$ rpki-client -vvf repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa File: 3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: vyZtldMTjMyu3iJ/orgojw8DEr5/d6xlea+iuDJEfRk= Subject key identifier: 33:C8:6D:E7:1D:3E:92:52:D7:A5:0B:15:61:3A:C3:A5:54:D6:C4:0B Certificate issuer: /CN=ED47540CA812870D4CDBD150F71BACF636BC000E Certificate serial: 0BDABA079D88BD34F72E1877A0034BA326507B91 Authority key identifier: ED:47:54:0C:A8:12:87:0D:4C:DB:D1:50:F7:1B:AC:F6:36:BC:00:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED47540CA812870D4CDBD150F71BACF636BC000E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa Signing time: Thu 17 Apr 2025 04:00:00 +0000 ROA not before: Thu 17 Apr 2025 03:55:00 +0000 ROA not after: Thu 16 Apr 2026 04:00:00 +0000 asID: 38320 IP address blocks: 103.159.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/ED47540CA812870D4CDBD150F71BACF636BC000E.crl rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/ED47540CA812870D4CDBD150F71BACF636BC000E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED47540CA812870D4CDBD150F71BACF636BC000E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:da:ba:07:9d:88:bd:34:f7:2e:18:77:a0:03:4b:a3:26:50:7b:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED47540CA812870D4CDBD150F71BACF636BC000E Validity Not Before: Apr 17 03:55:00 2025 GMT Not After : Apr 16 04:00:00 2026 GMT Subject: CN=33C86DE71D3E9252D7A50B15613AC3A554D6C40B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:95:8d:8e:e5:46:84:37:88:f5:a9:0d:df: 70:88:03:82:4c:ee:34:93:92:40:92:60:d4:41:54: 46:e4:1d:1f:5e:a6:1d:d5:c1:e0:2f:b8:bf:90:6e: 8a:ed:51:29:39:33:2e:e3:b7:a3:c7:39:59:bc:47: 18:e5:00:84:15:54:15:c1:9c:f0:be:ae:d3:c6:94: 0a:b0:0b:ab:a8:22:c0:ba:20:0f:53:bb:0a:22:69: cc:60:78:7a:d2:11:c4:e0:4b:27:c9:66:ce:55:9b: 82:78:d5:13:60:11:fe:fe:1a:9e:db:03:37:14:b8: 3a:1c:cd:35:23:b5:64:02:58:22:35:b7:1f:83:5c: da:33:4a:98:35:8c:8d:22:5a:28:b2:5e:95:eb:0b: 6e:5f:fb:79:d5:d3:83:0f:73:7f:05:b4:8a:b9:44: 7d:98:43:7d:3e:c2:83:e0:a6:96:27:6e:a0:52:fa: f5:1a:97:da:c9:2c:8c:6c:c6:92:29:5a:ec:6b:63: 50:6a:f1:cd:7f:bd:fa:83:0b:74:22:2c:0f:7f:9b: 99:ea:79:26:70:08:96:4b:65:cb:22:72:76:b5:10: 97:3d:22:a3:92:33:07:f4:aa:ea:96:49:77:40:aa: 94:27:65:be:55:32:8f:ed:f9:dc:0e:86:0a:76:d7: 62:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C8:6D:E7:1D:3E:92:52:D7:A5:0B:15:61:3A:C3:A5:54:D6:C4:0B X509v3 Authority Key Identifier: keyid:ED:47:54:0C:A8:12:87:0D:4C:DB:D1:50:F7:1B:AC:F6:36:BC:00:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/ED47540CA812870D4CDBD150F71BACF636BC000E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED47540CA812870D4CDBD150F71BACF636BC000E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/935f15c9-5843-4705-b694-fe5e7ce19808/0/3130332e3135392e3131362e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.116.