$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa File: 3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa (raw, json) Hash identifier: XUWP+J9cvuEQSSGHy4M/T/iYKO/r80nwPBRiVQOYFpw= Subject key identifier: C8:8C:80:E8:4F:0F:63:87:7D:0E:90:35:AA:0B:35:65:93:4A:A2:F8 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 6345542700A38F1F3209C129638E07C20BE4DC5C Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa Signing time: Tue 22 Apr 2025 08:03:49 +0000 ROA not before: Tue 22 Apr 2025 07:58:49 +0000 ROA not after: Tue 21 Apr 2026 08:03:49 +0000 asID: 24525 IP address blocks: 114.199.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:45:54:27:00:a3:8f:1f:32:09:c1:29:63:8e:07:c2:0b:e4:dc:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 07:58:49 2025 GMT Not After : Apr 21 08:03:49 2026 GMT Subject: CN=C88C80E84F0F63877D0E9035AA0B3565934AA2F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:42:25:07:93:31:61:61:8d:2f:cb:4d:98:6c: 72:05:c1:48:1a:06:45:05:29:97:ce:a3:cb:c8:53: c4:7b:e6:cb:96:1e:8a:4d:42:d0:30:b1:d6:69:1e: 6a:62:6d:d0:0b:52:fe:06:7c:91:6c:83:72:7c:32: 26:92:5f:0d:24:d1:f5:70:1a:15:30:b1:72:aa:a1: 54:14:c7:dd:03:54:3b:6f:bf:e0:e3:df:ca:e3:0d: 19:22:60:a7:79:d0:3a:81:c0:25:64:e1:e4:f1:62: f9:44:27:e9:a5:3a:12:de:07:05:43:7e:28:3e:3b: 98:ce:87:0a:64:80:70:80:f9:d2:72:0d:65:74:06: 39:f4:ff:7f:8d:32:d2:c4:33:bb:52:ef:f1:02:90: 33:3b:e9:4c:6d:ca:ab:fa:b8:9c:1a:a5:70:67:24: ca:4e:fb:ed:3e:de:de:e2:8f:7e:db:ab:df:18:4a: 5e:5d:fb:c6:00:31:a1:ee:b7:cf:30:ed:cb:89:1d: 13:ab:12:6c:f6:04:22:88:84:fd:76:21:bd:92:95: 85:cd:9f:99:9d:1c:73:41:42:f7:28:52:2d:0a:59: 17:dc:0f:90:be:31:c0:41:e5:7c:9b:57:42:ec:76: 14:0d:15:f3:01:b1:56:c0:1b:ac:0b:b4:f4:54:a5: ff:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8C:80:E8:4F:0F:63:87:7D:0E:90:35:AA:0B:35:65:93:4A:A2:F8 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3131342e3139392e3130382e302f32332d3233203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.199.108.0/23 Signature Algorithm: sha256WithRSAEncryption a6:d2:21:59:47:39:2a:2d:de:20:e1:c8:e8:82:bb:0b:ea:ae: 72:79:82:61:e1:fd:1b:5d:3b:0d:59:cc:f7:d8:38:be:5c:42: 76:b8:b8:b0:7b:88:cc:d8:e3:03:26:26:50:57:7f:80:94:15: f2:5c:35:0c:0e:2f:9a:f7:f3:d6:60:74:63:dc:73:02:da:28: 16:3c:85:b2:bd:9e:a4:d9:f5:70:54:51:10:0a:de:e2:15:1f: f8:7a:ee:83:c9:f4:54:50:9b:af:7e:a1:40:8a:a7:15:fd:ab: d4:e4:9d:59:32:5b:5f:7c:ce:1e:a9:2f:1a:35:18:85:07:02: 30:7a:93:6f:7c:e7:3d:93:b6:59:25:8d:19:f3:ed:45:16:00: 81:09:7b:57:65:54:d9:51:aa:e9:9a:1a:0e:69:3d:a3:c7:c6: 7c:b5:2f:bf:61:14:fe:27:2a:70:49:44:e8:93:94:c0:28:f4: 80:0d:a3:d1:f3:ab:fa:c3:37:ed:2d:6f:0e:b9:c6:dd:0d:ba: ce:6a:aa:60:7e:12:a9:b4:fc:85:e7:c7:96:ef:26:e3:e1:04: e7:25:87:d0:16:34:9a:ae:ae:a9:86:a1:a8:08:74:b6:de:2c: 03:9a:63:28:2c:af:23:c2:fa:b1:40:a0:c5:ea:ca:b2:84:23: 4c:28:e9:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY0VUJwCjjx8yCcEpY44Hwgvk3FwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNzU4NDlaFw0yNjA0MjEwODAzNDlaMDMxMTAvBgNV BAMTKEM4OEM4MEU4NEYwRjYzODc3RDBFOTAzNUFBMEIzNTY1OTM0QUEyRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5QiUHkzFhYY0vy02YbHIFwUga BkUFKZfOo8vIU8R75suWHopNQtAwsdZpHmpibdALUv4GfJFsg3J8MiaSXw0k0fVw GhUwsXKqoVQUx90DVDtvv+Dj38rjDRkiYKd50DqBwCVk4eTxYvlEJ+mlOhLeBwVD fig+O5jOhwpkgHCA+dJyDWV0Bjn0/3+NMtLEM7tS7/ECkDM76Uxtyqv6uJwapXBn JMpO++0+3t7ij37bq98YSl5d+8YAMaHut88w7cuJHROrEmz2BCKIhP12Ib2SlYXN n5mdHHNBQvcoUi0KWRfcD5C+McBB5XybV0LsdhQNFfMBsVbAG6wLtPRUpf+LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyIyA6E8PY4d9DpA1qgs1ZZNKovgwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMxMzEzNDJlMzEzOTM5MmUzMTMwMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzUzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBcsdsMA0GCSqG SIb3DQEBCwUAA4IBAQCm0iFZRzkqLd4g4cjogrsL6q5yeYJh4f0bXTsNWcz32Di+ XEJ2uLiwe4jM2OMDJiZQV3+AlBXyXDUMDi+a9/PWYHRj3HMC2igWPIWyvZ6k2fVw VFEQCt7iFR/4eu6DyfRUUJuvfqFAiqcV/avU5J1ZMltffM4eqS8aNRiFBwIwepNv fOc9k7ZZJY0Z8+1FFgCBCXtXZVTZUarpmhoOaT2jx8Z8tS+/YRT+JypwSUTok5TA KPSADaPR86v6wzftLW8OucbdDbrOaqpgfhKptPyF58eW7ybj4QTnJYfQFjSarq6p hqGoCHS23iwDmmMoLK8jwvqxQKDF6sqyhCNMKOlJ -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net