$ rpki-client -vvf repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38382e302f32342d3234203d3e20313531353732.roa File: 3130332e36302e38382e302f32342d3234203d3e20313531353732.roa (raw, json) Hash identifier: k2+2S8JNGrIJgA3B1fWsPdcHVnZQhwJAO8DfE0j/qJE= Subject key identifier: 2B:69:ED:BC:61:CB:3B:00:06:26:7B:A0:50:2B:7D:D8:A8:DA:AB:31 Certificate issuer: /CN=E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE Certificate serial: 33E10E332577DD70BF33FA22180857F785BB9802 Authority key identifier: E7:C9:E4:E5:C8:EA:98:9F:0F:F7:D6:FE:6D:BD:6A:4F:E8:21:2D:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38382e302f32342d3234203d3e20313531353732.roa Signing time: Tue 22 Apr 2025 12:00:01 +0000 ROA not before: Tue 22 Apr 2025 11:55:01 +0000 ROA not after: Tue 21 Apr 2026 12:00:01 +0000 asID: 151572 IP address blocks: 103.60.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.crl rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:e1:0e:33:25:77:dd:70:bf:33:fa:22:18:08:57:f7:85:bb:98:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE Validity Not Before: Apr 22 11:55:01 2025 GMT Not After : Apr 21 12:00:01 2026 GMT Subject: CN=2B69EDBC61CB3B0006267BA0502B7DD8A8DAAB31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c2:32:9c:55:6f:56:de:7d:08:43:a9:9a:c2: fc:88:30:54:65:6e:2e:b6:61:12:46:bb:b8:07:79: 70:5a:64:9f:26:05:01:a2:82:aa:fa:85:91:5f:ba: 0e:68:89:33:1f:b6:55:ce:43:2d:4b:42:c5:7b:01: 75:04:b6:ca:25:65:ed:a1:bf:9a:fe:e0:e5:82:4b: 8e:14:0c:59:25:11:f6:d7:bf:5b:a8:0d:b5:1c:c4: 85:b1:86:00:f4:04:a8:65:9c:90:22:d8:fc:65:a8: b0:9d:b0:c1:7c:ef:89:a1:df:09:82:5e:bb:24:2d: ba:3d:0c:02:7d:a2:b1:2a:15:c0:bf:f0:e7:42:1a: 5c:1d:2f:1b:3c:c6:b9:82:0d:11:82:a1:d4:ff:24: af:c4:67:87:1c:fb:be:ea:ba:63:4d:6a:78:b1:45: 1e:f7:9d:08:21:84:93:e0:61:72:1e:41:3b:9d:31: e2:ac:07:51:55:5a:5a:dd:6a:ac:60:40:9f:20:53: b5:31:82:df:d0:6c:ec:46:e2:d2:68:d5:ee:02:fb: 29:61:33:63:72:0b:a2:37:c0:9b:c5:f9:6c:88:a0: 12:1b:3d:7d:05:c5:bc:93:44:d2:70:12:8b:d1:97: 0c:cb:91:00:a6:bc:fa:9b:2c:85:b8:99:56:ba:6b: 4d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:69:ED:BC:61:CB:3B:00:06:26:7B:A0:50:2B:7D:D8:A8:DA:AB:31 X509v3 Authority Key Identifier: keyid:E7:C9:E4:E5:C8:EA:98:9F:0F:F7:D6:FE:6D:BD:6A:4F:E8:21:2D:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38382e302f32342d3234203d3e20313531353732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.88.0/24 Signature Algorithm: sha256WithRSAEncryption 12:3c:6e:ec:65:c1:7b:1a:17:7f:34:4e:91:22:0d:b2:c8:94: