$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa File: 3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: wRnGxN5uNoVdykOfNrkzIuyL1n8LTfsQZxmr2BmoYe4= Subject key identifier: 7E:7B:7D:2B:4A:25:AA:ED:06:51:2E:B4:B4:70:3B:5C:61:96:DD:57 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 79268861A6F1B38C4C53C1725BB96D5F3E8AE83A Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:14:47 +0000 ROA not before: Sun 06 Apr 2025 15:09:47 +0000 ROA not after: Sun 05 Apr 2026 15:14:47 +0000 asID: 45725 IP address blocks: 202.150.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:26:88:61:a6:f1:b3:8c:4c:53:c1:72:5b:b9:6d:5f:3e:8a:e8:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:09:47 2025 GMT Not After : Apr 5 15:14:47 2026 GMT Subject: CN=7E7B7D2B4A25AAED06512EB4B4703B5C6196DD57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:55:c0:73:9a:3c:6f:66:a8:0e:ee:28:97: 23:d2:47:b0:ad:10:4d:1f:9c:f4:17:70:36:31:52: 3e:43:b3:92:09:61:2a:a0:3d:8a:62:c2:2a:5c:cf: 3f:d3:e0:1b:af:d0:36:63:c8:41:ab:9f:93:26:c4: 8d:22:6e:78:ac:58:fe:7e:34:4c:e2:ac:c0:96:bf: d6:7c:18:8c:50:44:aa:46:32:2f:26:b9:23:cd:ee: 40:87:a9:ae:71:c2:39:92:0c:32:72:48:eb:da:6a: 2a:66:de:30:66:53:1f:51:05:24:e1:38:82:37:af: 4d:b8:56:67:28:41:39:d1:f3:9f:1a:df:56:1c:ac: 06:6a:d1:ba:29:f8:95:a6:11:71:b9:b6:49:be:d5: d5:a5:2e:95:70:cc:ac:4e:da:16:8c:de:94:3e:de: 94:92:fa:9c:5e:11:3f:35:ca:43:bc:ca:53:e7:23: 2b:ba:c2:de:69:6c:6b:59:43:15:ad:f4:52:c5:9a: 9e:50:c3:c9:9a:3d:bd:49:4b:4e:d8:72:70:cd:ef: 2f:33:39:17:d7:64:d6:9f:a8:b1:a1:b1:77:b6:bb: 08:65:4f:b3:7f:8c:32:4c:eb:42:72:8f:ec:d0:a0: e6:03:ed:08:09:2c:c8:5b:1d:21:f6:0a:15:bf:13: 41:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7B:7D:2B:4A:25:AA:ED:06:51:2E:B4:B4:70:3B:5C:61:96:DD:57 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.166.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:f6:5c:e8:60:00:3a:cf:74:d3:bf:7a:41:4e:b5:dd:f9:5b: 1e:e4:93:a9:7f:b5:a8:cf:1a:07:ab:64:0b:43:36:f6:79:fc: 76:9f:70:18:a5:26:91:92:4d:7c:33:c7:71:93:41:86:a4:2b: c3:cc:24:b2:94:44:34:eb:73:4b:fb:f7:07:41:80:04:a0:55: 80:0a:b8:15:8d:df:32:69:23:d5:ec:cd:fb:3b:c8:a5:16:47: 21:61:4a:09:7a:70:59:93:6f:53:37:df:51:2b:89:1e:ee:69: bd:c2:72:2d:f4:95:91:58:6d:b3:9d:1b:2e:39:86:73:a3:01: 6a:3e:43:bd:04:e2:59:1e:23:39:2e:89:12:5c:e3:cc:84:c4: fb:4e:b3:a0:25:a8:15:49:56:6c:17:1f:d9:5d:b0:d9:d0:97: 8c:a6:00:38:0c:0f:35:ee:a3:26:bd:1d:cc:c7:3d:b0:af:fb: ee:60:54:16:7b:a9:34:6c:76:07:5f:2c:3f:fe:c3:3c:04:12: 93:15:d8:5b:c6:22:4a:23:1d:bf:f9:63:b5:d1:84:ad:57:a6: 9c:3e:65:8c:76:e7:ae:dd:00:4b:95:0e:76:a8:32:0f:7e:44: 11:17:aa:a8:47:43:86:52:b2:18:1e:39:6f:5a:06:22:34:c4: 46:79:39:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeSaIYabxs4xMU8FyW7ltXz6K6DowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA5NDdaFw0yNjA0MDUxNTE0NDdaMDMxMTAvBgNV BAMTKDdFN0I3RDJCNEEyNUFBRUQwNjUxMkVCNEI0NzAzQjVDNjE5NkRENTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5h1XAc5o8b2aoDu4olyPSR7Ct EE0fnPQXcDYxUj5Ds5IJYSqgPYpiwipczz/T4Buv0DZjyEGrn5MmxI0ibnisWP5+ NEzirMCWv9Z8GIxQRKpGMi8muSPN7kCHqa5xwjmSDDJySOvaaipm3jBmUx9RBSTh OII3r024VmcoQTnR858a31YcrAZq0bop+JWmEXG5tkm+1dWlLpVwzKxO2haM3pQ+ 3pSS+pxeET81ykO8ylPnIyu6wt5pbGtZQxWt9FLFmp5Qw8maPb1JS07YcnDN7y8z ORfXZNafqLGhsXe2uwhlT7N/jDJM60Jyj+zQoOYD7QgJLMhbHSH2ChW/E0HXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfnt9K0olqu0GUS60tHA7XGGW3VcwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypamMA0GCSqG SIb3DQEBCwUAA4IBAQAN9lzoYAA6z3TTv3pBTrXd+Vse5JOpf7WozxoHq2QLQzb2 efx2n3AYpSaRkk18M8dxk0GGpCvDzCSylEQ063NL+/cHQYAEoFWACrgVjd8yaSPV 7M37O8ilFkchYUoJenBZk29TN99RK4ke7mm9wnIt9JWRWG2znRsuOYZzowFqPkO9 BOJZHiM5LokSXOPMhMT7TrOgJagVSVZsFx/ZXbDZ0JeMpgA4DA817qMmvR3Mxz2w r/vuYFQWe6k0bHYHXyw//sM8BBKTFdhbxiJKIx2/+WO10YStV6acPmWMdueu3QBL lQ52qDIPfkQRF6qoR0OGUrIYHjlvWgYiNMRGeTmj -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net