$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: XgIzc0IbUT3BWzqPVrjaBsZEWwMYT+TR7O6PzuuQ5e4= Subject key identifier: 0E:5D:6E:BA:12:3C:62:3C:FE:05:DE:2C:74:FF:D3:04:74:47:92:51 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 2BB35CDE4CF7EEF8DDA7F08F1CB04F4EAAB76B2C Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa Signing time: Wed 02 Apr 2025 03:00:00 +0000 ROA not before: Wed 02 Apr 2025 02:55:00 +0000 ROA not after: Wed 01 Apr 2026 03:00:00 +0000 asID: 55685 IP address blocks: 103.108.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 02:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b3:5c:de:4c:f7:ee:f8:dd:a7:f0:8f:1c:b0:4f:4e:aa:b7:6b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: Apr 2 02:55:00 2025 GMT Not After : Apr 1 03:00:00 2026 GMT Subject: CN=0E5D6EBA123C623CFE05DE2C74FFD30474479251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:78:ef:fb:e7:11:7b:65:34:04:d8:45:08:d3: 51:f7:a9:d1:92:d9:b5:2a:b3:5b:c7:c5:fa:b3:c6: 44:91:3c:07:1f:02:e9:dc:43:00:75:6b:06:a1:cc: 62:e6:5a:54:33:8b:2b:2c:02:75:c9:48:04:a0:9b: bf:df:66:ad:f8:37:ac:89:ac:47:32:20:01:f3:8c: 6e:58:0d:f1:b3:55:f8:72:4f:bd:7b:1f:24:d8:d8: 17:07:eb:45:d2:6e:57:b3:b5:c7:31:67:dc:37:8f: 23:05:12:5a:bc:3f:11:2f:21:af:e4:dc:17:e3:24: 7b:65:7e:31:30:e9:33:2e:7e:d6:f9:3d:df:5b:99: 78:6a:a9:43:f0:ea:78:4f:c0:e2:20:1c:f5:21:c1: aa:be:ba:73:b0:e5:25:f9:77:b5:ba:9f:da:d8:c7: b9:b5:e4:05:cf:68:62:27:df:b5:5b:a9:92:96:16: c1:94:fd:08:11:e0:4e:bb:36:65:59:7d:2b:5d:83: 76:f8:34:4e:24:5d:af:a7:4c:db:11:14:6e:42:75: 65:7d:d8:80:dd:c0:15:02:1f:35:b2:f6:c6:d1:5a: d0:77:fd:d4:26:34:a4:17:3f:7f:1d:cb:db:2c:11: c5:73:eb:95:e1:86:0b:a7:0e:80:b9:56:1b:42:4c: c0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:5D:6E:BA:12:3C:62:3C:FE:05:DE:2C:74:FF:D3:04:74:47:92:51 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.128.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:53:b1:81:df:d9:70:52:d2:27:d7:38:30:2a:7f:b8:aa:e0: a6:51:e7:3e:3e:38:52:7b:f1:7a:5a:5a:09:9d:13:8d:e8:b0: 68:75:52:7c:af:62:c5:10:63:b3:ff:00:b2:29:51:4e:ce:9a: eb:70:43:7a:38:e8:3a:d4:78:10:a6:22:0d:55:71:3d:f9:d3: f7:ca:0b:34:aa:cb:71:49:7e:2a:ad:0c:e1:46:98:55:e5:f8: 1b:20:f9:51:b9:0b:dd:0e:8b:53:5d:74:77:ce:b6:5e:36:b7: 07:76:f6:a3:d9:c6:d4:fe:cf:08:0d:fa:97:8c:8b:90:04:57: f0:04:a7:da:73:7f:95:90:9d:95:a9:50:bc:ca:9c:9a:01:ce: 10:4f:87:7c:ff:96:9d:42:2c:65:d3:34:2f:e9:9b:d1:08:df: f8:40:13:f5:31:e7:77:f6:b8:5b:cc:77:51:21:da:d3:d6:e0: c1:b2:55:18:3c:38:b8:a2:57:13:32:fc:99:2d:bf:d1:54:85: 1f:b1:ce:8c:18:2f:4a:c6:50:e5:19:31:39:51:17:4b:a4:44: 59:cc:bd:ab:b0:cb:4a:07:e5:8f:01:9a:9c:cd:8f:44:12:1c: f1:9d:c5:6a:25:83:54:9d:29:02:b4:69:bd:2b:15:4c:c5:33: a5:7b:f4:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK7Nc3kz37vjdp/CPHLBPTqq3aywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNTA0MDIwMjU1MDBaFw0yNjA0MDEwMzAwMDBaMDMxMTAvBgNV BAMTKDBFNUQ2RUJBMTIzQzYyM0NGRTA1REUyQzc0RkZEMzA0NzQ0NzkyNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8eO/75xF7ZTQE2EUI01H3qdGS 2bUqs1vHxfqzxkSRPAcfAuncQwB1awahzGLmWlQziyssAnXJSASgm7/fZq34N6yJ rEcyIAHzjG5YDfGzVfhyT717HyTY2BcH60XSbleztccxZ9w3jyMFElq8PxEvIa/k 3BfjJHtlfjEw6TMuftb5Pd9bmXhqqUPw6nhPwOIgHPUhwaq+unOw5SX5d7W6n9rY x7m15AXPaGIn37VbqZKWFsGU/QgR4E67NmVZfStdg3b4NE4kXa+nTNsRFG5CdWV9 2IDdwBUCHzWy9sbRWtB3/dQmNKQXP38dy9ssEcVz65XhhgunDoC5VhtCTMB3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDl1uuhI8Yjz+Bd4sdP/TBHRHklEwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yAMA0GCSqG SIb3DQEBCwUAA4IBAQCeU7GB39lwUtIn1zgwKn+4quCmUec+PjhSe/F6WloJnRON 6LBodVJ8r2LFEGOz/wCyKVFOzprrcEN6OOg61HgQpiINVXE9+dP3ygs0qstxSX4q rQzhRphV5fgbIPlRuQvdDotTXXR3zrZeNrcHdvaj2cbU/s8IDfqXjIuQBFfwBKfa c3+VkJ2VqVC8ypyaAc4QT4d8/5adQixl0zQv6ZvRCN/4QBP1Med39rhbzHdRIdrT 1uDBslUYPDi4olcTMvyZLb/RVIUfsc6MGC9KxlDlGTE5URdLpERZzL2rsMtKB+WP AZqczY9EEhzxncVqJYNUnSkCtGm9KxVMxTOle/T0 -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:15 2025 by rpki-client on console.sobornost.net