c6:0c:90:bb:bf:76:4a:b6:b2:f1:91:f6:a3:f3:40:38:56:3c: f5:ab:ff:21:e6:97:b0:61:12:bf:bc:e8:27:0d:94:bc:31:e3: 4a:83:a7:2a:15:28:c0:68:f5:a6:40:cd:52:c8:7b:e3:b3:b4: 1b:7f:a4:00:da:02:93:32:95:0c:1f:a1:8b:b0:02:36:16:f6: a4:92:6b:0d:1e:eb:40:d3:2f:0a:31:47:54:db:cc:95:54:7a: a7:f5:e1:43:48:96:77:6c:bc:66:79:c6:4e:3c:85:09:8c:70: 19:38:1e:d4:83:54:58:7f:12:3b:ce:c2:e1:ce:3b:af:6e:43: ea:70:0f:1f:1d:5f:dc:bb:87:7d:d0:d1:ff:56:6e:53:1e:41: 29:cb:97:2f:54:74:5c:53:8d:0c:cd:73:8e:bf:10:4f:67:fc: 4f:db:49:97:9d:dd:26:fb:e3:02:1f:0f:a1:61:c1:6d:f9:18: a8:b3:b4:1b:fa:78:76:e9:37:86:dc:09:da:fd:8e:d3:20:72: 94:86:a1:2b:5e:d9:04:ea:a7:e7:de:12:38:c1:49:89:41:bd: f2:b1:a6:10:23:ea:ba:7b:d3:65:58:a9:ae:21:39:37:7a:34: 79:d5:66:5c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM+EOMyV33XC/M/oiGAhX94W7mAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdDOUU0RTVDOEVBOTg5RjBGRjdENkZFNkRCRDZBNEZF ODIxMkRERTAeFw0yNTA0MjIxMTU1MDFaFw0yNjA0MjExMjAwMDFaMDMxMTAvBgNV BAMTKDJCNjlFREJDNjFDQjNCMDAwNjI2N0JBMDUwMkI3REQ4QThEQUFCMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBwjKcVW9W3n0IQ6mawvyIMFRl bi62YRJGu7gHeXBaZJ8mBQGigqr6hZFfug5oiTMftlXOQy1LQsV7AXUEtsolZe2h v5r+4OWCS44UDFklEfbXv1uoDbUcxIWxhgD0BKhlnJAi2PxlqLCdsMF874mh3wmC XrskLbo9DAJ9orEqFcC/8OdCGlwdLxs8xrmCDRGCodT/JK/EZ4cc+77qumNNanix RR73nQghhJPgYXIeQTudMeKsB1FVWlrdaqxgQJ8gU7Uxgt/QbOxG4tJo1e4C+ylh M2NyC6I3wJvF+WyIoBIbPX0FxbyTRNJwEovRlwzLkQCmvPqbLIW4mVa6a02dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUK2ntvGHLOwAGJnugUCt92KjaqzEwHwYDVR0j BBgwFoAU58nk5cjqmJ8P99b+bb1qT+ghLd4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzExYWE0Ni1mMjhlLTRjNTUtYjliYS03ZDViZGM5NWI0ZjYvMC9FN0M5RTRFNUM4 RUE5ODlGMEZGN0Q2RkU2REJENkE0RkU4MjEyRERFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdDOUU0RTVDOEVBOTg5RjBGRjdENkZFNkRCRDZBNEZFODIx MkRERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MTFhYTQ2LWYyOGUtNGM1NS1i OWJhLTdkNWJkYzk1YjRmNi8wLzMxMzAzMzJlMzYzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc8WDANBgkqhkiG 9w0BAQsFAAOCAQEAEjxu7GXBexoXfzROkSINssiUxgyQu792Sray8ZH2o/NAOFY8 9av/IeaXsGESv7zoJw2UvDHjSoOnKhUowGj1pkDNUsh747O0G3+kANoCkzKVDB+h i7ACNhb2pJJrDR7rQNMvCjFHVNvMlVR6p/XhQ0iWd2y8ZnnGTjyFCYxwGTge1INU WH8SO87C4c47r25D6nAPHx1f3LuHfdDR/1ZuUx5BKcuXL1R0XFONDM1zjr8QT2f8 T9tJl53dJvvjAh8PoWHBbfkYqLO0G/p4duk3htwJ2v2O0yBylIahK17ZBOqn594S OMFJiUG98rGmECPqunvTZVipriE5N3o0edVmXA== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:11 2025 by rpki-client on console.sobornost.net