$ rpki-client -vvf repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/3130332e3138362e38382e302f32342d3234203d3e20313439373137.roa File: 3130332e3138362e38382e302f32342d3234203d3e20313439373137.roa (raw, json) Hash identifier: qKtIrqocYRtH9mFT0B1bJLwWXs7q8vOuLUP4J+rTPCk= Subject key identifier: 8F:36:FC:35:F7:41:CA:08:E5:B5:09:5E:E2:84:8A:0B:42:B8:71:24 Certificate issuer: /CN=7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0 Certificate serial: 40AB9127310B550C5ECA418F7891439AD9F81179 Authority key identifier: 7F:DB:76:1B:09:E7:A9:A8:0C:D2:8C:84:A5:FF:DB:12:F5:C9:BB:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/3130332e3138362e38382e302f32342d3234203d3e20313439373137.roa Signing time: Mon 21 Apr 2025 09:00:00 +0000 ROA not before: Mon 21 Apr 2025 08:55:00 +0000 ROA not after: Mon 20 Apr 2026 09:00:00 +0000 asID: 149717 IP address blocks: 103.186.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.crl rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ab:91:27:31:0b:55:0c:5e:ca:41:8f:78:91:43:9a:d9:f8:11:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0 Validity Not Before: Apr 21 08:55:00 2025 GMT Not After : Apr 20 09:00:00 2026 GMT Subject: CN=8F36FC35F741CA08E5B5095EE2848A0B42B87124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:77:a7:54:db:b7:b3:a2:13:43:bf:ef:9f:b0: 9d:50:96:0f:c3:70:c2:71:91:1e:f5:4f:8f:47:f8: 06:ed:03:bf:fb:e4:78:2e:87:fd:50:1d:b5:fe:84: 79:3e:75:69:30:14:03:3f:46:e2:d2:c0:24:5d:7d: d2:0d:36:5c:0b:52:e1:03:a5:4f:fe:4d:cc:98:ef: 8c:92:bd:c8:a3:fa:4f:da:b4:35:62:61:b8:d7:ee: e6:58:9b:56:ef:c5:7b:cb:c3:69:a7:75:3d:ef:e5: 8f:a4:f4:88:de:84:5d:32:3f:69:5b:7b:22:6a:25: 2b:01:fa:46:87:08:82:e0:a2:2b:a5:75:4c:0e:6c: f2:d1:8a:17:8c:db:1d:6d:e2:6e:3b:c7:de:32:b1: be:b7:3c:70:a5:dc:ee:18:e6:0d:e1:7d:a2:55:66: 53:f4:07:cf:fb:1d:51:e6:a8:b2:8d:b9:1c:c5:73: 9a:b0:ea:e2:12:05:e2:25:97:1b:53:e7:ad:7d:14: 8a:f2:d5:c3:05:23:34:43:38:d3:c3:d5:6f:2d:c5: 3f:d3:81:0f:28:25:16:29:74:f1:0f:33:90:ea:cd: fc:20:f4:d1:b6:82:ce:c2:ff:f2:8d:86:dd:2e:37: f7:b2:1c:90:2f:c4:c7:e4:35:dd:70:24:28:37:a5: 2f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:36:FC:35:F7:41:CA:08:E5:B5:09:5E:E2:84:8A:0B:42:B8:71:24 X509v3 Authority Key Identifier: keyid:7F:DB:76:1B:09:E7:A9:A8:0C:D2:8C:84:A5:FF:DB:12:F5:C9:BB:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/3130332e3138362e38382e302f32342d3234203d3e20313439373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.88.0/24 Signature Algorithm: sha256WithRSAEncryption 