e32302e35302e302f32342d3234203d3e20313530323138.roa (raw, json) Hash identifier: PTsTBXGsNz8ocE/IUTQsqbcgk5S4dmL+3UaKaWrcOZo= Subject key identifier: D7:2F:1B:DD:BC:D3:A5:A0:17:25:E7:B0:D9:45:5E:C4:31:E6:03:1C Certificate issuer: /CN=038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4 Certificate serial: 21767FC44474940DF0681DD1821A341EB287395D Authority key identifier: 03:8F:C8:DB:9F:4F:38:1D:61:4C:3C:DA:94:4E:DB:CE:2C:EB:B6:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e32302e35302e302f32342d3234203d3e20313530323138.roa Signing time: Fri 25 Apr 2025 07:01:53 +0000 ROA not before: Fri 25 Apr 2025 06:56:53 +0000 ROA not after: Fri 24 Apr 2026 07:01:53 +0000 asID: 150218 IP address blocks: 103.20.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.crl rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 12:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:76:7f:c4:44:74:94:0d:f0:68:1d:d1:82:1a:34:1e:b2:87:39:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4 Validity Not Before: Apr 25 06:56:53 2025 GMT Not After : Apr 24 07:01:53 2026 GMT Subject: CN=D72F1BDDBCD3A5A01725E7B0D9455EC431E6031C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:3a:55:8a:5d:7b:5f:12:77:0f:05:eb:13: 2f:51:f3:6e:53:3b:7d:b3:3e:79:00:02:83:b2:6b: 8a:f7:e1:13:8b:39:05:f8:44:7a:54:5b:88:28:7c: 9b:f5:46:98:ff:64:bf:2a:cc:ea:4a:c7:bc:9b:b4: 37:f6:fd:32:0a:c5:83:84:e1:b6:9b:43:97:a3:42: 2c:29:49:9c:09:4d:ea:43:9f:aa:54:dc:db:2a:e4: 14:63:f2:7a:11:48:c4:01:52:84:4c:f6:8d:26:2f: 12:2c:7b:9b:ee:b2:ef:6c:9e:0e:75:70:fd:1c:d0: bf:b9:c8:df:fc:7d:9d:75:59:3d:50:12:5d:48:62: e5:83:dd:32:bc:9b:d6:ab:41:bf:d9:3b:5f:2b:bf: 9d:7c:b8:c6:8b:3b:28:ee:27:9d:20:81:98:8d:85: 01:b4:74:d2:2f:b2:ea:e8:1e:4f:16:69:f6:67:00: 4b:2e:93:97:6c:42:6c:96:20:a5:f8:d4:72:e6:4b: 60:27:86:d2:f0:f8:ef:36:05:f9:26:70:cf:0a:8d: 2a:0c:f1:e3:70:48:4d:2c:43:b0:80:66:08:58:f4: db:ad:69:37:1c:9c:58:fd:80:3b:6d:61:08:a3:df: 01:2e:50:cf:74:ad:8b:45:03:2d:4b:b9:a4:e7:6e: 8b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2F:1B:DD:BC:D3:A5:A0:17:25:E7:B0:D9:45:5E:C4:31:E6:03:1C X509v3 Authority Key Identifier: keyid:03:8F:C8:DB:9F:4F:38:1D:61:4C:3C:DA:94:4E:DB:CE:2C:EB:B6:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/038FC8DB9F4F381D614C3CDA944EDBCE2CEBB6F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3340df13-c4e9-4218-b114-dead1648285c/0/3130332e32302e35302e302f32342d3234203d3e20313530323138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.50.0/24 Signature Algorithm: sha256WithRSAEncryption 