$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: dta96fOO5R3KY41745HRH3tf4b61/DKoGwUN3Q11U24= Subject key identifier: 7E:45:B1:FB:C3:C1:0A:1C:29:AD:4F:0B:39:BC:03:74:4A:08:3A:5C Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 6969AAA6FE104E668EA25CB5DB35010ACF1633CF Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa Signing time: Sat 05 Apr 2025 17:00:02 +0000 ROA not before: Sat 05 Apr 2025 16:55:02 +0000 ROA not after: Sat 04 Apr 2026 17:00:02 +0000 asID: 133799 IP address blocks: 103.42.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:69:aa:a6:fe:10:4e:66:8e:a2:5c:b5:db:35:01:0a:cf:16:33:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Apr 5 16:55:02 2025 GMT Not After : Apr 4 17:00:02 2026 GMT Subject: CN=7E45B1FBC3C10A1C29AD4F0B39BC03744A083A5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c0:cd:3c:3a:f9:e3:86:28:a5:54:6d:fa:4c: 5c:58:f9:02:c9:4f:b4:95:ec:4c:c6:d0:26:ef:0c: dc:80:9e:b2:41:53:4f:56:35:f1:a3:f2:e5:e9:ed: df:46:45:3f:99:6f:f3:53:87:12:ec:97:f5:20:21: 57:6e:7f:5b:d2:5a:62:e3:0e:75:1b:11:ec:bc:f2: a5:ed:db:db:25:4a:c6:a9:5a:0d:29:81:a5:35:27: e5:e1:1b:f2:5c:17:d5:a9:7f:03:a6:7e:f9:6c:dc: 70:23:8b:25:96:d8:39:00:ba:15:85:ba:31:c1:0b: fb:d1:c6:72:1d:91:cd:28:8b:b5:1b:2b:40:94:ec: bd:1d:ef:42:ff:3c:1e:1f:d1:c4:88:3b:b8:83:27: b1:29:a4:e0:0f:10:74:21:3e:f2:9c:6a:7e:40:30: 1c:21:81:b1:8c:10:b6:24:00:a7:2f:02:3d:67:71: 41:09:4c:02:6c:a5:59:cd:ad:c4:8c:c0:b6:41:b3: 72:a3:c5:2e:51:a7:ba:7d:0f:22:b9:0b:6e:cf:0f: 8d:f5:16:8c:27:5b:aa:f8:35:e5:26:c4:3b:9a:b8: 2a:73:80:4d:f7:3e:ab:5e:f8:25:f0:47:e6:aa:ef: b6:a0:ea:72:a5:e7:b2:57:39:36:0c:21:73:9f:f5: a5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:45:B1:FB:C3:C1:0A:1C:29:AD:4F:0B:39:BC:03:74:4A:08:3A:5C X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.254.0/24 Signature Algorithm: sha256WithRSAEncryption cd:09:d6:c7:85:d9:f6:b5:59:e0:ba:68:75:f5:ae:b4:cf:54: 6f:4a:72:c1:2f:4a:a5:fd:b4:cf:01:e8:2f:e5:a5:11:99:89: 32:04:1c:6e:61:c5:2a:2d:64:1e:d8:67:1e:68:6c:c4:b8:08: 13:6f:b4:01:0e:43:07:0e:c5:cf:00:d4:b5:7d:a3:be:20:e9: 2d:07:22:a9:6f:a9:10:d6:7e:e1:2c:1e:be:08:22:aa:67:fc: ba:71:5a:74:a6:90:1a:96:d3:ca:f4:01:7c:00:14:26:d5:4a: 42:1c:14:ec:3a:68:6c:06:3f:3b:09:bc:f7:f6:d7:b9:0f:5b: 48:7f:b8:04:44:43:95:81:6c:c6:07:83:73:c8:d8:7c:57:b4: 9f:09:10:72:e9:46:3d:4f:e9:3d:51:0d:4d:b5:9b:f2:85:6f: fe:c0:9d:a7:c0:f9:26:95:1a:cf:0a:15:eb:2f:ae:15:28:d9: 8d:1a:2c:43:5c:23:e3:3a:1e:4d:62:ec:30:64:03:d3:b3:c0: a0:b2:8d:e3:e1:f1:a9:7e:ed:92:34:40:d9:a7:71:af:6b:10: 13:b5:7d:84:75:ab:dc:2c:44:0f:07:fa:a8:ab:0e:e3:5a:c5: f9:bb:8a:25:10:8c:c1:e9:d2:67:94:e8:69:47:d0:a2:ab:68: bb:34:d5:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaWmqpv4QTmaOoly12zUBCs8WM88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNTA0MDUxNjU1MDJaFw0yNjA0MDQxNzAwMDJaMDMxMTAvBgNV BAMTKDdFNDVCMUZCQzNDMTBBMUMyOUFENEYwQjM5QkMwMzc0NEEwODNBNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwM08OvnjhiilVG36TFxY+QLJ T7SV7EzG0CbvDNyAnrJBU09WNfGj8uXp7d9GRT+Zb/NThxLsl/UgIVduf1vSWmLj DnUbEey88qXt29slSsapWg0pgaU1J+XhG/JcF9WpfwOmfvls3HAjiyWW2DkAuhWF ujHBC/vRxnIdkc0oi7UbK0CU7L0d70L/PB4f0cSIO7iDJ7EppOAPEHQhPvKcan5A MBwhgbGMELYkAKcvAj1ncUEJTAJspVnNrcSMwLZBs3KjxS5Rp7p9DyK5C27PD431 FownW6r4NeUmxDuauCpzgE33Pqte+CXwR+aq77ag6nKl57JXOTYMIXOf9aUxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfkWx+8PBChwprU8LObwDdEoIOlwwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr+MA0GCSqG SIb3DQEBCwUAA4IBAQDNCdbHhdn2tVngumh19a60z1RvSnLBL0ql/bTPAegv5aUR mYkyBBxuYcUqLWQe2GceaGzEuAgTb7QBDkMHDsXPANS1faO+IOktByKpb6kQ1n7h LB6+CCKqZ/y6cVp0ppAaltPK9AF8ABQm1UpCHBTsOmhsBj87Cbz39te5D1tIf7gE REOVgWzGB4NzyNh8V7SfCRBy6UY9T+k9UQ1NtZvyhW/+wJ2nwPkmlRrPChXrL64V KNmNGixDXCPjOh5NYuwwZAPTs8Cgso3j4fGpfu2SNEDZp3GvaxATtX2EdavcLEQP B/qoqw7jWsX5u4olEIzB6dJnlOhpR9Ciq2i7NNXI -----END CERTIFICATE-----Generated at Sat Apr 26 08:46:12 2025 by rpki-client on console.sobornost.net