$ rpki-client -vvf repo-rpki.idnic.net/repo/bfdb18ef-659f-4b1e-a2e0-b58af6b1271f/0/3130332e3136302e3133382e302f32332d3234203d3e203338333230.roa File: 3130332e3136302e3133382e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: 1fOWEp4TrzIX6lJGhVie2BUvo2f5cu7g23YUAHBTka8= Subject key identifier: 8F:F9:4F:7B:B8:58:F6:98:89:C8:A3:E7:77:D1:CD:C8:EF:A5:D7:19 Certificate issuer: /CN=8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7 Certificate serial: 7DACC438ED85CB238B479F80FA72853B8F5F2D4C Authority key identifier: 8D:1D:84:B8:A5:62:24:B4:E2:90:FB:DA:5C:79:0C:D1:F0:3F:11:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfdb18ef-659f-4b1e-a2e0-b58af6b1271f/0/3130332e3136302e3133382e302f32332d3234203d3e203338333230.roa Signing time: Thu 17 Apr 2025 04:02:18 +0000 ROA not before: Thu 17 Apr 2025 03:57:18 +0000 ROA not after: Thu 16 Apr 2026 04:02:18 +0000 asID: 38320 IP address blocks: 103.160.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfdb18ef-659f-4b1e-a2e0-b58af6b1271f/0/8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7.crl rsync://repo-rpki.idnic.net/repo/bfdb18ef-659f-4b1e-a2e0-b58af6b1271f/0/8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 19:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ac:c4:38:ed:85:cb:23:8b:47:9f:80:fa:72:85:3b:8f:5f:2d:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7 Validity Not Before: Apr 17 03:57:18 2025 GMT Not After : Apr 16 04:02:18 2026 GMT Subject: CN=8FF94F7BB858F69889C8A3E777D1CDC8EFA5D719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9e:99:e9:9a:c3:18:23:ec:b2:8a:da:18:f3: ba:da:d7:c7:2e:ed:75:b3:60:75:79:89:67:7c:56: 73:4a:c6:62:dd:e0:db:81:c1:50:d9:26:13:8a:2b: d9:89:a7:fa:ac:66:82:d0:2d:f2:7e:74:f3:05:77: 27:42:c2:86:3a:ff:0c:44:6f:9b:91:a9:45:8d:a4: 7d:8a:45:6e:37:47:fb:cf:40:f3:34:7c:41:0d:92: 71:8e:33:27:e3:82:d2:c6:0e:16:48:d0:ad:1e:1a: 06:2b:c9:66:c0:81:96:ce:38:d1:8d:62:bd:be:2c: e1:6a:28:7e:39:27:68:93:23:64:ab:f1:e8:99:94: c7:70:48:ec:f6:d9:89:39:c4:80:34:9d:a2:b0:cd: 89:b5:61:50:32:05:98:2d:2e:e4:cd:49:69:06:e7: bc:07:ed:93:75:99:9c:4f:61:2b:4d:1d:a6:d7:b5: 28:74:fb:49:41:e0:f5:97:25:eb:c8:ba:53:51:fa: 30:a6:31:a6:4e:d6:d3:91:47:f5:e5:13:ff:8e:3a: 82:f2:bd:fc:c3:54:11:f4:e7:9e:3f:cc:59:53:4d: cc:32:0d:7d:0f:88:04:55:a1:8f:e7:81:3b:74:ca: 10:eb:81:c6:5a:10:76:23:06:ff:76:1f:f1:57:d0: 3e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F9:4F:7B:B8:58:F6:98:89:C8:A3:E7:77:D1:CD:C8:EF:A5:D7:19 X509v3 Authority Key Identifier: keyid:8D:1D:84:B8:A5:62:24:B4:E2:90:FB:DA:5C:79:0C:D1:F0:3F:11:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfdb18ef-659f-4b1e-a2e0-b58af6b1271f/0/8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D1D84B8A56224B4E290FBDA5C790CD1F03F11A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfdb18ef-659f-4b1e-a2e0-b58af6b1271f/0/3130332e3136302e3133382e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.138.0/23 