$ rpki-client -vvf repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa File: 3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa (raw, json) Hash identifier: WO1pfWHoqTdWNx4bevNPCtJdd2Sq+t2I2uTA3HBPJBM= Subject key identifier: 16:26:AA:85:CB:3B:1A:7E:FF:38:43:C3:82:C8:B7:A7:A0:73:21:D6 Certificate issuer: /CN=BB64FDB64281947C3567104C08735A011C6210F4 Certificate serial: 3E9E9C076F25B2ED4A418FA9F64FD87BB710B667 Authority key identifier: BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa Signing time: Thu 03 Apr 2025 12:00:34 +0000 ROA not before: Thu 03 Apr 2025 11:55:34 +0000 ROA not after: Thu 02 Apr 2026 12:00:34 +0000 asID: 142348 IP address blocks: 103.169.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:9e:9c:07:6f:25:b2:ed:4a:41:8f:a9:f6:4f:d8:7b:b7:10:b6:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB64FDB64281947C3567104C08735A011C6210F4 Validity Not Before: Apr 3 11:55:34 2025 GMT Not After : Apr 2 12:00:34 2026 GMT Subject: CN=1626AA85CB3B1A7EFF3843C382C8B7A7A07321D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5e:0f:3f:3f:a4:1f:36:98:5c:da:61:e9:1b: 33:e4:d9:45:b7:e2:c5:22:c3:b4:5c:09:09:b8:a4: da:c0:ce:ad:5e:47:81:b6:a8:cd:7a:78:a4:48:7a: c2:f7:6f:00:f3:0f:1a:06:55:0b:e2:46:cf:46:d4: 7c:5d:88:e2:bc:83:4d:2a:fa:e2:34:a5:ea:42:59: 61:40:b8:46:d9:8e:c9:3f:e0:71:45:4f:fd:bf:cd: ad:73:86:f9:48:7e:0b:7b:c7:bc:b3:5b:fb:fc:87: 68:53:8f:1a:7a:e2:92:02:10:7d:e0:63:4c:db:ad: 4e:81:13:bc:a1:51:34:32:6b:31:6f:83:5a:d7:97: 6b:7f:96:89:c5:26:0c:31:91:c5:3a:a8:8a:18:30: 6c:32:47:68:25:c7:e4:20:bf:18:ac:25:21:7e:05: 35:91:f4:2f:c1:ab:55:3f:37:21:85:92:2d:54:48: 6c:68:26:6f:47:a6:e5:08:de:0d:42:e8:96:8b:92: db:f4:13:ba:43:47:d9:57:ee:9e:77:87:b4:79:f6: c1:80:96:52:70:2f:74:60:f2:32:2a:60:f1:f1:67: 7e:26:50:95:15:c6:9d:82:8e:f3:66:d4:6e:61:b1: 9e:b3:79:79:11:1b:71:2f:4f:43:89:4b:28:56:c6: 6f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:26:AA:85:CB:3B:1A:7E:FF:38:43:C3:82:C8:B7:A7:A0:73:21:D6 X509v3 Authority Key Identifier: keyid:BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.192.0/23 Signature Algorithm: sha256WithRSAEncryption 57:e1:2c:56:7c:27:d4:ea:61:8d:71:70:c6:bb:01:d4:09:58: b3:f8:d3:3d:75:14:87:d4:15:ca:3f:b9:d6:0e:ee:a8:18:c9: 51:de:19:81:23:79:81:1e:ee:e4:3c:4f:21:7a:15:d9:e4:81: ba:4d:cf:18:3b:40:f4:73:5c:f3:b1:e2:4f:88:53:b3:cf:10: 