$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa File: 3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa (raw, json) Hash identifier: Yh/X3wf3xgSBLANEs82b75GugxHKann/OAKH3YrZy2U= Subject key identifier: EE:A4:2A:83:18:FE:05:1E:FB:97:D9:26:13:48:4A:7B:9F:48:F5:9D Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 1B42493D7780A0471F7A8216E725EA35D8740798 Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa Signing time: Mon 07 Apr 2025 12:00:02 +0000 ROA not before: Mon 07 Apr 2025 11:55:02 +0000 ROA not after: Mon 06 Apr 2026 12:00:02 +0000 asID: 138070 IP address blocks: 103.123.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:42:49:3d:77:80:a0:47:1f:7a:82:16:e7:25:ea:35:d8:74:07:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Apr 7 11:55:02 2025 GMT Not After : Apr 6 12:00:02 2026 GMT Subject: CN=EEA42A8318FE051EFB97D92613484A7B9F48F59D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:f5:f6:d7:a8:f5:6d:95:b1:f5:90:1f:3d: d1:a2:39:7c:7f:49:ca:55:01:a8:f4:91:28:f3:56: 4b:ba:aa:04:38:5f:73:2e:bd:ed:38:a1:f9:19:78: a8:5f:aa:ff:ed:9c:bb:ef:97:e9:03:bc:2e:77:c4: 9f:98:db:42:34:5e:d8:b2:9d:54:b5:65:71:b6:83: 48:05:9a:d3:c5:c3:ae:71:b7:69:63:1d:b6:df:92: 90:12:c7:6f:e3:2c:f1:44:4e:0b:da:ce:e4:9b:69: dd:2c:5c:0b:cd:9e:46:47:dd:b2:30:06:04:e0:1a: 27:7f:bb:4c:3a:aa:04:f1:8f:3a:f7:9e:80:38:c2: 9a:da:60:7b:c7:37:c1:90:34:2e:35:79:04:b2:9e: 93:d2:64:d5:45:1c:a9:07:b3:0a:3a:c1:05:12:f1: 9e:e5:a7:bf:2f:af:79:ab:3a:73:9d:2c:0f:40:53: c6:c9:bf:13:42:7d:1f:56:36:50:2c:67:99:89:73: 69:3b:25:c2:6c:ad:a4:a4:e5:79:ec:8d:78:f2:fc: f8:6d:4c:08:9e:fb:50:37:cb:35:01:73:92:0f:d7: ce:09:e8:2a:ad:af:d9:32:d3:62:26:71:6f:33:9e: 07:fe:31:3f:c5:ad:f6:ef:d3:0a:97:c4:00:4b:67: 19:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A4:2A:83:18:FE:05:1E:FB:97:D9:26:13:48:4A:7B:9F:48:F5:9D X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:ed:84:d0:47:55:3c:38:41:a1:b9:4d:3f:51:ed:2f:84:56: 86:3c:ce:ae:cf:70:6b:f1:57:06:56:0b:f2:0c:19:64:9d:bb: d2:00:b1:4a:0c:4d:0a:26:89:29:42:f4:32:a6:5f:e1:f2:e0: 36:6c:1d:ab:9e:c4:69:86:1a:76:21:df:83:bb:ce:79:cc:f4: c2:4a:9d:c6:92:01:79:bc:c9:7a:2f:67:5f:22:24:c6:7e:51: 85:bb:5d:6e:4a:72:bd:43:2a:cc:a6:89:70:1f:fb:69:b7:ec: 3f:47:61:06:52:2e:28:3f:de:13:8e:76:6e:79:b6:48:ac:8f: 68:a7:2f:bb:72:92:6c:9d:0c:cd:19:54:63:34:45:20:37:72: 6c:96:85:91:48:18:8c:75:0d:75:f9:db:8c:a9:e0:6f:11:08: cf:e1:21:b3:7e:b7:fa:96:7b:12:bc:09:1f:d9:1d:14:77:93: af:06:ba:37:21:e5:3f:fe:47:19:8f:5e:76:82:2c:de:b9:e3: f8:89:a7:30:80:eb:95:26:3d:07:9c:b2:f3:1b:96:7b:ba:5d: 40:ff:d2:35:88:28:34:00:c7:fb:2d:c8:84:d2:a9:3f:85:6c: 33:36:80:c0:e5:3b:14:be:c8:cf:df:c3:88:35:30:ed:ea:f3: ae:d2:81:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG0JJPXeAoEcfeoIW5yXqNdh0B5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNTA0MDcxMTU1MDJaFw0yNjA0MDYxMjAwMDJaMDMxMTAvBgNV BAMTKEVFQTQyQTgzMThGRTA1MUVGQjk3RDkyNjEzNDg0QTdCOUY0OEY1OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC00fX216j1bZWx9ZAfPdGiOXx/ ScpVAaj0kSjzVku6qgQ4X3Muve04ofkZeKhfqv/tnLvvl+kDvC53xJ+Y20I0Xtiy nVS1ZXG2g0gFmtPFw65xt2ljHbbfkpASx2/jLPFETgvazuSbad0sXAvNnkZH3bIw BgTgGid/u0w6qgTxjzr3noA4wpraYHvHN8GQNC41eQSynpPSZNVFHKkHswo6wQUS 8Z7lp78vr3mrOnOdLA9AU8bJvxNCfR9WNlAsZ5mJc2k7JcJsraSk5XnsjXjy/Pht TAie+1A3yzUBc5IP184J6Cqtr9ky02ImcW8zngf+MT/Frfbv0wqXxABLZxlnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7qQqgxj+BR77l9kmE0hKe59I9Z0wHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJne2gwDQYJ KoZIhvcNAQELBQADggEBAJzthNBHVTw4QaG5TT9R7S+EVoY8zq7PcGvxVwZWC/IM GWSdu9IAsUoMTQomiSlC9DKmX+Hy4DZsHauexGmGGnYh34O7znnM9MJKncaSAXm8 yXovZ18iJMZ+UYW7XW5Kcr1DKsymiXAf+2m37D9HYQZSLig/3hOOdm55tkisj2in L7tykmydDM0ZVGM0RSA3cmyWhZFIGIx1DXX524yp4G8RCM/hIbN+t/qWexK8CR/Z HRR3k68Gujch5T/+RxmPXnaCLN654/iJpzCA65UmPQecsvMblnu6XUD/0jWIKDQA x/styITSqT+FbDM2gMDlOxS+yM/fw4g1MO3q867SgSg= -----END CERTIFICATE-----Generated at Fri Apr 25 08:21:09 2025 by rpki-client on console.sobornost.net