$ rpki-client -vvf repo-rpki.idnic.net/repo/f0872086-805c-40aa-87b1-beb8e1302c26/0/3130332e3138362e39392e302f32342d3234203d3e20313439363936.roa File: 3130332e3138362e39392e302f32342d3234203d3e20313439363936.roa (raw, json) Hash identifier: 7uLepTUU3wIPCfSOoJzpaSbHAX1iNWrFwi2CU2JeiHA= Subject key identifier: 5A:11:0A:16:FC:6B:CF:D9:65:87:DE:82:1C:FA:C6:CC:4A:DD:7B:42 Certificate issuer: /CN=65C50EAF84A840821CDFF6E27F5BFD9EADC2823E Certificate serial: 44959C95079175BBC9C580D5ABBECEDFA5D8EAEC Authority key identifier: 65:C5:0E:AF:84:A8:40:82:1C:DF:F6:E2:7F:5B:FD:9E:AD:C2:82:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65C50EAF84A840821CDFF6E27F5BFD9EADC2823E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0872086-805c-40aa-87b1-beb8e1302c26/0/3130332e3138362e39392e302f32342d3234203d3e20313439363936.roa Signing time: Tue 15 Apr 2025 06:00:50 +0000 ROA not before: Tue 15 Apr 2025 05:55:50 +0000 ROA not after: Tue 14 Apr 2026 06:00:50 +0000 asID: 149696 IP address blocks: 103.186.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0872086-805c-40aa-87b1-beb8e1302c26/0/65C50EAF84A840821CDFF6E27F5BFD9EADC2823E.crl rsync://repo-rpki.idnic.net/repo/f0872086-805c-40aa-87b1-beb8e1302c26/0/65C50EAF84A840821CDFF6E27F5BFD9EADC2823E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65C50EAF84A840821CDFF6E27F5BFD9EADC2823E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:95:9c:95:07:91:75:bb:c9:c5:80:d5:ab:be:ce:df:a5:d8:ea:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65C50EAF84A840821CDFF6E27F5BFD9EADC2823E Validity Not Before: Apr 15 05:55:50 2025 GMT Not After : Apr 14 06:00:50 2026 GMT Subject: CN=5A110A16FC6BCFD96587DE821CFAC6CC4ADD7B42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0b:2e:1d:69:8c:c7:15:a1:fc:30:96:7a:d9: 83:91:b8:9e:8a:52:5b:4a:c3:48:dd:6b:3e:3d:f2: 96:68:f1:e7:82:c8:c4:c5:22:82:a9:8b:ae:b2:4b: 97:08:f1:98:41:20:7a:c0:98:f0:b3:77:35:0c:16: 17:b6:77:6d:3b:7b:5a:c3:e3:c5:60:51:7a:87:97: d3:7a:e8:ff:ef:3a:2c:21:93:c8:f0:8a:84:0b:22: 5b:96:03:08:e3:a1:d3:57:ea:52:2b:24:74:25:51: 27:79:f6:4d:42:ea:28:8f:0a:a4:97:39:27:b7:61: 21:97:5a:08:0a:de:1e:c6:e1:48:a4:e8:59:a8:20: 6a:40:90:a0:10:5b:f2:c1:ce:1a:e6:42:d9:ba:5c: c2:4b:5d:e7:69:4a:cd:e0:6c:02:54:58:b6:bc:b7: 7c:ce:73:98:bc:49:92:8d:9e:f4:f6:4c:59:8c:41: 16:a4:55:ec:77:c6:0c:dc:77:05:2b:db:78:f1:ef: 23:50:9b:55:55:97:e0:e5:dd:cd:7e:73:76:3f:9c: cb:d3:85:76:bf:1f:be:ec:44:c7:9e:f9:d6:1b:da: 3b:47:4d:b0:4f:a5:dd:6a:7a:07:5b:87:b9:98:b6: 87:5e:d9:35:1f:be:4f:f0:df:77:71:5d:26:76:2a: 76:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:11:0A:16:FC:6B:CF:D9:65:87:DE:82:1C:FA:C6:CC:4A:DD:7B:42 X509v3 Authority Key Identifier: keyid:65:C5:0E:AF:84:A8:40:82:1C:DF:F6:E2:7F:5B:FD:9E:AD:C2:82:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0872086-805c-40aa-87b1-beb8e1302c26/0/65C50EAF84A840821CDFF6E27F5BFD9EADC2823E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65C50EAF84A840821CDFF6E27F5BFD9EADC2823E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0872086-805c-40aa-87b1-beb8e1302c26/0/3130332e3138362e39392e302f32342d3234203d3e20313439363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.99.