$ rpki-client -vvf repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa File: 3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa (raw, json) Hash identifier: j4UVAm85xznfydPQ3h7b+m7Leez4agyKq00s/igegvE= Subject key identifier: AA:E0:A4:EA:72:A6:97:2F:C5:FA:4A:A0:61:7B:5E:50:6A:BF:EB:F5 Certificate issuer: /CN=1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B Certificate serial: 5EB6A2DEDC7A55377A0848F9343A8ACF372EE634 Authority key identifier: 1D:21:38:5E:B5:B3:F8:2C:7D:1A:B5:C7:FD:3E:F2:7B:E8:E8:3A:7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa Signing time: Mon 14 Apr 2025 08:01:34 +0000 ROA not before: Mon 14 Apr 2025 07:56:34 +0000 ROA not after: Mon 13 Apr 2026 08:01:34 +0000 asID: 149716 IP address blocks: 103.186.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.crl rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 19:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b6:a2:de:dc:7a:55:37:7a:08:48:f9:34:3a:8a:cf:37:2e:e6:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B Validity Not Before: Apr 14 07:56:34 2025 GMT Not After : Apr 13 08:01:34 2026 GMT Subject: CN=AAE0A4EA72A6972FC5FA4AA0617B5E506ABFEBF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:82:af:7b:8d:4d:a0:fe:b0:ec:28:4a:e5:a2: 89:b3:ae:af:97:90:c6:33:57:95:b4:12:50:57:ce: bf:6a:0f:1a:15:7b:e7:85:3b:5f:a0:18:a5:86:dd: 31:07:22:64:93:cb:1a:8d:45:35:12:6f:95:6e:75: 13:90:9b:77:e7:7a:d5:90:6f:45:54:16:97:67:09: 4e:89:d6:d2:ff:05:25:dd:ed:3d:43:4a:04:a7:42: 5d:23:9e:16:13:e9:0b:8a:15:44:4a:87:e3:ab:42: e3:ce:a4:f6:a1:c4:34:4a:35:4f:21:b1:1a:75:d3: 84:cd:a3:ac:db:12:8b:27:a1:0b:2a:2c:50:d8:68: 17:45:4e:76:b5:9e:f7:e8:d6:f6:d4:69:ee:d3:6e: 7c:e6:b6:e4:38:68:84:09:e6:0a:c2:6a:2a:e8:fb: a7:b5:4b:42:0a:b7:b5:e7:da:76:50:fd:89:57:2b: b9:ee:18:16:b2:10:9e:42:b7:4c:6b:de:80:61:a7: e6:7a:38:41:b6:29:33:f1:0a:7b:19:a6:9f:25:20: d1:45:27:d0:8d:8a:65:ce:73:37:57:cd:a9:79:49: 6d:22:17:ba:b6:12:5c:63:da:7c:a0:e0:2e:6a:d5: 71:1b:44:7b:47:60:6e:5d:94:78:5d:22:c9:e8:cc: 4d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E0:A4:EA:72:A6:97:2F:C5:FA:4A:A0:61:7B:5E:50:6A:BF:EB:F5 X509v3 Authority Key Identifier: keyid:1D:21:38:5E:B5:B3:F8:2C:7D:1A:B5:C7:FD:3E:F2:7B:E8:E8:3A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D21385EB5B3F82C7D1AB5C7FD3EF27BE8E83A7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94dcef65-5de3-4129-ac27-7706d7266001/0/3130332e3138362e3231312e302f32342d3234203d3e20313439373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.211.0/24 Signature Algorithm: