$ rpki-client -vvf repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa File: 3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa (raw, json) Hash identifier: SPQ4XR24apUiNOZQsSPO5TwjwY0jCKQWVjVVXKtDXDI= Subject key identifier: 5D:AA:A7:9A:A6:9D:09:CE:22:DB:85:44:73:9A:89:3E:E8:5D:BA:F6 Certificate issuer: /CN=09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8 Certificate serial: 12BF4EDFDBD1C03AAB63999C77E39C63355068CD Authority key identifier: 09:F5:8F:64:1C:5D:42:BD:2D:25:57:FF:A2:EA:06:1B:66:AC:BD:A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa Signing time: Tue 22 Apr 2025 10:01:42 +0000 ROA not before: Tue 22 Apr 2025 09:56:42 +0000 ROA not after: Tue 21 Apr 2026 10:01:42 +0000 asID: 139415 IP address blocks: 103.143.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.crl rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:bf:4e:df:db:d1:c0:3a:ab:63:99:9c:77:e3:9c:63:35:50:68:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8 Validity Not Before: Apr 22 09:56:42 2025 GMT Not After : Apr 21 10:01:42 2026 GMT Subject: CN=5DAAA79AA69D09CE22DB8544739A893EE85DBAF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:f1:e7:28:52:0d:be:f1:84:1d:0d:03:bf: 99:29:67:9d:2d:c7:c2:95:e4:b1:94:74:55:c6:fe: 37:9b:e2:21:53:1b:08:8b:e6:7b:c7:a6:19:2d:e4: 11:92:3c:6b:1d:07:02:82:96:51:84:32:a2:a6:8e: 1d:71:3f:81:56:23:63:db:2e:ce:72:f4:17:4d:2f: ab:a9:d3:d1:19:3f:2c:61:c4:c6:56:9f:21:8e:cf: e5:9d:91:71:f8:1b:78:5c:0a:f1:13:8d:32:49:ed: 17:97:72:c4:32:64:12:c2:5a:2e:b9:0d:06:bd:13: 2c:a2:3e:c1:68:19:4c:74:84:da:68:61:f2:cd:b1: 50:4c:51:70:06:eb:da:42:8e:e3:cf:9a:e5:9e:20: c0:b9:70:3e:6c:d9:b7:e7:fe:08:0c:fb:54:d4:28: 52:04:9b:9b:14:d8:7b:1f:8c:2a:f5:70:40:40:9c: be:10:d4:94:b9:fa:1e:73:33:da:6d:33:c8:b8:a2: 3c:4d:d5:18:99:84:e7:a6:c4:c8:92:9e:69:21:92: 08:a3:e8:55:76:1b:5d:41:29:71:88:25:56:6d:e7: a6:1f:35:75:cf:fb:f4:77:d3:fe:a3:be:35:ff:41: 66:fc:4e:37:65:dc:a1:7c:0e:36:c9:d8:c3:cd:b6: db:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AA:A7:9A:A6:9D:09:CE:22:DB:85:44:73:9A:89:3E:E8:5D:BA:F6 X509v3 Authority Key Identifier: keyid:09:F5:8F:64:1C:5D:42:BD:2D:25:57:FF:A2:EA:06:1B:66:AC:BD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09F58F641C5D42BD2D2557FFA2EA061B66ACBDA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b2e06f72-1323-4fbd-b26e-9ed9a9add880/0/3130332e3134332e3139352e302f32342d3234203d3e20313339343135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.195.