$ rpki-client -vvf repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa File: 3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: Dh9fcAyZ65O9TDEVPO/dqbyH2BI/vOdtlvtC7u5HK34= Subject key identifier: 0E:F2:E7:10:11:1A:42:35:C5:FE:0E:3D:AE:CF:6D:CC:76:B3:94:84 Certificate issuer: /CN=5EC2C02340FBFA79A3352FA18934C1E7B1D9216F Certificate serial: 5DC7330FFEF117DA00DE4F7C057A15C023D14DBC Authority key identifier: 5E:C2:C0:23:40:FB:FA:79:A3:35:2F:A1:89:34:C1:E7:B1:D9:21:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa Signing time: Tue 22 Apr 2025 08:03:18 +0000 ROA not before: Tue 22 Apr 2025 07:58:18 +0000 ROA not after: Tue 21 Apr 2026 08:03:18 +0000 asID: 9341 IP address blocks: 103.189.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.crl rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 14:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c7:33:0f:fe:f1:17:da:00:de:4f:7c:05:7a:15:c0:23:d1:4d:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC2C02340FBFA79A3352FA18934C1E7B1D9216F Validity Not Before: Apr 22 07:58:18 2025 GMT Not After : Apr 21 08:03:18 2026 GMT Subject: CN=0EF2E710111A4235C5FE0E3DAECF6DCC76B39484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f9:60:ac:9b:64:de:c7:1d:0a:70:a1:d4:ad: 3e:09:e1:b8:73:61:f2:0c:75:ce:f2:41:cc:19:b3: 90:01:e6:bf:a8:33:f5:a0:b2:87:64:b6:8e:b1:2d: 42:43:04:fc:61:90:e6:bb:12:53:10:fc:1c:c3:f5: b4:b3:d6:08:87:67:05:3b:62:ea:47:11:5b:be:e0: d6:e5:f7:e7:a7:a3:c0:32:96:26:01:c0:dc:77:4d: 24:ff:8b:a0:fd:ae:2d:da:83:a5:b6:26:e2:5d:ac: 27:58:f3:4a:11:8e:fe:52:2c:a2:18:d9:26:89:82: cd:dd:42:7e:59:e6:d7:7e:2e:66:2e:8b:ae:b1:e9: de:eb:b4:f4:fd:8d:69:8d:7f:95:b0:aa:9b:9e:3a: a9:fe:90:d6:4d:d9:be:05:ab:d8:d8:1c:9c:fb:75: e3:c8:ba:ae:a0:14:1d:20:c9:e7:23:de:ec:1b:e6: 4f:8f:dd:96:d1:ca:d2:73:b8:f6:da:d5:fb:04:45: 7e:d4:03:2a:a8:6e:db:8f:51:27:bb:1b:7e:ec:06: c7:eb:19:fd:aa:27:48:af:a2:6c:68:e3:85:bc:e2: 75:08:f1:c7:49:7f:5c:be:8f:10:64:b6:5a:35:0f: 39:16:34:98:f9:e5:73:da:96:22:83:1a:89:ed:93: 23:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F2:E7:10:11:1A:42:35:C5:FE:0E:3D:AE:CF:6D:CC:76:B3:94:84 X509v3 Authority Key Identifier: keyid:5E:C2:C0:23:40:FB:FA:79:A3:35:2F:A1:89:34:C1:E7:B1:D9:21:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5EC2C02340FBFA79A3352FA18934C1E7B1D9216F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a2e5f03-bf96-4b40-bd4a-6e3888c40205/0/3130332e3138392e3230312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.201.0/24 Signature