$ rpki-client -vvf repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34302e302f32332d3234203d3e20313530393730.roa File: 3130332e3133322e34302e302f32332d3234203d3e20313530393730.roa (raw, json) Hash identifier: KLg+Fz2BzcIwd4SxZ1zeV5yC0o2hRKcPTvTH6A9r9sk= Subject key identifier: 61:1B:BC:B5:21:32:7F:6F:F6:C5:5B:02:72:AD:26:EB:1E:6C:7D:C3 Certificate issuer: /CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Certificate serial: 02D7A42EF7A07B2443C87FBB92695DB4243C46F8 Authority key identifier: CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34302e302f32332d3234203d3e20313530393730.roa Signing time: Sat 08 Mar 2025 04:02:21 +0000 ROA not before: Sat 08 Mar 2025 03:57:21 +0000 ROA not after: Sat 07 Mar 2026 04:02:21 +0000 asID: 150970 IP address blocks: 103.132.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d7:a4:2e:f7:a0:7b:24:43:c8:7f:bb:92:69:5d:b4:24:3c:46:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Validity Not Before: Mar 8 03:57:21 2025 GMT Not After : Mar 7 04:02:21 2026 GMT Subject: CN=611BBCB521327F6FF6C55B0272AD26EB1E6C7DC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ce:2d:33:29:2b:20:4d:fd:5c:62:c9:68:0a: 8a:f9:f4:49:08:12:8e:08:2d:cd:9f:cc:3f:e0:d4: 64:2b:7b:54:6c:f9:14:79:e2:6f:1a:58:6c:2a:c8: c7:b3:68:1c:3b:39:b3:a7:e5:05:92:ff:56:fd:b4: 6b:10:f4:30:a4:33:79:db:df:18:4f:92:02:8e:f4: 67:e5:c5:83:21:cc:94:13:bc:9b:9d:2f:d6:50:74: 81:a7:3c:46:a4:66:61:04:50:c2:14:2d:aa:50:b7: d5:4f:de:e2:04:d5:17:29:4b:29:9b:93:d2:b5:42: 85:cc:36:a0:3a:88:49:ca:45:f7:b1:98:a6:55:42: 92:4d:a1:b1:c2:a8:b2:94:9e:a6:a6:91:89:33:68: aa:ec:82:1e:04:35:a5:fc:46:71:c2:c0:fc:8c:5f: 66:57:26:1e:c5:33:36:f7:0d:5c:8c:31:c1:81:3f: c8:82:48:a8:1d:04:3f:02:eb:37:4f:da:ae:51:65: e4:27:55:45:c6:71:38:9d:36:8e:24:d1:20:62:44: e9:b4:3f:ec:5b:48:79:19:0e:dc:b9:21:89:2d:10: 22:f3:8f:23:bf:a1:79:56:3a:2e:09:2e:12:4c:00: 1d:1d:27:74:89:78:35:41:ca:ec:87:04:f6:8c:fd: 33:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1B:BC:B5:21:32:7F:6F:F6:C5:5B:02:72:AD:26:EB:1E:6C:7D:C3 X509v3 Authority Key Identifier: keyid:CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34302e302f32332d3234203d3e20313530393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.40.0/23 Signature Algorithm: sha256WithRSAEncryption 93:4c:0c:e2:ff:63:a0:63:7d:0d:42:12:a4:65:a1:70:62:15: cf:cd:f9:b9:c6:79:37:a6:59:97:8d:fd:e7:18:40:64:52:d3: 0a:2b:9b:e1:8e:e8:04:58:92:36:95:b9:50:72:4a:8b:32:27: 20:24:55:ab:72:27:89:0f:45:01:87:ce:f5:8d:bf:2b:35:07: df:18:e9:22:02:90:19:a8:87:36:cb:dd:cd:bc:e4:12:1a:95: 53:3b:bc:ea:9a:85:be:ef:0f:98:8f:09:02:d0:87:bd:7c:d6: 2a:3c:13:cd:22:6d:00:50:7c:07:fe:1f:f4:92:15:de:40:2c: 42:64:d2:bb:d9:12:78:c8:5f:e8:3e:ca:54:74:46:47:c5:03: f6:52:6c:f5:24:50:ab:5d:d6:6a:c8:bd:24:d7:7a:dd:4d:61: e3:55:2f:02:36:32:96:46:25:29:0c:ba:75:a5:87:d7:47:20: 67:73:9c:68:4e:82:e4:56:81:ba:4f:93:0b:38:c9:ab:c1:5f: 29:88:fd:00:43:01:61:2b:05:0a:4d:27:31:b8:c6:5f:72:f4: e8:c3:f8:e3:cd:41:fc:ac:2e:5c:77:fe:c1:fa:e1:5c:77:29: 7e:60:3f:d8:be:e2:dc:be:00:df:ee:5b:82:2d:4e:26:ef:a3: d8:b3:cd:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAtekLvegeyRDyH+7kmldtCQ8RvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJE MkYwRUI4NTAeFw0yNTAzMDgwMzU3MjFaFw0yNjAzMDcwNDAyMjFaMDMxMTAvBgNV BAMTKDYxMUJCQ0I1MjEzMjdGNkZGNkM1NUIwMjcyQUQyNkVCMUU2QzdEQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0zi0zKSsgTf1cYsloCor59EkI Eo4ILc2fzD/g1GQre1Rs+RR54m8aWGwqyMezaBw7ObOn5QWS/1b9tGsQ9DCkM3nb 3xhPkgKO9GflxYMhzJQTvJudL9ZQdIGnPEakZmEEUMIULapQt9VP3uIE1RcpSymb k9K1QoXMNqA6iEnKRfexmKZVQpJNobHCqLKUnqamkYkzaKrsgh4ENaX8RnHCwPyM X2ZXJh7FMzb3DVyMMcGBP8iCSKgdBD8C6zdP2q5RZeQnVUXGcTidNo4k0SBiROm0 P+xbSHkZDty5IYktECLzjyO/oXlWOi4JLhJMAB0dJ3SJeDVByuyHBPaM/TPLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYRu8tSEyf2/2xVsCcq0m6x5sfcMwHwYDVR0j BBgwFoAUy5ZiczFTwC5MQRt9LyueItLw64UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGYyZmZkYS0wNWQxLTQwODUtYTEzNS0wMzk4N2EwN2YzOWUvMC9DQjk2NjI3MzMx NTNDMDJFNEM0MTFCN0QyRjJCOUUyMkQyRjBFQjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJEMkYw RUI4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkZjJmZmRhLTA1ZDEtNDA4NS1h MTM1LTAzOTg3YTA3ZjM5ZS8wLzMxMzAzMzJlMzEzMzMyMmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4QoMA0GCSqG SIb3DQEBCwUAA4IBAQCTTAzi/2OgY30NQhKkZaFwYhXPzfm5xnk3plmXjf3nGEBk UtMKK5vhjugEWJI2lblQckqLMicgJFWrcieJD0UBh871jb8rNQffGOkiApAZqIc2 y93NvOQSGpVTO7zqmoW+7w+YjwkC0Ie9fNYqPBPNIm0AUHwH/h/0khXeQCxCZNK7 2RJ4yF/oPspUdEZHxQP2Umz1JFCrXdZqyL0k13rdTWHjVS8CNjKWRiUpDLp1pYfX RyBnc5xoToLkVoG6T5MLOMmrwV8piP0AQwFhKwUKTScxuMZfcvTow/jjzUH8rC5c d/7B+uFcdyl+YD/YvuLcvgDf7luCLU4m76PYs805 -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:24 2025 by rpki-client on console.sobornost.net