$ rpki-client -vvf repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135372e302f32342d3234203d3e20313431303632.roa File: 3130332e3135352e3135372e302f32342d3234203d3e20313431303632.roa (raw, json) Hash identifier: 0/uMdmxlRYv0BxLj1kLNukE06046JVFdcxHugW59xeM= Subject key identifier: AC:39:DB:D9:8E:BD:42:A7:0B:D8:AF:78:60:07:62:D3:65:41:CE:AB Certificate issuer: /CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Certificate serial: 7BCBF7CD2E64C550E18A964F1B1104F21BE3B7D9 Authority key identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135372e302f32342d3234203d3e20313431303632.roa Signing time: Tue 08 Apr 2025 07:02:50 +0000 ROA not before: Tue 08 Apr 2025 06:57:50 +0000 ROA not after: Tue 07 Apr 2026 07:02:50 +0000 asID: 141062 IP address blocks: 103.155.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.crl rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 01:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:cb:f7:cd:2e:64:c5:50:e1:8a:96:4f:1b:11:04:f2:1b:e3:b7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Validity Not Before: Apr 8 06:57:50 2025 GMT Not After : Apr 7 07:02:50 2026 GMT Subject: CN=AC39DBD98EBD42A70BD8AF78600762D36541CEAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f6:25:e7:da:50:85:72:35:f7:32:62:45:ab: 97:14:fb:5a:2f:17:02:0f:4a:61:f3:46:cb:6b:d1: 9f:cd:db:be:44:4e:da:67:44:14:b7:6f:50:75:51: 9b:74:6e:ed:cd:43:9f:ee:42:a1:3f:57:a2:0f:ad: ea:b4:d9:59:b4:fe:db:bb:46:34:7d:ad:a6:66:31: 34:08:e9:53:d4:a3:59:e6:50:50:55:14:db:d3:4f: 1e:b7:2f:95:0a:bc:e9:d4:4c:5e:25:5f:7b:58:e2: 5d:93:d5:0f:03:21:c3:31:1d:32:1e:56:15:53:5e: af:4d:c2:65:80:d1:10:30:54:96:b7:46:af:0b:8c: fe:0a:0c:d4:96:04:f9:c3:ba:64:37:1e:f1:57:1e: 10:22:88:50:c7:b7:45:7d:80:74:9f:ba:e6:69:b1: 40:f0:5a:f4:da:ce:e7:74:7b:6d:79:21:99:2e:42: 07:5b:fe:a7:5d:34:a5:7d:1c:cc:80:37:48:ab:ae: 74:a1:b7:9c:f7:71:90:41:9e:cd:d8:a1:be:48:2a: bc:65:9a:13:5f:22:b1:cd:ad:d8:5f:e8:af:6d:95: 6b:af:b5:0c:01:ed:16:c0:b0:47:4c:04:4b:bb:c1: 24:02:9e:12:88:91:6d:a9:5e:cb:a0:73:1a:d7:7e: d2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:39:DB:D9:8E:BD:42:A7:0B:D8:AF:78:60:07:62:D3:65:41:CE:AB X509v3 Authority Key Identifier: keyid:B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135372e302f32342d3234203d3e20313431303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.157.0/24 Signature Algorithm: sha256WithRSAEncryption 86:b7:52:ca:50:b1:de:08:6a:16:98:56:00:da:9a:6c:9f:67: b5:7d:0e:cc:4c:af:5c:ce:77:f9:4d:a8:d5:2c:98:7b:61:2c: 