$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa File: 3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: qOgMs8L+7L6hzGSgXrwuDdjZMuQgbmzasXiAjPj9OOI= Subject key identifier: AD:30:9F:C6:DE:25:45:E9:BF:73:E9:0F:93:5A:BF:24:43:A1:9C:3A Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 2A2A2BF0B2777C907C74EC287BE12861825B2811 Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa Signing time: Thu 24 Apr 2025 05:02:22 +0000 ROA not before: Thu 24 Apr 2025 04:57:22 +0000 ROA not after: Thu 23 Apr 2026 05:02:22 +0000 asID: 59282 IP address blocks: 103.161.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:2a:2b:f0:b2:77:7c:90:7c:74:ec:28:7b:e1:28:61:82:5b:28:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Apr 24 04:57:22 2025 GMT Not After : Apr 23 05:02:22 2026 GMT Subject: CN=AD309FC6DE2545E9BF73E90F935ABF2443A19C3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d4:72:8c:c2:38:60:86:c1:b7:a3:d4:3e:fd: 10:38:40:2a:ef:d6:a6:10:28:1a:30:43:eb:27:a7: 10:42:ca:1a:65:57:93:89:a2:ca:1c:2d:4e:07:ea: 0b:f2:92:be:4c:d9:81:13:e6:05:59:65:7e:1c:b4: 8a:2d:ab:77:e9:79:c7:c8:9d:2f:8c:ab:a2:1e:27: a0:d8:d7:db:10:af:3d:62:6c:ec:e3:22:2b:43:34: 5e:ae:74:64:0c:50:d1:62:f7:e5:9d:fe:58:6e:44: 26:63:3b:d2:65:16:26:4c:f1:d1:39:13:6e:64:5b: d7:2f:d9:6c:79:82:a9:db:7c:bd:8c:98:44:0d:d0: 21:00:f3:d3:e9:ab:9b:f2:72:a1:99:6e:d2:70:35: 29:74:16:d3:76:a7:da:6f:0e:2e:a2:ef:d1:03:ae: 3b:fe:33:1f:a7:50:0d:69:98:2c:b9:96:53:86:f6: d4:f3:4c:1d:fe:f3:20:55:2b:55:78:e9:b5:bc:26: e5:4f:1c:a3:45:d3:1f:30:80:70:3c:b3:6b:da:56: 25:aa:43:97:02:5f:f3:d3:cb:d5:f5:4d:a3:25:13: c3:c7:48:22:0b:5c:aa:0b:7d:6f:a2:6c:16:83:e5: fc:0c:07:3c:6a:32:64:18:84:4c:fb:57:7b:28:c3: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:30:9F:C6:DE:25:45:E9:BF:73:E9:0F:93:5A:BF:24:43:A1:9C:3A X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/24 Signature Algorithm: sha256WithRSAEncryption b3:4b:35:9b:99:e1:2b:6f:c9:97:c6:7d:09:51:54:33:b3:1c: a3:41:5a:3e:27:e6:56:aa:57:3d:31:1a:0f:b4:79:bf:6b:6f: a2:21:fb:f8:d2:fb:9f:f7:ec:a2:e7:ed:9f:08:e9:51:f7:e9: 77:c8:1e:25:57:04:52:4b:ea:43:b6:1c:0e:74:ef:6e:57:59: f9:98:c8:3c:5a:82:85:9f:02:a7:64:79:02:29:21:88:b5:4c: c4:90:2e:34:fb:6a:aa:fc:1c:cf:71:04:58:e0:ea:29:3c:4c: a7:1b:b0:3e:bd:3a:d4:70:30:13:3c:d2:77:b2:67:e9:0b:68: fd:52:db:ad:ef:4b:71:ce:ef:be:08:9a:dc:19:87:7f:42:84: 1c:3f:60:b6:ff:9d:d7:21:da:60:6b:0e:c9:1f:c3:5e:03:f6: d3:3f:f7:ae:50:73:09:d6:c9:3b:d6:77:1c:0b:c0:df:ea:58: f3:a1:6e:1f:d3:52:71:db:db:7d:b4:62:a3:1d:9e:86:43:5b: 6a:a7:e0:2b:7c:93:c4:54:79:24:a9:78:84:66:90:61:dc:0e: 7c:02:ec:63:9c:7b:b8:dc:2d:81:e4:31:41:56:66:e7:9c:d5: c4:dd:50:41:d0:37:a6:b9:75:62:4c:c6:c7:fd:db:db:cf:1d: 9c:b5:1c:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKior8LJ3fJB8dOwoe+EoYYJbKBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNTA0MjQwNDU3MjJaFw0yNjA0MjMwNTAyMjJaMDMxMTAvBgNV BAMTKEFEMzA5RkM2REUyNTQ1RTlCRjczRTkwRjkzNUFCRjI0NDNBMTlDM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY1HKMwjhghsG3o9Q+/RA4QCrv 1qYQKBowQ+snpxBCyhplV5OJosocLU4H6gvykr5M2YET5gVZZX4ctIotq3fpecfI nS+Mq6IeJ6DY19sQrz1ibOzjIitDNF6udGQMUNFi9+Wd/lhuRCZjO9JlFiZM8dE5 E25kW9cv2Wx5gqnbfL2MmEQN0CEA89Ppq5vycqGZbtJwNSl0FtN2p9pvDi6i79ED rjv+Mx+nUA1pmCy5llOG9tTzTB3+8yBVK1V46bW8JuVPHKNF0x8wgHA8s2vaViWq Q5cCX/PTy9X1TaMlE8PHSCILXKoLfW+ibBaD5fwMBzxqMmQYhEz7V3sowyVzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrTCfxt4lRem/c+kPk1q/JEOhnDowHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6GGMA0GCSqG SIb3DQEBCwUAA4IBAQCzSzWbmeErb8mXxn0JUVQzsxyjQVo+J+ZWqlc9MRoPtHm/ a2+iIfv40vuf9+yi5+2fCOlR9+l3yB4lVwRSS+pDthwOdO9uV1n5mMg8WoKFnwKn ZHkCKSGItUzEkC40+2qq/BzPcQRY4OopPEynG7A+vTrUcDATPNJ3smfpC2j9Utut 70txzu++CJrcGYd/QoQcP2C2/53XIdpgaw7JH8NeA/bTP/euUHMJ1sk71nccC8Df 6ljzoW4f01Jx29t9tGKjHZ6GQ1tqp+ArfJPEVHkkqXiEZpBh3A58AuxjnHu43C2B 5DFBVmbnnNXE3VBB0DemuXViTMbH/dvbzx2ctRys -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:50 2025 by rpki-client on console.sobornost.net