$ rpki-client -vvf repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/3230322e35382e3233382e302f32332d3234203d3e203436303237.roa File: 3230322e35382e3233382e302f32332d3234203d3e203436303237.roa (raw, json) Hash identifier: TVHLoA6S/RXowJVfDxEwT3G/jcn7qgjqSJZOEgaAkds= Subject key identifier: 55:A2:5F:28:0C:CD:F4:92:C2:53:39:8A:A4:C1:1A:68:B2:6D:91:83 Certificate issuer: /CN=1631B9A0997CBC975099A6FF7E27DCA3FDC649BA Certificate serial: 06F611BF9063B120A601ECE1CE4260968E54A6EE Authority key identifier: 16:31:B9:A0:99:7C:BC:97:50:99:A6:FF:7E:27:DC:A3:FD:C6:49:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/3230322e35382e3233382e302f32332d3234203d3e203436303237.roa Signing time: Thu 17 Apr 2025 02:00:01 +0000 ROA not before: Thu 17 Apr 2025 01:55:01 +0000 ROA not after: Thu 16 Apr 2026 02:00:01 +0000 asID: 46027 IP address blocks: 202.58.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.crl rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 02:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:f6:11:bf:90:63:b1:20:a6:01:ec:e1:ce:42:60:96:8e:54:a6:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1631B9A0997CBC975099A6FF7E27DCA3FDC649BA Validity Not Before: Apr 17 01:55:01 2025 GMT Not After : Apr 16 02:00:01 2026 GMT Subject: CN=55A25F280CCDF492C253398AA4C11A68B26D9183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:52:36:3d:10:d1:99:db:31:87:08:6f:a4: 0c:82:49:ed:92:93:40:7d:43:e8:b5:45:2e:54:3d: a0:f6:30:61:fb:e0:bc:14:37:58:c0:2d:a0:be:3d: a6:b6:9c:d2:28:b7:db:f0:e6:f6:21:54:d5:1e:ad: aa:f0:f0:fb:22:b9:ad:bf:eb:2e:e6:13:9a:bf:fe: 1a:13:84:11:64:f2:a9:e7:29:be:f1:41:3b:65:4d: b3:02:10:da:61:1c:09:36:d7:d6:4e:f9:54:0d:d7: c5:78:c8:dd:10:b2:96:1d:f4:ba:fa:d8:e0:d2:03: b3:84:33:70:a9:26:b0:5e:df:95:cd:ad:f9:08:39: 5b:a0:da:39:7f:d2:8e:df:07:bb:59:5a:60:81:93: 51:30:35:e2:d9:5d:86:b0:43:e5:b0:47:fe:06:fc: ec:78:36:bb:b8:7b:97:af:ba:88:20:70:e3:b7:8f: 3e:66:f8:b8:ef:bf:98:6f:d7:8a:a6:c0:66:1a:68: 03:34:33:44:34:6c:15:c4:ba:4f:25:a0:a0:2d:63: 1b:1e:62:ed:5b:15:96:57:ab:ad:d0:e0:8f:a7:fd: fc:a5:bc:78:6a:1e:09:b2:12:e4:49:3d:6a:6c:79: de:c5:b5:83:de:d3:b0:d2:0d:bc:c5:10:43:a5:ff: 4f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A2:5F:28:0C:CD:F4:92:C2:53:39:8A:A4:C1:1A:68:B2:6D:91:83 X509v3 Authority Key Identifier: keyid:16:31:B9:A0:99:7C:BC:97:50:99:A6:FF:7E:27:DC:A3:FD:C6:49:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/3230322e35382e3233382e302f32332d3234203d3e203436303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.238.