$ rpki-client -vvf repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e382e37382e302f32332d3234203d3e203538353531.roa File: 3130332e382e37382e302f32332d3234203d3e203538353531.roa (raw, json) Hash identifier: 3rFUXtbuW4eWsGnAQRXWPa2T5G8tLKctM7LWy4Bhpvk= Subject key identifier: 48:D8:A6:A7:02:37:FB:84:97:2C:FC:3F:C5:C3:DC:2D:1C:2D:7C:72 Certificate issuer: /CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Certificate serial: 3317B2F96F8F01FCAEA83266AFBD3364E0A788A1 Authority key identifier: CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e382e37382e302f32332d3234203d3e203538353531.roa Signing time: Wed 19 Mar 2025 08:00:00 +0000 ROA not before: Wed 19 Mar 2025 07:55:00 +0000 ROA not after: Wed 18 Mar 2026 08:00:00 +0000 asID: 58551 IP address blocks: 103.8.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:17:b2:f9:6f:8f:01:fc:ae:a8:32:66:af:bd:33:64:e0:a7:88:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC085E3D4D75439AE1BB6CB68F180E81AAD2450 Validity Not Before: Mar 19 07:55:00 2025 GMT Not After : Mar 18 08:00:00 2026 GMT Subject: CN=48D8A6A70237FB84972CFC3FC5C3DC2D1C2D7C72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a9:df:17:af:68:ff:86:91:01:a5:32:11:6b: 1b:14:2a:5f:a7:28:d5:db:c7:a4:58:37:ba:32:04: 4d:11:86:a6:96:2d:65:68:b0:d3:5c:65:c2:d8:f9: f6:d7:d7:e2:36:f7:38:a7:a1:23:ca:5b:c3:f5:d6: f9:95:18:9f:fa:9c:63:0e:82:55:a7:07:75:e5:83: 6a:1b:b0:64:b6:72:66:24:b2:83:65:62:ad:9d:ce: c9:c2:82:d1:bc:dd:ef:84:89:03:5e:38:38:dd:8b: de:d9:18:e8:d4:f9:0a:d7:82:0a:23:88:92:a2:ad: 7b:40:8d:8f:12:9d:8a:6f:b3:be:f8:63:3c:3b:cb: 19:27:37:6f:d1:de:7d:8a:ee:42:df:99:54:65:68: d7:16:8f:48:70:4f:ff:bf:15:7b:50:0a:fb:b6:ae: 50:cf:2f:58:1c:f9:b6:50:64:21:1d:b1:75:0f:fc: 4d:8d:b8:b4:f6:8d:99:ff:91:ab:42:93:6d:2f:f1: 82:2e:a3:3c:c2:3a:b9:69:42:69:f7:c8:85:f1:a2: fc:d2:56:d5:ff:30:44:dc:8a:c9:5f:ce:b6:9d:0e: d6:26:f0:7a:37:25:e8:b2:cb:14:51:46:43:1d:62: 3a:74:c2:c7:54:71:87:e5:31:be:11:c1:bb:26:d2: 03:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D8:A6:A7:02:37:FB:84:97:2C:FC:3F:C5:C3:DC:2D:1C:2D:7C:72 X509v3 Authority Key Identifier: keyid:CD:C0:85:E3:D4:D7:54:39:AE:1B:B6:CB:68:F1:80:E8:1A:AD:24:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC085E3D4D75439AE1BB6CB68F180E81AAD2450.