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:3b:63:d5:b5:e8:cd:ee:0a:ce:db:04:02:fb:f2:8c:8e:33: a8:2a:b5:59:4d:cd:99:4f:b1:a7:46:67:da:7b:2f:06:0a:51: 7f:4f:21:2a:ed:be:61:28:05:74:44:17:dd:3b:a1:46:10:c1: 9c:eb:5e:08:37:55:d6:11:8e:dc:63:35:c6:e4:3a:e7:90:09: e8:3b:3f:8a:e3:e4:9a:23:36:9a:d9:de:6e:33:5c:52:1d:a6: 6e:c7:5e:16:08:a5:bf:be:d0:3f:d9:e6:95:73:30:f9:69:26: 7a:cb:37:28:6d:f8:e2:08:50:eb:e6:49:ab:d2:13:45:8e:d9: 40:d8:5b:42:2e:1d:39:b9:8f:fe:0f:34:3d:23:89:e3:3f:8c: b7:31:2b:0d:d3:e2:70:81:cd:4d:6f:4f:9a:b7:ce:17:de:15: ce:a1:fa:de:d5:8e:bb:13:66:2d:83:8e:e9:80:5d:4a:31:00: 5a:90:ee:c0:f7:7f:a3:cf:6e:7c:45:85:60:9f:33:f4:c9:b4: f2:45:37:08:a3:c4:aa:65:1d:ae:62:86:e6:a8:1d:f0:6b:86: e0:c4:cb:fc:25:d9:ee:5a:91:0a:32:4f:55:89:ee:29:45:53: 69:ac:71:2b:9c:f1:f5:16:18:83:36:4c:23:75:05:82:7f:52: 81:f9:6c:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURJWclQeRdbvJxYDVq77O36XY6uwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVDNTBFQUY4NEE4NDA4MjFDREZGNkUyN0Y1QkZEOUVB REMyODIzRTAeFw0yNTA0MTUwNTU1NTBaFw0yNjA0MTQwNjAwNTBaMDMxMTAvBgNV BAMTKDVBMTEwQTE2RkM2QkNGRDk2NTg3REU4MjFDRkFDNkNDNEFERDdCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPCy4daYzHFaH8MJZ62YORuJ6K UltKw0jdaz498pZo8eeCyMTFIoKpi66yS5cI8ZhBIHrAmPCzdzUMFhe2d207e1rD 48VgUXqHl9N66P/vOiwhk8jwioQLIluWAwjjodNX6lIrJHQlUSd59k1C6iiPCqSX OSe3YSGXWggK3h7G4Uik6FmoIGpAkKAQW/LBzhrmQtm6XMJLXedpSs3gbAJUWLa8 t3zOc5i8SZKNnvT2TFmMQRakVex3xgzcdwUr23jx7yNQm1VVl+Dl3c1+c3Y/nMvT hXa/H77sRMee+dYb2jtHTbBPpd1qegdbh7mYtode2TUfvk/w33dxXSZ2Kna5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWhEKFvxrz9llh96CHPrGzErde0IwHwYDVR0j BBgwFoAUZcUOr4SoQIIc3/bif1v9nq3Cgj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDg3MjA4Ni04MDVjLTQwYWEtODdiMS1iZWI4ZTEzMDJjMjYvMC82NUM1MEVBRjg0 QTg0MDgyMUNERkY2RTI3RjVCRkQ5RUFEQzI4MjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVDNTBFQUY4NEE4NDA4MjFDREZGNkUyN0Y1QkZEOUVBREMy ODIzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwODcyMDg2LTgwNWMtNDBhYS04 N2IxLWJlYjhlMTMwMmMyNi8wLzMxMzAzMzJlMzEzODM2MmUzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pjMA0GCSqG SIb3DQEBCwUAA4IBAQA7O2PVtejN7grO2wQC+/KMjjOoKrVZTc2ZT7GnRmfaey8G ClF/TyEq7b5hKAV0RBfdO6FGEMGc614IN1XWEY7cYzXG5DrnkAnoOz+K4+SaIzaa 2d5uM1xSHaZux14WCKW/vtA/2eaVczD5aSZ6yzcobfjiCFDr5kmr0hNFjtlA2FtC Lh05uY/+DzQ9I4njP4y3MSsN0+Jwgc1Nb0+at84X3hXOofre1Y67E2Ytg47pgF1K MQBakO7A93+jz258RYVgnzP0ybTyRTcIo8SqZR2uYobmqB3wa4bgxMv8JdnuWpEK Mk9Vie4pRVNprHErnPH1FhiDNkwjdQWCf1KB+WwC -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:24 2025 by rpki-client on console.sobornost.net