$ rpki-client -vvf repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/3130332e3135362e35372e302f32342d3234203d3e20313431303833.roa File: 3130332e3135362e35372e302f32342d3234203d3e20313431303833.roa (raw, json) Hash identifier: YU44qqt6xQCwxLXA5jfaKyr8+7F8xFDqnBfx8dtxJPU= Subject key identifier: 86:52:59:B0:59:8B:75:83:6D:D3:7D:25:E3:58:15:F3:01:26:DD:1C Certificate issuer: /CN=CD4EAC0306D06F2109F2679DC9F52F7DE597590D Certificate serial: 4645C5565843371C65622047534A83F263B2A266 Authority key identifier: CD:4E:AC:03:06:D0:6F:21:09:F2:67:9D:C9:F5:2F:7D:E5:97:59:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/3130332e3135362e35372e302f32342d3234203d3e20313431303833.roa Signing time: Sat 12 Apr 2025 07:00:01 +0000 ROA not before: Sat 12 Apr 2025 06:55:01 +0000 ROA not after: Sat 11 Apr 2026 07:00:01 +0000 asID: 141083 IP address blocks: 103.156.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.crl rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 23:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:45:c5:56:58:43:37:1c:65:62:20:47:53:4a:83:f2:63:b2:a2:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD4EAC0306D06F2109F2679DC9F52F7DE597590D Validity Not Before: Apr 12 06:55:01 2025 GMT Not After : Apr 11 07:00:01 2026 GMT Subject: CN=865259B0598B75836DD37D25E35815F30126DD1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:55:2b:5c:48:14:cc:38:47:ac:26:05:ad: c9:db:2e:3a:36:02:ef:8b:33:6c:5c:75:38:b3:1a: 8f:0f:5d:58:90:86:31:d7:7f:03:8f:ec:9a:5a:c1: 03:86:08:8b:e5:de:9d:5d:e7:e1:81:b8:c1:57:c6: c4:b0:ab:78:94:71:74:09:f8:f8:1c:20:0c:84:cc: 20:fb:5d:04:b4:e5:f5:19:de:69:e3:97:24:e7:45: 34:6c:e1:b3:b7:a8:50:59:8f:23:93:ea:d8:05:78: 68:c5:13:0a:42:94:a6:5d:ef:45:22:9c:32:ca:e5: cd:e9:f6:fb:10:15:f8:f1:c4:2d:80:cf:98:f5:98: a6:fb:d2:bf:94:2b:ef:01:df:19:f4:3c:7d:e9:e9: ba:6f:f1:5b:2b:2e:59:90:aa:37:dd:6a:18:5b:ee: a4:9c:00:a6:c1:69:60:94:1d:e9:f0:18:c4:06:47: ae:6f:8d:a4:e8:0d:57:6a:f0:6e:c9:a4:e9:de:0a: cd:3a:cb:49:11:21:28:5e:59:c2:a6:b3:26:69:d5: 06:d9:66:ee:a2:aa:b1:02:4e:2c:2f:04:1f:1e:b4: 76:c3:db:10:bd:46:48:a4:ab:8f:9b:eb:6f:de:d7: 91:6e:cd:55:81:7a:81:15:98:58:7e:78:7c:29:af: 35:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:52:59:B0:59:8B:75:83:6D:D3:7D:25:E3:58:15:F3:01:26:DD:1C X509v3 Authority Key Identifier: keyid:CD:4E:AC:03:06:D0:6F:21:09:F2:67:9D:C9:F5:2F:7D:E5:97:59:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/3130332e3135362e35372e302f32342d3234203d3e20313431303833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.57.0/24 Signature Algorithm: