$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa File: 3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: svi5IuXnIA+13Wc0eQrV3WQdaOBiVClli1PIWM+ewGc= Subject key identifier: 4B:AC:FF:50:DF:D3:7E:B3:73:42:EA:96:D6:0D:C8:EF:93:C4:4D:D8 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 58A23D2CECAA0C053FDF5983AF597969472B2BA2 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa Signing time: Tue 15 Apr 2025 05:00:00 +0000 ROA not before: Tue 15 Apr 2025 04:55:00 +0000 ROA not after: Tue 14 Apr 2026 05:00:00 +0000 asID: 140443 IP address blocks: 202.125.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a2:3d:2c:ec:aa:0c:05:3f:df:59:83:af:59:79:69:47:2b:2b:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Apr 15 04:55:00 2025 GMT Not After : Apr 14 05:00:00 2026 GMT Subject: CN=4BACFF50DFD37EB37342EA96D60DC8EF93C44DD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b7:5d:f5:49:23:cb:4f:69:b2:82:6c:37:e6: 50:0c:ea:22:55:2c:03:ac:b8:2c:7c:a2:dc:e7:05: f9:8a:6b:59:44:f7:92:87:2a:56:bb:fe:b0:c0:c9: c7:d2:c6:2c:e9:0a:10:61:34:83:d3:51:6a:b5:8a: 0c:c3:4d:e8:f5:f7:39:cb:76:f7:52:cf:61:16:63: b4:8b:74:86:ea:53:57:ce:71:da:64:9d:da:ac:88: a9:ab:e6:6b:00:ec:71:43:61:d1:b7:b7:d0:80:6c: 5f:01:53:a0:29:94:29:59:75:fc:a2:e2:0d:ac:05: 34:39:f9:9b:bb:8d:f0:a2:a4:bb:1d:b4:15:78:68: 54:45:9e:c9:3f:1e:75:88:90:9c:8e:f5:99:7f:41: e7:72:70:0e:ff:b2:dc:c8:e4:8f:d1:97:c8:41:87: 65:76:8d:27:08:a9:20:c2:d4:9e:d1:87:12:b7:7b: 19:26:34:0a:60:cd:7c:38:6a:06:29:9d:dd:cb:e6: ac:9b:54:71:d8:84:16:43:df:13:bb:c1:f7:e1:79: aa:6d:4a:0f:f0:c1:94:21:dd:d2:72:5c:f8:af:d3: 5b:27:2b:9c:83:13:cb:eb:b4:fe:9a:13:e5:74:b8: ca:71:c4:bd:2e:05:bc:17:b3:41:1c:74:b2:4a:d1: 0b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AC:FF:50:DF:D3:7E:B3:73:42:EA:96:D6:0D:C8:EF:93:C4:4D:D8 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.125.82.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:46:d0:cb:7c:b5:9f:1a:42:ed:b1:2d:10:24:0a:b7:89:bd: 8c:ae:6f:4c:62:31:c9:8d:c7:7f:08:de:5d:13:01:70:9d:77: e0:7a:54:33:0a:fc:c6:1e:d1:55:28:1f:c6:2b:8f:db:d4:98: 06:c5:23:d8:db:7b:29:4e:6c:c1:3e:aa:b8:5a:df:4f:e5:0a: 81:b2:57:7f:3f:51:2f:f3:8a:97:a8:d1:96:00:10:df:5f:0a: 5a:0d:09:b4:bf:40:ef:cf:20:11:e8:7f:c9:4b:44:f2:8d:75: b9:93:85:89:2c:54:38:3e:ea:3d:48:ac:11:ce:6e:57:95:4f: 64:65:a8:c6:5c:9f:e5:c6:6f:ea:8c:09:f1:ea:be:c9:41:69: 44:c4:e8:53:d1:5c:f9:d8:39:4c:2a:cd:86:d9:29:ba:08:a3: 88:70:f1:d4:48:67:04:12:78:7b:9e:a7:41:2a:51:c7:4c:5f: 2c:03:f0:ab:9a:56:03:dd:9b:c1:c2:cb:c9:ca:9b:de:1c:b3: 01:e0:e3:cb:64:46:96:6b:78:60:73:9e:af:42:88:a3:7c:b3: 0d:1d:b1:79:19:31:c6:cf:4e:43:8b:c5:1f:e5:16:0b:40:55: 0e:5a:74:a7:21:ff:2a:6b:a1:5e:62:89:fd:1f:a6:bd:09:79: 02:4a:20:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWKI9LOyqDAU/31mDr1l5aUcrK6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNTA0MTUwNDU1MDBaFw0yNjA0MTQwNTAwMDBaMDMxMTAvBgNV BAMTKDRCQUNGRjUwREZEMzdFQjM3MzQyRUE5NkQ2MERDOEVGOTNDNDRERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLt131SSPLT2mygmw35lAM6iJV LAOsuCx8otznBfmKa1lE95KHKla7/rDAycfSxizpChBhNIPTUWq1igzDTej19znL dvdSz2EWY7SLdIbqU1fOcdpkndqsiKmr5msA7HFDYdG3t9CAbF8BU6AplClZdfyi 4g2sBTQ5+Zu7jfCipLsdtBV4aFRFnsk/HnWIkJyO9Zl/QedycA7/stzI5I/Rl8hB h2V2jScIqSDC1J7RhxK3exkmNApgzXw4agYpnd3L5qybVHHYhBZD3xO7wffheapt Sg/wwZQh3dJyXPiv01snK5yDE8vrtP6aE+V0uMpxxL0uBbwXs0EcdLJK0QulAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUS6z/UN/TfrNzQuqW1g3I75PETdgwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzEzMjM1MmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyn1SMA0GCSqG SIb3DQEBCwUAA4IBAQAsRtDLfLWfGkLtsS0QJAq3ib2Mrm9MYjHJjcd/CN5dEwFw nXfgelQzCvzGHtFVKB/GK4/b1JgGxSPY23spTmzBPqq4Wt9P5QqBsld/P1Ev84qX qNGWABDfXwpaDQm0v0DvzyAR6H/JS0TyjXW5k4WJLFQ4Puo9SKwRzm5XlU9kZajG XJ/lxm/qjAnx6r7JQWlExOhT0Vz52DlMKs2G2Sm6CKOIcPHUSGcEEnh7nqdBKlHH TF8sA/CrmlYD3ZvBwsvJypveHLMB4OPLZEaWa3hgc56vQoijfLMNHbF5GTHGz05D i8Uf5RYLQFUOWnSnIf8qa6FeYon9H6a9CXkCSiAu -----END CERTIFICATE-----Generated at Sat Apr 26 13:37:03 2025 by rpki-client on console.sobornost.net