$ rpki-client -vvf repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa File: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: teoM6MXntxfZebuRvj4HuDCmBJE7bmAYK9p8NliSwzQ= Subject key identifier: 37:66:9C:39:E5:55:1D:B4:6F:44:B2:EB:A6:90:09:A0:A1:5B:54:D8 Certificate issuer: /CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Certificate serial: 7028702BE9317B823DE8558AE6DCB5B06E22A91A Authority key identifier: 2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa Signing time: Tue 15 Apr 2025 10:00:00 +0000 ROA not before: Tue 15 Apr 2025 09:55:00 +0000 ROA not after: Tue 14 Apr 2026 10:00:00 +0000 asID: 138089 IP address blocks: 157.20.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 11:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:28:70:2b:e9:31:7b:82:3d:e8:55:8a:e6:dc:b5:b0:6e:22:a9:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Validity Not Before: Apr 15 09:55:00 2025 GMT Not After : Apr 14 10:00:00 2026 GMT Subject: CN=37669C39E5551DB46F44B2EBA69009A0A15B54D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bb:a8:27:c7:0f:c5:34:2b:96:94:0a:b3:48: c8:a2:b5:b8:1b:f5:61:be:9c:bb:17:14:87:04:99: e2:e8:a6:7d:e1:84:af:b9:b1:52:fe:f7:8c:ff:00: c7:0b:70:91:47:a9:64:7a:c0:ad:61:b9:1e:1b:f8: af:29:3e:33:c0:55:18:40:16:7d:79:2d:ec:64:84: 5a:d3:ef:5d:d6:a7:8d:10:dd:73:a2:2f:ff:79:30: bd:9f:cf:3a:2b:b4:a1:0e:b8:9a:59:f0:90:f5:79: 77:2d:7e:b7:1d:b2:49:82:00:8c:76:02:b7:4d:20: 0a:87:bf:17:8a:bd:dc:a0:c6:c9:14:1a:0f:7b:e3: cf:4a:e7:47:cd:3c:7f:19:c2:b6:a2:14:f0:0a:61: 72:be:b8:e8:66:5f:ae:fd:4b:73:9f:46:b4:9c:27: fc:95:ab:e4:c2:c4:98:ab:54:1d:aa:8b:6a:2e:b0: 00:85:15:07:a4:e5:83:fb:33:54:a4:27:86:b8:d5: 1b:78:54:da:f0:fe:dc:f2:59:dd:bb:80:04:9c:fa: e5:b9:08:00:b7:a8:ed:ba:11:ef:da:d7:f4:57:77: 18:c2:90:ee:18:71:9c:5a:07:f1:34:01:60:ab:cf: ec:e6:52:19:a1:67:6f:f9:ad:93:51:21:3f:f4:55: b1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:66:9C:39:E5:55:1D:B4:6F:44:B2:EB:A6:90:09:A0:A1:5B:54:D8 X509v3 Authority Key Identifier: keyid:2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.244.0/24 Signature Algorithm: sha256WithRSAEncryption 43:80:43:c0:c5:8c:fe:36:0e:14:f6:32:ba:30:e2:5f:73:3a: b4:ce:a8:8f:e1:71:43:d3:f5:ff:ac:7b:4e:26:e1:3c:ca:54: d3:cc:67:48:bb:3a:d8:c3:b6:ab:f9:97:9e:1c:a9:e6:a2:3d: 66:03:6a:53:8a:9a:63:28:3b:24:70:fb:d3:0c:a9:a0:37:69: d2:02:30:1e:f6:c8:7f:4c:e6:c8:b0:f2:54:0b:d6:5a:b9:e4: 90:e5:93:35:cf:11:b3:25:71:20:42:52:de:1f:31:df:c5:a5: 32:ce:32:88:81:8d:32:ec:33:9e:38:88:44:c4:7f:33:4b:56: df:79:f9:aa:ac:8b:a7:d5:55:6f:92:ee:e4:f8:34:66:64:68: 15:9e:ec:3f:48:15:b7:f8:a9:27:4e:df:6f:56:46:1e:f5:68: 74:7d:71:a1:76:1c:71:54:43:f1:7f:b8:7b:47:b8:74:f5:e5: 50:21:65:23:d3:b9:b4:46:76:9a:0c:ac:99:5b:61:af:57:d9: cb:21:11:2f:06:29:0d:55:ff:5a:26:ea:f4:83:6d:2a:46:ac: fd:31:eb:23:d6:d8:8c:20:a7:36:b3:43:07:4d:62:a0:25:cd: 04:ea:53:8f:33:d3:8d:65:85:82:d3:ed:c7:8a:e1:d2:bc:1a: 1a:48:e8:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcChwK+kxe4I96FWK5ty1sG4iqRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1 Mzc5OEJGQzAeFw0yNTA0MTUwOTU1MDBaFw0yNjA0MTQxMDAwMDBaMDMxMTAvBgNV BAMTKDM3NjY5QzM5RTU1NTFEQjQ2RjQ0QjJFQkE2OTAwOUEwQTE1QjU0RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsu6gnxw/FNCuWlAqzSMiitbgb 9WG+nLsXFIcEmeLopn3hhK+5sVL+94z/AMcLcJFHqWR6wK1huR4b+K8pPjPAVRhA Fn15LexkhFrT713Wp40Q3XOiL/95ML2fzzortKEOuJpZ8JD1eXctfrcdskmCAIx2 ArdNIAqHvxeKvdygxskUGg97489K50fNPH8ZwraiFPAKYXK+uOhmX679S3OfRrSc J/yVq+TCxJirVB2qi2ousACFFQek5YP7M1SkJ4a41Rt4VNrw/tzyWd27gASc+uW5 CAC3qO26Ee/a1/RXdxjCkO4YcZxaB/E0AWCrz+zmUhmhZ2/5rZNRIT/0VbGPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN2acOeVVHbRvRLLrppAJoKFbVNgwHwYDVR0j BBgwFoAUKt3UA1Fz+sO7OUnLNszvJVN5i/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODY3YTJlZS1kNDExLTRmZjgtOWY1Yy0zNWQwMzQxMjNmODQvMC8yQURERDQwMzUx NzNGQUMzQkIzOTQ5Q0IzNkNDRUYyNTUzNzk4QkZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1Mzc5 OEJGQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NjdhMmVlLWQ0MTEtNGZmOC05 ZjVjLTM1ZDAzNDEyM2Y4NC8wLzMxMzUzNzJlMzIzMDJlMzIzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRT0MA0GCSqG SIb3DQEBCwUAA4IBAQBDgEPAxYz+Ng4U9jK6MOJfczq0zqiP4XFD0/X/rHtOJuE8 ylTTzGdIuzrYw7ar+ZeeHKnmoj1mA2pTippjKDskcPvTDKmgN2nSAjAe9sh/TObI sPJUC9ZaueSQ5ZM1zxGzJXEgQlLeHzHfxaUyzjKIgY0y7DOeOIhExH8zS1bfefmq rIun1VVvku7k+DRmZGgVnuw/SBW3+KknTt9vVkYe9Wh0fXGhdhxxVEPxf7h7R7h0 9eVQIWUj07m0RnaaDKyZW2GvV9nLIREvBikNVf9aJur0g20qRqz9Mesj1tiMIKc2 s0MHTWKgJc0E6lOPM9ONZYWC0+3HiuHSvBoaSOir -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:49 2025 by rpki-client on console.sobornost.net