$ rpki-client -vvf repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230302e302f32332d3233203d3e2039333431.roa File: 3130332e3138392e3230302e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: gvBia+LW2/7IKDQVvnVoZBUClWDY/4rfXyS+EBiBMPI= Subject key identifier: 9F:E9:64:52:71:23:F4:F8:61:81:81:9E:64:27:17:65:44:77:2A:D1 Certificate issuer: /CN=5EC2C02340FBFA79A3352FA18934C1E7B1D9216F Certificate serial: 5AC5C4433693D81240E65CD451A2C1B8A0225544 Authority key identifier: 5E:C2:C0:23:40:FB:FA:79:A3:35:2F:A1:89:34:C1:E7:B1:D9:21:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230302e302f32332d3233203d3e2039333431.roa Signing time: Tue 22 Apr 2025 08:03:18 +0000 ROA not before: Tue 22 Apr 2025 07:58:18 +0000 ROA not after: Tue 21 Apr 2026 08:03:18 +0000 asID: 9341 IP address blocks: 103.189.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.crl rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 14:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c5:c4:43:36:93:d8:12:40:e6:5c:d4:51:a2:c1:b8:a0:22:55:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC2C02340FBFA79A3352FA18934C1E7B1D9216F Validity Not Before: Apr 22 07:58:18 2025 GMT Not After : Apr 21 08:03:18 2026 GMT Subject: CN=9FE964527123F4F86181819E6427176544772AD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:17:2a:2b:ba:0a:8e:78:4e:d7:6e:52:7a:2a: fd:85:b5:ba:10:ec:e5:02:b1:0d:19:85:c2:e3:c5: 80:e3:47:87:ec:d2:00:a1:da:cb:9d:8e:d0:c2:06: ae:de:84:40:10:7f:fc:86:24:16:2a:55:d9:e7:63: 21:0f:0a:43:83:27:1f:25:a2:80:47:ba:63:26:e1: fe:45:73:ab:d1:f8:c0:eb:71:5e:00:d0:46:6f:41: 4b:97:9b:17:2b:12:8f:21:49:9a:c5:d4:d7:e6:78: 92:8c:c3:cd:0c:87:21:3e:8c:0a:07:ee:2f:93:b9: 98:ee:2c:7b:72:33:c7:ca:3b:cb:76:42:b0:08:46: 40:fc:c4:7c:9e:02:cf:9a:2c:65:e0:7e:5b:3e:53: e2:80:9a:3c:f7:d5:51:88:31:c4:fe:9d:eb:95:58: 8d:90:95:a8:fc:c2:1b:ff:ee:0b:2e:31:b7:d9:4a: 5b:5d:f7:26:27:2c:7d:33:e0:9c:91:4a:aa:b1:43: ff:e8:8e:b3:63:d6:3f:b1:6b:be:3e:93:27:b4:0d: 22:72:53:91:0a:ce:eb:07:05:4a:8f:a5:5d:9e:f4: 7f:0f:87:ed:d4:a5:41:c4:0b:6a:f1:8a:60:e1:71: 14:56:2d:ae:18:8f:80:ee:16:65:0c:46:e5:1b:42: d1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E9:64:52:71:23:F4:F8:61:81:81:9E:64:27:17:65:44:77:2A:D1 X509v3 Authority Key Identifier: keyid:5E:C2:C0:23:40:FB:FA:79:A3:35:2F:A1:89:34:C1:E7:B1:D9:21:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230302e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.200.0/23 Signature Algorithm: sha256WithRSAEncryption