Signature Algorithm: sha256WithRSAEncryption 31:a4:15:6b:6f:c8:5d:b0:31:b8:ec:b3:ee:e3:1d:c1:d1:0a: fe:93:28:da:05:15:45:bc:6a:37:f6:b0:2f:5c:04:e0:31:1b: d9:10:06:2a:09:d4:91:fd:ac:ef:45:30:36:b5:58:7a:79:01: 0d:0e:9c:53:63:d1:aa:a0:5f:79:67:6d:e4:29:5b:ef:1b:a3: a5:62:f4:fb:71:1e:ce:34:ee:e2:53:f8:11:ec:13:0b:95:41: 6a:7f:27:1c:b1:47:99:f9:5d:5e:c1:f1:6c:35:be:e0:09:cd: 94:b3:6b:de:65:39:3d:f4:d5:03:ce:85:f5:f1:80:38:72:5e: 2d:7d:f6:e4:80:e1:ca:d0:cf:e0:36:81:f7:11:86:b3:f9:4a: ad:b4:37:12:af:b7:08:a6:38:5a:a0:85:72:55:2f:0d:f5:a4: c0:6d:60:9d:d4:0a:6a:83:bf:cd:8a:82:63:c0:ad:0f:1d:dd: 42:e4:9d:d6:47:b0:a5:37:8f:ef:d7:cf:b6:33:bc:49:fa:a0: 0e:a8:fd:1a:0f:99:5c:b8:9c:0e:38:16:ea:d3:7d:ea:62:3c: 69:d6:d3:c5:7c:ee:b5:e9:b6:39:9a:4f:8f:9b:56:39:49:66: f1:c6:7d:04:d9:d5:1c:9f:2d:e4:0d:3a:c9:1e:c7:31:e7:fa: f8:d7:db:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfazEOO2FyyOLR5+A+nKFO49fLUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQxRDg0QjhBNTYyMjRCNEUyOTBGQkRBNUM3OTBDRDFG MDNGMTFBNzAeFw0yNTA0MTcwMzU3MThaFw0yNjA0MTYwNDAyMThaMDMxMTAvBgNV BAMTKDhGRjk0RjdCQjg1OEY2OTg4OUM4QTNFNzc3RDFDREM4RUZBNUQ3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUnpnpmsMYI+yyitoY87ra18cu 7XWzYHV5iWd8VnNKxmLd4NuBwVDZJhOKK9mJp/qsZoLQLfJ+dPMFdydCwoY6/wxE b5uRqUWNpH2KRW43R/vPQPM0fEENknGOMyfjgtLGDhZI0K0eGgYryWbAgZbOONGN Yr2+LOFqKH45J2iTI2Sr8eiZlMdwSOz22Yk5xIA0naKwzYm1YVAyBZgtLuTNSWkG 57wH7ZN1mZxPYStNHabXtSh0+0lB4PWXJevIulNR+jCmMaZO1tORR/XlE/+OOoLy vfzDVBH0554/zFlTTcwyDX0PiARVoY/ngTt0yhDrgcZaEHYjBv92H/FX0D7hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj/lPe7hY9piJyKPnd9HNyO+l1xkwHwYDVR0j BBgwFoAUjR2EuKViJLTikPvaXHkM0fA/EacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmRiMThlZi02NTlmLTRiMWUtYTJlMC1iNThhZjZiMTI3MWYvMC84RDFEODRCOEE1 NjIyNEI0RTI5MEZCREE1Qzc5MENEMUYwM0YxMUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQxRDg0QjhBNTYyMjRCNEUyOTBGQkRBNUM3OTBDRDFGMDNG MTFBNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmZGIxOGVmLTY1OWYtNGIxZS1h MmUwLWI1OGFmNmIxMjcxZi8wLzMxMzAzMzJlMzEzNjMwMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6CKMA0GCSqG SIb3DQEBCwUAA4IBAQAxpBVrb8hdsDG47LPu4x3B0Qr+kyjaBRVFvGo39rAvXATg MRvZEAYqCdSR/azvRTA2tVh6eQENDpxTY9GqoF95Z23kKVvvG6OlYvT7cR7ONO7i U/gR7BMLlUFqfyccsUeZ+V1ewfFsNb7gCc2Us2veZTk99NUDzoX18YA4cl4tffbk gOHK0M/gNoH3EYaz+UqttDcSr7cIpjhaoIVyVS8N9aTAbWCd1Apqg7/NioJjwK0P Hd1C5J3WR7ClN4/v18+2M7xJ+qAOqP0aD5lcuJwOOBbq033qYjxp1tPFfO616bY5 mk+Pm1Y5SWbxxn0E2dUcny3kDTrJHscx5/r419tw -----END CERTIFICATE-----Generated at Wed Apr 23 19:50:54 2025 by rpki-client on console.sobornost.net