$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa File: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (raw, json) Hash identifier: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M= Subject key identifier: E8:84:75:7D:57:DC:D3:3D:BA:3F:2F:1A:73:8C:E9:60:D1:CC:41:8A Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 0E1EDB7E8A041441F0DC860BE93A64FB41424491 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa Signing time: Mon 20 Jan 2025 07:00:02 +0000 ROA not before: Mon 20 Jan 2025 06:55:02 +0000 ROA not after: Mon 19 Jan 2026 07:00:02 +0000 asID: 152355 IP address blocks: 157.10.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:1e:db:7e:8a:04:14:41:f0:dc:86:0b:e9:3a:64:fb:41:42:44:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Jan 20 06:55:02 2025 GMT Not After : Jan 19 07:00:02 2026 GMT Subject: CN=E884757D57DCD33DBA3F2F1A738CE960D1CC418A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d2:14:2c:ef:0b:7e:72:c4:38:bd:1a:54:bd: 09:5a:92:d0:7d:36:34:36:fb:ee:d5:13:b1:4d:37: c1:11:4e:f2:49:6d:e7:1a:8d:d2:91:c9:36:af:31: a4:74:83:14:78:c8:25:64:1e:38:16:7d:58:bf:f5: f0:c6:6d:94:71:ec:b7:f0:dd:fc:71:54:ee:98:18: d2:d8:86:1f:e5:01:29:d2:4c:e8:af:3c:a2:43:62: f1:05:40:e7:ec:20:42:10:3e:82:ed:ba:d8:15:3c: f7:9d:7d:f9:39:35:6d:7a:79:e8:7a:db:77:3b:39: 7e:7a:7f:89:4d:d4:49:80:ff:88:05:7e:6c:0b:5f: 07:45:8a:eb:e6:13:88:0b:64:ee:b2:b5:1a:8b:75: 5d:b6:e1:d8:c7:3a:40:95:a9:e3:43:91:0e:50:ee: 01:87:e2:bc:53:5c:ca:8c:30:bd:2e:40:bd:80:0f: c3:99:9c:d1:5c:8a:6a:90:9d:80:fc:02:bf:bf:5c: a4:a8:56:a2:e9:df:d3:e9:33:5d:fd:e2:96:48:a3: 70:ff:5f:31:63:b9:22:ff:a0:af:77:27:6e:6c:26: 9c:3f:a6:8d:24:15:16:5f:83:26:a2:e8:d1:25:9f: b6:d5:5b:52:7a:b4:b8:b3:89:d7:5d:34:7d:41:07: 82:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:84:75:7D:57:DC:D3:3D:BA:3F:2F:1A:73:8C:E9:60:D1:CC:41:8A X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.158.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:f9:2a:57:2e:f9:57:12:d7:00:d5:71:d3:ec:10:26:29:9a: e3:ab:ea:44:98:a8:5f:f3:58:11:be:97:75:f5:82:96:56:f1: 79:41:a7:be:cb:0f:f5:6d:31:e6:e2:f1:29:41:67:ed:f5:56: 31:f2:06:e6:2d:07:e8:2c:2f:b8:f6:8a:5c:72:09:00:40:8f: 52:b9:ee:b1:68:b1:dd:5c:5f:0f:f5:23:0f:af:29:e3:73:be: bc:f8:ff:0f:b6:27:19:7d:33:9e:45:7b:13:bc:d1:cd:13:75: c6:67:77:27:96:25:34:f8:f1:37:86:3f:0b:e8:e1:66:50:02: b5:2f:d0:69:c4:8c:c2:18:e8:7f:c8:9a:47:cf:21:d9:88:de: 57:70:47:bf:75:27:8d:f1:96:21:73:36:27:69:0e:2a:bd:3f: 64:f2:a7:4d:9e:6d:2c:01:99:20:47:36:43:08:37:19:ca:fe: f2:d5:ed:5e:08:aa:c7:17:57:64:35:02:10:e8:52:f3:5e:24: 2c:95:c9:2c:6c:06:0d:ff:79:3e:72:b6:de:e8:05:c3:0d:64: ba:21:66:ec:96:d7:51:c2:b5:e5:9a:38:46:c3:cf:04:55:77: 1e:8b:fc:5c:3f:f2:d8:3e:f7:22:16:53:de:d4:d0:d7:05:dc: 2d:7f:64:c8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDh7bfooEFEHw3IYL6Tpk+0FCRJEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTAxMjAwNjU1MDJaFw0yNjAxMTkwNzAwMDJaMDMxMTAvBgNV BAMTKEU4ODQ3NTdENTdEQ0QzM0RCQTNGMkYxQTczOENFOTYwRDFDQzQxOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp0hQs7wt+csQ4vRpUvQlaktB9 NjQ2++7VE7FNN8ERTvJJbecajdKRyTavMaR0gxR4yCVkHjgWfVi/9fDGbZRx7Lfw 3fxxVO6YGNLYhh/lASnSTOivPKJDYvEFQOfsIEIQPoLtutgVPPedffk5NW16eeh6 23c7OX56f4lN1EmA/4gFfmwLXwdFiuvmE4gLZO6ytRqLdV224djHOkCVqeNDkQ5Q 7gGH4rxTXMqMML0uQL2AD8OZnNFcimqQnYD8Ar+/XKSoVqLp39PpM1394pZIo3D/ XzFjuSL/oK93J25sJpw/po0kFRZfgyai6NEln7bVW1J6tLizidddNH1BB4ITAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6IR1fVfc0z26Py8ac4zpYNHMQYowHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVjLTA0NTYtNDZhMy05 NjMyLTcwOWM3NjcxMDRiYi8wLzMxMzUzNzJlMzEzMDJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqeMA0GCSqG SIb3DQEBCwUAA4IBAQBc+SpXLvlXEtcA1XHT7BAmKZrjq+pEmKhf81gRvpd19YKW VvF5Qae+yw/1bTHm4vEpQWft9VYx8gbmLQfoLC+49opccgkAQI9Sue6xaLHdXF8P 9SMPrynjc768+P8PticZfTOeRXsTvNHNE3XGZ3cnliU0+PE3hj8L6OFmUAK1L9Bp xIzCGOh/yJpHzyHZiN5XcEe/dSeN8ZYhczYnaQ4qvT9k8qdNnm0sAZkgRzZDCDcZ yv7y1e1eCKrHF1dkNQIQ6FLzXiQslcksbAYN/3k+crbe6AXDDWS6IWbsltdRwrXl mjhGw88EVXcei/xcP/LYPvciFlPe1NDXBdwtf2TI -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net