19:bc:bd:c2:5a:2d:ac:84:7a:ca:b2:32:31:8f:eb:d1:d1:99: 60:6e:5f:cd:27:22:f5:88:52:1b:86:3d:67:60:cb:ea:55:9c: 8d:86:65:29:b3:0a:6b:52:8e:48:34:3d:b9:6d:f9:f9:31:c9: 42:db:98:84:70:37:1c:25:a5:7b:51:9a:9b:97:a4:df:1f:08: ab:87:32:4e:00:5c:89:c2:8a:94:12:3a:39:c8:20:51:6e:08: ef:25:4e:2a:b2:7d:80:74:7d:4e:e5:21:42:ec:6b:bf:3e:41: 2b:08:51:d7:29:64:cd:fe:05:8c:bd:35:e9:8d:46:45:e6:03: a0:63:33:52:4e:e3:59:21:f0:7b:bf:29:1e:0c:cd:8d:1e:80: b9:0e:ad:6a:36:f1:e5:6f:ba:56:e3:48:b8:85:4a:1c:f3:fb: 5a:38:aa:61:65:59:70:9e:e9:ee:17:f7:19:44:b4:2f:9c:d7: 66:05:db:47:94:32:2b:5e:bc:a8:20:c1:49:c9:69:db:21:7e: 8e:6a:81:07:52:ec:9b:e2:33:80:0b:d0:93:74:d8:e7:f9:11: 91:ef:4d:c1:da:55:48:b4:5c:e3:5a:7e:10:99:c1:99:48:2b: 04:e8:eb:af:e1:74:a0:9a:89:0e:40:46:96:89:49:21:80:e9: e9:c1:b8:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQKuRJzELVQxeykGPeJFDmtn4EXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZEQjc2MUIwOUU3QTlBODBDRDI4Qzg0QTVGRkRCMTJG NUM5QkJEMDAeFw0yNTA0MjEwODU1MDBaFw0yNjA0MjAwOTAwMDBaMDMxMTAvBgNV BAMTKDhGMzZGQzM1Rjc0MUNBMDhFNUI1MDk1RUUyODQ4QTBCNDJCODcxMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmd6dU27ezohNDv++fsJ1Qlg/D cMJxkR71T49H+AbtA7/75Hguh/1QHbX+hHk+dWkwFAM/RuLSwCRdfdINNlwLUuED pU/+TcyY74ySvcij+k/atDViYbjX7uZYm1bvxXvLw2mndT3v5Y+k9IjehF0yP2lb eyJqJSsB+kaHCILgoiuldUwObPLRiheM2x1t4m47x94ysb63PHCl3O4Y5g3hfaJV ZlP0B8/7HVHmqLKNuRzFc5qw6uISBeIllxtT5619FIry1cMFIzRDONPD1W8txT/T gQ8oJRYpdPEPM5Dqzfwg9NG2gs7C//KNht0uN/eyHJAvxMfkNd1wJCg3pS+xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjzb8NfdBygjltQle4oSKC0K4cSQwHwYDVR0j BBgwFoAUf9t2GwnnqagM0oyEpf/bEvXJu9AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzI5NWRlNi0yMDU4LTQ2YTctOTM2Yi0wNTJjZjJmYTkyMGQvMC83RkRCNzYxQjA5 RTdBOUE4MENEMjhDODRBNUZGREIxMkY1QzlCQkQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ZEQjc2MUIwOUU3QTlBODBDRDI4Qzg0QTVGRkRCMTJGNUM5 QkJEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzMjk1ZGU2LTIwNTgtNDZhNy05 MzZiLTA1MmNmMmZhOTIwZC8wLzMxMzAzMzJlMzEzODM2MmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pYMA0GCSqG SIb3DQEBCwUAA4IBAQAZvL3CWi2shHrKsjIxj+vR0Zlgbl/NJyL1iFIbhj1nYMvq VZyNhmUpswprUo5IND25bfn5MclC25iEcDccJaV7UZqbl6TfHwirhzJOAFyJwoqU Ejo5yCBRbgjvJU4qsn2AdH1O5SFC7Gu/PkErCFHXKWTN/gWMvTXpjUZF5gOgYzNS TuNZIfB7vykeDM2NHoC5Dq1qNvHlb7pW40i4hUoc8/taOKphZVlwnunuF/cZRLQv nNdmBdtHlDIrXryoIMFJyWnbIX6OaoEHUuyb4jOAC9CTdNjn+RGR703B2lVItFzj Wn4QmcGZSCsE6Ouv4XSgmokOQEaWiUkhgOnpwbi/ -----END CERTIFICATE-----Generated at Sat Apr 26 06:13:45 2025 by rpki-client on console.sobornost.net