$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa File: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (raw, json) Hash identifier: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo= Subject key identifier: 76:07:99:72:52:AA:41:99:1D:92:3D:3E:F3:B0:0B:0A:6D:F3:D3:AE Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 04D3B45802584A1B5283C163132826634B9725E7 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa Signing time: Mon 20 Jan 2025 07:00:02 +0000 ROA not before: Mon 20 Jan 2025 06:55:02 +0000 ROA not after: Mon 19 Jan 2026 07:00:02 +0000 asID: 152355 IP address blocks: 157.10.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d3:b4:58:02:58:4a:1b:52:83:c1:63:13:28:26:63:4b:97:25:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Jan 20 06:55:02 2025 GMT Not After : Jan 19 07:00:02 2026 GMT Subject: CN=7607997252AA41991D923D3EF3B00B0A6DF3D3AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5f:b5:95:13:b8:83:20:dd:8a:21:81:7f:e0: 68:c9:f3:7c:90:8b:76:b9:49:97:c7:18:51:d6:9a: a5:d8:d2:4c:00:47:25:29:7d:ac:08:1e:54:5c:1e: 42:e0:d4:b8:9c:b8:18:d3:eb:d7:5c:23:54:41:76: e3:af:e0:2e:f2:a5:fe:fb:c9:99:75:51:20:39:e1: 8a:7c:2d:fd:f7:c5:36:bd:83:43:9c:d0:80:58:aa: 7c:a6:3a:cc:89:a7:19:be:05:9c:d1:e4:bc:7b:1a: 5b:56:d1:d5:fd:9a:2a:4f:81:8b:6d:4e:df:81:61: cd:45:7b:b3:42:98:58:4d:08:c1:ba:54:ae:5d:1e: 08:87:47:50:74:ed:ae:0d:61:b5:46:b0:6e:d5:8a: 60:e0:18:69:f9:2e:51:e1:40:8c:e2:fe:d5:c8:78: 29:70:20:d5:30:2e:65:ee:d0:8c:54:2f:f2:02:ce: 8c:2d:7d:29:51:c6:be:5a:e0:9c:91:fa:30:52:35: c0:56:45:ce:51:5b:7c:9e:10:79:22:12:10:1e:7d: fe:eb:57:33:15:99:50:a0:4b:06:8b:a7:23:d6:1a: 98:04:14:dd:1e:f6:59:19:95:24:99:a8:c1:30:52: 12:38:e8:6c:f5:75:9a:dc:5b:41:f2:89:79:59:43: 9b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:07:99:72:52:AA:41:99:1D:92:3D:3E:F3:B0:0B:0A:6D:F3:D3:AE X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.159.0/24 Signature Algorithm: sha256WithRSAEncryption c1:d1:56:cc:15:d3:91:cc:80:72:17:37:3e:a2:62:10:55:ef: 84:85:98:98:7a:88:3e:9a:50:7c:f6:f8:db:c4:14:e8:eb:57: 41:98:83:59:3b:47:1b:80:1a:b0:e0:65:b3:7d:de:3b:98:84: 85:cb:fb:4a:1a:6b:34:3c:82:7e:cb:2b:ea:c0:cf:09:db:5c: d5:fc:51:39:b3:03:09:a9:e7:e4:75:be:e9:79:e2:37:4a:f9: 9b:9b:02:4d:c4:da:6f:a5:e9:e1:57:cf:26:76:80:05:bc:c7: 02:d0:68:47:19:48:ff:d2:b0:12:4f:6d:89:8a:b1:93:79:ad: 72:8e:cd:06:5f:e7:0a:cb:32:e8:1e:83:e0:43:fd:d0:a9:93: ea:ec:8b:63:42:f0:ff:a8:1b:da:52:e4:a7:0b:38:14:06:75: 14:c2:b0:4b:f6:7a:c3:16:53:11:a3:4b:d2:35:7a:9d:cf:7e: a1:c9:91:da:c2:c2:22:a4:33:c9:f3:c9:62:16:97:3d:1d:51: e7:b7:e7:b0:aa:1c:a2:9d:0c:a1:67:2e:79:17:93:17:9a:a7: 93:6a:29:0b:18:65:da:71:57:31:eb:54:0d:f8:b9:76:9c:84: 4e:76:6e:88:48:92:c3:dc:93:cc:a0:0a:b9:f1:ac:47:a3:d2: ba:b9:65:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBNO0WAJYShtSg8FjEygmY0uXJecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTAxMjAwNjU1MDJaFw0yNjAxMTkwNzAwMDJaMDMxMTAvBgNV BAMTKDc2MDc5OTcyNTJBQTQxOTkxRDkyM0QzRUYzQjAwQjBBNkRGM0QzQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxX7WVE7iDIN2KIYF/4GjJ83yQ i3a5SZfHGFHWmqXY0kwARyUpfawIHlRcHkLg1LicuBjT69dcI1RBduOv4C7ypf77 yZl1USA54Yp8Lf33xTa9g0Oc0IBYqnymOsyJpxm+BZzR5Lx7GltW0dX9mipPgYtt Tt+BYc1Fe7NCmFhNCMG6VK5dHgiHR1B07a4NYbVGsG7VimDgGGn5LlHhQIzi/tXI eClwINUwLmXu0IxUL/ICzowtfSlRxr5a4JyR+jBSNcBWRc5RW3yeEHkiEhAeff7r VzMVmVCgSwaLpyPWGpgEFN0e9lkZlSSZqMEwUhI46Gz1dZrcW0HyiXlZQ5vHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdgeZclKqQZkdkj0+87ALCm3z064wHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVjLTA0NTYtNDZhMy05 NjMyLTcwOWM3NjcxMDRiYi8wLzMxMzUzNzJlMzEzMDJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqfMA0GCSqG SIb3DQEBCwUAA4IBAQDB0VbMFdORzIByFzc+omIQVe+EhZiYeog+mlB89vjbxBTo 61dBmINZO0cbgBqw4GWzfd47mISFy/tKGms0PIJ+yyvqwM8J21zV/FE5swMJqefk db7peeI3SvmbmwJNxNpvpenhV88mdoAFvMcC0GhHGUj/0rAST22JirGTea1yjs0G X+cKyzLoHoPgQ/3QqZPq7ItjQvD/qBvaUuSnCzgUBnUUwrBL9nrDFlMRo0vSNXqd z36hyZHawsIipDPJ88liFpc9HVHnt+ewqhyinQyhZy55F5MXmqeTaikLGGXacVcx 61QN+Ll2nIROdm6ISJLD3JPMoAq58axHo9K6uWXc -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net