$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa File: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: q3nnfuFQ9fllwu5vaDMWKT58tFIU7r2iWutM+FFs7uM= Subject key identifier: D9:7B:75:BC:6B:56:FC:71:51:19:8B:AF:8C:C7:18:69:CF:3C:92:59 Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 7FDCDC4B56996DE51B5E6E74980100F759FA6917 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa Signing time: Mon 21 Apr 2025 04:00:00 +0000 ROA not before: Mon 21 Apr 2025 03:55:00 +0000 ROA not after: Mon 20 Apr 2026 04:00:00 +0000 asID: 140443 IP address blocks: 103.149.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 14:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:dc:dc:4b:56:99:6d:e5:1b:5e:6e:74:98:01:00:f7:59:fa:69:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Apr 21 03:55:00 2025 GMT Not After : Apr 20 04:00:00 2026 GMT Subject: CN=D97B75BC6B56FC7151198BAF8CC71869CF3C9259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d6:91:86:46:cf:05:a4:d0:6c:12:d9:92:9e: d2:61:0a:d1:76:38:2a:27:ee:1e:d7:9e:2b:6e:09: cc:4a:8e:cf:1a:89:88:bd:7f:47:5f:72:c0:a1:31: 63:14:3f:e4:31:1f:fe:3d:f9:24:f7:3f:17:9e:06: 08:86:d6:c1:b8:ff:51:17:53:04:16:ea:4d:1f:60: 92:a8:a8:10:ed:b3:a7:da:13:97:9a:41:cd:03:62: 44:86:62:d1:ec:81:2f:43:e6:42:d0:ae:01:61:95: 28:64:52:6a:20:5c:12:1a:3b:b2:a2:44:4d:76:41: bc:72:e3:5f:59:ac:d0:5d:3e:1f:7b:62:82:4f:3d: fa:8c:f3:7f:86:27:40:02:4f:bc:ac:ef:0a:e2:8d: 76:a4:00:a5:b1:cf:a7:a2:0c:fe:d5:4f:ad:5d:3d: 4c:f7:81:3a:6c:f1:42:52:51:e2:97:0e:6e:2f:6f: e5:6f:79:29:da:68:6d:15:bb:dd:90:67:60:46:06: a5:fd:60:a8:58:60:89:28:96:3b:f5:d1:c0:c9:01: 7d:6a:d1:76:cd:72:aa:42:39:0f:10:13:cc:b9:c3: 86:af:12:b7:0e:32:9b:2d:e2:98:e2:7b:5a:ef:2d: 0d:04:96:32:5f:ea:21:16:d9:60:d6:b6:87:b7:68: fc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7B:75:BC:6B:56:FC:71:51:19:8B:AF:8C:C7:18:69:CF:3C:92:59 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.177.0/24 Signature Algorithm: sha256WithRSAEncryption 27:ab:2f:f7:b8:82:f4:08:4a:d2:49:95:10:74:bd:bc:f8:fb: 52:83:4b:63:33:42:a7:38:76:93:b4:b8:05:84:6c:1f:b9:50: fa:88:c3:72:13:1c:77:70:22:ba:ea:18:b0:80:0d:97:10:1a: b6:04:78:12:21:68:09:ef:e9:62:00:b2:b7:e1:fe:46:7a:ee: 3e:e9:a8:a1:57:4a:b7:36:fb:cc:ec:7f:8c:27:1e:11:c2:5e: 98:7d:cf:c4:39:11:48:47:ce:73:d9:18:3c:cd:a4:e6:1d:20: 82:36:0d:35:9f:cf:37:43:a4:e2:f9:ce:d4:c5:71:eb:cd:6a: aa:98:0b:bc:87:0f:12:1d:83:1b:9c:68:ff:ff:39:92:60:50: e7:07:75:32:15:34:f1:10:0e:ec:82:0a:6f:ac:30:3d:22:f3: ae:e3:2d:62:a8:13:7a:a2:fd:1c:cc:a2:e2:6c:ce:cf:e7:75: b9:cb:e0:5b:32:8f:a4:60:56:53:44:fc:af:89:94:81:20:2f: 78:17:46:85:cd:65:dd:7a:7f:f2:ef:e5:a9:17:5c:68:bd:81: af:12:e5:95:f4:3d:65:dc:c7:d4:c9:b6:60:6c:82:8e:54:ba: 7a:7a:80:6f:09:43:19:fa:fa:15:52:f3:df:98:38:07:1b:dc: 0e:54:b5:cf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf9zcS1aZbeUbXm50mAEA91n6aRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNTA0MjEwMzU1MDBaFw0yNjA0MjAwNDAwMDBaMDMxMTAvBgNV BAMTKEQ5N0I3NUJDNkI1NkZDNzE1MTE5OEJBRjhDQzcxODY5Q0YzQzkyNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm1pGGRs8FpNBsEtmSntJhCtF2 OCon7h7XnituCcxKjs8aiYi9f0dfcsChMWMUP+QxH/49+ST3PxeeBgiG1sG4/1EX UwQW6k0fYJKoqBDts6faE5eaQc0DYkSGYtHsgS9D5kLQrgFhlShkUmogXBIaO7Ki RE12Qbxy419ZrNBdPh97YoJPPfqM83+GJ0ACT7ys7wrijXakAKWxz6eiDP7VT61d PUz3gTps8UJSUeKXDm4vb+VveSnaaG0Vu92QZ2BGBqX9YKhYYIkoljv10cDJAX1q 0XbNcqpCOQ8QE8y5w4avErcOMpst4pjie1rvLQ0EljJf6iEW2WDWtoe3aPyZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2Xt1vGtW/HFRGYuvjMcYac88klkwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4LTYzYTgtNDEzYy1h OWY2LWNjMjIzYWZhNGE3NS8wLzMxMzAzMzJlMzEzNDM5MmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlbEwDQYJ KoZIhvcNAQELBQADggEBACerL/e4gvQIStJJlRB0vbz4+1KDS2MzQqc4dpO0uAWE bB+5UPqIw3ITHHdwIrrqGLCADZcQGrYEeBIhaAnv6WIAsrfh/kZ67j7pqKFXSrc2 +8zsf4wnHhHCXph9z8Q5EUhHznPZGDzNpOYdIII2DTWfzzdDpOL5ztTFcevNaqqY C7yHDxIdgxucaP//OZJgUOcHdTIVNPEQDuyCCm+sMD0i867jLWKoE3qi/RzMouJs zs/ndbnL4Fsyj6RgVlNE/K+JlIEgL3gXRoXNZd16f/Lv5akXXGi9ga8S5ZX0PWXc x9TJtmBsgo5Uunp6gG8JQxn6+hVS89+YOAcb3A5Utc8= -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:40 2025 by rpki-client on console.sobornost.net