$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa File: 3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa (raw, json) Hash identifier: mA/rP0hr8/EieVP2HKsGbfcjdkP2Kd8or4Jc67/Y7I0= Subject key identifier: 07:F8:A5:71:69:19:AA:E2:39:E7:EB:4E:C6:43:39:5A:50:75:52:FC Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 67BDE3FEEF42EABFE2B77A2FEF61267BA528A3E4 Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa Signing time: Sat 19 Apr 2025 11:00:01 +0000 ROA not before: Sat 19 Apr 2025 10:55:01 +0000 ROA not after: Sat 18 Apr 2026 11:00:01 +0000 asID: 138822 IP address blocks: 103.137.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:bd:e3:fe:ef:42:ea:bf:e2:b7:7a:2f:ef:61:26:7b:a5:28:a3:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Apr 19 10:55:01 2025 GMT Not After : Apr 18 11:00:01 2026 GMT Subject: CN=07F8A5716919AAE239E7EB4EC643395A507552FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:c7:5e:f6:57:38:02:d1:66:f1:7f:15:41: 75:c3:67:b5:61:b1:64:10:7a:92:ef:4e:63:d8:62: ac:91:30:e8:05:d8:39:e8:c2:6a:88:8c:ac:58:89: 6e:aa:12:be:b1:cb:3f:0e:73:96:4c:84:f7:bf:68: ab:98:c3:63:6a:f4:8e:16:04:e5:a5:57:f6:eb:bd: 33:66:6c:32:bb:2e:6d:72:95:42:65:e6:be:1a:b0: 37:70:e2:55:3e:aa:c9:d7:78:6c:a7:3a:0a:a0:2c: 10:bf:1c:27:69:00:af:0b:83:83:77:82:39:09:4b: 05:af:af:71:2a:b5:52:15:c0:18:4e:e0:9b:ee:88: af:05:59:59:2c:e4:fe:67:a6:05:72:d1:48:e2:5a: 61:21:b8:cb:ca:13:cd:c0:8d:c8:c2:77:f5:37:c7: bc:3d:1c:7d:84:db:1d:79:64:67:47:84:68:d9:c7: 30:87:21:fa:12:ae:87:64:4e:65:da:36:13:5b:4d: 70:ff:78:26:7f:44:b8:c1:f5:20:31:f6:a8:ee:88: d5:b6:08:44:85:69:bf:ec:90:74:65:16:b0:df:11: 97:65:91:a3:8a:d0:2c:0d:04:61:d7:40:ae:4a:b5: e7:59:41:cc:9f:ee:f6:06:95:4b:0b:14:68:87:38: ed:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F8:A5:71:69:19:AA:E2:39:E7:EB:4E:C6:43:39:5A:50:75:52:FC X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.38.0/23 Signature Algorithm: sha256WithRSAEncryption 17:14:80:e7:09:ae:ad:f7:46:47:42:f8:ba:80:ef:e0:ab:77: 26:4d:7d:f2:a5:ad:57:bd:96:38:b4:2b:f5:1c:78:8c:65:c1: e2:a6:02:b6:f7:29:2a:0f:68:35:e7:b1:e3:23:0d:51:e5:c0: 88:2c:72:d8:1c:cc:99:85:4f:03:f3:79:5a:91:56:c2:f4:cb: a4:64:28:0f:87:7c:df:ae:d6:b5:90:66:8b:d4:31:56:75:e9: f5:87:b7:e9:7c:e9:1e:bc:d9:3a:ee:14:a1:f2:fb:ec:89:02: 18:81:d6:b8:81:5d:93:c3:bc:c4:5d:ca:4a:47:fe:a1:86:fb: df:81:04:f7:60:1f:6a:8a:9a:af:5f:18:36:2c:85:43:5a:48: 4c:e0:9c:e7:37:3b:04:69:fb:73:8f:c4:1d:b8:dd:fc:6b:22: ce:70:a9:57:1e:41:4e:16:dc:99:1c:9c:e0:bb:8d:95:1a:c3: 25:51:61:9f:c0:b4:82:fa:f8:29:46:95:60:8b:26:80:d4:ef: 85:a1:5f:b4:74:10:80:3e:84:05:4a:f0:4a:a8:6b:7c:c3:da: 25:1d:d3:5a:c8:d9:31:bf:7b:54:81:68:da:0f:19:c9:03:75: 84:6d:9d:d4:dd:c0:f6:d3:36:e8:1b:26:0f:99:85:c0:4c:82: c6:2b:fa:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ73j/u9C6r/it3ov72Eme6Uoo+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNTA0MTkxMDU1MDFaFw0yNjA0MTgxMTAwMDFaMDMxMTAvBgNV BAMTKDA3RjhBNTcxNjkxOUFBRTIzOUU3RUI0RUM2NDMzOTVBNTA3NTUyRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqcde9lc4AtFm8X8VQXXDZ7Vh sWQQepLvTmPYYqyRMOgF2DnowmqIjKxYiW6qEr6xyz8Oc5ZMhPe/aKuYw2Nq9I4W BOWlV/brvTNmbDK7Lm1ylUJl5r4asDdw4lU+qsnXeGynOgqgLBC/HCdpAK8Lg4N3 gjkJSwWvr3EqtVIVwBhO4JvuiK8FWVks5P5npgVy0UjiWmEhuMvKE83AjcjCd/U3 x7w9HH2E2x15ZGdHhGjZxzCHIfoSrodkTmXaNhNbTXD/eCZ/RLjB9SAx9qjuiNW2 CESFab/skHRlFrDfEZdlkaOK0CwNBGHXQK5KtedZQcyf7vYGlUsLFGiHOO0/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB/ilcWkZquI55+tOxkM5WlB1UvwwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMxMzAzMzJlMzEzMzM3MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4kmMA0GCSqG SIb3DQEBCwUAA4IBAQAXFIDnCa6t90ZHQvi6gO/gq3cmTX3ypa1XvZY4tCv1HHiM ZcHipgK29ykqD2g157HjIw1R5cCILHLYHMyZhU8D83lakVbC9MukZCgPh3zfrta1 kGaL1DFWden1h7fpfOkevNk67hSh8vvsiQIYgda4gV2Tw7zEXcpKR/6hhvvfgQT3 YB9qipqvXxg2LIVDWkhM4JznNzsEaftzj8QduN38ayLOcKlXHkFOFtyZHJzgu42V GsMlUWGfwLSC+vgpRpVgiyaA1O+FoV+0dBCAPoQFSvBKqGt8w9olHdNayNkxv3tU gWjaDxnJA3WEbZ3U3cD20zboGyYPmYXATILGK/qT -----END CERTIFICATE-----Generated at Sat Apr 26 11:16:30 2025 by rpki-client on console.sobornost.net