$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa File: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: 5ODCvpJsl+XnXZcZjU6a9g5frNriLFm4lEWGxVY15JQ= Subject key identifier: A9:D3:ED:AF:24:00:BA:2B:89:1D:13:1C:64:AE:47:F9:E5:26:3B:FE Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 42980A5E36CAAA77BED39E0EE38EF976B513DEA7 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa Signing time: Tue 22 Apr 2025 06:00:59 +0000 ROA not before: Tue 22 Apr 2025 05:55:59 +0000 ROA not after: Tue 21 Apr 2026 06:00:59 +0000 asID: 131743 IP address blocks: 103.191.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:98:0a:5e:36:ca:aa:77:be:d3:9e:0e:e3:8e:f9:76:b5:13:de:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Apr 22 05:55:59 2025 GMT Not After : Apr 21 06:00:59 2026 GMT Subject: CN=A9D3EDAF2400BA2B891D131C64AE47F9E5263BFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a6:6c:4c:b2:96:df:00:c7:82:9a:35:a5:09: 6b:97:e7:ea:99:3c:da:f1:6e:09:86:9e:4a:22:f1: 38:9d:3c:73:b6:9d:23:de:fb:df:e2:91:f5:b1:8b: 61:90:43:fe:97:3f:cf:07:91:f0:6a:cf:16:11:fd: 08:45:c0:8d:35:4d:c3:70:05:6d:e7:3a:f3:f6:3f: b8:86:91:13:28:e7:21:73:9d:f4:08:40:f4:67:e5: e5:7d:4f:a1:a4:fb:7f:49:3a:36:52:cc:f7:2f:bf: be:00:86:81:33:bf:16:b8:be:e6:8f:ff:0a:d8:c1: 14:cb:80:7f:3a:83:3a:95:5b:47:e3:fc:93:b5:25: bc:6b:02:c5:c3:b9:6c:45:73:b4:ed:87:d5:b0:21: 24:53:f8:46:eb:ef:5f:0f:c2:d3:30:3d:df:fc:65: 50:8e:39:c7:80:00:e6:af:b9:2b:26:47:95:18:bc: 3e:8c:3f:27:b3:00:72:de:2b:34:da:a6:39:2d:2d: d6:dd:54:8a:23:94:c0:44:77:1c:4a:0a:95:f5:d2: ab:ab:87:3b:b0:d9:df:67:55:7a:32:e8:a5:17:97: f3:b4:44:92:d3:50:44:45:ed:d1:3b:1e:3a:4c:db: bb:30:43:62:6f:7e:be:88:06:eb:60:bc:2c:2d:4e: 11:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D3:ED:AF:24:00:BA:2B:89:1D:13:1C:64:AE:47:F9:E5:26:3B:FE X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.57.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:fd:ae:15:0a:44:74:13:74:e5:3a:8b:a4:76:4b:b2:3c:d5: c5:86:52:d3:18:57:f7:c4:d6:29:0d:36:cc:66:fd:11:a3:ad: 14:78:b0:7f:51:5d:1b:47:3f:a5:59:c6:eb:5c:64:4f:9c:57: 6f:3d:0c:bd:fd:95:42:6f:c6:1b:61:10:0e:c7:9f:b4:f8:c7: 0e:bd:9c:ef:18:9b:6a:d8:6e:20:0f:35:3c:96:4d:3b:17:d9: 84:74:b6:47:64:9d:53:25:ef:2e:5f:18:17:c4:26:0b:e7:55: 0b:ac:64:80:b9:75:33:0c:20:04:10:26:a6:e5:c3:a7:05:46: e4:88:9b:61:d5:26:b6:85:7c:9d:48:6a:16:96:e6:eb:84:56: b9:0f:0c:9b:92:bd:bd:02:39:40:44:66:0b:ce:25:6f:52:51: 55:22:7a:c8:24:88:cf:73:fa:bc:22:f3:e0:3f:75:9a:9f:aa: e6:0f:5f:83:1d:55:9b:e2:8d:7d:95:f4:82:8a:a6:b5:ec:ce: d2:74:b9:26:43:85:09:9c:60:94:f2:77:dd:7c:7c:f7:d2:6c: 19:5c:fd:af:15:ec:9d:84:55:4c:59:d7:1f:93:64:74:73:42: e8:9f:c8:7c:97:48:99:08:3d:66:e5:e4:b0:60:b7:ae:40:54: 2a:c9:de:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQpgKXjbKqne+054O4475drUT3qcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNTA0MjIwNTU1NTlaFw0yNjA0MjEwNjAwNTlaMDMxMTAvBgNV BAMTKEE5RDNFREFGMjQwMEJBMkI4OTFEMTMxQzY0QUU0N0Y5RTUyNjNCRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDipmxMspbfAMeCmjWlCWuX5+qZ PNrxbgmGnkoi8TidPHO2nSPe+9/ikfWxi2GQQ/6XP88HkfBqzxYR/QhFwI01TcNw BW3nOvP2P7iGkRMo5yFznfQIQPRn5eV9T6Gk+39JOjZSzPcvv74AhoEzvxa4vuaP /wrYwRTLgH86gzqVW0fj/JO1JbxrAsXDuWxFc7Tth9WwISRT+Ebr718PwtMwPd/8 ZVCOOceAAOavuSsmR5UYvD6MPyezAHLeKzTapjktLdbdVIojlMBEdxxKCpX10qur hzuw2d9nVXoy6KUXl/O0RJLTUERF7dE7HjpM27swQ2Jvfr6IButgvCwtThEvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqdPtryQAuiuJHRMcZK5H+eUmO/4wHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyMjljYTUwLWU5NWMtNDViYi05 YzMwLTYzZTEyYWY3YTVlMS8wLzMxMzAzMzJlMzEzOTMxMmUzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ785MA0GCSqG SIb3DQEBCwUAA4IBAQCd/a4VCkR0E3TlOoukdkuyPNXFhlLTGFf3xNYpDTbMZv0R o60UeLB/UV0bRz+lWcbrXGRPnFdvPQy9/ZVCb8YbYRAOx5+0+McOvZzvGJtq2G4g DzU8lk07F9mEdLZHZJ1TJe8uXxgXxCYL51ULrGSAuXUzDCAEECam5cOnBUbkiJth 1Sa2hXydSGoWlubrhFa5Dwybkr29AjlARGYLziVvUlFVInrIJIjPc/q8IvPgP3Wa n6rmD1+DHVWb4o19lfSCiqa17M7SdLkmQ4UJnGCU8nfdfHz30mwZXP2vFeydhFVM Wdcfk2R0c0Lon8h8l0iZCD1m5eSwYLeuQFQqyd5F -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net