Algorithm: sha256WithRSAEncryption 72:f0:02:9b:60:79:c8:0d:e9:5e:11:40:08:a4:47:0e:2a:d5: ff:f4:0b:0c:7f:3f:33:97:db:8d:1e:ad:2b:9b:5a:e3:b6:cd: 29:93:7a:59:37:c5:43:a3:80:b1:b7:78:aa:e3:1a:d9:54:6c: 8c:e8:4c:7b:ba:d5:48:3a:53:f4:06:a5:57:ce:6f:ee:8e:f4: b2:cf:d7:9a:17:0c:06:21:86:bd:44:75:69:45:a2:52:ec:bb: 68:c3:2e:d3:2a:bb:cd:74:7f:8b:17:83:11:7b:38:30:a4:b6: c8:b6:10:3f:8b:c6:0b:4e:a5:3e:e1:31:4c:74:3a:f1:51:63: a0:c3:0f:ac:8b:08:7f:19:2e:9c:ac:75:72:18:25:10:54:00: e6:c2:4c:eb:cc:96:85:51:af:1c:ac:50:e4:68:53:87:de:fb: 47:3a:ee:d9:78:80:67:34:16:63:3a:92:1e:ce:31:4a:de:84: c3:1d:2a:e2:d1:67:ee:90:03:7c:93:d7:8a:df:9c:a0:78:a6: 63:68:bc:61:28:d5:14:40:20:02:65:42:d8:18:86:52:ce:d3: 44:16:b5:ac:cb:9d:a6:39:10:89:e3:a3:52:2b:1d:36:b1:32: 20:62:56:9a:2a:51:6f:c0:b5:af:50:6b:8f:e6:4b:9b:33:2e: 10:d3:5d:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXcczD/7xF9oA3k98BXoVwCPRTbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDMkMwMjM0MEZCRkE3OUEzMzUyRkExODkzNEMxRTdC MUQ5MjE2RjAeFw0yNTA0MjIwNzU4MThaFw0yNjA0MjEwODAzMThaMDMxMTAvBgNV BAMTKDBFRjJFNzEwMTExQTQyMzVDNUZFMEUzREFFQ0Y2RENDNzZCMzk0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5+WCsm2Texx0KcKHUrT4J4bhz YfIMdc7yQcwZs5AB5r+oM/Wgsodkto6xLUJDBPxhkOa7ElMQ/BzD9bSz1giHZwU7 YupHEVu+4Nbl9+eno8AyliYBwNx3TST/i6D9ri3ag6W2JuJdrCdY80oRjv5SLKIY 2SaJgs3dQn5Z5td+LmYui66x6d7rtPT9jWmNf5WwqpueOqn+kNZN2b4Fq9jYHJz7 dePIuq6gFB0gyecj3uwb5k+P3ZbRytJzuPba1fsERX7UAyqobtuPUSe7G37sBsfr Gf2qJ0ivomxo44W84nUI8cdJf1y+jxBktlo1DzkWNJj55XPaliKDGontkyOHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDvLnEBEaQjXF/g49rs9tzHazlIQwHwYDVR0j BBgwFoAUXsLAI0D7+nmjNS+hiTTB57HZIW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTJlNWYwMy1iZjk2LTRiNDAtYmQ0YS02ZTM4ODhjNDAyMDUvMC81RUMyQzAyMzQw RkJGQTc5QTMzNTJGQTE4OTM0QzFFN0IxRDkyMTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUVDMkMwMjM0MEZCRkE3OUEzMzUyRkExODkzNEMxRTdCMUQ5 MjE2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMmU1ZjAzLWJmOTYtNGI0MC1i ZDRhLTZlMzg4OGM0MDIwNS8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9yTANBgkqhkiG 9w0BAQsFAAOCAQEAcvACm2B5yA3pXhFACKRHDirV//QLDH8/M5fbjR6tK5ta47bN KZN6WTfFQ6OAsbd4quMa2VRsjOhMe7rVSDpT9AalV85v7o70ss/XmhcMBiGGvUR1 aUWiUuy7aMMu0yq7zXR/ixeDEXs4MKS2yLYQP4vGC06lPuExTHQ68VFjoMMPrIsI fxkunKx1chglEFQA5sJM68yWhVGvHKxQ5GhTh977Rzru2XiAZzQWYzqSHs4xSt6E wx0q4tFn7pADfJPXit+coHimY2i8YSjVFEAgAmVC2BiGUs7TRBa1rMudpjkQieOj UisdNrEyIGJWmipRb8C1r1Brj+ZLmzMuENNdvw== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net