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd0e0dea-5f9b-425c-82ce-30a865007c35/0/3130332e382e37382e302f32332d3234203d3e203538353531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.78.0/23 Signature Algorithm: sha256WithRSAEncryption 81:12:86:8c:de:98:3d:26:0f:31:55:03:f6:c0:fe:10:fa:0e: ce:61:56:4d:65:ff:36:5e:f6:1f:76:b7:ce:29:38:37:c4:32: bc:0d:53:45:8b:0d:d9:38:a9:cd:06:30:02:6b:e5:da:ab:dd: 2d:47:07:cf:d6:78:65:57:aa:01:89:bc:f2:43:b9:be:2f:92: 72:7e:25:6f:39:8c:be:89:b3:f4:92:61:9e:d4:a4:1d:64:63: a4:87:c1:76:e4:f2:cb:b9:ac:b8:55:a7:99:dc:aa:e0:a7:91: 2f:ae:26:95:a1:62:41:5b:a5:72:11:df:7d:22:61:bd:13:8e: 8b:7a:6d:3f:20:5d:59:b5:56:32:e1:53:77:34:4b:4e:88:3a: 65:13:ef:59:d3:43:e4:07:9e:ae:c1:98:0b:33:86:72:5c:cc: 71:0a:7a:b3:21:2a:a8:93:d1:0f:6c:a9:9a:30:ce:d0:5f:b1: c0:88:b8:df:5d:c2:34:f7:59:ca:4b:5d:cc:2f:05:52:4a:52: c6:2a:38:8a:73:1f:21:09:67:d5:92:ae:5b:61:99:1e:7e:97: 5f:07:e3:d5:4d:31:0d:87:85:63:ab:7c:3e:5f:44:d0:6d:43: 31:dc:cb:ae:f8:43:73:e3:f1:d4:50:a1:18:99:fd:68:63:39: fe:92:ca:ea -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUMxey+W+PAfyuqDJmr70zZOCniKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgx QUFEMjQ1MDAeFw0yNTAzMTkwNzU1MDBaFw0yNjAzMTgwODAwMDBaMDMxMTAvBgNV BAMTKDQ4RDhBNkE3MDIzN0ZCODQ5NzJDRkMzRkM1QzNEQzJEMUMyRDdDNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKqd8Xr2j/hpEBpTIRaxsUKl+n KNXbx6RYN7oyBE0RhqaWLWVosNNcZcLY+fbX1+I29zinoSPKW8P11vmVGJ/6nGMO glWnB3Xlg2obsGS2cmYksoNlYq2dzsnCgtG83e+EiQNeODjdi97ZGOjU+QrXggoj iJKirXtAjY8SnYpvs774Yzw7yxknN2/R3n2K7kLfmVRlaNcWj0hwT/+/FXtQCvu2 rlDPL1gc+bZQZCEdsXUP/E2NuLT2jZn/katCk20v8YIuozzCOrlpQmn3yIXxovzS VtX/METcislfzradDtYm8Ho3JeiyyxRRRkMdYjp0wsdUcYflMb4Rwbsm0gNLAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUSNimpwI3+4SXLPw/xcPcLRwtfHIwHwYDVR0j BBgwFoAUzcCF49TXVDmuG7bLaPGA6BqtJFAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDBlMGRlYS01ZjliLTQyNWMtODJjZS0zMGE4NjUwMDdjMzUvMC9DREMwODVFM0Q0 RDc1NDM5QUUxQkI2Q0I2OEYxODBFODFBQUQyNDUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDMDg1RTNENEQ3NTQzOUFFMUJCNkNCNjhGMTgwRTgxQUFE MjQ1MC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmQwZTBkZWEtNWY5Yi00MjVjLTgy Y2UtMzBhODY1MDA3YzM1LzAvMzEzMDMzMmUzODJlMzczODJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM1MzgzNTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnCE4wDQYJKoZIhvcNAQEL BQADggEBAIEShozemD0mDzFVA/bA/hD6Ds5hVk1l/zZe9h92t84pODfEMrwNU0WL Ddk4qc0GMAJr5dqr3S1HB8/WeGVXqgGJvPJDub4vknJ+JW85jL6Js/SSYZ7UpB1k Y6SHwXbk8su5rLhVp5ncquCnkS+uJpWhYkFbpXIR330iYb0Tjot6bT8gXVm1VjLh U3c0S06IOmUT71nTQ+QHnq7BmAszhnJczHEKerMhKqiT0Q9sqZowztBfscCIuN9d wjT3WcpLXcwvBVJKUsYqOIpzHyEJZ9WSrlthmR5+l18H49VNMQ2HhWOrfD5fRNBt QzHcy674Q3Pj8dRQoRiZ/WhjOf6Syuo= -----END CERTIFICATE-----Generated at Fri Apr 25 22:07:26 2025 by rpki-client on console.sobornost.net