$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3231203d3e203435373235.roa File: 3138302e3231312e38382e302f32312d3231203d3e203435373235.roa (raw, json) Hash identifier: UrwHHQXWpjTi59OMqCHennU+aS155yzGb6/9UoO5zVs= Subject key identifier: F2:D9:57:DD:54:16:EF:40:8E:50:03:65:C2:9C:B8:A0:A9:B8:68:78 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 5AFA57E279CA29CCF7F77DB064F5A76034503503 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3231203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:16:28 +0000 ROA not before: Sun 06 Apr 2025 15:11:28 +0000 ROA not after: Sun 05 Apr 2026 15:16:28 +0000 asID: 45725 IP address blocks: 180.211.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:fa:57:e2:79:ca:29:cc:f7:f7:7d:b0:64:f5:a7:60:34:50:35:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:11:28 2025 GMT Not After : Apr 5 15:16:28 2026 GMT Subject: CN=F2D957DD5416EF408E500365C29CB8A0A9B86878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:ff:68:db:16:f5:a4:d0:21:d2:8e:80:11: ad:77:c8:99:af:47:ea:38:df:f9:66:ae:d5:18:10: 77:30:c3:7c:b9:59:45:b6:a7:cc:c9:18:28:74:f1: 50:80:16:2f:b5:09:d4:fe:c8:e5:7d:24:b8:1f:e1: 75:25:d9:1a:52:78:bd:f0:94:3d:11:ee:ba:10:ee: 6a:a5:bc:5d:2b:9f:ce:6f:d6:d3:c0:db:55:7e:7e: 91:58:08:26:f0:67:77:0a:fb:89:5e:f0:70:2d:13: 47:59:08:05:00:ce:3f:55:86:6b:98:c0:a9:6c:34: c1:47:a2:5c:7e:cb:64:b1:74:21:2c:d0:38:c5:a2: 8e:23:fe:c3:34:1c:7a:6d:a8:cc:0d:de:2d:32:8a: 67:c7:19:2e:4b:32:51:ab:ee:42:e3:51:93:dc:42: a1:a1:18:ed:62:ee:93:de:fc:e3:cd:f7:57:88:83: d0:e3:1f:60:49:06:4e:f0:52:e8:59:05:3f:ae:81: 6a:cc:c1:55:55:89:1f:f1:14:ba:3c:67:2f:42:83: 3c:93:f5:cf:e1:44:4e:2a:f2:b8:e6:1d:a1:69:32: f1:4d:d0:10:46:17:31:fc:99:ef:b7:e1:ae:34:ef: 2c:96:b9:e3:28:e3:d1:b9:f2:39:0f:44:d8:d0:fb: 0b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D9:57:DD:54:16:EF:40:8E:50:03:65:C2:9C:B8:A0:A9:B8:68:78 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3231203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.88.0/21 Signature Algorithm: sha256WithRSAEncryption 81:0b:ad:4e:fe:2a:f4:23:97:53:bb:4b:b6:3d:b8:80:fb:18: ad:b4:09:1c:e1:1b:5a:27:1c:5c:d6:b7:56:ab:0d:16:b8:0d: 32:9b:23:c5:97:06:cd:8a:20:eb:db:39:22:a3:9a:99:37:5c: 33:bc:e6:8e:a8:88:0e:da:48:eb:4a:87:b9:38:14:48:01:61: 43:fc:84:6a:be:17:8e:be:66:78:32:31:b2:99:94:16:b6:d3: a7:79:0b:1c:d3:0e:5d:ce:fe:2e:a9:29:00:3d:36:2f:ab:0e: 51:ff:58:7e:02:b3:c0:b8:60:f8:1b:42:84:c8:8d:ec:84:42: f8:7f:c6:ba:0d:e4:ed:ea:f8:a9:b7:ea:7d:47:bd:0e:80:3c: d7:b0:40:b1:3f:84:af:04:67:1f:8b:43:f3:99:f1:42:e2:b4: 35:4d:fd:0d:87:6a:d1:d7:20:88:22:10:80:ad:c7:0a:3c:0f: fe:04:73:55:dd:2a:5f:29:1c:8b:32:f1:bb:61:27:0d:a9:c5: 37:a9:e5:f2:d3:48:b8:a2:61:40:92:62:c2:f5:f0:fd:7e:24: cf:0b:44:75:27:54:eb:59:e8:90:b5:36:c8:08:a1:8d:24:4c: 9b:7b:fb:46:42:29:a4:30:7b:4b:fc:31:e3:f2:e7:43:5a:57: e8:08:32:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWvpX4nnKKcz3932wZPWnYDRQNQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTExMjhaFw0yNjA0MDUxNTE2MjhaMDMxMTAvBgNV BAMTKEYyRDk1N0RENTQxNkVGNDA4RTUwMDM2NUMyOUNCOEEwQTlCODY4NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBP9o2xb1pNAh0o6AEa13yJmv R+o43/lmrtUYEHcww3y5WUW2p8zJGCh08VCAFi+1CdT+yOV9JLgf4XUl2RpSeL3w lD0R7roQ7mqlvF0rn85v1tPA21V+fpFYCCbwZ3cK+4le8HAtE0dZCAUAzj9VhmuY wKlsNMFHolx+y2SxdCEs0DjFoo4j/sM0HHptqMwN3i0yimfHGS5LMlGr7kLjUZPc QqGhGO1i7pPe/OPN91eIg9DjH2BJBk7wUuhZBT+ugWrMwVVViR/xFLo8Zy9CgzyT 9c/hRE4q8rjmHaFpMvFN0BBGFzH8me+34a407yyWueMo49G58jkPRNjQ+wt3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8tlX3VQW70COUANlwpy4oKm4aHgwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzODM4MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7TTWDANBgkqhkiG 9w0BAQsFAAOCAQEAgQutTv4q9COXU7tLtj24gPsYrbQJHOEbWiccXNa3VqsNFrgN MpsjxZcGzYog69s5IqOamTdcM7zmjqiIDtpI60qHuTgUSAFhQ/yEar4Xjr5meDIx spmUFrbTp3kLHNMOXc7+LqkpAD02L6sOUf9YfgKzwLhg+BtChMiN7IRC+H/Gug3k 7er4qbfqfUe9DoA817BAsT+ErwRnH4tD85nxQuK0NU39DYdq0dcgiCIQgK3HCjwP /gRzVd0qXykcizLxu2EnDanFN6nl8tNIuKJhQJJiwvXw/X4kzwtEdSdU61nokLU2 yAihjSRMm3v7RkIppDB7S/wx4/LnQ1pX6AgynA== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net