$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: GwuWySNcSg5ncnIH7xe0pJhIF0SwLtWfmclvASXmbzI= Subject key identifier: 2D:F3:96:EB:13:2D:DF:04:CB:F7:F1:AB:5C:C2:55:4E:63:3F:73:6B Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 542A2AC8EABFFDEE1500658BD01083DA2B7B7E77 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:14:27 +0000 ROA not before: Sun 06 Apr 2025 15:09:27 +0000 ROA not after: Sun 05 Apr 2026 15:14:27 +0000 asID: 45725 IP address blocks: 202.150.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:2a:2a:c8:ea:bf:fd:ee:15:00:65:8b:d0:10:83:da:2b:7b:7e:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:09:27 2025 GMT Not After : Apr 5 15:14:27 2026 GMT Subject: CN=2DF396EB132DDF04CBF7F1AB5CC2554E633F736B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6c:13:b3:69:57:25:51:71:8a:9d:7a:61:22: 1c:0d:ee:1e:7b:15:70:75:5d:7b:9c:63:c3:37:fe: 13:2b:c5:c9:07:41:2f:8d:31:42:c6:47:26:24:c6: a8:40:fd:cb:b9:91:0d:51:1d:bc:1e:0e:ef:e8:fd: f3:99:81:96:0b:73:b1:4e:6b:09:26:dd:a2:95:94: c7:d8:be:4f:89:31:12:cf:97:70:63:db:43:56:8c: 9f:06:90:3a:2a:d1:a0:15:0a:f9:7c:9e:fd:be:69: 30:f0:23:04:6e:d5:84:fc:a7:5c:2d:33:56:de:2d: 5e:dd:94:d7:ac:7c:17:92:7b:98:b0:44:52:bd:86: 73:45:53:37:2c:92:d0:0c:1f:70:4b:65:23:92:d9: e1:f5:ee:b4:64:d8:69:fe:86:8a:78:5e:74:a0:22: cd:ca:02:81:c5:69:9b:95:24:05:70:29:e5:54:b8: f3:06:8c:f1:bc:29:c7:4c:00:0b:3e:9f:7f:f5:8e: 30:4a:b1:15:67:d4:1a:55:71:39:8a:34:72:fe:72: 67:51:75:55:f4:3d:65:f1:0c:52:c0:88:54:36:ed: ce:aa:bf:5f:d1:25:72:27:1f:ab:36:c0:00:88:ca: 10:eb:a4:b4:d4:f7:00:aa:d0:0e:6a:70:c5:db:95: da:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F3:96:EB:13:2D:DF:04:CB:F7:F1:AB:5C:C2:55:4E:63:3F:73:6B X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.162.0/23 Signature Algorithm: sha256WithRSAEncryption a9:fb:af:4a:0d:bf:ce:31:b1:01:2e:2b:50:6f:ff:3d:30:3a: e0:3e:75:4a:f9:d5:dc:49:d9:6b:a2:8e:5b:42:df:80:a6:44: 37:45:52:3d:b7:af:d2:47:2a:69:77:9f:f7:ff:de:e3:97:11: fc:68:56:5a:ce:a6:e3:eb:d1:e5:a9:5e:05:92:a9:c6:37:6a: d0:61:9f:21:1c:14:b8:dc:07:60:87:02:42:3b:5d:bc:08:5d: 9b:b4:24:3d:89:87:06:bf:1c:cc:a8:68:1c:6c:6e:b8:ba:39: 60:81:cb:ec:28:ca:45:61:76:7f:bd:5e:36:ef:eb:51:3e:40: bf:43:55:e2:af:3f:38:32:56:c3:6c:c3:ed:50:e5:ca:75:8c: be:09:8d:f9:a9:7b:89:92:a9:5c:1d:dd:b4:ad:11:a0:c0:86: 98:5c:e1:dd:94:cb:ef:0b:1d:ca:b6:19:e3:6f:fb:0e:a2:10: 92:d4:4b:da:68:69:f4:2c:89:e4:be:79:e6:82:91:1d:69:da: 20:2d:5f:b5:fa:5f:52:b4:95:55:a3:ba:ba:22:76:08:62:84: 4f:8c:1d:f1:43:3b:9e:f8:6b:d0:f6:0e:7f:3f:19:37:97:88: a9:91:41:88:87:14:0b:72:7b:13:75:df:58:88:7b:72:56:51: d2:98:e2:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVCoqyOq//e4VAGWL0BCD2it7fncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA5MjdaFw0yNjA0MDUxNTE0MjdaMDMxMTAvBgNV BAMTKDJERjM5NkVCMTMyRERGMDRDQkY3RjFBQjVDQzI1NTRFNjMzRjczNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMbBOzaVclUXGKnXphIhwN7h57 FXB1XXucY8M3/hMrxckHQS+NMULGRyYkxqhA/cu5kQ1RHbweDu/o/fOZgZYLc7FO awkm3aKVlMfYvk+JMRLPl3Bj20NWjJ8GkDoq0aAVCvl8nv2+aTDwIwRu1YT8p1wt M1beLV7dlNesfBeSe5iwRFK9hnNFUzcsktAMH3BLZSOS2eH17rRk2Gn+hop4XnSg Is3KAoHFaZuVJAVwKeVUuPMGjPG8KcdMAAs+n3/1jjBKsRVn1BpVcTmKNHL+cmdR dVX0PWXxDFLAiFQ27c6qv1/RJXInH6s2wACIyhDrpLTU9wCq0A5qcMXbldoJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULfOW6xMt3wTL9/GrXMJVTmM/c2swHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypaiMA0GCSqG SIb3DQEBCwUAA4IBAQCp+69KDb/OMbEBLitQb/89MDrgPnVK+dXcSdlroo5bQt+A pkQ3RVI9t6/SRyppd5/3/97jlxH8aFZazqbj69HlqV4FkqnGN2rQYZ8hHBS43Adg hwJCO128CF2btCQ9iYcGvxzMqGgcbG64ujlggcvsKMpFYXZ/vV427+tRPkC/Q1Xi rz84MlbDbMPtUOXKdYy+CY35qXuJkqlcHd20rRGgwIaYXOHdlMvvCx3Kthnjb/sO ohCS1EvaaGn0LInkvnnmgpEdadogLV+1+l9StJVVo7q6InYIYoRPjB3xQzue+GvQ 9g5/Pxk3l4ipkUGIhxQLcnsTdd9YiHtyVlHSmOIN -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net