$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: PqeFBMmCxWfD824pPn9xm7j9NLtgK4mpMJgmDQzThss= Subject key identifier: 9A:71:1E:6E:3A:F3:84:D1:C1:4D:D4:08:DC:BC:A5:CD:4B:E4:60:79 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 61BE8542A471157E7D5AFE1DB7C95ED382595920 Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa Signing time: Wed 09 Apr 2025 11:00:00 +0000 ROA not before: Wed 09 Apr 2025 10:55:00 +0000 ROA not after: Wed 08 Apr 2026 11:00:00 +0000 asID: 46032 IP address blocks: 118.151.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:be:85:42:a4:71:15:7e:7d:5a:fe:1d:b7:c9:5e:d3:82:59:59:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Apr 9 10:55:00 2025 GMT Not After : Apr 8 11:00:00 2026 GMT Subject: CN=9A711E6E3AF384D1C14DD408DCBCA5CD4BE46079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:81:d6:84:4d:25:ab:0c:8f:af:10:0c:5d:27: e7:fa:85:a0:65:cf:f1:59:7f:89:34:55:9c:fe:1e: 7f:31:04:93:1d:14:a9:35:3b:18:6b:33:c2:3e:df: 83:60:38:1f:3b:04:12:2e:e7:7b:4c:57:97:46:28: 09:d3:cb:09:21:47:27:2e:1f:09:ec:2a:99:45:b4: 80:d8:17:12:51:f0:43:15:d7:0e:b2:9f:fe:c8:63: d6:99:83:25:82:b5:5c:0f:ec:cb:3e:cd:4a:81:d7: 2c:57:15:64:bc:39:5a:84:12:61:1c:f7:64:fb:42: 6a:31:ff:b6:b9:64:b2:1a:4a:cf:1f:4c:61:c9:6a: a4:78:0f:52:ef:44:64:db:b3:7c:12:d4:5b:58:b0: 64:38:8c:73:28:40:7c:ee:a3:98:d8:f6:b8:c8:2e: 98:09:0c:30:62:47:82:75:aa:e5:9d:f3:1b:9b:38: 1c:a6:0f:45:c7:5d:ed:ff:ed:e1:8d:b5:40:02:ae: 29:df:94:e3:03:2c:32:30:4e:84:cf:20:f5:ef:a7: 8a:c7:86:ee:6d:0f:d6:ae:17:f2:c5:dc:f2:18:0a: 17:b2:0a:9e:39:5c:b9:5e:61:70:f7:41:40:98:42: 02:b7:99:2c:bb:e3:1a:fc:36:36:31:f9:ef:25:b0: bb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:71:1E:6E:3A:F3:84:D1:C1:4D:D4:08:DC:BC:A5:CD:4B:E4:60:79 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232332e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.223.0/24 Signature Algorithm: sha256WithRSAEncryption 98:06:4e:c8:de:68:a4:8c:c4:92:f1:cc:e3:23:10:62:36:d4: 55:ed:45:06:5d:72:7a:93:15:40:7e:de:42:7d:bc:68:68:a4: 3e:37:cf:43:9e:05:6d:7f:33:18:5f:f0:a2:ba:50:a7:45:16: 1e:94:73:2b:76:ea:ea:33:2f:44:36:46:bc:a7:3d:68:f1:3a: e2:d7:75:a3:19:4a:c5:6b:39:2d:13:68:b9:29:a8:b2:5c:4d: 5e:60:3c:3e:68:b5:1d:92:70:de:d0:78:29:4e:2e:e5:82:00: 6c:ae:5a:1e:35:56:d9:45:f8:ac:f7:58:3c:a7:6c:c5:aa:cb: 37:22:6e:76:45:a3:2e:04:c0:ea:36:28:fe:96:5d:6d:35:e9: 51:b3:78:a0:df:f3:b7:dd:86:f7:27:7c:1b:ce:b5:7e:39:8b: e8:40:bd:0a:19:3b:b6:99:af:2b:9f:24:3d:de:af:b4:e7:b5: 2f:1c:07:de:ea:ef:5c:89:7c:55:1a:db:f2:93:50:cd:89:6f: 63:2e:d7:12:0d:85:fa:bf:05:c7:57:c8:02:aa:9e:8f:9a:3b: b2:46:f7:6a:a3:3b:fd:20:bf:17:55:ba:a9:b1:27:ed:c2:8b: c3:f5:29:30:ad:fa:06:65:57:60:b1:ab:f9:3e:98:2f:07:27: 9e:7e:bf:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYb6FQqRxFX59Wv4dt8le04JZWSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yNTA0MDkxMDU1MDBaFw0yNjA0MDgxMTAwMDBaMDMxMTAvBgNV BAMTKDlBNzExRTZFM0FGMzg0RDFDMTRERDQwOERDQkNBNUNENEJFNDYwNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCogdaETSWrDI+vEAxdJ+f6haBl z/FZf4k0VZz+Hn8xBJMdFKk1OxhrM8I+34NgOB87BBIu53tMV5dGKAnTywkhRycu HwnsKplFtIDYFxJR8EMV1w6yn/7IY9aZgyWCtVwP7Ms+zUqB1yxXFWS8OVqEEmEc 92T7Qmox/7a5ZLIaSs8fTGHJaqR4D1LvRGTbs3wS1FtYsGQ4jHMoQHzuo5jY9rjI LpgJDDBiR4J1quWd8xubOBymD0XHXe3/7eGNtUACrinflOMDLDIwToTPIPXvp4rH hu5tD9auF/LF3PIYCheyCp45XLleYXD3QUCYQgK3mSy74xr8NjYx+e8lsLttAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmnEebjrzhNHBTdQI3LylzUvkYHkwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpffMA0GCSqG SIb3DQEBCwUAA4IBAQCYBk7I3mikjMSS8czjIxBiNtRV7UUGXXJ6kxVAft5Cfbxo aKQ+N89DngVtfzMYX/CiulCnRRYelHMrdurqMy9ENka8pz1o8Tri13WjGUrFazkt E2i5KaiyXE1eYDw+aLUdknDe0HgpTi7lggBsrloeNVbZRfis91g8p2zFqss3Im52 RaMuBMDqNij+ll1tNelRs3ig3/O33Yb3J3wbzrV+OYvoQL0KGTu2ma8rnyQ93q+0 57UvHAfe6u9ciXxVGtvyk1DNiW9jLtcSDYX6vwXHV8gCqp6PmjuyRvdqozv9IL8X VbqpsSftwovD9SkwrfoGZVdgsav5PpgvByeefr/A -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:24 2025 by rpki-client on console.sobornost.net