3d:e7:64:3b:51:76:04:ab:85:d0:89:2c:45:6d:fd:7e:2f:b5: 1f:c6:38:94:34:bb:02:d5:e1:29:a1:06:f9:79:d3:50:26:de: 9f:ee:41:13:36:a8:e5:08:49:1d:a5:b1:76:b5:06:23:c0:f3: 24:c4:f5:52:4e:47:8f:9c:d3:5d:b6:55:0e:b4:ba:ed:cd:2f: 79:4e:c8:1f:d9:6e:ab:51:63:78:97:03:67:0e:1d:2c:74:d9: 26:d3:b6:ac:8e:c3:f7:ee:41:6d:b5:c6:f3:56:0a:73:ec:e6: 95:45:66:ec:3e:f2:e8:bd:45:c3:bd:f9:4f:3d:83:85:6e:fb: 33:1d:73:38:75:51:8b:5b:1e:69:21:25:c5:65:73:d2:fe:4a: df:c0:02:4b:7b:4f:81:d6:c2:8e:83:99:ae:90:ff:04:27:0d: 76:5e:98:d7:fc:82:59:37:25:4f:0c:8b:08:8e:98:3d:08:e7: 05:af:49:fb:28:c8:45:3a:b4:4f:f0:e2:86:9a:c6:f5:86:f0: a4:ae:7c:85:df:14:f2:b4:f3:97:f3:0c:5e:2a:ca:3a:10:02: 69:3c:48:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUe8v3zS5kxVDhipZPGxEE8hvjt9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk3MkYwNzNCOEFGMjZCODUzM0U5N0FBRkJBRUMxN0ZD RUZENkY4QzAeFw0yNTA0MDgwNjU3NTBaFw0yNjA0MDcwNzAyNTBaMDMxMTAvBgNV BAMTKEFDMzlEQkQ5OEVCRDQyQTcwQkQ4QUY3ODYwMDc2MkQzNjU0MUNFQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs9iXn2lCFcjX3MmJFq5cU+1ov FwIPSmHzRstr0Z/N275ETtpnRBS3b1B1UZt0bu3NQ5/uQqE/V6IPreq02Vm0/tu7 RjR9raZmMTQI6VPUo1nmUFBVFNvTTx63L5UKvOnUTF4lX3tY4l2T1Q8DIcMxHTIe VhVTXq9NwmWA0RAwVJa3Rq8LjP4KDNSWBPnDumQ3HvFXHhAiiFDHt0V9gHSfuuZp sUDwWvTazud0e215IZkuQgdb/qddNKV9HMyAN0irrnSht5z3cZBBns3Yob5IKrxl mhNfIrHNrdhf6K9tlWuvtQwB7RbAsEdMBEu7wSQCnhKIkW2pXsugcxrXftJ1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrDnb2Y69QqcL2K94YAdi02VBzqswHwYDVR0j BBgwFoAUuXLwc7ivJrhTPpeq+67Bf879b4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDE2MTljYi1jMDFjLTQ2MTQtODYzZS1jZTI4OGQ3YmE3NjUvMC9COTcyRjA3M0I4 QUYyNkI4NTMzRTk3QUFGQkFFQzE3RkNFRkQ2RjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjk3MkYwNzNCOEFGMjZCODUzM0U5N0FBRkJBRUMxN0ZDRUZE NkY4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkMTYxOWNiLWMwMWMtNDYxNC04 NjNlLWNlMjg4ZDdiYTc2NS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM1MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm50wDQYJ KoZIhvcNAQELBQADggEBAIa3UspQsd4IahaYVgDammyfZ7V9DsxMr1zOd/lNqNUs mHthLD3nZDtRdgSrhdCJLEVt/X4vtR/GOJQ0uwLV4SmhBvl501Am3p/uQRM2qOUI SR2lsXa1BiPA8yTE9VJOR4+c0122VQ60uu3NL3lOyB/ZbqtRY3iXA2cOHSx02SbT tqyOw/fuQW21xvNWCnPs5pVFZuw+8ui9RcO9+U89g4Vu+zMdczh1UYtbHmkhJcVl c9L+St/AAkt7T4HWwo6Dma6Q/wQnDXZemNf8glk3JU8MiwiOmD0I5wWvSfsoyEU6 tE/w4oaaxvWG8KSufIXfFPK085fzDF4qyjoQAmk8SNk= -----END CERTIFICATE-----Generated at Thu Apr 24 04:31:38 2025 by rpki-client on console.sobornost.net