$ rpki-client -vvf repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa File: 3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa (raw, json) Hash identifier: wL4jyeE9OG3mCA6Twfdl1VaSzPxamD0EwTijKmcLq7s= Subject key identifier: B6:4C:99:D8:91:72:9D:2D:5D:60:3A:DD:E9:09:D8:4E:32:AB:4B:9A Certificate issuer: /CN=8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2 Certificate serial: 40DABC6B84CF0E2336A77A2CAA627F267BFC77F0 Authority key identifier: 8B:0D:E1:41:AC:B8:11:E0:FE:65:08:5C:F2:33:9E:E4:C7:EE:05:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa Signing time: Tue 08 Apr 2025 09:00:00 +0000 ROA not before: Tue 08 Apr 2025 08:55:00 +0000 ROA not after: Tue 07 Apr 2026 09:00:00 +0000 asID: 149667 IP address blocks: 103.184.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.crl rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:da:bc:6b:84:cf:0e:23:36:a7:7a:2c:aa:62:7f:26:7b:fc:77:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2 Validity Not Before: Apr 8 08:55:00 2025 GMT Not After : Apr 7 09:00:00 2026 GMT Subject: CN=B64C99D891729D2D5D603ADDE909D84E32AB4B9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:b8:c1:47:00:b3:b5:33:fa:e3:a4:08:d9: 33:b7:ef:1b:cd:1d:54:e3:c9:6a:7c:e0:3b:b6:17: 27:09:0a:ca:77:e0:aa:6d:0c:37:24:64:44:a0:38: 79:9c:f6:de:e6:3c:f8:90:2a:09:17:0b:a5:ba:95: 28:e5:38:a1:cb:3d:ef:bb:8c:60:22:85:0e:fe:3c: 57:b4:fd:62:ad:fd:3f:23:9f:64:e7:8f:a7:c6:7d: 4e:89:42:62:d6:3d:38:31:16:e3:96:04:94:be:3e: 5a:bc:01:dd:26:23:3f:1e:fd:be:a6:2d:a8:3a:6f: e2:35:0c:e3:28:5e:b4:63:17:7b:6e:41:11:3c:18: 6c:bc:1b:a8:97:f1:2e:f4:cf:91:75:b5:bc:c4:47: 7e:1d:02:55:cc:74:1a:75:bc:75:27:23:40:cd:a1: fa:af:dc:1d:33:f5:8d:52:9c:06:4b:37:22:19:9e: 0a:23:55:16:16:31:eb:13:96:6a:a2:cd:b1:2f:d4: a6:fd:43:33:2c:10:62:62:14:69:b6:41:7a:9d:9a: cd:e3:e2:d7:5b:ce:f0:f1:74:59:32:23:08:a4:4a: 64:12:f5:48:67:9e:90:5b:c0:3f:c0:c7:03:2d:5a: 7d:81:f8:d2:0f:42:e8:38:f6:0c:4a:db:b3:07:c3: f8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4C:99:D8:91:72:9D:2D:5D:60:3A:DD:E9:09:D8:4E:32:AB:4B:9A X509v3 Authority Key Identifier: keyid:8B:0D:E1:41:AC:B8:11:E0:FE:65:08:5C:F2:33:9E:E4:C7:EE:05:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B0DE141ACB811E0FE65085CF2339EE4C7EE05A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6a57c5-df73-43f5-865d-6bd248c22fba/0/3130332e3138342e35362e302f32342d3234203d3e20313439363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.56.0/24 Signature Algorithm: sha256WithRSAEncryption 