ac:58:e0:31:4c:96:9e:1f:ca:19:ef:cd:23:ca:94:ff:01:a4: 00:17:61:06:9c:df:4e:5e:21:f8:c3:03:4c:b3:6d:f3:cb:8f: fb:90:19:66:f6:39:16:e4:56:59:cc:f7:e4:5e:09:89:c1:f2: 56:ee:a7:08:03:4a:2d:8a:f2:3a:c7:e2:a5:26:af:71:02:82: c9:6d:68:22:f9:5b:32:aa:73:f8:e1:c1:8f:60:f2:4c:c6:98: 85:f0:cf:82:5e:ea:74:99:be:86:82:05:5c:6f:34:2f:52:28: 2e:87:26:81:12:56:e7:49:2e:3f:8c:67:26:cc:69:a3:72:bd: a7:63:8c:14:2a:20:79:a2:c8:63:f6:37:46:bf:23:27:1a:21: 29:23:57:28:a3:37:02:ef:54:59:5f:9a:78:c2:93:fb:ba:c4: c7:3a:ea:86:6c:06:43:98:9d:a5:e9:6c:fb:18:59:b7:a3:31: ad:35:d8:82:5d:32:ee:97:0b:5f:cb:2e:3b:57:5a:2d:fc:8e: d1:c8:4a:f5:ca:47:c7:65:3c:d0:cd:c2:d7:78:2a:2c:f2:c9: 13:4e:c9:d2:d8:98:9d:e6:92:d4:d1:fc:a1:4e:96:a7:8a:0e: 19:72:54:16:67:7d:a8:41:38:9f:8a:a1:60:a7:b1:32:dd:14: e0:55:37:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWsXEQzaT2BJA5lzUUaLBuKAiVUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDMkMwMjM0MEZCRkE3OUEzMzUyRkExODkzNEMxRTdC MUQ5MjE2RjAeFw0yNTA0MjIwNzU4MThaFw0yNjA0MjEwODAzMThaMDMxMTAvBgNV BAMTKDlGRTk2NDUyNzEyM0Y0Rjg2MTgxODE5RTY0MjcxNzY1NDQ3NzJBRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0FyorugqOeE7XblJ6Kv2FtboQ 7OUCsQ0ZhcLjxYDjR4fs0gCh2sudjtDCBq7ehEAQf/yGJBYqVdnnYyEPCkODJx8l ooBHumMm4f5Fc6vR+MDrcV4A0EZvQUuXmxcrEo8hSZrF1NfmeJKMw80MhyE+jAoH 7i+TuZjuLHtyM8fKO8t2QrAIRkD8xHyeAs+aLGXgfls+U+KAmjz31VGIMcT+neuV WI2Qlaj8whv/7gsuMbfZSltd9yYnLH0z4JyRSqqxQ//ojrNj1j+xa74+kye0DSJy U5EKzusHBUqPpV2e9H8Ph+3UpUHEC2rximDhcRRWLa4Yj4DuFmUMRuUbQtELAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn+lkUnEj9PhhgYGeZCcXZUR3KtEwHwYDVR0j BBgwFoAUXsLAI0D7+nmjNS+hiTTB57HZIW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTJlNWYwMy1iZjk2LTRiNDAtYmQ0YS02ZTM4ODhjNDAyMDUvMC81RUMyQzAyMzQw RkJGQTc5QTMzNTJGQTE4OTM0QzFFN0IxRDkyMTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVDMkMwMjM0MEZCRkE3OUEzMzUyRkExODkzNEMxRTdCMUQ5 MjE2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMmU1ZjAzLWJmOTYtNGI0MC1i ZDRhLTZlMzg4OGM0MDIwNS8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9yDANBgkqhkiG 9w0BAQsFAAOCAQEArFjgMUyWnh/KGe/NI8qU/wGkABdhBpzfTl4h+MMDTLNt88uP +5AZZvY5FuRWWcz35F4JicHyVu6nCANKLYryOsfipSavcQKCyW1oIvlbMqpz+OHB j2DyTMaYhfDPgl7qdJm+hoIFXG80L1IoLocmgRJW50kuP4xnJsxpo3K9p2OMFCog eaLIY/Y3Rr8jJxohKSNXKKM3Au9UWV+aeMKT+7rExzrqhmwGQ5idpels+xhZt6Mx rTXYgl0y7pcLX8suO1daLfyO0chK9cpHx2U80M3C13gqLPLJE07J0tiYneaS1NH8 oU6Wp4oOGXJUFmd9qEE4n4qhYKexMt0U4FU3Rw== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net