$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa File: 3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: u/HGXTKlzUVzN3BHvIbNac6O5D491LLOLOhh0HKRChM= Subject key identifier: A3:22:8F:62:61:63:DA:3F:DC:CE:28:74:EE:3D:59:C5:88:DE:2D:5A Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 21E8FCD528C706938128B3692B2DE5CB86393376 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa Signing time: Mon 21 Apr 2025 04:00:00 +0000 ROA not before: Mon 21 Apr 2025 03:55:00 +0000 ROA not after: Mon 20 Apr 2026 04:00:00 +0000 asID: 140443 IP address blocks: 103.149.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 14:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:e8:fc:d5:28:c7:06:93:81:28:b3:69:2b:2d:e5:cb:86:39:33:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Apr 21 03:55:00 2025 GMT Not After : Apr 20 04:00:00 2026 GMT Subject: CN=A3228F626163DA3FDCCE2874EE3D59C588DE2D5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f5:7b:cb:2f:02:b7:df:98:68:f4:89:ba:ad: af:6c:2b:9a:23:0d:f1:2b:9f:e3:a7:51:51:d5:4b: 7e:07:60:6e:3d:4b:96:a4:0e:1a:67:39:4f:45:47: fd:4e:99:fa:98:ce:c6:28:d6:62:a4:74:d2:a7:1b: f9:0c:2c:ac:b7:96:74:b2:02:22:1a:07:8e:8a:eb: a2:51:4b:18:bb:ab:79:fd:27:65:db:e8:2b:89:dc: 4f:52:50:fe:23:25:7b:18:aa:4d:86:d4:65:b9:d8: 6a:75:de:99:94:8e:43:34:f9:e2:0c:82:0d:de:91: c5:42:f4:e6:87:99:7c:90:16:30:4e:cb:7b:ca:10: 68:d5:75:79:7c:71:8a:c0:91:3c:f7:70:ea:18:74: 16:17:d0:cc:48:21:48:06:46:55:35:cf:c4:56:3d: 58:14:7e:25:4b:48:08:36:77:b8:9b:7c:cb:b1:42: 37:1e:66:6a:5c:1e:ed:23:cd:2a:95:28:80:29:7e: 8e:df:88:36:9b:5b:72:d2:ee:46:a0:11:ee:c8:41: 54:07:74:63:66:ce:cd:5a:84:b8:20:18:9b:1d:a7: 6c:b4:3e:1d:bf:e7:6b:de:7c:f6:22:96:99:a0:38: 2f:38:6f:62:09:bc:7e:39:68:98:3f:65:83:21:51: 17:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:22:8F:62:61:63:DA:3F:DC:CE:28:74:EE:3D:59:C5:88:DE:2D:5A X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/24 Signature Algorithm: sha256WithRSAEncryption 25:67:1c:64:5c:3b:bf:b1:03:b5:94:40:66:b3:8a:f8:c2:a4: be:12:e6:a8:d8:a4:b3:fc:77:14:03:41:34:57:8b:db:3d:e2: 75:f8:6f:a9:db:f5:8b:dc:c7:85:2c:9b:b1:39:c4:d2:b2:0a: 62:13:36:f7:4e:a9:b8:39:2a:8e:d3:37:6a:63:d2:bc:1a:c7: dd:f7:41:2b:a9:b2:26:bb:dc:e7:0a:fd:34:4e:71:fa:99:e3: b4:ac:e1:69:ec:4e:49:c2:2f:69:f8:e0:05:75:90:80:fe:80: 28:d6:aa:f8:fa:e2:ce:38:c6:e7:61:ea:a2:4b:08:72:a0:b2: f9:6a:bc:d3:9a:75:1e:5d:ac:e8:dd:3e:a6:63:b2:11:a1:db: a0:8c:df:e7:48:7e:47:a0:2e:6c:75:fc:07:b3:32:0e:80:fc: d5:e2:a0:8c:2e:e0:f1:65:3c:36:ff:53:f6:81:25:75:69:2a: 8e:d7:e7:18:3c:e6:78:dd:e0:ae:12:68:26:ce:fe:1e:c6:07: 6d:67:30:0a:7a:73:cc:48:51:57:b6:6d:d3:fa:05:ec:5d:04: 1e:6b:72:11:73:af:e0:b3:db:a4:5f:4a:a4:2b:b1:17:46:e0: db:af:7c:fc:1c:db:6e:2b:44:fe:47:17:99:1c:af:64:30:0e: 88:78:c6:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIej81SjHBpOBKLNpKy3ly4Y5M3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNTA0MjEwMzU1MDBaFw0yNjA0MjAwNDAwMDBaMDMxMTAvBgNV BAMTKEEzMjI4RjYyNjE2M0RBM0ZEQ0NFMjg3NEVFM0Q1OUM1ODhERTJENUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD9XvLLwK335ho9Im6ra9sK5oj DfErn+OnUVHVS34HYG49S5akDhpnOU9FR/1OmfqYzsYo1mKkdNKnG/kMLKy3lnSy AiIaB46K66JRSxi7q3n9J2Xb6CuJ3E9SUP4jJXsYqk2G1GW52Gp13pmUjkM0+eIM gg3ekcVC9OaHmXyQFjBOy3vKEGjVdXl8cYrAkTz3cOoYdBYX0MxIIUgGRlU1z8RW PVgUfiVLSAg2d7ibfMuxQjceZmpcHu0jzSqVKIApfo7fiDabW3LS7kagEe7IQVQH dGNmzs1ahLggGJsdp2y0Ph2/52vefPYilpmgOC84b2IJvH45aJg/ZYMhURfbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoyKPYmFj2j/czih07j1ZxYjeLVowHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlbAwDQYJ KoZIhvcNAQELBQADggEBACVnHGRcO7+xA7WUQGazivjCpL4S5qjYpLP8dxQDQTRX i9s94nX4b6nb9Yvcx4Usm7E5xNKyCmITNvdOqbg5Ko7TN2pj0rwax933QSupsia7 3OcK/TROcfqZ47Ss4WnsTknCL2n44AV1kID+gCjWqvj64s44xudh6qJLCHKgsvlq vNOadR5drOjdPqZjshGh26CM3+dIfkegLmx1/AezMg6A/NXioIwu4PFlPDb/U/aB JXVpKo7X5xg85njd4K4SaCbO/h7GB21nMAp6c8xIUVe2bdP6BexdBB5rchFzr+Cz 26RfSqQrsRdG4NuvfPwc224rRP5HF5kcr2QwDoh4xl4= -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:40 2025 by rpki-client on console.sobornost.net