$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32332d3233203d3e203435373235.roa File: 3138302e3231312e38382e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: 6XFpo57f1LKHWqv/atS95pTJHDHEw9gxmYNcdpJ+RZk= Subject key identifier: 65:48:DA:F7:86:EC:D3:F4:1E:8C:5F:B3:98:D9:D6:B6:02:C3:2A:76 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 4C213A377B9A557395FE8F9B75D117A5FDAC0231 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:13:12 +0000 ROA not before: Sun 06 Apr 2025 15:08:12 +0000 ROA not after: Sun 05 Apr 2026 15:13:12 +0000 asID: 45725 IP address blocks: 180.211.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:21:3a:37:7b:9a:55:73:95:fe:8f:9b:75:d1:17:a5:fd:ac:02:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:08:12 2025 GMT Not After : Apr 5 15:13:12 2026 GMT Subject: CN=6548DAF786ECD3F41E8C5FB398D9D6B602C32A76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:59:c2:b9:3f:f7:41:9a:37:e8:71:b8:b8:b2: 53:2b:69:c4:ec:69:c5:af:de:aa:f6:9a:8f:b8:cf: 3d:9a:13:69:e9:35:60:c6:00:5c:ce:05:ac:64:9b: 99:8b:98:15:bb:29:38:01:11:f3:17:ed:02:9a:a1: 1e:c9:f8:c5:ea:8c:dc:87:42:7c:f7:b3:12:bd:28: 00:dd:41:db:fc:42:05:1f:60:02:38:d5:fb:1b:f0: dc:a9:c4:b9:c0:c0:63:a8:c0:fc:c2:b3:dd:8a:b4: 3f:4b:a4:bc:4f:a7:da:19:dc:e3:01:94:04:b0:b4: 0e:b4:b6:92:83:c8:ed:31:6b:43:fa:49:0d:e4:88: 8d:9f:21:fb:af:9a:69:12:7e:5d:c8:1f:60:35:ed: 3d:a6:9b:b0:c2:52:3e:05:19:20:7e:3d:6a:8a:44: dd:ea:45:a0:f7:59:92:36:8f:37:b1:ca:04:99:24: ef:c0:d7:cd:44:d1:75:7b:5f:36:24:e4:74:0f:7f: f7:d4:49:f3:32:31:44:51:69:95:d8:42:0f:e4:86: dd:26:a0:82:d1:3f:9d:eb:bb:d2:e4:f5:30:fd:e2: 51:de:19:d2:bc:25:c1:7a:ec:7a:8a:7f:f1:2e:8e: e2:46:5e:d4:cf:77:3a:6f:b8:ab:20:ef:92:cb:0f: ed:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:48:DA:F7:86:EC:D3:F4:1E:8C:5F:B3:98:D9:D6:B6:02:C3:2A:76 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.88.0/23 Signature Algorithm: sha256WithRSAEncryption 86:5b:e5:f0:58:a0:14:cd:54:51:7d:30:80:e8:72:e8:99:f9: 5d:b6:99:87:84:6b:0c:33:fd:9b:c1:24:97:56:16:0f:cc:f0: d1:1b:b1:10:71:1b:6a:d4:10:bc:37:55:49:f8:c3:c2:02:a3: 7c:3c:d1:c4:aa:73:6d:3f:70:a8:54:c4:79:ee:e6:fe:fa:d9: 96:b9:cb:c3:20:1d:7a:e4:08:2d:4f:9e:40:4c:66:d1:a7:ce: 83:53:7e:71:6b:c8:d9:d4:13:74:09:a9:07:ce:c0:1f:37:19: a1:36:62:fe:48:a3:4a:05:d1:00:1b:53:ba:c1:6e:bd:fd:9c: 77:e8:e2:c3:9a:2c:d5:38:da:43:37:0e:05:41:b2:19:58:1f: 6d:ce:60:a1:45:2a:3a:10:19:04:4b:43:59:41:4c:72:5a:2b: 3c:db:cd:95:bb:b9:f9:55:4e:09:3e:d8:95:19:77:4b:41:43: 46:15:1f:09:d7:36:2a:ae:45:72:99:b4:ff:13:d5:a6:69:b1: f4:81:19:0e:df:ad:84:85:27:60:3c:9b:17:a7:9b:45:9e:8b: 33:90:9a:04:b8:37:2e:ce:85:f4:d7:3c:96:9d:d9:0c:da:65: b0:f8:f5:87:58:26:ba:65:c3:59:0b:d0:cb:18:42:ad:b5:af: 9f:a0:cd:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTCE6N3uaVXOV/o+bddEXpf2sAjEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA4MTJaFw0yNjA0MDUxNTEzMTJaMDMxMTAvBgNV BAMTKDY1NDhEQUY3ODZFQ0QzRjQxRThDNUZCMzk4RDlENkI2MDJDMzJBNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1WcK5P/dBmjfocbi4slMracTs acWv3qr2mo+4zz2aE2npNWDGAFzOBaxkm5mLmBW7KTgBEfMX7QKaoR7J+MXqjNyH Qnz3sxK9KADdQdv8QgUfYAI41fsb8NypxLnAwGOowPzCs92KtD9LpLxPp9oZ3OMB lASwtA60tpKDyO0xa0P6SQ3kiI2fIfuvmmkSfl3IH2A17T2mm7DCUj4FGSB+PWqK RN3qRaD3WZI2jzexygSZJO/A181E0XV7XzYk5HQPf/fUSfMyMURRaZXYQg/kht0m oILRP53ru9Lk9TD94lHeGdK8JcF67HqKf/EujuJGXtTPdzpvuKsg75LLD+23AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZUja94bs0/QejF+zmNnWtgLDKnYwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzODM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbTTWDANBgkqhkiG 9w0BAQsFAAOCAQEAhlvl8FigFM1UUX0wgOhy6Jn5XbaZh4RrDDP9m8Ekl1YWD8zw 0RuxEHEbatQQvDdVSfjDwgKjfDzRxKpzbT9wqFTEee7m/vrZlrnLwyAdeuQILU+e QExm0afOg1N+cWvI2dQTdAmpB87AHzcZoTZi/kijSgXRABtTusFuvf2cd+jiw5os 1TjaQzcOBUGyGVgfbc5goUUqOhAZBEtDWUFMclorPNvNlbu5+VVOCT7YlRl3S0FD RhUfCdc2Kq5Fcpm0/xPVpmmx9IEZDt+thIUnYDybF6ebRZ6LM5CaBLg3Ls6F9Nc8 lp3ZDNplsPj1h1gmumXDWQvQyxhCrbWvn6DNZw== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net