$ rpki-client -vvf repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa File: 3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa (raw, json) Hash identifier: kKOPYDd68IbPpSS7OOzul5ii2GOnq8I9waVsMp0r138= Subject key identifier: CA:18:C0:0B:60:3D:DB:39:C0:E0:1E:90:A9:AC:9E:6E:84:A8:0A:0B Certificate issuer: /CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Certificate serial: 3466FFC6F68B1C63D1661D7A167C47A74A33AAD1 Authority key identifier: 4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa Signing time: Thu 24 Apr 2025 17:00:00 +0000 ROA not before: Thu 24 Apr 2025 16:55:00 +0000 ROA not after: Thu 23 Apr 2026 17:00:00 +0000 asID: 136868 IP address blocks: 103.133.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:66:ff:c6:f6:8b:1c:63:d1:66:1d:7a:16:7c:47:a7:4a:33:aa:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Validity Not Before: Apr 24 16:55:00 2025 GMT Not After : Apr 23 17:00:00 2026 GMT Subject: CN=CA18C00B603DDB39C0E01E90A9AC9E6E84A80A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5f:75:df:8d:cc:28:4d:c0:dd:4f:99:b6:0d: 3d:56:7c:b6:37:36:a9:7e:75:cc:0a:8a:83:d7:7d: dc:ba:71:ee:01:51:ea:2f:f0:ce:11:0f:64:b0:55: 54:43:2d:a4:26:8f:f8:ce:7e:a7:ff:10:df:b0:53: c1:35:15:3a:f2:a2:95:0f:a5:d2:a1:82:fa:6f:86: 7c:ba:96:98:9d:fb:b0:2e:1f:fd:75:ac:bb:3d:4a: 6d:e8:b8:a5:e8:3c:5d:8d:85:e7:c3:2b:6f:de:b7: 61:e7:d1:62:ab:89:fe:12:8f:58:d2:30:64:63:12: f4:b7:c6:ee:c9:6e:a3:dd:2b:b7:40:b4:c8:25:92: fc:98:89:e9:01:51:51:cd:77:90:70:22:06:6e:b6: 72:62:13:30:f5:df:4e:45:43:3a:da:e1:6e:98:9a: 6f:c3:b1:b3:be:48:0c:69:21:2f:d0:c9:c5:87:73: c6:b2:39:4c:7a:57:5c:90:e9:7b:7e:f4:3e:24:57: a2:f7:34:36:81:cf:3c:e8:fe:93:f4:3e:95:b2:9e: 16:bd:83:25:72:9f:ff:70:3c:b2:ec:ff:70:da:b9: 5f:f2:08:f9:67:de:5c:6f:f3:f3:59:96:41:64:18: 4b:68:9d:6c:65:9a:48:bc:7d:0d:7c:94:e5:40:b2: 72:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:18:C0:0B:60:3D:DB:39:C0:E0:1E:90:A9:AC:9E:6E:84:A8:0A:0B X509v3 Authority Key Identifier: keyid:4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/3130332e3133332e32302e302f32332d3234203d3e20313336383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.20.0/23 Signature Algorithm: sha256WithRSAEncryption b1:6c:1c:30:e5:08:35:30:c0:4e:14:6e:95:3c:c2:8b:d9:c3: f2:a7:e3:29:00:57:0e:d2:44:d1:44:01:9a:94:57:91:08:29: 99:a7:e0:82:a0:32:6f:33:71:c3:12:8e:82:1a:de:c9:a5:f1: 66:36:62:d3:af:63:cd:d3:fe:66:4d:f7:bb:cb:e7:92:15:2b: 43:9d:34:51:02:2c:36:ec:25:b7:29:f9:d5:14:55:a3:f1:90: 8d:8c:64:53:e7:34:2b:e3:e0:d0:24:b5:a0:87:2f:19:cf:02: ba:a2:81:f6:ae:37:d4:96:25:c9:69:0e:10:36:27:f1:40:0c: 92:e1:1a:44:b2:1c:e6:f7:cd:1d:0a:d8:00:24:2b:a8:e3:fb: e2:02:58:5f:e6:d9:18:f7:7a:14:15:fc:0d:c1:d2:72:9b:f7: d5:eb:51:22:c3:75:ec:fc:bf:ee:4c:df:0c:af:1b:ab:23:bd: e0:bf:04:05:f2:08:6c:92:49:34:e1:32:9e:fb:09:80:14:33: 1d:58:4c:61:b9:3a:6f:96:6a:5e:03:c5:79:0e:5b:b5:ec:1f: b2:ad:f8:11:45:c6:25:ac:57:a0:3c:b5:fd:74:fc:c8:be:7f: 0e:66:c1:ca:30:1e:53:22:22:26:91:8d:ae:e5:13:f2:07:17: 50:a1:87:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNGb/xvaLHGPRZh16FnxHp0ozqtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQx QTc4M0UzNjAeFw0yNTA0MjQxNjU1MDBaFw0yNjA0MjMxNzAwMDBaMDMxMTAvBgNV BAMTKENBMThDMDBCNjAzRERCMzlDMEUwMUU5MEE5QUM5RTZFODRBODBBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcX3XfjcwoTcDdT5m2DT1WfLY3 Nql+dcwKioPXfdy6ce4BUeov8M4RD2SwVVRDLaQmj/jOfqf/EN+wU8E1FTryopUP pdKhgvpvhny6lpid+7AuH/11rLs9Sm3ouKXoPF2NhefDK2/et2Hn0WKrif4Sj1jS MGRjEvS3xu7JbqPdK7dAtMglkvyYiekBUVHNd5BwIgZutnJiEzD1305FQzra4W6Y mm/DsbO+SAxpIS/QycWHc8ayOUx6V1yQ6Xt+9D4kV6L3NDaBzzzo/pP0PpWynha9 gyVyn/9wPLLs/3DauV/yCPln3lxv8/NZlkFkGEtonWxlmki8fQ18lOVAsnINAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyhjAC2A92znA4B6QqayeboSoCgswHwYDVR0j BBgwFoAUTfQV0tt2DDmFWz89nPPORBp4PjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTI0YWE4Yy1kZWRjLTQzNzYtOTM4MS0wYTgxZTZiY2M1NjQvMC80REY0MTVEMkRC NzYwQzM5ODU1QjNGM0Q5Q0YzQ0U0NDFBNzgzRTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQxQTc4 M0UzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMjRhYThjLWRlZGMtNDM3Ni05 MzgxLTBhODFlNmJjYzU2NC8wLzMxMzAzMzJlMzEzMzMzMmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4UUMA0GCSqG SIb3DQEBCwUAA4IBAQCxbBww5Qg1MMBOFG6VPMKL2cPyp+MpAFcO0kTRRAGalFeR CCmZp+CCoDJvM3HDEo6CGt7JpfFmNmLTr2PN0/5mTfe7y+eSFStDnTRRAiw27CW3 KfnVFFWj8ZCNjGRT5zQr4+DQJLWghy8ZzwK6ooH2rjfUliXJaQ4QNifxQAyS4RpE shzm980dCtgAJCuo4/viAlhf5tkY93oUFfwNwdJym/fV61Eiw3Xs/L/uTN8Mrxur I73gvwQF8ghskkk04TKe+wmAFDMdWExhuTpvlmpeA8V5Dlu17B+yrfgRRcYlrFeg PLX9dPzIvn8OZsHKMB5TIiImkY2u5RPyBxdQoYd4 -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:24 2025 by rpki-client on console.sobornost.net