98:97:bc:1a:07:7d:e8:4f:7f:c2:58:5c:ec:82:81:d0:c7:05: a7:d5:85:ea:99:9c:29:5d:1f:c1:bb:74:21:55:44:b1:cc:54: e9:4e:d4:b9:2f:6c:7c:48:fd:9b:11:0a:f9:e6:3b:e4:87:29: c0:20:3b:9c:68:54:a8:29:fb:09:1c:38:e9:55:0e:07:ce:c1: 47:ee:4e:b3:07:9f:91:f7:38:34:24:04:80:9c:cc:33:6e:e0: 61:a5:28:ff:d7:1e:3c:c8:9a:38:a0:56:44:50:a4:aa:61:18: 60:96:b3:93:a7:cf:b8:76:d0:71:e5:2e:45:68:df:ba:8b:63: e6:e7:20:85:8a:84:a1:40:46:af:e1:e1:92:94:a6:87:ae:a7: 0b:57:d4:d9:0d:76:78:06:16:e5:7b:ea:5a:b1:af:db:57:11: 71:2b:7e:9e:bb:33:e3:48:24:58:38:d3:30:0f:a0:de:32:a0: a9:1a:71:92:3d:2f:8b:75:d1:8e:cf:20:78:74:3f:cc:78:5d: b3:54:1b:0f:e4:be:52:e6:55:ca:14:bd:29:a5:5f:38:78:b1: a1:b3:d1:21:55:e5:2f:b9:2f:21:7e:22:89:85:87:08:5a:3b: f6:fc:55:ba:4d:4b:84:49:1a:e9:dd:06:87:37:2c:30:68:dd: 95:44:2f:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQNq8a4TPDiM2p3osqmJ/Jnv8d/AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEIwREUxNDFBQ0I4MTFFMEZFNjUwODVDRjIzMzlFRTRD N0VFMDVBMjAeFw0yNTA0MDgwODU1MDBaFw0yNjA0MDcwOTAwMDBaMDMxMTAvBgNV BAMTKEI2NEM5OUQ4OTE3MjlEMkQ1RDYwM0FEREU5MDlEODRFMzJBQjRCOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPM7jBRwCztTP646QI2TO37xvN HVTjyWp84Du2FycJCsp34KptDDckZESgOHmc9t7mPPiQKgkXC6W6lSjlOKHLPe+7 jGAihQ7+PFe0/WKt/T8jn2Tnj6fGfU6JQmLWPTgxFuOWBJS+Plq8Ad0mIz8e/b6m Lag6b+I1DOMoXrRjF3tuQRE8GGy8G6iX8S70z5F1tbzER34dAlXMdBp1vHUnI0DN ofqv3B0z9Y1SnAZLNyIZngojVRYWMesTlmqizbEv1Kb9QzMsEGJiFGm2QXqdms3j 4tdbzvDxdFkyIwikSmQS9UhnnpBbwD/AxwMtWn2B+NIPQug49gxK27MHw/g1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtkyZ2JFynS1dYDrd6QnYTjKrS5owHwYDVR0j BBgwFoAUiw3hQay4EeD+ZQhc8jOe5MfuBaIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZhNTdjNS1kZjczLTQzZjUtODY1ZC02YmQyNDhjMjJmYmEvMC84QjBERTE0MUFD QjgxMUUwRkU2NTA4NUNGMjMzOUVFNEM3RUUwNUEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEIwREUxNDFBQ0I4MTFFMEZFNjUwODVDRjIzMzlFRTRDN0VF MDVBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmE1N2M1LWRmNzMtNDNmNS04 NjVkLTZiZDI0OGMyMmZiYS8wLzMxMzAzMzJlMzEzODM0MmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7g4MA0GCSqG SIb3DQEBCwUAA4IBAQCYl7waB33oT3/CWFzsgoHQxwWn1YXqmZwpXR/Bu3QhVUSx zFTpTtS5L2x8SP2bEQr55jvkhynAIDucaFSoKfsJHDjpVQ4HzsFH7k6zB5+R9zg0 JASAnMwzbuBhpSj/1x48yJo4oFZEUKSqYRhglrOTp8+4dtBx5S5FaN+6i2Pm5yCF ioShQEav4eGSlKaHrqcLV9TZDXZ4Bhble+pasa/bVxFxK36euzPjSCRYONMwD6De MqCpGnGSPS+LddGOzyB4dD/MeF2zVBsP5L5S5lXKFL0ppV84eLGhs9EhVeUvuS8h fiKJhYcIWjv2/FW6TUuESRrp3QaHNywwaN2VRC9B -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:16 2025 by rpki-client on console.sobornost.net