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:64:8d:18:d3:04:f6:51:3b:23:4d:08:1b:5c:33:13:00:db: 95:a6:48:da:f1:1d:c5:23:e4:81:16:de:4d:77:d2:19:41:c4: 42:98:9f:3a:11:5e:45:35:d5:fa:3f:18:c2:11:8d:37:8f:72: d7:22:a0:7d:5c:79:53:f8:e7:0a:75:8d:3f:14:29:a4:f5:74: 5e:ce:80:ab:ba:2b:4d:d5:78:ec:e1:1e:70:09:ff:5c:1d:33: 0e:24:e6:0d:97:e3:b1:ff:85:36:b3:00:a2:84:9d:7f:3b:f6: d0:bc:cb:92:ea:f5:11:e4:35:3f:29:f7:18:4f:17:bd:33:b0: b4:5b:65:2a:49:f5:6c:e6:54:45:d0:80:b4:a8:ce:47:b2:1d: 5d:12:57:5e:36:85:a2:9f:4f:7e:3c:ec:78:9c:67:24:ad:9a: 1e:cc:ff:42:5e:0d:00:6a:8a:be:4c:0d:c0:1f:42:91:ff:ea: 44:71:0a:3a:76:88:6b:c5:6b:e9:de:2e:31:63:3a:9a:5a:cf: e6:b9:15:1f:1e:fa:71:eb:58:04:19:43:9e:13:d4:55:52:a3: 64:76:90:25:f3:8c:e0:03:f2:10:da:08:5d:57:ef:1d:73:0c: db:22:d2:36:ef:d7:82:b4:71:6a:af:ec:0d:9a:5c:2c:ca:2c: 48:fc:88:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC9q6B52IvTT3Lhh3oANLoyZQe5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQ0NzU0MENBODEyODcwRDRDREJEMTUwRjcxQkFDRjYz NkJDMDAwRTAeFw0yNTA0MTcwMzU1MDBaFw0yNjA0MTYwNDAwMDBaMDMxMTAvBgNV BAMTKDMzQzg2REU3MUQzRTkyNTJEN0E1MEIxNTYxM0FDM0E1NTRENkM0MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQN5WNjuVGhDeI9akN33CIA4JM 7jSTkkCSYNRBVEbkHR9eph3VweAvuL+QbortUSk5My7jt6PHOVm8RxjlAIQVVBXB nPC+rtPGlAqwC6uoIsC6IA9TuwoiacxgeHrSEcTgSyfJZs5Vm4J41RNgEf7+Gp7b AzcUuDoczTUjtWQCWCI1tx+DXNozSpg1jI0iWiiyXpXrC25f+3nV04MPc38FtIq5 RH2YQ30+woPgppYnbqBS+vUal9rJLIxsxpIpWuxrY1Bq8c1/vfqDC3QiLA9/m5nq eSZwCJZLZcsicna1EJc9IqOSMwf0quqWSXdAqpQnZb5VMo/t+dwOhgp212KbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM8ht5x0+klLXpQsVYTrDpVTWxAswHwYDVR0j BBgwFoAU7UdUDKgShw1M29FQ9xus9ja8AA4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzVmMTVjOS01ODQzLTQ3MDUtYjY5NC1mZTVlN2NlMTk4MDgvMC9FRDQ3NTQwQ0E4 MTI4NzBENENEQkQxNTBGNzFCQUNGNjM2QkMwMDBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUQ0NzU0MENBODEyODcwRDRDREJEMTUwRjcxQkFDRjYzNkJD MDAwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNWYxNWM5LTU4NDMtNDcwNS1i Njk0LWZlNWU3Y2UxOTgwOC8wLzMxMzAzMzJlMzEzNTM5MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ590MA0GCSqG SIb3DQEBCwUAA4IBAQCbZI0Y0wT2UTsjTQgbXDMTANuVpkja8R3FI+SBFt5Nd9IZ QcRCmJ86EV5FNdX6PxjCEY03j3LXIqB9XHlT+OcKdY0/FCmk9XRezoCruitN1Xjs 4R5wCf9cHTMOJOYNl+Ox/4U2swCihJ1/O/bQvMuS6vUR5DU/KfcYTxe9M7C0W2Uq SfVs5lRF0IC0qM5Hsh1dEldeNoWin09+POx4nGckrZoezP9CXg0Aaoq+TA3AH0KR /+pEcQo6dohrxWvp3i4xYzqaWs/muRUfHvpx61gEGUOeE9RVUqNkdpAl84zgA/IQ 2ghdV+8dcwzbItI279eCtHFqr+wNmlwsyixI/IgJ -----END CERTIFICATE-----Generated at Sat Apr 26 06:13:32 2025 by rpki-client on console.sobornost.net