21:a0:64:c6:f9:24:da:bb:e5:da:29:2e:bb:aa:e1:14:50:83: df:be:d3:e4:0b:d3:06:6a:bc:a8:88:b9:48:2c:dc:5b:63:d1: fc:42:5a:8d:e0:5e:0a:f0:c8:32:43:e0:f7:fa:98:ac:f0:24: 41:01:d7:bb:b1:a4:ab:1a:ac:4d:0a:b6:4c:d7:6d:98:fe:5b: 31:90:42:0f:fa:d7:61:ad:fe:eb:1b:ca:74:8a:2e:2e:7c:a3: be:10:2a:04:f5:1b:8e:fe:4d:ac:0f:9d:76:94:68:50:53:02: 03:06:00:2f:6c:35:24:0e:42:8f:ea:30:ec:be:ac:86:d3:3d: e5:66:58:84:b8:a3:48:85:f9:92:a9:64:d8:71:e3:c6:24:4a: 99:99:38:8c:be:cb:93:a4:82:ce:21:0d:50:f0:72:ca:47:ae: 8e:54:64:6c:a1:80:89:f2:48:7a:fb:a2:0e:d0:09:26:a3:ff: 36:46:de:e5:3a:0b:d1:24:a4:94:38:67:ce:18:4a:1a:1d:22: f4:a4:c3:35:2c:02:04:f4:cf:ff:7f:36:64:44:e9:30:2f:4d: 99:df:43:aa:76:c4:ab:23:ca:c7:d4:cb:9d:c2:31:95:1b:a4: b3:d4:45:cd:0b:44:2b:49:00:1b:f8:f7:2c:03:ab:eb:73:30: 34:ae:b9:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIXZ/xER0lA3waB3Rgho0HrKHOV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM4RkM4REI5RjRGMzgxRDYxNEMzQ0RBOTQ0RURCQ0Uy Q0VCQjZGNDAeFw0yNTA0MjUwNjU2NTNaFw0yNjA0MjQwNzAxNTNaMDMxMTAvBgNV BAMTKEQ3MkYxQkREQkNEM0E1QTAxNzI1RTdCMEQ5NDU1RUM0MzFFNjAzMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLjpVil17XxJ3DwXrEy9R825T O32zPnkAAoOya4r34ROLOQX4RHpUW4gofJv1Rpj/ZL8qzOpKx7ybtDf2/TIKxYOE 4babQ5ejQiwpSZwJTepDn6pU3Nsq5BRj8noRSMQBUoRM9o0mLxIse5vusu9sng51 cP0c0L+5yN/8fZ11WT1QEl1IYuWD3TK8m9arQb/ZO18rv518uMaLOyjuJ50ggZiN hQG0dNIvsuroHk8WafZnAEsuk5dsQmyWIKX41HLmS2AnhtLw+O82BfkmcM8KjSoM 8eNwSE0sQ7CAZghY9NutaTccnFj9gDttYQij3wEuUM90rYtFAy1LuaTnbovxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1y8b3bzTpaAXJeew2UVexDHmAxwwHwYDVR0j BBgwFoAUA4/I259POB1hTDzalE7bzizrtvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzQwZGYxMy1jNGU5LTQyMTgtYjExNC1kZWFkMTY0ODI4NWMvMC8wMzhGQzhEQjlG NEYzODFENjE0QzNDREE5NDRFREJDRTJDRUJCNkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM4RkM4REI5RjRGMzgxRDYxNEMzQ0RBOTQ0RURCQ0UyQ0VC QjZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzNDBkZjEzLWM0ZTktNDIxOC1i MTE0LWRlYWQxNjQ4Mjg1Yy8wLzMxMzAzMzJlMzIzMDJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUMjANBgkqhkiG 9w0BAQsFAAOCAQEAIaBkxvkk2rvl2ikuu6rhFFCD377T5AvTBmq8qIi5SCzcW2PR /EJajeBeCvDIMkPg9/qYrPAkQQHXu7GkqxqsTQq2TNdtmP5bMZBCD/rXYa3+6xvK dIouLnyjvhAqBPUbjv5NrA+ddpRoUFMCAwYAL2w1JA5Cj+ow7L6shtM95WZYhLij SIX5kqlk2HHjxiRKmZk4jL7Lk6SCziENUPByykeujlRkbKGAifJIevuiDtAJJqP/ Nkbe5ToL0SSklDhnzhhKGh0i9KTDNSwCBPTP/382ZETpMC9Nmd9DqnbEqyPKx9TL ncIxlRuks9RFzQtEK0kAG/j3LAOr63MwNK65GA== -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:40 2025 by rpki-client on console.sobornost.net