$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa File: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: D9RmffxIYaHEobvTe2y7ZZC1r4KqpQ5ll315JKMW8os= Subject key identifier: AE:9E:F8:B6:C4:12:3A:67:E4:1C:74:26:A7:EF:82:8F:9E:0C:3A:23 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 09F2EF7069BF393897DAE55A606DC7370E37FC80 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa Signing time: Wed 02 Apr 2025 05:00:00 +0000 ROA not before: Wed 02 Apr 2025 04:55:00 +0000 ROA not after: Wed 01 Apr 2026 05:00:00 +0000 asID: 149883 IP address blocks: 103.189.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 18:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f2:ef:70:69:bf:39:38:97:da:e5:5a:60:6d:c7:37:0e:37:fc:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Apr 2 04:55:00 2025 GMT Not After : Apr 1 05:00:00 2026 GMT Subject: CN=AE9EF8B6C4123A67E41C7426A7EF828F9E0C3A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:75:95:c1:75:bb:aa:e8:00:64:c4:2f:3f: 9b:24:15:82:82:ab:77:96:48:c3:f1:ad:76:31:ee: 59:64:a0:5b:b9:da:05:d5:ea:36:2e:8b:5c:fa:d6: c3:a2:95:36:72:15:8d:97:23:a8:5f:10:9d:91:1b: 2d:2f:97:88:ac:5a:c5:9f:43:bc:55:f0:a7:fd:50: a0:af:29:e0:14:59:9a:30:1e:65:0e:35:a2:d9:06: 9a:26:0f:0a:1b:b1:09:40:43:02:12:1c:90:26:45: ec:f9:20:67:3a:1d:b1:db:f9:5f:3e:d3:b8:ec:25: 03:9f:ba:fd:66:9f:a9:f6:b6:1e:f0:31:ed:0b:ee: e4:ee:85:ad:d4:56:5b:1f:d2:33:5b:65:ed:5b:d9: 37:8f:9d:2a:8b:04:c5:12:a2:dc:23:a3:a3:a4:74: 0a:ff:66:21:86:7d:e1:b8:71:2b:50:a9:c7:27:b5: 37:20:e0:77:63:e7:19:d5:44:d8:81:95:72:61:b8: 1c:49:66:e9:ca:77:cb:f4:64:3e:43:b2:44:c3:a6: 73:e7:95:48:19:72:cf:2b:8a:a4:7b:c9:42:ff:af: dd:d4:fa:7f:7a:93:31:71:39:e8:75:d6:8d:d0:0f: 93:8e:01:e1:ee:68:9e:bf:cb:8e:7f:37:13:ba:3e: 1d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9E:F8:B6:C4:12:3A:67:E4:1C:74:26:A7:EF:82:8F:9E:0C:3A:23 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.118.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:bd:69:95:40:ab:40:15:aa:26:1e:4c:31:0f:2f:4a:51:89: 6f:cb:f5:ab:aa:17:82:54:f4:14:6b:16:ad:01:52:3a:5f:44: 2b:25:18:48:bb:72:23:9e:ec:0e:24:47:e2:5e:d1:cb:ff:0f: ad:60:e6:31:3b:5a:fd:69:74:44:d2:5c:f1:0f:4e:c4:01:2e: d8:b0:dd:83:48:3b:37:d1:41:f2:c1:68:7d:a1:d8:8e:67:86: ea:7d:56:71:9b:e1:b8:77:66:61:58:a8:e6:ed:39:a3:c2:d6: 8b:ab:1b:42:35:b7:69:37:57:37:75:c2:07:bc:36:8e:99:dc: c9:fd:ed:ad:a0:dd:e1:6e:ab:39:73:f4:66:ba:41:21:ca:28: df:10:8f:4f:57:67:99:e3:b8:e4:83:b1:25:d5:d1:e0:7a:03: 53:aa:18:70:72:3d:16:8f:9f:75:5e:34:18:38:cf:16:a8:53: 47:8d:1b:72:eb:78:27:79:b3:b4:b4:83:96:68:e5:2c:ae:56: bc:49:4f:31:4a:b2:a9:56:25:b9:50:cb:f4:c4:24:2d:d0:45: 0f:f3:9f:f7:57:9d:d2:03:83:b1:73:53:f3:2d:1a:9f:ae:c7: fd:ce:e0:82:c0:fd:8f:2a:8b:57:5b:7d:69:9e:85:34:e2:f2: 85:d0:b1:24 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCfLvcGm/OTiX2uVaYG3HNw43/IAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTA0MDIwNDU1MDBaFw0yNjA0MDEwNTAwMDBaMDMxMTAvBgNV BAMTKEFFOUVGOEI2QzQxMjNBNjdFNDFDNzQyNkE3RUY4MjhGOUUwQzNBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoFHWVwXW7qugAZMQvP5skFYKC q3eWSMPxrXYx7llkoFu52gXV6jYui1z61sOilTZyFY2XI6hfEJ2RGy0vl4isWsWf Q7xV8Kf9UKCvKeAUWZowHmUONaLZBpomDwobsQlAQwISHJAmRez5IGc6HbHb+V8+ 07jsJQOfuv1mn6n2th7wMe0L7uTuha3UVlsf0jNbZe1b2TePnSqLBMUSotwjo6Ok dAr/ZiGGfeG4cStQqccntTcg4Hdj5xnVRNiBlXJhuBxJZunKd8v0ZD5DskTDpnPn lUgZcs8riqR7yUL/r93U+n96kzFxOeh11o3QD5OOAeHuaJ6/y45/NxO6Ph3VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrp74tsQSOmfkHHQmp++Cj54MOiMwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2LTY1NmQtNDYxZC05 Y2ZmLWM4M2FjMDc0MmYyMC8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXYwDQYJ KoZIhvcNAQELBQADggEBAE29aZVAq0AVqiYeTDEPL0pRiW/L9auqF4JU9BRrFq0B UjpfRCslGEi7ciOe7A4kR+Je0cv/D61g5jE7Wv1pdETSXPEPTsQBLtiw3YNIOzfR QfLBaH2h2I5nhup9VnGb4bh3ZmFYqObtOaPC1ourG0I1t2k3Vzd1wge8No6Z3Mn9 7a2g3eFuqzlz9Ga6QSHKKN8Qj09XZ5njuOSDsSXV0eB6A1OqGHByPRaPn3VeNBg4 zxaoU0eNG3LreCd5s7S0g5Zo5SyuVrxJTzFKsqlWJblQy/TEJC3QRQ/zn/dXndID g7FzU/MtGp+ux/3O4ILA/Y8qi1dbfWmehTTi8oXQsSQ= -----END CERTIFICATE-----Generated at Fri Apr 25 17:11:50 2025 by rpki-client on console.sobornost.net