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:2b:71:1e:69:43:56:6d:a3:3b:ae:97:5e:9f:28:5c:0b:14: 6f:2a:34:07:64:7a:95:a4:7c:7b:25:27:02:35:09:92:ad:22: 6c:17:64:d1:5e:16:c6:11:6e:c1:dc:4d:ac:64:eb:ec:51:3e: 26:f8:67:2a:50:23:e2:0d:47:b6:06:4a:99:87:8b:2d:d5:fa: b6:54:cd:18:e7:2c:5e:40:65:c0:3d:fb:88:e3:21:95:fd:4a: e4:5a:9e:a6:26:ce:c1:da:53:ed:a7:f8:94:d0:30:de:72:4a: e8:97:44:6a:1b:6a:5f:d5:5d:a6:04:50:2c:7d:c4:55:ce:7d: 3c:8b:f9:e5:09:d0:bd:d7:96:4e:7f:70:ee:27:cb:63:8d:94: 49:53:5c:87:bb:f4:98:4d:3e:0b:4a:2a:1a:ae:82:df:b0:98: 04:2e:ec:df:d3:22:17:35:67:62:d0:97:68:f0:5d:7c:ea:c0: 6c:40:d5:c2:17:57:28:41:68:91:fd:f2:d8:ed:96:6c:9e:fb: 84:f7:2a:0a:31:06:07:b0:f6:68:c0:5a:d6:a8:06:7e:bf:3f: 9d:de:71:80:cb:0b:33:fd:61:b8:15:62:07:35:37:7d:b1:0b: a2:95:96:3b:1c:ed:b0:cc:a1:1e:f6:ec:ff:f0:4c:52:df:08: eb:4e:0c:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBvYRv5BjsSCmAezhzkJglo5Upu4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYzMUI5QTA5OTdDQkM5NzUwOTlBNkZGN0UyN0RDQTNG REM2NDlCQTAeFw0yNTA0MTcwMTU1MDFaFw0yNjA0MTYwMjAwMDFaMDMxMTAvBgNV BAMTKDU1QTI1RjI4MENDREY0OTJDMjUzMzk4QUE0QzExQTY4QjI2RDkxODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3YlI2PRDRmdsxhwhvpAyCSe2S k0B9Q+i1RS5UPaD2MGH74LwUN1jALaC+Paa2nNIot9vw5vYhVNUerarw8Psiua2/ 6y7mE5q//hoThBFk8qnnKb7xQTtlTbMCENphHAk219ZO+VQN18V4yN0QspYd9Lr6 2ODSA7OEM3CpJrBe35XNrfkIOVug2jl/0o7fB7tZWmCBk1EwNeLZXYawQ+WwR/4G /Ox4Nru4e5evuoggcOO3jz5m+Ljvv5hv14qmwGYaaAM0M0Q0bBXEuk8loKAtYxse Yu1bFZZXq63Q4I+n/fylvHhqHgmyEuRJPWpsed7FtYPe07DSDbzFEEOl/0/BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVaJfKAzN9JLCUzmKpMEaaLJtkYMwHwYDVR0j BBgwFoAUFjG5oJl8vJdQmab/fifco/3GSbowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmIxYWI3Zi1lNDUxLTQwZDEtOWI3MC0zYTQwMjJhOWI0ZWMvMC8xNjMxQjlBMDk5 N0NCQzk3NTA5OUE2RkY3RTI3RENBM0ZEQzY0OUJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTYzMUI5QTA5OTdDQkM5NzUwOTlBNkZGN0UyN0RDQTNGREM2 NDlCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YjFhYjdmLWU0NTEtNDBkMS05 YjcwLTNhNDAyMmE5YjRlYy8wLzMyMzAzMjJlMzUzODJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco67jANBgkqhkiG 9w0BAQsFAAOCAQEAPStxHmlDVm2jO66XXp8oXAsUbyo0B2R6laR8eyUnAjUJkq0i bBdk0V4WxhFuwdxNrGTr7FE+JvhnKlAj4g1HtgZKmYeLLdX6tlTNGOcsXkBlwD37 iOMhlf1K5FqepibOwdpT7af4lNAw3nJK6JdEahtqX9VdpgRQLH3EVc59PIv55QnQ vdeWTn9w7ifLY42USVNch7v0mE0+C0oqGq6C37CYBC7s39MiFzVnYtCXaPBdfOrA bEDVwhdXKEFokf3y2O2WbJ77hPcqCjEGB7D2aMBa1qgGfr8/nd5xgMsLM/1huBVi BzU3fbELopWWOxztsMyhHvbs//BMUt8I604MTA== -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:16 2025 by rpki-client on console.sobornost.net