$ rpki-client -vvf repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa File: 3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa (raw, json) Hash identifier: tzY1XNU5cVp0pp1q9NAQ2OMSeEZ2zfRfv6jNIeP9/Ac= Subject key identifier: 86:3E:B4:2E:6A:8A:4F:B3:3D:E9:8F:C8:C7:63:C2:85:DF:D5:F0:5A Certificate issuer: /CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Certificate serial: 40254AC82F077BE9FA87B513B90D29EDA2CB1B2E Authority key identifier: CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa Signing time: Fri 07 Mar 2025 05:01:17 +0000 ROA not before: Fri 07 Mar 2025 04:56:17 +0000 ROA not after: Fri 06 Mar 2026 05:01:17 +0000 asID: 150970 IP address blocks: 103.132.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:25:4a:c8:2f:07:7b:e9:fa:87:b5:13:b9:0d:29:ed:a2:cb:1b:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Validity Not Before: Mar 7 04:56:17 2025 GMT Not After : Mar 6 05:01:17 2026 GMT Subject: CN=863EB42E6A8A4FB33DE98FC8C763C285DFD5F05A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5c:47:3a:44:45:85:e2:1c:03:e3:ba:d3:6f: 3d:f4:2f:54:d4:b8:22:3f:94:6e:a1:f2:a6:e3:33: 83:68:1d:26:58:18:7c:dd:4a:9d:a8:c4:dc:83:a2: 3e:13:9f:37:53:15:96:db:02:7f:60:64:59:5e:10: 50:42:f5:ed:0d:b0:26:b2:4f:86:15:bc:52:ad:ed: c0:1a:3f:21:dd:66:3a:db:2a:b8:af:d1:dd:6c:8c: 6b:33:36:2f:d1:c2:25:1e:2b:b4:39:7a:10:02:f2: a6:b5:c7:9b:84:a5:ae:48:46:af:02:ae:9a:d3:44: da:ad:6b:f9:a6:b2:6b:0f:6e:c9:86:1e:8d:cb:da: 25:b9:32:97:f2:16:14:ca:60:2f:cc:61:09:9c:e7: 5d:31:26:16:64:df:b3:86:77:34:54:32:a0:b0:37: 25:9e:e1:0e:2b:a2:a0:88:01:b3:10:d5:21:a1:6c: cc:6c:e8:eb:c7:79:1a:f5:70:3a:ea:6e:b1:4d:96: e0:40:87:1b:b2:1d:5d:3a:7f:ed:92:65:3e:74:9a: 18:70:45:bf:13:b7:a3:f5:76:a1:b2:58:85:ac:85: b3:06:7c:02:45:35:fd:be:f2:bc:f3:03:81:1a:75: 57:c4:6f:7a:97:e2:9e:e5:00:26:18:cb:34:10:fd: db:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3E:B4:2E:6A:8A:4F:B3:3D:E9:8F:C8:C7:63:C2:85:DF:D5:F0:5A X509v3 Authority Key Identifier: keyid:CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.41.0/24 Signature Algorithm: sha256WithRSAEncryption b4:c4:0e:d3:f2:f7:65:74:d1:5b:2e:5c:86:23:19:4c:74:6c: f5:57:13:a1:e9:b7:be:fc:80:4e:63:92:19:7f:22:ad:b8:2e: 65:60:9e:6d:17:7c:6e:c2:74:4c:49:5a:dd:6b:85:c0:bf:59: 18:cc:71:b9:ac:a3:4a:06:3d:0b:bd:06:53:21:ea:8e:cb:54: a8:c8:55:d3:ac:2a:d8:29:c8:0a:11:93:f5:03:a7:89:71:ca: 07:c1:26:3f:a4:83:b6:0f:45:b9:bf:52:40:3c:bb:cb:ef:11: 42:cc:94:9b:cd:c5:4d:ce:ef:12:63:74:47:66:52:5d:7d:e9: 19:5a:d6:3d:97:f0:60:9b:db:8f:23:e2:0d:60:d2:67:4d:6d: 95:14:b1:27:5d:22:bd:31:7c:01:cb:18:c9:a4:24:ef:2a:f9: 61:95:11:4c:a4:3c:5d:a5:1d:74:bf:d5:d5:ef:f9:1c:be:50: a2:b2:f1:37:95:e1:17:82:47:80:a0:f0:f6:a4:a4:11:86:fa: d3:cb:54:a2:f8:66:17:70:9f:ef:d9:19:36:56:5e:0a:b9:c4: 2c:9f:da:4f:c1:e4:99:a0:23:b1:60:b1:b5:4c:79:f2:b1:63: 26:30:5b:b0:bc:d0:e5:dd:3a:9f:6d:96:37:c0:f2:29:87:88: 31:45:84:68 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQCVKyC8He+n6h7UTuQ0p7aLLGy4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJE MkYwRUI4NTAeFw0yNTAzMDcwNDU2MTdaFw0yNjAzMDYwNTAxMTdaMDMxMTAvBgNV BAMTKDg2M0VCNDJFNkE4QTRGQjMzREU5OEZDOEM3NjNDMjg1REZENUYwNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQXEc6REWF4hwD47rTbz30L1TU uCI/lG6h8qbjM4NoHSZYGHzdSp2oxNyDoj4TnzdTFZbbAn9gZFleEFBC9e0NsCay T4YVvFKt7cAaPyHdZjrbKriv0d1sjGszNi/RwiUeK7Q5ehAC8qa1x5uEpa5IRq8C rprTRNqta/mmsmsPbsmGHo3L2iW5MpfyFhTKYC/MYQmc510xJhZk37OGdzRUMqCw NyWe4Q4roqCIAbMQ1SGhbMxs6OvHeRr1cDrqbrFNluBAhxuyHV06f+2SZT50mhhw Rb8Tt6P1dqGyWIWshbMGfAJFNf2+8rzzA4EadVfEb3qX4p7lACYYyzQQ/dtLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhj60LmqKT7M96Y/Ix2PChd/V8FowHwYDVR0j BBgwFoAUy5ZiczFTwC5MQRt9LyueItLw64UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGYyZmZkYS0wNWQxLTQwODUtYTEzNS0wMzk4N2EwN2YzOWUvMC9DQjk2NjI3MzMx NTNDMDJFNEM0MTFCN0QyRjJCOUUyMkQyRjBFQjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJEMkYw RUI4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkZjJmZmRhLTA1ZDEtNDA4NS1h MTM1LTAzOTg3YTA3ZjM5ZS8wLzMxMzAzMzJlMzEzMzMyMmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4QpMA0GCSqG SIb3DQEBCwUAA4IBAQC0xA7T8vdldNFbLlyGIxlMdGz1VxOh6be+/IBOY5IZfyKt uC5lYJ5tF3xuwnRMSVrda4XAv1kYzHG5rKNKBj0LvQZTIeqOy1SoyFXTrCrYKcgK EZP1A6eJccoHwSY/pIO2D0W5v1JAPLvL7xFCzJSbzcVNzu8SY3RHZlJdfekZWtY9 l/Bgm9uPI+INYNJnTW2VFLEnXSK9MXwByxjJpCTvKvlhlRFMpDxdpR10v9XV7/kc vlCisvE3leEXgkeAoPD2pKQRhvrTy1Si+GYXcJ/v2Rk2Vl4KucQsn9pPweSZoCOx YLG1THnysWMmMFuwvNDl3TqfbZY3wPIph4gxRYRo -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:24 2025 by rpki-client on console.sobornost.net