$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32342d3234203d3e20313337333633.roa File: 3230322e31302e35322e302f32342d3234203d3e20313337333633.roa (raw, json) Hash identifier: h0jtUkeClRH/RQiHCSY5/jNkH1epCPrd4PdfmPfAgug= Subject key identifier: 76:72:E3:F2:65:E1:AD:09:31:F4:1F:5A:2B:36:A2:AE:00:04:EE:65 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 0579ADE4361B7E031CA1C1BAB7047477787B90D6 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32342d3234203d3e20313337333633.roa Signing time: Mon 21 Apr 2025 06:22:08 +0000 ROA not before: Mon 21 Apr 2025 06:17:08 +0000 ROA not after: Mon 20 Apr 2026 06:22:08 +0000 asID: 137363 IP address blocks: 202.10.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 14:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:79:ad:e4:36:1b:7e:03:1c:a1:c1:ba:b7:04:74:77:78:7b:90:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Apr 21 06:17:08 2025 GMT Not After : Apr 20 06:22:08 2026 GMT Subject: CN=7672E3F265E1AD0931F41F5A2B36A2AE0004EE65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:9a:ca:83:d1:92:c1:38:d4:fa:dd:f8:0e: 9f:9a:55:69:79:fb:e0:a2:ae:4e:fd:23:15:47:33: 38:d5:c5:1f:92:8c:59:f4:61:23:30:58:9d:98:b6: a2:3b:4d:a3:29:3a:0c:16:b1:48:2b:5e:5e:f1:20: 47:43:20:ef:25:71:17:b2:95:6f:eb:b1:36:b6:21: 19:d7:ff:18:ff:ce:c4:49:70:d2:7e:6b:50:91:54: 69:0a:ca:c5:b8:34:bf:5e:5b:71:e7:08:95:e9:d9: 58:9c:fd:cb:55:d9:88:1c:f1:25:5b:f0:20:b4:c8: 8c:f2:04:cb:25:d2:d4:ad:76:d5:ca:77:56:f0:08: 3c:98:67:37:f5:bf:6d:d1:51:4c:5d:3b:33:c2:ea: 67:ab:85:f5:77:4c:00:e9:2e:7a:a2:fc:f0:be:4e: 32:b1:32:f5:ef:0c:55:e3:96:17:7a:30:23:ad:71: 3a:65:29:c7:16:4d:68:99:a3:d0:4d:d3:87:bd:e9: e7:b7:84:ff:26:5c:3c:6a:7c:88:5c:71:c6:c4:e2: 58:64:30:e4:f9:92:d3:1b:95:46:c5:d1:88:bb:ea: b8:8d:3a:89:59:9c:36:b6:07:35:8d:ef:1d:66:93: e7:c8:9c:9a:26:90:bd:81:47:a9:0a:3c:e3:4f:d4: c3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:72:E3:F2:65:E1:AD:09:31:F4:1F:5A:2B:36:A2:AE:00:04:EE:65 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32342d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.52.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:c1:ba:7d:f6:92:b2:98:f4:6b:96:4f:7f:fb:7e:85:f5:66: 00:af:f2:df:60:84:75:0d:24:74:bd:9e:70:06:03:5e:ec:66: 6f:95:a7:86:52:78:60:a9:72:7a:0b:41:cc:c8:69:24:6a:66: fd:ea:2e:45:c2:f6:0f:d9:fa:b0:24:fc:9c:b4:3b:c2:69:ba: cb:e2:98:b6:37:7a:ca:1e:4a:74:98:2a:e4:ec:c8:f8:80:b1: 6a:a8:22:9e:37:c1:41:68:46:ad:99:8b:73:6c:36:a3:29:a6: ee:36:50:ac:c0:e8:d2:51:09:ac:99:ea:e9:fa:0e:44:26:99: cf:53:b4:35:a0:24:d3:ef:f8:ea:df:f6:87:c3:b7:85:f4:92: 7d:90:86:30:e9:e1:9f:71:90:52:d4:c7:58:e3:d2:4f:77:2c: 93:f5:8f:1e:d2:44:75:db:ad:f5:30:41:12:f2:0e:02:60:26: 61:0c:43:c6:80:eb:25:07:be:b3:cc:30:b5:50:48:53:46:c3: b2:b6:e8:b2:7b:1f:c4:6d:75:a5:93:22:eb:6f:bd:3e:00:cf: 35:13:8a:c6:50:bf:dc:6c:4a:74:2e:48:b6:42:37:be:51:ee: 5d:50:06:a0:16:de:35:52:54:b4:fb:e0:00:05:9d:c9:29:64: a4:be:83:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBXmt5DYbfgMcocG6twR0d3h7kNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA0MjEwNjE3MDhaFw0yNjA0MjAwNjIyMDhaMDMxMTAvBgNV BAMTKDc2NzJFM0YyNjVFMUFEMDkzMUY0MUY1QTJCMzZBMkFFMDAwNEVFNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC30prKg9GSwTjU+t34Dp+aVWl5 ++Cirk79IxVHMzjVxR+SjFn0YSMwWJ2YtqI7TaMpOgwWsUgrXl7xIEdDIO8lcRey lW/rsTa2IRnX/xj/zsRJcNJ+a1CRVGkKysW4NL9eW3HnCJXp2Vic/ctV2Ygc8SVb 8CC0yIzyBMsl0tStdtXKd1bwCDyYZzf1v23RUUxdOzPC6merhfV3TADpLnqi/PC+ TjKxMvXvDFXjlhd6MCOtcTplKccWTWiZo9BN04e96ee3hP8mXDxqfIhcccbE4lhk MOT5ktMblUbF0Yi76riNOolZnDa2BzWN7x1mk+fInJomkL2BR6kKPONP1MPVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdnLj8mXhrQkx9B9aKzairgAE7mUwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKNDANBgkqhkiG 9w0BAQsFAAOCAQEAjMG6ffaSspj0a5ZPf/t+hfVmAK/y32CEdQ0kdL2ecAYDXuxm b5WnhlJ4YKlyegtBzMhpJGpm/eouRcL2D9n6sCT8nLQ7wmm6y+KYtjd6yh5KdJgq 5OzI+ICxaqginjfBQWhGrZmLc2w2oymm7jZQrMDo0lEJrJnq6foORCaZz1O0NaAk 0+/46t/2h8O3hfSSfZCGMOnhn3GQUtTHWOPST3csk/WPHtJEddut9TBBEvIOAmAm YQxDxoDrJQe+s8wwtVBIU0bDsrbosnsfxG11pZMi62+9PgDPNROKxlC/3GxKdC5I tkI3vlHuXVAGoBbeNVJUtPvgAAWdySlkpL6DVw== -----END CERTIFICATE-----Generated at Fri Apr 25 12:54:06 2025 by rpki-client on console.sobornost.net