$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa File: 3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: kqyShD8grMzsW8WAD+q93A9hYlzfgDARjSsqGTZiG54= Subject key identifier: 9E:3A:E4:F2:FD:58:E0:D6:8C:36:C0:0B:FA:29:78:69:ED:8F:9E:BD Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 28B3F469A7740A37E7628DDEC905DA9180ACBE89 Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa Signing time: Thu 24 Apr 2025 05:01:12 +0000 ROA not before: Thu 24 Apr 2025 04:56:12 +0000 ROA not after: Thu 23 Apr 2026 05:01:12 +0000 asID: 138096 IP address blocks: 103.207.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 05:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:b3:f4:69:a7:74:0a:37:e7:62:8d:de:c9:05:da:91:80:ac:be:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: Apr 24 04:56:12 2025 GMT Not After : Apr 23 05:01:12 2026 GMT Subject: CN=9E3AE4F2FD58E0D68C36C00BFA297869ED8F9EBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2e:f5:d9:5d:7a:27:78:63:b0:be:70:25:d4: 75:95:19:30:f3:bf:71:19:ea:eb:9e:46:57:be:84: ab:7a:67:7a:4e:e8:e5:96:17:48:59:52:a3:f4:67: 16:1a:b2:44:90:f4:7f:8d:4a:ea:f0:6d:ce:f5:e5: 07:1d:ea:4f:72:9d:a0:71:16:f0:b1:76:3d:28:a8: 2c:35:ff:cb:83:14:87:75:9c:f0:7f:40:f0:e8:66: 62:cb:6a:7f:08:2d:18:ea:9c:71:d2:f2:3f:24:9f: ca:3d:e9:d1:48:22:1a:95:e8:9a:60:dd:56:48:f6: d5:ad:bc:ee:b6:31:0f:cb:75:11:02:30:d7:8c:1c: 5e:f9:2e:41:f8:a7:88:1c:65:a6:c4:3c:97:7e:70: e2:33:fd:ab:d9:4d:6d:8c:97:a7:1a:83:0e:33:7f: bf:33:d0:da:45:d1:c6:0c:64:2a:aa:60:ab:ba:3e: 88:5a:62:fd:8c:bf:55:29:7e:b0:dc:e1:82:5a:5f: 20:18:e8:3b:67:82:80:d8:70:01:9d:08:c9:b5:5d: 53:39:88:6b:a4:44:e3:52:3e:a9:f6:b5:f9:ea:d8: d3:15:f7:82:21:1e:df:c4:b6:12:71:5a:b5:26:64: 0c:57:f6:f3:84:63:6c:e0:bc:b0:1b:d9:4e:22:43: 69:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3A:E4:F2:FD:58:E0:D6:8C:36:C0:0B:FA:29:78:69:ED:8F:9E:BD X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.238.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:23:b6:3f:12:34:bd:69:9b:e1:9d:9a:45:69:fc:5a:a6:10: 9b:c7:27:59:9b:fa:c2:41:d7:69:9e:ff:b3:b4:46:98:1c:13: b3:2b:d0:45:c7:70:a1:ba:8d:0f:c4:38:a1:51:18:d9:1d:3a: 4b:9d:5e:0f:d4:eb:67:65:1f:f8:63:89:85:c4:96:e9:de:4f: e1:83:7f:aa:bf:12:e4:cc:be:52:31:f4:0d:3a:e8:87:2e:2b: c0:a7:1a:bf:13:7e:6c:53:67:d3:4b:51:e1:4c:cf:77:d0:64: 5e:a0:a0:b7:e4:94:9b:9c:89:81:29:91:ae:ea:c0:8d:08:41: 0e:e9:6a:43:9e:c1:9c:4a:f2:9c:48:66:ab:39:77:f3:50:87: 74:22:6c:99:f0:69:24:19:03:1a:99:9c:cc:f8:a0:8e:88:4f: 55:e0:39:d1:c9:2b:15:11:1b:c9:99:b6:3c:e7:ab:77:7b:7f: 94:33:d2:05:e5:73:25:2a:ec:10:f5:36:30:ea:97:0b:67:cb: 57:00:6d:5c:89:09:bd:26:a9:1c:10:40:47:9c:8e:2f:ae:55: 8a:4a:32:79:96:c4:70:92:8d:ca:89:0d:37:93:0f:2d:29:60: d6:d5:a8:6a:1e:df:ea:a0:93:fa:87:54:52:23:67:b1:9c:dd: 37:fc:02:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKLP0aad0CjfnYo3eyQXakYCsvokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yNTA0MjQwNDU2MTJaFw0yNjA0MjMwNTAxMTJaMDMxMTAvBgNV BAMTKDlFM0FFNEYyRkQ1OEUwRDY4QzM2QzAwQkZBMjk3ODY5RUQ4RjlFQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdLvXZXXoneGOwvnAl1HWVGTDz v3EZ6uueRle+hKt6Z3pO6OWWF0hZUqP0ZxYaskSQ9H+NSurwbc715Qcd6k9ynaBx FvCxdj0oqCw1/8uDFId1nPB/QPDoZmLLan8ILRjqnHHS8j8kn8o96dFIIhqV6Jpg 3VZI9tWtvO62MQ/LdRECMNeMHF75LkH4p4gcZabEPJd+cOIz/avZTW2Ml6cagw4z f78z0NpF0cYMZCqqYKu6PohaYv2Mv1UpfrDc4YJaXyAY6DtngoDYcAGdCMm1XVM5 iGukRONSPqn2tfnq2NMV94IhHt/EthJxWrUmZAxX9vOEY2zgvLAb2U4iQ2kbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnjrk8v1Y4NaMNsAL+il4ae2Pnr0wHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnz+4wDQYJ KoZIhvcNAQELBQADggEBAH0jtj8SNL1pm+GdmkVp/FqmEJvHJ1mb+sJB12me/7O0 RpgcE7Mr0EXHcKG6jQ/EOKFRGNkdOkudXg/U62dlH/hjiYXEluneT+GDf6q/EuTM vlIx9A066IcuK8CnGr8TfmxTZ9NLUeFMz3fQZF6goLfklJuciYEpka7qwI0IQQ7p akOewZxK8pxIZqs5d/NQh3QibJnwaSQZAxqZnMz4oI6IT1XgOdHJKxURG8mZtjzn q3d7f5Qz0gXlcyUq7BD1NjDqlwtny1cAbVyJCb0mqRwQQEecji+uVYpKMnmWxHCS jcqJDTeTDy0pYNbVqGoe3+qgk/qHVFIjZ7Gc3Tf8Aig= -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:50 2025 by rpki-client on console.sobornost.net