$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e32302e302f32322d3234203d3e2039393035.roa File: 3230322e3133372e32302e302f32322d3234203d3e2039393035.roa (raw, json) Hash identifier: vphKZX+lXVrk8E33Q70wcBIB6Sy8f0KzqjLE8zTaPKI= Subject key identifier: 42:CD:98:37:57:21:EC:6F:36:1B:6E:71:66:AD:ED:78:E4:FE:A8:20 Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Certificate serial: 7AC86A6B94689876F49D461424D71F6CEB2F3922 Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e32302e302f32322d3234203d3e2039393035.roa Signing time: Tue 15 Apr 2025 06:02:21 +0000 ROA not before: Tue 15 Apr 2025 05:57:21 +0000 ROA not after: Tue 14 Apr 2026 06:02:21 +0000 asID: 9905 IP address blocks: 202.137.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 22:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c8:6a:6b:94:68:98:76:f4:9d:46:14:24:d7:1f:6c:eb:2f:39:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7 Validity Not Before: Apr 15 05:57:21 2025 GMT Not After : Apr 14 06:02:21 2026 GMT Subject: CN=42CD98375721EC6F361B6E7166ADED78E4FEA820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:be:7c:4b:8c:5d:b2:78:f7:70:d1:94:76:de: 15:47:c0:ef:29:ff:19:55:82:2b:34:43:51:d9:d8: 07:0c:58:6d:1f:5f:7c:51:25:5c:ed:04:05:35:2b: 04:95:92:b9:2a:95:51:78:33:5e:fb:24:4b:73:7e: fa:b4:2e:be:ff:c8:65:5e:5f:b9:89:f6:a5:e4:a3: 95:bf:36:0d:cd:16:d3:38:02:b1:fb:cb:e0:e6:c9: 50:5f:ae:6a:c3:2f:7c:8a:ce:8a:a4:de:de:b4:65: c0:ae:94:2c:3f:6c:f8:c7:f6:6f:8e:e0:e6:46:db: 09:00:d2:67:26:8a:d2:21:ba:cd:53:79:dc:af:53: 10:a5:84:88:8e:a3:67:27:50:50:54:38:07:cc:ef: 1f:a6:58:d1:e9:b6:a0:4c:8a:cf:74:18:36:3a:a3: f7:9e:fc:14:88:e2:a6:b0:7c:bf:1f:8f:c8:6e:41: 7c:15:91:ad:9d:eb:63:f4:fe:d4:d5:1a:22:33:a4: 5c:46:55:89:71:f5:f9:5b:26:90:50:13:1d:79:e5: ed:8e:90:fd:ed:fe:ae:b7:99:78:ae:bf:96:20:7f: 57:94:d4:d8:31:c1:97:b2:e5:0d:9e:cc:b8:7a:4f: 68:82:2b:8a:c4:2e:0e:3a:fb:e0:ef:c1:62:88:8d: 5d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CD:98:37:57:21:EC:6F:36:1B:6E:71:66:AD:ED:78:E4:FE:A8:20 X509v3 Authority Key Identifier: keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e32302e302f32322d3234203d3e2039393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.137.20.0/22 Signature Algorithm: sha256WithRSAEncryption 16:16:09:c1:8a:3e:c5:26:72:b3:82:0c:af:d4:14:92:3f:30: df:5e:f6:4e:be:dd:b6:64:0c:bb:5d:d6:6f:26:69:0e:66:22: 32:97:89:8c:b6:a4:65:d8:fa:a8:52:06:e0:d6:ca:1f:08:48: 94:04:9b:f2:0d:84:44:ce:df:fe:a5:ed:31:5e:fe:45:42:f9: 97:06:bc:e9:2d:8e:17:9f:99:16:29:a7:ca:53:fe:be:3c:2f: 1e:f0:c1:2e:39:ed:db:e6:6f:09:f1:9a:b9:d7:96:d5:0b:fe: d3:bc:0d:23:c9:42:64:50:88:f9:3c:ad:47:fc:cc:5d:2b:09: 71:11:2d:d8:29:2d:b1:e7:52:47:6a:d9:d9:e7:5e:7d:57:12: b7:d8:58:d9:fc:16:a0:40:6a:1e:68:08:05:18:8c:56:b8:a2: e2:6a:bb:7f:0b:09:72:55:7a:26:3b:0f:9c:b6:93:53:f0:e2: d3:9a:25:12:f9:29:b9:19:c8:2a:c7:44:c7:00:26:a5:80:30: bf:74:b6:b8:a7:64:78:47:28:e5:65:60:29:2c:8d:75:8f:2c: 39:29:67:b1:8d:97:65:70:0b:ed:25:89:ae:9a:94:ef:ee:53: fd:16:70:82:bc:7f:a4:3f:df:fb:ce:a8:04:ff:16:42:c4:63: 60:ab:31:e3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeshqa5RomHb0nUYUJNcfbOsvOSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdB RjA5OTlFNzAeFw0yNTA0MTUwNTU3MjFaFw0yNjA0MTQwNjAyMjFaMDMxMTAvBgNV BAMTKDQyQ0Q5ODM3NTcyMUVDNkYzNjFCNkU3MTY2QURFRDc4RTRGRUE4MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1vnxLjF2yePdw0ZR23hVHwO8p /xlVgis0Q1HZ2AcMWG0fX3xRJVztBAU1KwSVkrkqlVF4M177JEtzfvq0Lr7/yGVe X7mJ9qXko5W/Ng3NFtM4ArH7y+DmyVBfrmrDL3yKzoqk3t60ZcCulCw/bPjH9m+O 4OZG2wkA0mcmitIhus1TedyvUxClhIiOo2cnUFBUOAfM7x+mWNHptqBMis90GDY6 o/ee/BSI4qawfL8fj8huQXwVka2d62P0/tTVGiIzpFxGVYlx9flbJpBQEx155e2O kP3t/q63mXiuv5Ygf1eU1NgxwZey5Q2ezLh6T2iCK4rELg46++DvwWKIjV1vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQs2YN1ch7G82G25xZq3teOT+qCAwHwYDVR0j BBgwFoAUeCY3tYuOB+xkoPquF2mvF68JmecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWMwNWVlMy03ZmM4LTQ0MDctYjJjMC1jYjQwYmZjZmI4NjYvMC83ODI2MzdCNThC OEUwN0VDNjRBMEZBQUUxNzY5QUYxN0FGMDk5OUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdBRjA5 OTlFNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5YzA1ZWUzLTdmYzgtNDQwNy1i MmMwLWNiNDBiZmNmYjg2Ni8wLzMyMzAzMjJlMzEzMzM3MmUzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKiRQwDQYJKoZIhvcN AQELBQADggEBABYWCcGKPsUmcrOCDK/UFJI/MN9e9k6+3bZkDLtd1m8maQ5mIjKX iYy2pGXY+qhSBuDWyh8ISJQEm/INhETO3/6l7TFe/kVC+ZcGvOktjhefmRYpp8pT /r48Lx7wwS457dvmbwnxmrnXltUL/tO8DSPJQmRQiPk8rUf8zF0rCXERLdgpLbHn Ukdq2dnnXn1XErfYWNn8FqBAah5oCAUYjFa4ouJqu38LCXJVeiY7D5y2k1Pw4tOa JRL5KbkZyCrHRMcAJqWAML90trinZHhHKOVlYCksjXWPLDkpZ7GNl2VwC+0lia6a lO/uU/0WcIK8f6Q/3/vOqAT/FkLEY2CrMeM= -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:13 2025 by rpki-client on console.sobornost.net