$ rpki-client -vvf repo-rpki.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/3130332e3138372e38372e302f32342d3234203d3e20313439373138.roa File: 3130332e3138372e38372e302f32342d3234203d3e20313439373138.roa (raw, json) Hash identifier: JVhrzlpOZdWSbSjvZPb3ZH9GyBIo1oeTGaYsJmG4pDs= Subject key identifier: 3E:FA:0A:EB:4A:3B:DC:1D:65:2A:43:F1:E3:0B:D9:35:24:ED:A0:FC Certificate issuer: /CN=0433DC81885AA9736198E4B13311013B6539B05D Certificate serial: 486C4FA021C089112542DC3DB5FE10FBCB00B39B Authority key identifier: 04:33:DC:81:88:5A:A9:73:61:98:E4:B1:33:11:01:3B:65:39:B0:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0433DC81885AA9736198E4B13311013B6539B05D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/3130332e3138372e38372e302f32342d3234203d3e20313439373138.roa Signing time: Sat 12 Apr 2025 01:01:38 +0000 ROA not before: Sat 12 Apr 2025 00:56:38 +0000 ROA not after: Sat 11 Apr 2026 01:01:38 +0000 asID: 149718 IP address blocks: 103.187.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/0433DC81885AA9736198E4B13311013B6539B05D.crl rsync://repo-rpki.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/0433DC81885AA9736198E4B13311013B6539B05D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0433DC81885AA9736198E4B13311013B6539B05D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 12:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6c:4f:a0:21:c0:89:11:25:42:dc:3d:b5:fe:10:fb:cb:00:b3:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0433DC81885AA9736198E4B13311013B6539B05D Validity Not Before: Apr 12 00:56:38 2025 GMT Not After : Apr 11 01:01:38 2026 GMT Subject: CN=3EFA0AEB4A3BDC1D652A43F1E30BD93524EDA0FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0d:aa:cf:fc:03:95:cf:53:ba:eb:e2:15:c4: c3:70:e7:f2:9e:63:c4:00:1f:43:af:31:72:a2:99: 00:42:e6:0c:28:04:7c:82:f4:5c:fc:5d:6b:0a:46: c1:e0:62:99:56:25:cb:8b:6d:3b:b5:38:30:e9:b1: 61:a8:88:5c:95:18:10:92:04:f5:a3:cc:80:11:f5: f6:bb:bc:37:57:be:97:6f:f9:2f:32:ee:96:9e:4d: 6f:f3:a0:e5:09:6f:08:e2:4c:74:0d:a9:e8:3d:7b: b9:ff:4a:ec:9f:5a:a4:97:49:ea:78:33:46:2c:55: 0e:95:b1:4a:fa:fa:26:43:dc:f9:cb:bd:72:3e:ca: a3:4c:ae:04:38:84:a5:f5:f0:7a:68:b2:24:d0:94: 45:78:2f:1e:dd:dd:aa:e2:b9:43:27:fa:ff:c0:80: dc:2b:8f:7d:85:52:61:23:dd:dc:6e:af:70:9a:4b: 31:ee:90:6d:e6:a3:2c:2a:36:9a:94:ee:40:75:cb: 7d:9e:e0:6b:90:9d:1c:72:c6:2b:0b:ff:89:6c:6b: dd:f7:e1:a1:66:5e:40:63:8c:99:e5:07:6f:ec:91: 5a:28:86:47:39:61:aa:39:ca:7f:88:ef:32:68:3a: e8:e3:0b:e3:f8:2c:e6:89:21:85:2f:4a:c6:3f:48: 8c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:FA:0A:EB:4A:3B:DC:1D:65:2A:43:F1:E3:0B:D9:35:24:ED:A0:FC X509v3 Authority Key Identifier: