$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa File: 3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa (raw, json) Hash identifier: 6WkpZ20xefUghdGod8o1R28Jk1X9QFiiotFRMKKRiDQ= Subject key identifier: 66:1B:3B:20:53:05:FE:9B:F1:9B:98:66:DF:7A:EC:4B:C3:C1:7A:D3 Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Certificate serial: 6A872E7A1366948A0F6768026CE88573EC18EA3B Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa Signing time: Wed 16 Apr 2025 11:01:25 +0000 ROA not before: Wed 16 Apr 2025 10:56:25 +0000 ROA not after: Wed 15 Apr 2026 11:01:25 +0000 asID: 140478 IP address blocks: 103.154.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:87:2e:7a:13:66:94:8a:0f:67:68:02:6c:e8:85:73:ec:18:ea:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Validity Not Before: Apr 16 10:56:25 2025 GMT Not After : Apr 15 11:01:25 2026 GMT Subject: CN=661B3B205305FE9BF19B9866DF7AEC4BC3C17AD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:01:d1:b4:4d:b4:1f:ab:59:d4:ce:91:4d:bc: 04:c2:41:1f:da:70:57:f1:c2:c1:e9:01:72:66:24: 9b:26:94:e5:14:a8:b4:fe:16:9e:9a:22:d6:48:c0: 93:e5:49:f0:38:1c:be:15:2f:4e:0c:ab:3f:1d:f1: f4:cf:d6:cf:f1:63:e9:04:71:b4:fa:d5:e4:c7:5f: a5:62:aa:35:0f:79:7c:aa:5b:0e:d0:a6:36:35:27: 8d:d5:4a:2a:6d:c2:92:6c:fc:3a:e4:84:59:6b:67: d4:8b:90:e1:42:f2:f7:1b:b4:8e:a2:88:a0:c7:7b: d8:6c:80:40:17:8a:eb:a1:f8:e1:f2:69:28:c5:7a: d3:ef:39:9a:da:a9:ec:2e:52:29:08:48:43:04:b2: 84:13:4e:59:1c:ef:4c:9a:72:88:be:8d:fe:16:74: 4a:d4:4e:06:23:bf:29:d0:37:a4:75:59:96:f4:ff: 7c:b4:dc:7a:df:f3:76:36:8f:2e:fa:db:13:8b:fd: 4e:5a:1d:50:61:66:ad:60:6f:e7:39:27:4c:cc:84: 07:0f:db:a6:e0:c6:7b:38:15:e0:16:9c:59:b9:f4: cb:c4:a7:42:6e:ab:97:af:bd:07:ae:37:67:8b:d5: c3:b5:f1:af:52:49:34:a1:b9:6f:b9:59:f3:ac:f9: 87:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1B:3B:20:53:05:FE:9B:F1:9B:98:66:DF:7A:EC:4B:C3:C1:7A:D3 X509v3 Authority Key Identifier: keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32342e302f32332d3233203d3e20313430343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:fc:fe:11:41:ee:32:2a:1e:fd:df:e2:e6:1e:3d:c4:71:80: cc:e9:e1:ae:75:98:8f:b9:a8:bd:8c:ce:71:ff:8e:76:02:d6: 3f:a5:ce:a4:d1:a3:89:af:02:b3:f2:4b:e7:c1:cb:1d:8b:d8: ce:f9:e7:1a:1a:18:32:92:f3:94:cf:62:a3:3f:91:f2:51:d5: 9d:1a:b7:b6:2f:9e:72:c4:99:cd:fb:fa:5b:32:90:18:97:6f: 7b:5e:51:b9:73:20:03:2c:8a:90:0a:c5:29:69:5b:3d:1b:9b: 98:af:c1:47:b7:34:40:9d:f7:ab:89:da:bb:8c:78:89:80:32: c1:d6:94:04:03:77:a6:cb:47:16:19:81:9b:d9:42:99:f7:7c: 91:69:8d:ab:47:46:65:d3:3d:99:5c:8d:bd:0e:b4:7b:e2:0b: 16:3f:28:b0:e0:9b:d7:e1:8e:8e:da:77:47:cf:3a:99:71:d0: 67:5b:74:db:22:92:46:fe:a3:3a:f5:ef:9a:8f:1c:3f:b1:9d: 22:5a:e9:34:bf:0d:b1:2f:4e:4b:bc:ad:0d:62:39:22:2d:2b: 20:c3:7f:d3:c1:17:db:65:54:cc:7e:c6:76:25:f6:ea:68:7d: 31:75:f8:9c:45:e2:37:e4:8f:6c:5a:0e:1f:3c:91:08:a9:a2: 0f:c5:3b:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaocuehNmlIoPZ2gCbOiFc+wY6jswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1 MjM5M0Y0RDAeFw0yNTA0MTYxMDU2MjVaFw0yNjA0MTUxMTAxMjVaMDMxMTAvBgNV BAMTKDY2MUIzQjIwNTMwNUZFOUJGMTlCOTg2NkRGN0FFQzRCQzNDMTdBRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbAdG0TbQfq1nUzpFNvATCQR/a cFfxwsHpAXJmJJsmlOUUqLT+Fp6aItZIwJPlSfA4HL4VL04Mqz8d8fTP1s/xY+kE cbT61eTHX6ViqjUPeXyqWw7QpjY1J43VSiptwpJs/DrkhFlrZ9SLkOFC8vcbtI6i iKDHe9hsgEAXiuuh+OHyaSjFetPvOZraqewuUikISEMEsoQTTlkc70yacoi+jf4W dErUTgYjvynQN6R1WZb0/3y03Hrf83Y2jy762xOL/U5aHVBhZq1gb+c5J0zMhAcP 26bgxns4FeAWnFm59MvEp0Juq5evvQeuN2eL1cO18a9SSTShuW+5WfOs+YcRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZhs7IFMF/pvxm5hm33rsS8PBetMwHwYDVR0j BBgwFoAUuENqy3zo+ML1ckX/5Oa6L1I5P00wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMC9CODQzNkFDQjdD RThGOEMyRjU3MjQ1RkZFNEU2QkEyRjUyMzkzRjRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0NUZGRTRFNkJBMkY1MjM5 M0Y0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0LTQxYmUtNDhkNy1h YzAwLThhM2M0OThjYTlhZS8wLzMxMzAzMzJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5oYMA0GCSqG SIb3DQEBCwUAA4IBAQBb/P4RQe4yKh793+LmHj3EcYDM6eGudZiPuai9jM5x/452 AtY/pc6k0aOJrwKz8kvnwcsdi9jO+ecaGhgykvOUz2KjP5HyUdWdGre2L55yxJnN +/pbMpAYl297XlG5cyADLIqQCsUpaVs9G5uYr8FHtzRAnferidq7jHiJgDLB1pQE A3emy0cWGYGb2UKZ93yRaY2rR0Zl0z2ZXI29DrR74gsWPyiw4JvX4Y6O2ndHzzqZ cdBnW3TbIpJG/qM69e+ajxw/sZ0iWuk0vw2xL05LvK0NYjkiLSsgw3/TwRfbZVTM fsZ2JfbqaH0xdficReI35I9sWg4fPJEIqaIPxTu/ -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:24 2025 by rpki-client on console.sobornost.net