$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32332d3233203d3e203435373235.roa File: 3130332e3234352e3133362e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: MSYIfxCSXKVIOCS47ld9jUS6r+ZriPGRUCkoG4RgECY= Subject key identifier: 99:79:DB:92:42:79:E4:51:97:72:1E:D0:D4:6A:EE:EE:17:EA:83:5D Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 5607DD3EFFA236A92404690C570F4DBDD00C5C11 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:12:00 +0000 ROA not before: Sun 06 Apr 2025 15:07:00 +0000 ROA not after: Sun 05 Apr 2026 15:12:00 +0000 asID: 45725 IP address blocks: 103.245.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:07:dd:3e:ff:a2:36:a9:24:04:69:0c:57:0f:4d:bd:d0:0c:5c:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:07:00 2025 GMT Not After : Apr 5 15:12:00 2026 GMT Subject: CN=9979DB924279E45197721ED0D46AEEEE17EA835D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:4e:78:5e:26:c2:7d:83:ee:00:05:06:1e: d8:a6:98:7f:c7:52:dd:44:7a:36:ab:59:14:3d:fd: 89:2e:f3:df:86:4d:e8:da:5d:16:a2:dc:cf:09:86: 12:21:4f:b2:8a:4c:cd:66:4e:4c:aa:3b:70:19:8d: 04:1f:c3:f0:49:9c:6f:d9:9c:75:fb:6e:6e:f5:1b: 0a:bb:a7:21:85:22:36:51:09:09:60:27:03:13:14: 8c:b7:2b:a2:8a:c7:0d:78:ce:0e:ec:ef:96:fd:42: 1d:c0:55:e5:05:59:94:78:74:48:bd:ce:94:45:2f: 00:26:f7:0d:f4:a7:8b:fc:7f:bc:6e:da:dc:b8:0f: 9a:ae:7a:49:25:78:3f:4f:69:9c:09:3e:4f:d3:bf: ae:90:81:ba:e7:2e:99:40:5b:a0:78:b8:41:cb:c1: 7d:dd:7b:67:b8:8f:22:ce:46:2b:8d:dd:11:08:7d: 54:0a:a7:73:98:6c:3b:66:2b:92:90:a6:f1:da:44: c5:dd:13:f1:cf:4a:06:a4:77:89:41:32:d1:ed:d0: e5:fa:b6:da:53:77:97:d3:c6:23:3b:6d:d6:39:64: 5e:4d:20:18:cb:7d:5f:71:fd:07:91:91:31:dd:9c: 49:a5:9f:c0:bc:fc:72:33:43:e4:8a:56:dc:52:20: be:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:79:DB:92:42:79:E4:51:97:72:1E:D0:D4:6A:EE:EE:17:EA:83:5D X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.136.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:89:93:1b:d9:16:9a:b0:51:da:79:61:67:e6:68:98:b1:99: b0:98:9e:dc:1b:7a:a1:51:64:4b:02:22:97:49:5f:31:12:32: d8:6f:c2:99:b7:1a:6f:c9:86:60:5b:4c:64:06:6d:b8:85:85: 3b:e6:44:99:29:40:6b:90:e6:d9:63:0e:79:d4:86:19:aa:6e: c2:90:c0:36:b6:3b:75:c6:ce:63:76:81:7b:74:1b:bb:76:21: 8e:d6:d3:33:c8:18:26:a3:9f:64:e2:dd:74:62:0c:97:4e:31: b0:1e:36:58:72:84:f7:af:59:92:fe:2a:9b:5f:48:e6:b0:42: a3:e7:38:55:5f:23:7f:bf:a4:a1:a8:2b:31:39:81:a5:7d:0e: bf:4f:b3:9b:1a:cb:c9:44:f6:e6:14:71:32:2c:d5:9c:a9:d1: 14:86:75:35:42:91:5a:da:36:3a:24:86:bd:be:c3:4e:dc:af: a1:37:1b:b9:59:5d:36:0e:35:29:91:8d:63:cb:ce:6d:93:a7: 46:37:f8:c3:6f:a8:ee:ab:e4:ae:b6:3d:c3:d6:b0:09:8d:cc: e6:b6:8f:ce:70:48:97:6d:99:2d:c2:9a:39:0e:2b:9c:07:fd: 84:64:6d:6c:d4:d0:de:9e:a1:92:c3:a8:30:cd:3a:cf:12:0d: 2e:73:08:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVgfdPv+iNqkkBGkMVw9NvdAMXBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA3MDBaFw0yNjA0MDUxNTEyMDBaMDMxMTAvBgNV BAMTKDk5NzlEQjkyNDI3OUU0NTE5NzcyMUVEMEQ0NkFFRUVFMTdFQTgzNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5+k54XibCfYPuAAUGHtimmH/H Ut1EejarWRQ9/Yku89+GTejaXRai3M8JhhIhT7KKTM1mTkyqO3AZjQQfw/BJnG/Z nHX7bm71Gwq7pyGFIjZRCQlgJwMTFIy3K6KKxw14zg7s75b9Qh3AVeUFWZR4dEi9 zpRFLwAm9w30p4v8f7xu2ty4D5quekkleD9PaZwJPk/Tv66QgbrnLplAW6B4uEHL wX3de2e4jyLORiuN3REIfVQKp3OYbDtmK5KQpvHaRMXdE/HPSgakd4lBMtHt0OX6 ttpTd5fTxiM7bdY5ZF5NIBjLfV9x/QeRkTHdnEmln8C8/HIzQ+SKVtxSIL4lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmXnbkkJ55FGXch7Q1Gru7hfqg10wHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/WIMA0GCSqG SIb3DQEBCwUAA4IBAQA+iZMb2RaasFHaeWFn5miYsZmwmJ7cG3qhUWRLAiKXSV8x EjLYb8KZtxpvyYZgW0xkBm24hYU75kSZKUBrkObZYw551IYZqm7CkMA2tjt1xs5j doF7dBu7diGO1tMzyBgmo59k4t10YgyXTjGwHjZYcoT3r1mS/iqbX0jmsEKj5zhV XyN/v6ShqCsxOYGlfQ6/T7ObGsvJRPbmFHEyLNWcqdEUhnU1QpFa2jY6JIa9vsNO 3K+hNxu5WV02DjUpkY1jy85tk6dGN/jDb6juq+Sutj3D1rAJjczmto/OcEiXbZkt wpo5DiucB/2EZG1s1NDenqGSw6gwzTrPEg0ucwhg -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net