$ rpki-client -vvf repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa File: 3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa (raw, json) Hash identifier: M3KMvxcWP6uML+3fbIDyzsZ9kLYdSiylqLgxMFpzBFk= Subject key identifier: 5F:62:6E:74:22:CD:26:5C:B3:77:C5:66:54:6C:7E:17:3B:68:88:C6 Certificate issuer: /CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Certificate serial: 73C2E7307622F19E47BF4E595F4E463909B1DA61 Authority key identifier: 21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa Signing time: Thu 03 Apr 2025 11:00:01 +0000 ROA not before: Thu 03 Apr 2025 10:55:01 +0000 ROA not after: Thu 02 Apr 2026 11:00:01 +0000 asID: 135473 IP address blocks: 103.73.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:c2:e7:30:76:22:f1:9e:47:bf:4e:59:5f:4e:46:39:09:b1:da:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Validity Not Before: Apr 3 10:55:01 2025 GMT Not After : Apr 2 11:00:01 2026 GMT Subject: CN=5F626E7422CD265CB377C566546C7E173B6888C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:66:b0:42:67:0f:58:9e:b6:3f:5b:a2:ae:90: 88:02:41:b2:88:33:27:b4:2d:7c:8c:48:a6:33:64: ac:77:14:25:8b:e9:34:0a:69:77:eb:57:51:d7:fb: 40:1c:10:d8:33:e8:7a:29:8a:db:c6:90:29:53:43: d6:cb:70:80:2b:eb:7c:be:35:7b:da:b2:94:bf:7a: ae:2b:09:be:ac:9e:6c:4d:6a:22:94:af:25:bd:42: d0:0e:e6:44:2a:61:50:ea:2c:bf:71:c6:79:68:8b: 2d:46:b3:7a:38:ea:0c:10:21:1d:27:a5:47:e8:3d: 93:d6:7a:01:38:81:e6:d5:57:5c:31:a8:94:bd:17: 67:c4:2b:a2:b3:a8:20:44:aa:33:29:82:44:d8:bd: d0:91:5d:8d:bc:ff:98:11:70:07:78:d0:5a:9d:71: 02:0d:b5:1d:b3:6c:78:36:99:ef:de:c7:ec:d0:22: 2f:1b:68:1d:29:45:1f:fb:ec:a5:95:24:54:c3:34: 7a:7f:6a:73:e8:12:9d:f2:27:e8:3a:22:01:25:1a: 7b:13:fa:79:56:05:e5:1e:08:eb:05:be:c6:e0:e0: 07:c9:a6:35:ad:ca:22:93:14:ca:b2:95:d6:fb:02: 4e:66:f0:37:93:ce:bf:7a:8b:9a:b8:7d:8d:31:c1: 78:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:62:6E:74:22:CD:26:5C:B3:77:C5:66:54:6C:7E:17:3B:68:88:C6 X509v3 Authority Key Identifier: keyid:21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e37332e3233352e302f32342d3234203d3e20313335343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.73.235.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1c:fa:5f:1c:15:90:d2:a3:3c:f0:07:02:7f:eb:69:df:b8: 0a:da:f0:21:c3:9d:4b:6f:4e:84:1d:99:2b:43:d3:b5:5f:9f: f8:85:4d:9e:dc:df:a0:15:35:33:87:a2:3c:e0:4a:e1:05:bb: 7a:4e:ff:b9:13:6f:50:c9:69:18:d1:6b:66:aa:9c:f8:7f:1e: c0:6b:d7:67:05:59:22:a5:81:fd:0b:0e:55:b0:62:2e:99:01: af:4c:0c:d6:0e:c1:48:fe:75:70:33:db:f7:e2:11:71:e4:6a: f0:a0:c5:62:b8:03:f3:1b:82:7e:69:34:e4:25:86:89:e2:91: 31:34:ee:24:81:67:5d:74:67:cd:71:b8:fe:85:2d:8d:41:02: 08:fc:ea:82:26:6e:d3:28:bc:09:7f:20:0b:70:58:ab:b4:19: 71:38:4d:0b:6d:fd:65:45:e1:bb:3e:a6:a2:33:69:33:b6:f4: 0f:79:00:a2:04:d3:7e:86:27:72:fe:b1:40:90:95:ee:b9:ad: b9:b3:41:f8:5f:7d:d4:d4:b2:8a:95:b6:17:b3:31:04:4b:3b: b1:54:71:88:30:ca:e9:da:01:44:8b:5b:b4:82:d6:4f:ff:a1: 0b:8d:d2:09:fc:56:ed:ef:58:3d:43:68:00:b9:cf:d3:81:03: db:f1:fd:b0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc8LnMHYi8Z5Hv05ZX05GOQmx2mEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZC ODhBMzJBOTAeFw0yNTA0MDMxMDU1MDFaFw0yNjA0MDIxMTAwMDFaMDMxMTAvBgNV BAMTKDVGNjI2RTc0MjJDRDI2NUNCMzc3QzU2NjU0NkM3RTE3M0I2ODg4QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRZrBCZw9YnrY/W6KukIgCQbKI Mye0LXyMSKYzZKx3FCWL6TQKaXfrV1HX+0AcENgz6HopitvGkClTQ9bLcIAr63y+ NXvaspS/eq4rCb6snmxNaiKUryW9QtAO5kQqYVDqLL9xxnloiy1Gs3o46gwQIR0n pUfoPZPWegE4gebVV1wxqJS9F2fEK6KzqCBEqjMpgkTYvdCRXY28/5gRcAd40Fqd cQINtR2zbHg2me/ex+zQIi8baB0pRR/77KWVJFTDNHp/anPoEp3yJ+g6IgElGnsT +nlWBeUeCOsFvsbg4AfJpjWtyiKTFMqyldb7Ak5m8DeTzr96i5q4fY0xwXg5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUX2JudCLNJlyzd8VmVGx+FztoiMYwHwYDVR0j BBgwFoAUIQ/ZjrTZpNjQ/Lmy87u8f7iKMqkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mjc4OGM4OC1jYTJjLTRmYTAtYTM1Zi0zZTdhMTA4ODcyMjgvMC8yMTBGRDk4RUI0 RDlBNEQ4RDBGQ0I5QjJGM0JCQkM3RkI4OEEzMkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZCODhB MzJBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNzg4Yzg4LWNhMmMtNGZhMC1h MzVmLTNlN2ExMDg4NzIyOC8wLzMxMzAzMzJlMzczMzJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0nrMA0GCSqG SIb3DQEBCwUAA4IBAQBFHPpfHBWQ0qM88AcCf+tp37gK2vAhw51Lb06EHZkrQ9O1 X5/4hU2e3N+gFTUzh6I84ErhBbt6Tv+5E29QyWkY0Wtmqpz4fx7Aa9dnBVkipYH9 Cw5VsGIumQGvTAzWDsFI/nVwM9v34hFx5GrwoMViuAPzG4J+aTTkJYaJ4pExNO4k gWdddGfNcbj+hS2NQQII/OqCJm7TKLwJfyALcFirtBlxOE0Lbf1lReG7PqaiM2kz tvQPeQCiBNN+hidy/rFAkJXuua25s0H4X33U1LKKlbYXszEESzuxVHGIMMrp2gFE i1u0gtZP/6ELjdIJ/Fbt71g9Q2gAuc/TgQPb8f2w -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:24 2025 by rpki-client on console.sobornost.net