keyid:04:33:DC:81:88:5A:A9:73:61:98:E4:B1:33:11:01:3B:65:39:B0:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/0433DC81885AA9736198E4B13311013B6539B05D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0433DC81885AA9736198E4B13311013B6539B05D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b7ef515-8564-41e8-9d20-2d33d45ccbd6/0/3130332e3138372e38372e302f32342d3234203d3e20313439373138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.87.0/24 Signature Algorithm: sha256WithRSAEncryption b1:7b:64:ba:ab:1e:97:ac:59:61:c1:60:64:61:50:53:c7:41: 92:e2:79:70:53:18:03:fb:96:56:32:3b:15:0a:50:1d:aa:e0: f1:ad:fd:e7:c3:1c:7f:7c:0a:a9:8b:fa:be:1c:6d:72:d4:bb: 65:1b:63:6c:ad:5a:02:fa:82:03:46:9d:a6:42:da:ab:7c:a4: 0d:35:15:c0:6d:21:73:81:26:57:db:ab:ef:4c:92:82:d8:42: 80:bb:7d:0e:1d:e6:51:7d:7c:21:be:ad:4e:f6:6d:68:d6:29: ba:83:ae:58:4e:fd:9c:c4:9d:6f:1f:80:dd:67:e7:d9:63:8e: 0a:54:b4:0d:9d:f7:7a:01:ae:fc:41:f2:cd:cf:fe:0f:28:c8: 84:20:d6:39:64:a6:75:a7:5f:27:50:2a:b6:c9:d2:6f:ae:cb: 4d:db:4c:19:50:0b:1f:17:65:1c:dc:40:9b:cf:94:5a:35:42: 71:0b:5c:ad:2b:04:e5:62:9b:f8:65:a2:ab:a9:b5:9f:be:e2: 78:47:08:14:08:ea:be:da:29:91:3b:16:49:94:ed:39:fb:f9: a7:11:eb:81:02:72:8a:2b:97:4b:97:b8:86:21:67:66:cd:15: 41:aa:4f:79:9c:2c:e3:85:75:b6:05:b7:9b:64:b8:f2:31:9d: 41:64:4f:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSGxPoCHAiRElQtw9tf4Q+8sAs5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQzM0RDODE4ODVBQTk3MzYxOThFNEIxMzMxMTAxM0I2 NTM5QjA1RDAeFw0yNTA0MTIwMDU2MzhaFw0yNjA0MTEwMTAxMzhaMDMxMTAvBgNV BAMTKDNFRkEwQUVCNEEzQkRDMUQ2NTJBNDNGMUUzMEJEOTM1MjRFREEwRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DarP/AOVz1O66+IVxMNw5/Ke Y8QAH0OvMXKimQBC5gwoBHyC9Fz8XWsKRsHgYplWJcuLbTu1ODDpsWGoiFyVGBCS BPWjzIAR9fa7vDdXvpdv+S8y7paeTW/zoOUJbwjiTHQNqeg9e7n/SuyfWqSXSep4 M0YsVQ6VsUr6+iZD3PnLvXI+yqNMrgQ4hKX18HposiTQlEV4Lx7d3ariuUMn+v/A gNwrj32FUmEj3dxur3CaSzHukG3moywqNpqU7kB1y32e4GuQnRxyxisL/4lsa933 4aFmXkBjjJnlB2/skVoohkc5Yao5yn+I7zJoOujjC+P4LOaJIYUvSsY/SIwJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPvoK60o73B1lKkPx4wvZNSTtoPwwHwYDVR0j BBgwFoAUBDPcgYhaqXNhmOSxMxEBO2U5sF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjdlZjUxNS04NTY0LTQxZTgtOWQyMC0yZDMzZDQ1Y2NiZDYvMC8wNDMzREM4MTg4 NUFBOTczNjE5OEU0QjEzMzExMDEzQjY1MzlCMDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQzM0RDODE4ODVBQTk3MzYxOThFNEIxMzMxMTAxM0I2NTM5 QjA1RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiN2VmNTE1LTg1NjQtNDFlOC05 ZDIwLTJkMzNkNDVjY2JkNi8wLzMxMzAzMzJlMzEzODM3MmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7tXMA0GCSqG SIb3DQEBCwUAA4IBAQCxe2S6qx6XrFlhwWBkYVBTx0GS4nlwUxgD+5ZWMjsVClAd quDxrf3nwxx/fAqpi/q+HG1y1LtlG2NsrVoC+oIDRp2mQtqrfKQNNRXAbSFzgSZX 26vvTJKC2EKAu30OHeZRfXwhvq1O9m1o1im6g65YTv2cxJ1vH4DdZ+fZY44KVLQN nfd6Aa78QfLNz/4PKMiEINY5ZKZ1p18nUCq2ydJvrstN20wZUAsfF2Uc3ECbz5Ra NUJxC1ytKwTlYpv4ZaKrqbWfvuJ4RwgUCOq+2imROxZJlO05+/mnEeuBAnKKK5dL l7iGIWdmzRVBqk95nCzjhXW2BbebZLjyMZ1BZE+O -----END CERTIFICATE-----Generated at Wed Apr 23 15:33:57 2025 by rpki-client on console.sobornost.net