sha256WithRSAEncryption 37:65:81:e3:38:d4:23:82:a1:3a:7d:bc:da:8f:9f:e1:08:fa: 2e:5f:6a:c2:c9:35:cb:cc:6b:5b:00:fe:3c:8a:f2:b3:19:94: 5a:eb:c3:39:5d:1e:3d:42:ce:f8:8d:df:b4:d9:4d:c9:15:92: e3:9a:f6:ce:99:99:42:4d:c4:3e:09:8b:94:b8:74:f4:c6:2b: 26:b7:a6:9a:8d:7b:b1:65:78:ab:60:d7:8f:a9:22:91:1f:50: 10:d0:8f:f3:0f:4f:1d:04:de:1d:29:42:b4:1a:e3:11:84:81: 59:6d:02:89:c0:da:d9:a5:23:62:de:af:a3:77:38:a9:34:e9: 89:d5:f2:64:43:66:0a:5a:0b:d5:33:37:83:91:53:95:43:d8: f5:2e:ac:3d:da:3a:41:80:98:7c:e8:09:83:fe:d8:80:3b:1c: 2a:ee:7e:c0:71:64:4d:e9:8c:a3:3a:70:89:b7:9a:82:b4:b6: 40:32:ad:d8:ea:a3:28:62:97:ca:c2:cd:3d:84:93:cf:04:5d: 5a:08:92:03:e4:19:85:57:63:b1:3e:45:85:62:a1:3e:a4:aa: af:6e:34:3e:4b:a4:b0:d7:94:72:be:8c:6a:02:af:1e:8f:33: 6f:ce:fb:35:b2:64:47:13:ec:c0:9a:c7:b0:40:9b:56:7b:b1: 9f:d1:f3:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXrai3tx6VTd6CEj5NDqKzzcu5jQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQyMTM4NUVCNUIzRjgyQzdEMUFCNUM3RkQzRUYyN0JF OEU4M0E3QjAeFw0yNTA0MTQwNzU2MzRaFw0yNjA0MTMwODAxMzRaMDMxMTAvBgNV BAMTKEFBRTBBNEVBNzJBNjk3MkZDNUZBNEFBMDYxN0I1RTUwNkFCRkVCRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfgq97jU2g/rDsKErloomzrq+X kMYzV5W0ElBXzr9qDxoVe+eFO1+gGKWG3TEHImSTyxqNRTUSb5VudROQm3fnetWQ b0VUFpdnCU6J1tL/BSXd7T1DSgSnQl0jnhYT6QuKFURKh+OrQuPOpPahxDRKNU8h sRp104TNo6zbEosnoQsqLFDYaBdFTna1nvfo1vbUae7TbnzmtuQ4aIQJ5grCairo +6e1S0IKt7Xn2nZQ/YlXK7nuGBayEJ5Ct0xr3oBhp+Z6OEG2KTPxCnsZpp8lINFF J9CNimXOczdXzal5SW0iF7q2Elxj2nyg4C5q1XEbRHtHYG5dlHhdIsnozE0dAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUquCk6nKmly/F+kqgYXteUGq/6/UwHwYDVR0j BBgwFoAUHSE4XrWz+Cx9GrXH/T7ye+joOnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGRjZWY2NS01ZGUzLTQxMjktYWMyNy03NzA2ZDcyNjYwMDEvMC8xRDIxMzg1RUI1 QjNGODJDN0QxQUI1QzdGRDNFRjI3QkU4RTgzQTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQyMTM4NUVCNUIzRjgyQzdEMUFCNUM3RkQzRUYyN0JFOEU4 M0E3Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0ZGNlZjY1LTVkZTMtNDEyOS1h YzI3LTc3MDZkNzI2NjAwMS8wLzMxMzAzMzJlMzEzODM2MmUzMjMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnutMwDQYJ KoZIhvcNAQELBQADggEBADdlgeM41COCoTp9vNqPn+EI+i5fasLJNcvMa1sA/jyK 8rMZlFrrwzldHj1CzviN37TZTckVkuOa9s6ZmUJNxD4Ji5S4dPTGKya3ppqNe7Fl eKtg14+pIpEfUBDQj/MPTx0E3h0pQrQa4xGEgVltAonA2tmlI2Ler6N3OKk06YnV 8mRDZgpaC9UzN4ORU5VD2PUurD3aOkGAmHzoCYP+2IA7HCrufsBxZE3pjKM6cIm3 moK0tkAyrdjqoyhil8rCzT2Ek88EXVoIkgPkGYVXY7E+RYVioT6kqq9uND5LpLDX lHK+jGoCrx6PM2/O+zWyZEcT7MCax7BAm1Z7sZ/R86g= -----END CERTIFICATE-----Generated at Fri Apr 25 17:11:51 2025 by rpki-client on console.sobornost.net