$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa File: 3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: wdtK/qmLPSYK98usl8We2OAmclE1Y5QskILTtOqsrh0= Subject key identifier: A6:F7:E4:47:50:3D:6E:CF:4B:C7:A5:27:A0:00:51:7E:40:3F:77:87 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 351F6C910A2F92117F7F341F735690FAC13543C2 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa Signing time: Thu 24 Apr 2025 03:00:00 +0000 ROA not before: Thu 24 Apr 2025 02:55:00 +0000 ROA not after: Thu 23 Apr 2026 03:00:00 +0000 asID: 140443 IP address blocks: 202.70.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:1f:6c:91:0a:2f:92:11:7f:7f:34:1f:73:56:90:fa:c1:35:43:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Apr 24 02:55:00 2025 GMT Not After : Apr 23 03:00:00 2026 GMT Subject: CN=A6F7E447503D6ECF4BC7A527A000517E403F7787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d1:cb:18:1c:2d:4d:b7:1f:17:ca:e8:fd:dd: fe:c8:8d:d4:71:62:12:45:39:2b:c6:79:d1:95:a7: 2e:db:89:0b:12:29:de:fa:9d:84:cc:a5:b0:82:7a: 2e:de:8a:a2:d8:79:9a:e6:53:82:d2:2a:8c:ae:bd: 89:a0:3a:78:61:f8:08:75:33:d5:c2:78:13:84:99: 1b:2a:79:16:d1:b9:81:67:5a:09:d8:4a:6f:4c:91: 95:40:d5:22:72:bb:55:20:0f:ab:01:d3:cc:a6:ef: 43:c6:5f:3c:98:bb:b5:d0:fa:67:f7:b9:fd:80:99: 4f:98:c6:fd:be:61:7a:94:43:3f:80:48:b4:ca:d2: 2b:3a:56:75:0e:41:25:b9:a8:e8:0d:54:ae:e0:8d: c6:8e:23:4a:53:53:2d:92:14:31:6e:c1:0b:e8:ea: e1:fc:1e:90:15:8f:c9:a8:c6:02:fc:13:fe:ab:23: f6:9a:67:98:93:98:68:f9:1e:07:61:87:ba:60:2a: 7a:d5:5f:e7:07:03:b9:bb:7b:96:fc:53:19:d3:bb: fb:2d:15:25:45:3b:c4:8f:fb:b1:61:ab:7d:7c:3f: c4:39:55:39:1a:4b:63:b4:c3:4a:dd:b9:5e:c0:f6: 50:78:cf:34:70:5a:83:94:22:c1:cc:b5:d2:ca:51: e0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F7:E4:47:50:3D:6E:CF:4B:C7:A5:27:A0:00:51:7E:40:3F:77:87 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.133.0/24 Signature Algorithm: sha256WithRSAEncryption 42:72:47:a9:38:cd:64:00:3c:65:e7:99:84:c2:fc:be:fc:60: 5e:e6:e0:37:da:52:e7:e1:c1:dc:f1:e1:42:3e:f7:1a:0a:3d: b0:77:09:a3:14:1e:db:5c:5f:d0:f1:b8:6e:32:d2:d9:20:ae: 23:c4:5e:bd:9a:bd:f5:ed:56:ed:4d:dd:bc:b6:07:4b:60:41: 03:32:e0:4b:6a:47:5f:d6:e5:07:a8:04:a9:3b:f7:70:a5:ad: 0a:f2:fb:5c:dc:27:84:79:6f:f5:ab:7a:ad:3a:a1:d2:c1:59: df:dd:bf:b3:6d:b1:62:85:f1:53:2e:a0:58:a5:1c:1c:2f:55: dd:f9:9b:7d:35:13:4d:31:27:bd:a3:39:d4:41:bc:9c:90:13: 22:c8:1e:a9:1b:71:7d:70:94:9d:5c:af:0b:43:45:18:88:09: 28:7c:5e:7d:10:26:b2:78:b6:62:45:c3:58:1c:85:ed:80:c7: 19:91:bb:97:87:f0:a3:90:7a:ce:81:6b:c5:b7:d0:57:01:a9: b7:89:e7:b4:6c:8e:b0:50:4e:b3:20:6a:80:71:7a:cd:fd:80: 1e:54:06:ff:2f:ed:2c:e6:ae:f7:b2:88:2a:ef:e8:14:ba:06: f8:2b:4b:a2:2f:c1:b6:88:7b:56:6c:7b:a4:d4:e1:45:47:e5: bd:74:45:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNR9skQovkhF/fzQfc1aQ+sE1Q8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNTA0MjQwMjU1MDBaFw0yNjA0MjMwMzAwMDBaMDMxMTAvBgNV BAMTKEE2RjdFNDQ3NTAzRDZFQ0Y0QkM3QTUyN0EwMDA1MTdFNDAzRjc3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0csYHC1Ntx8Xyuj93f7IjdRx YhJFOSvGedGVpy7biQsSKd76nYTMpbCCei7eiqLYeZrmU4LSKoyuvYmgOnhh+Ah1 M9XCeBOEmRsqeRbRuYFnWgnYSm9MkZVA1SJyu1UgD6sB08ym70PGXzyYu7XQ+mf3 uf2AmU+Yxv2+YXqUQz+ASLTK0is6VnUOQSW5qOgNVK7gjcaOI0pTUy2SFDFuwQvo 6uH8HpAVj8moxgL8E/6rI/aaZ5iTmGj5Hgdhh7pgKnrVX+cHA7m7e5b8UxnTu/st FSVFO8SP+7Fhq318P8Q5VTkaS2O0w0rduV7A9lB4zzRwWoOUIsHMtdLKUeBhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpvfkR1A9bs9Lx6UnoABRfkA/d4cwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaFMA0GCSqG SIb3DQEBCwUAA4IBAQBCckepOM1kADxl55mEwvy+/GBe5uA32lLn4cHc8eFCPvca Cj2wdwmjFB7bXF/Q8bhuMtLZIK4jxF69mr317VbtTd28tgdLYEEDMuBLakdf1uUH qASpO/dwpa0K8vtc3CeEeW/1q3qtOqHSwVnf3b+zbbFihfFTLqBYpRwcL1Xd+Zt9 NRNNMSe9oznUQbyckBMiyB6pG3F9cJSdXK8LQ0UYiAkofF59ECayeLZiRcNYHIXt gMcZkbuXh/CjkHrOgWvFt9BXAam3iee0bI6wUE6zIGqAcXrN/YAeVAb/L+0s5q73 sogq7+gUugb4K0uiL8G2iHtWbHuk1OFFR+W9dEUX -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:50 2025 by rpki-client on console.sobornost.net