$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136342e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136342e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: w2ICECGLA7nw6Zv4Eo0IQI3O8W+wpDGsaM5DtnIpJKo= Subject key identifier: B5:79:15:07:C3:DC:85:C5:13:4B:19:36:B9:6A:E4:EC:D1:78:8D:77 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 48C7B349D0F990F68C3F042F7B974B201B89E654 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136342e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:14:36 +0000 ROA not before: Sun 06 Apr 2025 15:09:36 +0000 ROA not after: Sun 05 Apr 2026 15:14:36 +0000 asID: 45725 IP address blocks: 202.150.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c7:b3:49:d0:f9:90:f6:8c:3f:04:2f:7b:97:4b:20:1b:89:e6:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:09:36 2025 GMT Not After : Apr 5 15:14:36 2026 GMT Subject: CN=B5791507C3DC85C5134B1936B96AE4ECD1788D77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fd:26:c7:9c:5b:12:52:c2:5a:f8:db:b8:0d: b3:78:41:c5:5e:ac:8b:96:20:fa:55:07:0b:e2:88: 88:ed:43:4a:06:c8:8e:69:0e:c8:88:ca:ea:44:db: d1:c9:51:65:a3:63:c8:d3:56:9a:2b:15:d1:bd:0d: fa:2c:0c:66:9a:1f:c6:41:6b:5c:30:30:91:54:b9: 72:af:2b:ef:dd:ef:61:c7:8f:f0:7f:ec:eb:fc:03: bb:31:51:0c:61:6d:ab:c0:6d:a7:6f:15:73:0d:73: 7f:4a:4e:d4:fe:9f:de:10:27:45:f6:5d:08:47:df: da:5a:7e:52:9f:fd:14:48:ca:4f:e9:59:93:33:3f: 9d:c7:ba:9d:11:32:41:6d:cc:63:27:36:d9:d5:23: 9a:15:77:50:78:5f:6e:0a:3e:29:8c:08:4a:ff:9d: 3f:a7:b9:39:4f:1b:f6:b4:cd:34:4a:ad:bf:c8:8e: a5:d5:b2:d8:26:a7:63:5c:39:69:d1:96:fc:02:18: 51:30:be:6f:40:a5:f4:b8:27:7a:73:3e:05:86:c6: db:22:c1:db:ee:51:1b:57:19:de:a1:34:be:ca:d3: a6:dc:99:1e:ed:7f:81:b5:fe:14:b0:6a:36:09:66: 49:f6:eb:26:2c:4b:c4:f4:dc:9f:32:b8:23:99:ff: fd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:79:15:07:C3:DC:85:C5:13:4B:19:36:B9:6A:E4:EC:D1:78:8D:77 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136342e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.164.0/23 Signature Algorithm: sha256WithRSAEncryption 83:92:cb:0c:1c:8a:93:56:54:aa:83:36:0e:81:f1:3d:31:77: 4e:33:f8:6d:52:d5:30:d1:c3:db:59:53:9a:7e:77:a6:08:34: e8:86:0b:18:8d:b8:cd:db:ff:ab:96:3c:3e:a7:61:ed:8e:17: 61:91:83:7c:15:cd:e2:8c:e8:cd:79:3b:a4:5a:87:fd:a2:84: f0:47:42:cc:d7:53:1c:53:72:4a:38:b2:f0:8f:e7:a8:da:2c: 18:a4:20:bb:c4:fe:fb:89:70:ff:df:25:5a:38:97:2c:c3:7e: 52:a1:07:34:b8:62:1e:27:68:0d:89:a2:b8:b0:52:b3:84:30: 99:4c:f5:f7:7e:5e:a6:94:e4:3d:1f:20:f5:d3:10:c5:d6:9b: ef:89:c5:98:f4:a3:d2:2f:65:01:98:52:71:1e:fb:cf:5f:96: 7f:92:36:37:3a:9a:06:13:23:64:fc:2e:cc:f4:87:34:cd:bc: 7b:63:e0:72:17:b2:68:46:18:8e:5b:0b:37:ea:d2:8c:88:1c: 41:b7:8d:c8:e3:fd:9d:dc:bb:a8:41:9d:e3:77:e9:3a:28:5a: 69:69:dc:58:54:ab:8b:da:ed:a1:f6:2a:c0:4f:ce:cd:58:ad: ce:6a:c4:5e:7c:42:95:c4:27:3f:02:25:a0:51:1e:4b:a6:12: ab:9d:f2:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSMezSdD5kPaMPwQve5dLIBuJ5lQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA5MzZaFw0yNjA0MDUxNTE0MzZaMDMxMTAvBgNV BAMTKEI1NzkxNTA3QzNEQzg1QzUxMzRCMTkzNkI5NkFFNEVDRDE3ODhENzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg/SbHnFsSUsJa+Nu4DbN4QcVe rIuWIPpVBwviiIjtQ0oGyI5pDsiIyupE29HJUWWjY8jTVporFdG9DfosDGaaH8ZB a1wwMJFUuXKvK+/d72HHj/B/7Ov8A7sxUQxhbavAbadvFXMNc39KTtT+n94QJ0X2 XQhH39paflKf/RRIyk/pWZMzP53Hup0RMkFtzGMnNtnVI5oVd1B4X24KPimMCEr/ nT+nuTlPG/a0zTRKrb/IjqXVstgmp2NcOWnRlvwCGFEwvm9ApfS4J3pzPgWGxtsi wdvuURtXGd6hNL7K06bcmR7tf4G1/hSwajYJZkn26yYsS8T03J8yuCOZ//3XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtXkVB8PchcUTSxk2uWrk7NF4jXcwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypakMA0GCSqG SIb3DQEBCwUAA4IBAQCDkssMHIqTVlSqgzYOgfE9MXdOM/htUtUw0cPbWVOafnem CDTohgsYjbjN2/+rljw+p2HtjhdhkYN8Fc3ijOjNeTukWof9ooTwR0LM11McU3JK OLLwj+eo2iwYpCC7xP77iXD/3yVaOJcsw35SoQc0uGIeJ2gNiaK4sFKzhDCZTPX3 fl6mlOQ9HyD10xDF1pvvicWY9KPSL2UBmFJxHvvPX5Z/kjY3OpoGEyNk/C7M9Ic0 zbx7Y+ByF7JoRhiOWws36tKMiBxBt43I4/2d3LuoQZ3jd+k6KFppadxYVKuL2u2h 9irAT87NWK3OasRefEKVxCc/AiWgUR5LphKrnfJa -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net