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:01:b4:4a:9a:96:08:e0:a3:9e:d6:e0:b3:0f:74:45:9e:bf: 60:4a:49:a2:9a:1d:d7:55:35:24:8e:0b:89:1e:c7:81:5a:49: 3f:8c:1a:31:f1:30:f7:34:ba:7d:3a:cb:53:b4:82:0f:bb:2d: 4e:9f:d3:48:54:6d:75:0b:74:cd:b4:98:c6:42:68:c7:c2:6f: 49:e1:a8:6c:90:ca:66:a0:81:f8:ee:0e:e9:e6:d5:d8:de:be: 71:1b:41:bd:67:f1:52:1a:ad:a0:ec:2c:9d:92:b9:e9:2b:b3: f8:77:1d:b6:f2:a1:7e:f5:73:ff:eb:8e:48:8f:f1:a3:14:4a: c7:46:10:a6:8b:b4:b1:a5:dd:81:30:5a:d1:67:01:9b:61:85: df:fe:7a:98:32:ff:4b:39:d8:c4:f5:a3:d9:b9:80:08:6a:6d: 20:3c:15:41:fd:d2:6f:10:4e:94:c8:31:3a:c2:ba:02:1f:ba: 4a:8e:21:6f:32:2c:79:c6:de:eb:85:49:5f:ff:80:02:b1:20: 17:2f:96:e1:68:81:a6:1d:16:c5:11:42:69:30:52:0e:4a:c9: c9:fd:6f:1b:44:80:5f:50:5c:5f:fe:06:1c:25:5f:c3:04:17: 37:55:a4:31:ae:48:8c:90:0b:3d:18:a2:36:a5:2c:e6:cb:5b: ad:10:08:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEr9O39vRwDqrY5mcd+OcYzVQaM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlGNThGNjQxQzVENDJCRDJEMjU1N0ZGQTJFQTA2MUI2 NkFDQkRBODAeFw0yNTA0MjIwOTU2NDJaFw0yNjA0MjExMDAxNDJaMDMxMTAvBgNV BAMTKDVEQUFBNzlBQTY5RDA5Q0UyMkRCODU0NDczOUE4OTNFRTg1REJBRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM3fHnKFINvvGEHQ0Dv5kpZ50t x8KV5LGUdFXG/jeb4iFTGwiL5nvHphkt5BGSPGsdBwKCllGEMqKmjh1xP4FWI2Pb Ls5y9BdNL6up09EZPyxhxMZWnyGOz+WdkXH4G3hcCvETjTJJ7ReXcsQyZBLCWi65 DQa9EyyiPsFoGUx0hNpoYfLNsVBMUXAG69pCjuPPmuWeIMC5cD5s2bfn/ggM+1TU KFIEm5sU2HsfjCr1cEBAnL4Q1JS5+h5zM9ptM8i4ojxN1RiZhOemxMiSnmkhkgij 6FV2G11BKXGIJVZt56YfNXXP+/R30/6jvjX/QWb8Tjdl3KF8DjbJ2MPNttunAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXaqnmqadCc4i24VEc5qJPuhduvYwHwYDVR0j BBgwFoAUCfWPZBxdQr0tJVf/ouoGG2asvagwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MmUwNmY3Mi0xMzIzLTRmYmQtYjI2ZS05ZWQ5YTlhZGQ4ODAvMC8wOUY1OEY2NDFD NUQ0MkJEMkQyNTU3RkZBMkVBMDYxQjY2QUNCREE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlGNThGNjQxQzVENDJCRDJEMjU1N0ZGQTJFQTA2MUI2NkFD QkRBOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyZTA2ZjcyLTEzMjMtNGZiZC1i MjZlLTllZDlhOWFkZDg4MC8wLzMxMzAzMzJlMzEzNDMzMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj8MwDQYJ KoZIhvcNAQELBQADggEBAH8BtEqalgjgo57W4LMPdEWev2BKSaKaHddVNSSOC4ke x4FaST+MGjHxMPc0un06y1O0gg+7LU6f00hUbXULdM20mMZCaMfCb0nhqGyQymag gfjuDunm1djevnEbQb1n8VIaraDsLJ2Suekrs/h3HbbyoX71c//rjkiP8aMUSsdG EKaLtLGl3YEwWtFnAZthhd/+epgy/0s52MT1o9m5gAhqbSA8FUH90m8QTpTIMTrC ugIfukqOIW8yLHnG3uuFSV//gAKxIBcvluFogaYdFsURQmkwUg5Kycn9bxtEgF9Q XF/+BhwlX8MEFzdVpDGuSIyQCz0YojalLObLW60QCPY= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:24 2025 by rpki-client on console.sobornost.net