sha256WithRSAEncryption ae:f6:d9:8b:22:5b:e3:c1:c0:c6:5d:2d:0c:96:a0:de:a8:7d: 68:87:e3:02:b7:dc:0a:65:a6:73:11:d6:47:9d:05:b4:78:6c: ca:90:ba:26:bf:d4:d0:a7:c7:da:20:90:a5:cb:c0:45:7a:02: 0c:be:d9:60:b3:3d:82:09:91:18:b0:06:af:6c:76:7f:94:85: f1:c3:02:2a:d3:0f:0b:8a:83:05:a4:95:e2:63:73:f3:e7:c3: 62:c3:37:fe:10:0c:8b:48:03:28:18:69:72:e4:b7:1f:78:b9: 43:a5:5b:09:68:b6:05:2b:36:04:af:4c:77:b1:63:c0:b7:66: 94:d8:d2:7e:3e:17:10:a6:3a:e3:92:ac:f3:23:76:2d:a5:dc: 29:a4:15:0a:40:3d:b8:05:12:07:4f:64:af:02:d0:6a:ef:fb: b9:6b:82:4c:d0:93:70:79:3c:6b:f8:5b:e4:93:51:c5:25:de: 8e:4c:06:87:c7:62:b7:a2:93:7a:9a:c3:8e:a2:0a:e8:b0:50: 87:40:61:77:37:53:11:5c:ab:82:08:0c:f8:c7:c6:55:4a:6a: 0c:44:41:1f:b1:86:ae:08:1e:50:fa:8f:f9:9f:ae:02:98:1a: c7:a5:69:d5:ff:d6:b9:cd:2c:62:e0:18:d8:3d:9a:a0:d8:b4: 82:13:3b:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURkXFVlhDNxxlYiBHU0qD8mOyomYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q0RUFDMDMwNkQwNkYyMTA5RjI2NzlEQzlGNTJGN0RF NTk3NTkwRDAeFw0yNTA0MTIwNjU1MDFaFw0yNjA0MTEwNzAwMDFaMDMxMTAvBgNV BAMTKDg2NTI1OUIwNTk4Qjc1ODM2REQzN0QyNUUzNTgxNUYzMDEyNkREMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE6FUrXEgUzDhHrCYFrcnbLjo2 Au+LM2xcdTizGo8PXViQhjHXfwOP7JpawQOGCIvl3p1d5+GBuMFXxsSwq3iUcXQJ +PgcIAyEzCD7XQS05fUZ3mnjlyTnRTRs4bO3qFBZjyOT6tgFeGjFEwpClKZd70Ui nDLK5c3p9vsQFfjxxC2Az5j1mKb70r+UK+8B3xn0PH3p6bpv8VsrLlmQqjfdahhb 7qScAKbBaWCUHenwGMQGR65vjaToDVdq8G7JpOneCs06y0kRISheWcKmsyZp1QbZ Zu6iqrECTiwvBB8etHbD2xC9Rkikq4+b62/e15FuzVWBeoEVmFh+eHwprzUNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhlJZsFmLdYNt030l41gV8wEm3RwwHwYDVR0j BBgwFoAUzU6sAwbQbyEJ8medyfUvfeWXWQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzhiYmZkNC02N2I0LTQ5OGQtODQxMS1lOTY0YzVmZTExNzIvMC9DRDRFQUMwMzA2 RDA2RjIxMDlGMjY3OURDOUY1MkY3REU1OTc1OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q0RUFDMDMwNkQwNkYyMTA5RjI2NzlEQzlGNTJGN0RFNTk3 NTkwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3OGJiZmQ0LTY3YjQtNDk4ZC04 NDExLWU5NjRjNWZlMTE3Mi8wLzMxMzAzMzJlMzEzNTM2MmUzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5w5MA0GCSqG SIb3DQEBCwUAA4IBAQCu9tmLIlvjwcDGXS0MlqDeqH1oh+MCt9wKZaZzEdZHnQW0 eGzKkLomv9TQp8faIJCly8BFegIMvtlgsz2CCZEYsAavbHZ/lIXxwwIq0w8LioMF pJXiY3Pz58Niwzf+EAyLSAMoGGly5LcfeLlDpVsJaLYFKzYEr0x3sWPAt2aU2NJ+ PhcQpjrjkqzzI3YtpdwppBUKQD24BRIHT2SvAtBq7/u5a4JM0JNweTxr+Fvkk1HF Jd6OTAaHx2K3opN6msOOogrosFCHQGF3N1MRXKuCCAz4x8ZVSmoMREEfsYauCB5Q +o/5n64CmBrHpWnV/9a5zSxi4BjYPZqg2LSCEzt1 -----END CERTIFICATE-----Generated at Fri Apr 25 19:23:49 2025 by rpki-client on console.sobornost.net