$ rpki-client -vvf repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa File: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (raw, json) Hash identifier: Qk1aebZH6HpsmbRtyw6Zbd7LsZDQbi5L/mrlB31+AsU= Subject key identifier: E4:5F:0C:21:B5:DA:21:E9:5F:CE:94:F0:49:20:58:37:9A:5C:33:ED Certificate issuer: /CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Certificate serial: 31922B144CEA18235648AE7A66DD9AB3010E4F27 Authority key identifier: 2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa Signing time: Fri 18 Apr 2025 16:00:00 +0000 ROA not before: Fri 18 Apr 2025 15:55:00 +0000 ROA not after: Fri 17 Apr 2026 16:00:00 +0000 asID: 152039 IP address blocks: 27.124.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 14:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:92:2b:14:4c:ea:18:23:56:48:ae:7a:66:dd:9a:b3:01:0e:4f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Validity Not Before: Apr 18 15:55:00 2025 GMT Not After : Apr 17 16:00:00 2026 GMT Subject: CN=E45F0C21B5DA21E95FCE94F0492058379A5C33ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8c:e4:52:35:50:8f:db:51:e0:b4:88:ff:b9: 22:8b:a6:d3:db:8d:28:10:5f:70:b1:05:67:ce:36: a9:4c:fb:02:63:8b:47:a7:c7:f3:cc:fe:7a:95:a3: 95:f7:85:d7:97:f3:01:f4:53:93:ad:15:4a:60:f1: a3:27:50:9f:d7:c2:e2:eb:d5:5e:9d:4f:9b:8f:c1: 2f:75:a6:d9:62:36:12:72:e1:af:5d:34:df:fd:c4: 6d:61:c1:d3:41:77:7a:c0:47:f8:00:9b:cc:9f:a5: 57:81:cd:00:cd:20:35:e2:1c:28:48:d5:44:db:a7: e5:51:47:43:8d:7b:55:6b:5f:23:6c:54:d4:32:7e: fa:bc:78:45:7c:32:3f:11:90:55:89:79:f6:22:d9: ea:7f:01:72:2e:d0:b0:e3:da:8c:8a:6d:67:41:fb: 64:19:bc:0a:06:0a:97:7b:ee:cb:7a:11:64:4c:ea: 2f:ee:dd:06:6d:27:77:a3:6e:d2:98:9e:2a:30:e8: 12:d1:7e:64:15:2e:1a:e2:e6:79:bc:82:d9:11:47: 5d:88:43:42:d9:86:45:ad:0e:52:92:89:e7:ae:51: 1c:fd:34:85:07:96:49:a6:52:0d:fe:ea:38:70:c7: 8f:50:ba:a9:98:d7:d4:97:d3:e1:e5:10:0b:34:1a: 7c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5F:0C:21:B5:DA:21:E9:5F:CE:94:F0:49:20:58:37:9A:5C:33:ED X509v3 Authority Key Identifier: keyid:2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/32372e3132342e36362e302f32342d3234203d3e20313532303339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.66.0/24 Signature Algorithm: sha256WithRSAEncryption 43:97:62:94:54:c2:35:19:0d:c8:53:b9:b6:0c:6e:9f:10:05: 90:6b:39:45:4d:6b:e3:15:9f:27:df:ef:f2:77:00:fe:0f:31: a1:53:32:a8:4c:c5:f1:25:d4:08:02:75:a0:1b:34:39:d2:65: 69:b8:f0:f3:4b:13:59:a1:61:df:00:1b:65:c3:1c:ab:56:0e: 57:b2:2c:6d:0f:ad:57:46:45:95:12:d8:d6:30:71:b6:50:d7: 12:dc:85:a7:76:03:48:e3:e5:b9:2d:10:e5:4a:71:cf:5e:a3: 16:dd:a4:bd:2c:18:3f:5d:a0:5f:69:94:28:bc:e4:ed:26:75: 91:ff:3c:9e:d7:79:01:b9:d3:0b:6e:98:7d:eb:5c:47:1a:a0: f3:81:6c:ff:95:1f:3c:25:26:a1:0b:57:46:b6:62:c2:28:7d: 2c:2c:10:ee:43:a1:5e:e4:f7:c5:d9:03:e7:4a:f3:1b:67:99: 0d:13:3e:41:a9:a0:f9:ed:88:a4:cd:66:c4:69:2d:f5:e1:25: 9f:d3:0d:c0:00:51:d2:06:c4:07:ea:75:6b:8d:a8:52:b8:2c: ab:e9:cc:b9:af:e9:75:22:b5:55:38:89:e3:9f:54:7c:62:38: a3:e6:b9:2f:d1:48:96:c1:2e:d5:60:db:e9:5a:63:8c:67:58: da:18:2d:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMZIrFEzqGCNWSK56Zt2aswEOTycwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VF RUUwMTYwNTAeFw0yNTA0MTgxNTU1MDBaFw0yNjA0MTcxNjAwMDBaMDMxMTAvBgNV BAMTKEU0NUYwQzIxQjVEQTIxRTk1RkNFOTRGMDQ5MjA1ODM3OUE1QzMzRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1jORSNVCP21HgtIj/uSKLptPb jSgQX3CxBWfONqlM+wJji0enx/PM/nqVo5X3hdeX8wH0U5OtFUpg8aMnUJ/XwuLr 1V6dT5uPwS91ptliNhJy4a9dNN/9xG1hwdNBd3rAR/gAm8yfpVeBzQDNIDXiHChI 1UTbp+VRR0ONe1VrXyNsVNQyfvq8eEV8Mj8RkFWJefYi2ep/AXIu0LDj2oyKbWdB +2QZvAoGCpd77st6EWRM6i/u3QZtJ3ejbtKYniow6BLRfmQVLhri5nm8gtkRR12I Q0LZhkWtDlKSieeuURz9NIUHlkmmUg3+6jhwx49QuqmY19SX0+HlEAs0GnzVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5F8MIbXaIelfzpTwSSBYN5pcM+0wHwYDVR0j BBgwFoAULP1b3dHbptlAKHTWIjq9fu7gFgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjdlMGJjMC03NjFiLTRlYzMtOGY0Mi04Mjk4MWI5MWE5N2EvMC8yQ0ZENUJEREQx REJBNkQ5NDAyODc0RDYyMjNBQkQ3RUVFRTAxNjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VFRUUw MTYwNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiN2UwYmMwLTc2MWItNGVjMy04 ZjQyLTgyOTgxYjkxYTk3YS8wLzMyMzcyZTMxMzIzNDJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt8QjANBgkqhkiG 9w0BAQsFAAOCAQEAQ5dilFTCNRkNyFO5tgxunxAFkGs5RU1r4xWfJ9/v8ncA/g8x oVMyqEzF8SXUCAJ1oBs0OdJlabjw80sTWaFh3wAbZcMcq1YOV7IsbQ+tV0ZFlRLY 1jBxtlDXEtyFp3YDSOPluS0Q5Upxz16jFt2kvSwYP12gX2mUKLzk7SZ1kf88ntd5 AbnTC26YfetcRxqg84Fs/5UfPCUmoQtXRrZiwih9LCwQ7kOhXuT3xdkD50rzG2eZ DRM+Qamg+e2IpM1mxGkt9eEln9MNwABR0gbEB+p1a42oUrgsq+nMua/pdSK1VTiJ 459UfGI4o+a5L9FIlsEu1WDb6VpjjGdY2hgtuw== -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:40 2025 by rpki-client on console.sobornost.net