83:2c:a9:2d:1f:66:37:27:8f:f3:cf:16:7d:e3:62:e6:f1:cd: a1:b5:85:76:9d:3a:ac:66:33:91:46:62:4c:6b:7f:fc:c6:83: 16:9f:08:76:eb:70:31:da:24:c3:07:f0:55:1a:7f:46:81:86: c9:4a:e5:af:fc:01:ec:85:ce:83:a2:59:81:ce:9f:4a:e8:e8: 15:10:fa:a7:f1:04:10:18:b3:0a:95:88:b0:fc:fa:e9:25:f5: af:72:03:f3:78:d5:a7:be:23:34:b5:1c:cb:32:2f:30:57:e9: 80:27:1c:8e:ea:9f:b6:53:30:17:aa:ad:ee:5f:d5:a9:c6:b6: 43:6d:62:93:38:da:70:d9:68:21:e0:13:43:32:74:e1:d5:0d: d8:1b:2d:90:96:fb:d3:8f:dc:bf:0c:f1:6c:28:10:bb:a0:f9: e3:7c:98:3f:90:1e:ca:da:7a:97:f8:49:12:af:7b:84:68:66: 61:2b:c2:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPp6cB28lsu1KQY+p9k/Ye7cQtmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2NEZEQjY0MjgxOTQ3QzM1NjcxMDRDMDg3MzVBMDEx QzYyMTBGNDAeFw0yNTA0MDMxMTU1MzRaFw0yNjA0MDIxMjAwMzRaMDMxMTAvBgNV BAMTKDE2MjZBQTg1Q0IzQjFBN0VGRjM4NDNDMzgyQzhCN0E3QTA3MzIxRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUXg8/P6QfNphc2mHpGzPk2UW3 4sUiw7RcCQm4pNrAzq1eR4G2qM16eKRIesL3bwDzDxoGVQviRs9G1HxdiOK8g00q +uI0pepCWWFAuEbZjsk/4HFFT/2/za1zhvlIfgt7x7yzW/v8h2hTjxp64pICEH3g Y0zbrU6BE7yhUTQyazFvg1rXl2t/lonFJgwxkcU6qIoYMGwyR2glx+QgvxisJSF+ BTWR9C/Bq1U/NyGFki1USGxoJm9HpuUI3g1C6JaLktv0E7pDR9lX7p53h7R59sGA llJwL3Rg8jIqYPHxZ34mUJUVxp2CjvNm1G5hsZ6zeXkRG3EvT0OJSyhWxm9fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFiaqhcs7Gn7/OEPDgsi3p6BzIdYwHwYDVR0j BBgwFoAUu2T9tkKBlHw1ZxBMCHNaARxiEPQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGEwMmQzNy0zYjlkLTQ1M2EtOGM4MS0zMjhlNTQwMTQxZmQvMC9CQjY0RkRCNjQy ODE5NDdDMzU2NzEwNEMwODczNUEwMTFDNjIxMEY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI2NEZEQjY0MjgxOTQ3QzM1NjcxMDRDMDg3MzVBMDExQzYy MTBGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YTAyZDM3LTNiOWQtNDUzYS04 YzgxLTMyOGU1NDAxNDFmZC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqcAwDQYJ KoZIhvcNAQELBQADggEBAFfhLFZ8J9TqYY1xcMa7AdQJWLP40z11FIfUFco/udYO 7qgYyVHeGYEjeYEe7uQ8TyF6FdnkgbpNzxg7QPRzXPOx4k+IU7PPEIMsqS0fZjcn j/PPFn3jYubxzaG1hXadOqxmM5FGYkxrf/zGgxafCHbrcDHaJMMH8FUaf0aBhslK 5a/8AeyFzoOiWYHOn0ro6BUQ+qfxBBAYswqViLD8+ukl9a9yA/N41ae+IzS1HMsy LzBX6YAnHI7qn7ZTMBeqre5f1anGtkNtYpM42nDZaCHgE0MydOHVDdgbLZCW+9OP 3L8M8WwoELug+eN8mD+QHsraepf4SRKve4RoZmErwlw= -----END CERTIFICATE-----Generated at Thu Apr 24 11:25:24 2025 by rpki-client on console.sobornost.net