$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa File: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (raw, json) Hash identifier: Hv2jdXQUlOnlnToQUuoVlZDHe+biYftXfxb3LM1GOc0= Subject key identifier: DA:20:74:12:23:D8:61:67:E1:8B:C5:5D:2E:16:26:46:8D:B7:01:73 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 1B50CB7E22E34ACF46C86F7D30D168D693E55B3C Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa Signing time: Thu 03 Apr 2025 05:00:02 +0000 ROA not before: Thu 03 Apr 2025 04:55:02 +0000 ROA not after: Thu 02 Apr 2026 05:00:02 +0000 asID: 38785 IP address blocks: 121.101.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:50:cb:7e:22:e3:4a:cf:46:c8:6f:7d:30:d1:68:d6:93:e5:5b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Apr 3 04:55:02 2025 GMT Not After : Apr 2 05:00:02 2026 GMT Subject: CN=DA20741223D86167E18BC55D2E1626468DB70173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:35:db:ee:72:bf:a7:2e:31:26:23:00:c6:aa: 46:d1:71:22:21:ad:b8:28:9c:85:7d:aa:5c:82:a1: 95:1d:20:61:57:90:ba:16:15:dc:d6:f8:d1:73:ef: fa:b3:02:91:2c:5c:24:f0:1c:56:08:2d:f0:54:3a: e4:82:50:2e:10:c6:09:94:c8:47:0e:c8:49:b2:0e: d2:46:40:d2:6d:da:b1:b9:63:45:ba:32:51:f9:c9: d9:d3:7a:2a:f3:2f:a3:38:f5:02:a5:2b:ca:9d:82: 9a:35:27:db:44:b5:45:1f:90:8d:bd:8b:13:ba:26: f5:03:8e:6a:5f:28:32:f3:87:3a:b8:c3:f7:b1:9a: 2c:6a:89:e4:a8:72:7b:b6:91:4d:d1:65:b9:9b:56: f7:c6:26:23:fb:79:51:df:12:68:0c:3c:a2:2c:ee: 7b:ea:da:b6:19:4c:bf:9b:f3:09:b3:fd:50:8a:f1: 42:b6:99:2d:ba:23:11:53:90:f7:46:cc:71:3a:fd: 15:c1:87:f3:a3:51:e4:74:41:83:f7:8d:21:aa:de: 6c:22:d2:73:ff:1d:3c:62:98:a8:e7:f1:51:a9:8d: 0e:93:df:1b:eb:aa:4b:4b:d9:08:4c:60:9c:01:fd: ba:fd:d0:c2:e4:6a:83:1c:30:46:92:49:ab:5e:35: b4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:20:74:12:23:D8:61:67:E1:8B:C5:5D:2E:16:26:46:8D:B7:01:73 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.101.187.0/24 Signature Algorithm: sha256WithRSAEncryption ba:1d:81:8b:d8:f5:06:fc:33:e6:d3:32:8d:49:e3:0d:f8:8f: 6f:60:de:8a:95:13:6a:ad:17:ef:7d:bc:56:46:aa:76:1d:85: 40:44:c4:fe:b2:42:0a:57:fd:3f:92:83:69:5d:d6:28:6f:4d: 31:67:bb:42:9a:ab:6d:db:9d:38:07:fc:ac:f6:9a:80:92:8d: 2c:b5:99:c7:9c:19:57:4f:b6:36:79:92:75:2e:a1:b2:b4:bb: ce:cc:ce:00:65:54:1f:21:ec:83:d8:d0:f4:07:f6:ac:a2:71: 53:9d:1f:d9:e2:89:28:cb:bb:92:7b:e7:37:47:8d:ae:1c:e4: d2:3b:0d:e0:16:5d:29:cb:80:35:73:af:cc:d8:a2:f9:2c:fb: ff:ca:d1:57:b4:c7:e3:47:ff:b9:7f:4d:6b:3f:5a:f8:d8:2f: 2c:52:2f:18:8a:76:8b:a8:a0:19:e4:e6:fa:7a:9b:3c:fa:63: 03:c9:31:78:85:08:fc:b7:e7:e0:49:c5:9c:2a:cf:9b:2a:d7: ee:99:be:85:79:21:4f:c8:85:15:95:b5:8c:85:06:fe:ac:60: ff:cf:a7:e4:e0:6d:9c:16:ae:96:8e:2a:4a:d5:26:57:c2:4a: c2:d1:59:84:e6:42:fc:2e:07:e6:48:01:d5:99:0d:79:a6:43: 33:26:19:97 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG1DLfiLjSs9GyG99MNFo1pPlWzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTA0MDMwNDU1MDJaFw0yNjA0MDIwNTAwMDJaMDMxMTAvBgNV BAMTKERBMjA3NDEyMjNEODYxNjdFMThCQzU1RDJFMTYyNjQ2OERCNzAxNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Ndvucr+nLjEmIwDGqkbRcSIh rbgonIV9qlyCoZUdIGFXkLoWFdzW+NFz7/qzApEsXCTwHFYILfBUOuSCUC4QxgmU yEcOyEmyDtJGQNJt2rG5Y0W6MlH5ydnTeirzL6M49QKlK8qdgpo1J9tEtUUfkI29 ixO6JvUDjmpfKDLzhzq4w/exmixqieSocnu2kU3RZbmbVvfGJiP7eVHfEmgMPKIs 7nvq2rYZTL+b8wmz/VCK8UK2mS26IxFTkPdGzHE6/RXBh/OjUeR0QYP3jSGq3mwi 0nP/HTximKjn8VGpjQ6T3xvrqktL2QhMYJwB/br90MLkaoMcMEaSSateNbTZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2iB0EiPYYWfhi8VdLhYmRo23AXMwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NzJkZmJlLTRjYTAtNGE0Ni04 MDM3LTQ5NjhlZDk3Y2FkYy8wLzMxMzIzMTJlMzEzMDMxMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeWW7MA0GCSqG SIb3DQEBCwUAA4IBAQC6HYGL2PUG/DPm0zKNSeMN+I9vYN6KlRNqrRfvfbxWRqp2 HYVARMT+skIKV/0/koNpXdYob00xZ7tCmqtt2504B/ys9pqAko0stZnHnBlXT7Y2 eZJ1LqGytLvOzM4AZVQfIeyD2ND0B/asonFTnR/Z4okoy7uSe+c3R42uHOTSOw3g Fl0py4A1c6/M2KL5LPv/ytFXtMfjR/+5f01rP1r42C8sUi8YinaLqKAZ5Ob6eps8 +mMDyTF4hQj8t+fgScWcKs+bKtfumb6FeSFPyIUVlbWMhQb+rGD/z6fk4G2cFq6W jipK1SZXwkrC0VmE5kL8LgfmSAHVmQ15pkMzJhmX -----END CERTIFICATE-----Generated at Fri Apr 25 22:07:25 2025 by rpki-client on console.sobornost.net