$ rpki-client -vvf repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa File: 3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa (raw, json) Hash identifier: DS4rfXsOZAd6zyO+PWFbBzflwksjO/ECzvelckHR5dk= Subject key identifier: 74:7F:70:98:6B:47:91:B2:71:1D:7C:DD:97:33:8D:81:61:C6:FC:08 Certificate issuer: /CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Certificate serial: 6A07DF3408DADA78D70419F0E6E0E72AF2ACC14F Authority key identifier: 3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa Signing time: Fri 04 Apr 2025 05:00:01 +0000 ROA not before: Fri 04 Apr 2025 04:55:01 +0000 ROA not after: Fri 03 Apr 2026 05:00:01 +0000 asID: 138608 IP address blocks: 103.171.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 15:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:07:df:34:08:da:da:78:d7:04:19:f0:e6:e0:e7:2a:f2:ac:c1:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Validity Not Before: Apr 4 04:55:01 2025 GMT Not After : Apr 3 05:00:01 2026 GMT Subject: CN=747F70986B4791B2711D7CDD97338D8161C6FC08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:93:e7:70:ce:c5:9c:54:7e:08:c7:10:a0:37: 56:b1:88:fe:88:8f:a0:91:83:9c:34:92:ef:f1:55: 78:21:43:40:18:f5:21:00:84:b8:b6:41:d0:89:10: 9b:76:64:57:62:25:b5:9e:db:d2:b0:b4:93:93:42: 15:1d:09:25:cc:09:df:cc:b6:1b:84:6b:6d:7f:28: 93:a0:40:16:8d:d1:7b:57:25:68:f7:3a:08:d2:d1: 60:b3:c1:0d:4b:90:38:74:c5:b2:a7:62:87:fd:48: 60:75:f1:f8:e6:31:aa:af:93:b7:c7:8d:ec:31:29: a0:01:ae:e5:25:71:66:a9:e6:cc:b3:31:0a:08:f9: 28:9c:5f:55:04:86:45:be:8e:8f:b6:a3:dc:26:9a: ee:57:a7:28:df:03:de:1f:85:23:7a:7b:d7:2e:58: 97:54:dd:38:56:52:0c:4b:21:5d:26:ee:44:12:9d: 95:b0:2d:ed:a3:a7:a3:f0:ad:a5:e0:be:09:a4:86: cf:38:5b:d5:5b:5a:bd:be:e6:f7:e6:c6:5a:31:ff: 2c:ad:c3:63:f2:31:39:50:a5:07:50:7d:03:54:ec: 09:47:87:18:d8:ec:1b:94:3b:41:2f:c8:6d:4a:0a: 56:20:c1:2e:cb:95:eb:01:66:ee:a0:f7:9b:8d:22: 21:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:7F:70:98:6B:47:91:B2:71:1D:7C:DD:97:33:8D:81:61:C6:FC:08 X509v3 Authority Key Identifier: keyid:3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.19.0/24 Signature Algorithm: sha256WithRSAEncryption 92:2d:d4:c7:77:b1:b6:98:ef:94:c4:bf:93:86:2a:a5:b6:4b: 1e:7f:f1:c1:79:b2:91:c2:46:34:b3:7a:2c:5b:78:8f:47:8d: 58:17:86:3d:f4:c6:ed:dd:3d:b4:fe:13:ef:73:4d:3b:f5:f5: 9a:5e:0a:fc:ba:1a:82:41:cf:b3:90:71:b6:c7:7d:7c:ac:33: 39:a1:e4:6f:61:27:cb:2d:7f:f8:ff:74:95:c3:c8:ad:a2:f0: fe:8f:a8:4b:01:43:1c:ac:6f:46:50:28:f9:cd:9b:75:c3:d2: ac:8c:ff:0a:0e:44:b5:b2:2b:2e:0a:8a:2c:88:3b:92:95:b8: fd:82:5b:d5:7e:e9:8a:d9:3e:c4:af:5d:12:90:c6:96:c3:42: 5b:a4:33:61:fc:bc:a8:73:90:57:72:02:24:bd:ef:0b:59:f6: db:5e:2c:81:fb:76:2d:d5:f4:2d:54:f9:cb:2c:45:8d:b1:0c: 19:c7:ee:d6:be:1f:cf:4c:5d:32:bd:f8:8d:81:98:0c:fd:de: 11:78:d6:f3:c9:80:ea:2b:65:03:9e:3d:d4:fa:ea:d0:08:a1: ac:5b:37:13:f2:ff:7a:f3:09:9f:a2:c6:26:cc:ed:ec:26:0a: d7:c1:da:b1:f0:be:66:61:89:91:5e:57:3d:c6:70:ac:2f:08: 94:7f:88:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUagffNAja2njXBBnw5uDnKvKswU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZB MENCOUY4QjAeFw0yNTA0MDQwNDU1MDFaFw0yNjA0MDMwNTAwMDFaMDMxMTAvBgNV BAMTKDc0N0Y3MDk4NkI0NzkxQjI3MTFEN0NERDk3MzM4RDgxNjFDNkZDMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpk+dwzsWcVH4IxxCgN1axiP6I j6CRg5w0ku/xVXghQ0AY9SEAhLi2QdCJEJt2ZFdiJbWe29KwtJOTQhUdCSXMCd/M thuEa21/KJOgQBaN0XtXJWj3OgjS0WCzwQ1LkDh0xbKnYof9SGB18fjmMaqvk7fH jewxKaABruUlcWap5syzMQoI+SicX1UEhkW+jo+2o9wmmu5XpyjfA94fhSN6e9cu WJdU3ThWUgxLIV0m7kQSnZWwLe2jp6PwraXgvgmkhs84W9VbWr2+5vfmxlox/yyt w2PyMTlQpQdQfQNU7AlHhxjY7BuUO0EvyG1KClYgwS7LlesBZu6g95uNIiGrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdH9wmGtHkbJxHXzdlzONgWHG/AgwHwYDVR0j BBgwFoAUPJFI7yevXtNIE0L13vJaJqDLn4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YThmNjlmNy05MzMyLTRjZDQtYjNlNS1jYzZjNDc3MmNmNzMvMC8zQzkxNDhFRjI3 QUY1RUQzNDgxMzQyRjVERUYyNUEyNkEwQ0I5RjhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZBMENC OUY4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhOGY2OWY3LTkzMzItNGNkNC1i M2U1LWNjNmM0NzcyY2Y3My8wLzMxMzAzMzJlMzEzNzMxMmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzYzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6sTMA0GCSqG SIb3DQEBCwUAA4IBAQCSLdTHd7G2mO+UxL+Thiqltksef/HBebKRwkY0s3osW3iP R41YF4Y99Mbt3T20/hPvc0079fWaXgr8uhqCQc+zkHG2x318rDM5oeRvYSfLLX/4 /3SVw8itovD+j6hLAUMcrG9GUCj5zZt1w9KsjP8KDkS1sisuCoosiDuSlbj9glvV fumK2T7Er10SkMaWw0JbpDNh/Lyoc5BXcgIkve8LWfbbXiyB+3Yt1fQtVPnLLEWN sQwZx+7Wvh/PTF0yvfiNgZgM/d4ReNbzyYDqK2UDnj3U+urQCKGsWzcT8v968wmf osYmzO3sJgrXwdqx8L5mYYmRXlc9xnCsLwiUf4jh -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net