$ rpki-client -vvf repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32332d3234203d3e20313532383331.roa File: 3136302e32352e33342e302f32332d3234203d3e20313532383331.roa (raw, json) Hash identifier: 4i87PvQ/cfa5tJ8SET0F9sq3RG49EY5mNAVu0vrk8Es= Subject key identifier: 32:06:84:AE:D0:9B:FD:60:58:5C:4F:54:AB:04:05:08:C9:2B:44:1D Certificate issuer: /CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Certificate serial: 044CD39C1C71ACBB84197034091752181713186A Authority key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32332d3234203d3e20313532383331.roa Signing time: Thu 27 Feb 2025 17:24:45 +0000 ROA not before: Thu 27 Feb 2025 17:19:45 +0000 ROA not after: Thu 26 Feb 2026 17:24:45 +0000 asID: 152831 IP address blocks: 160.25.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 03:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:4c:d3:9c:1c:71:ac:bb:84:19:70:34:09:17:52:18:17:13:18:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Validity Not Before: Feb 27 17:19:45 2025 GMT Not After : Feb 26 17:24:45 2026 GMT Subject: CN=320684AED09BFD60585C4F54AB040508C92B441D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4f:61:5e:bb:d9:35:e9:e5:64:9e:65:d6:cd: ed:9b:fa:bc:69:4b:da:c5:94:d8:28:01:53:fb:dd: eb:3e:ed:2b:c6:e8:aa:74:36:4f:a5:76:ea:93:e8: fc:ea:87:c3:1c:6c:a8:ec:70:26:79:95:9e:63:19: f7:1c:48:10:b8:b4:d0:6d:0f:94:da:66:22:5d:7a: a0:e4:54:93:ef:d2:f9:ed:42:2e:42:51:15:16:85: f7:cf:d7:81:55:fd:f0:a1:1a:44:5e:24:77:5b:47: 42:c5:f5:26:69:bc:1b:b5:96:7a:2f:1e:8b:89:ba: 30:67:e1:e3:03:86:01:43:a3:c9:b0:bc:f8:56:2c: 59:b2:af:d8:f3:66:6b:7e:65:2a:c0:df:5c:83:f5: 80:33:21:be:af:0d:6e:78:36:46:67:36:55:4f:0c: 5c:f2:a3:06:76:68:0a:6b:0c:04:10:6c:4f:1e:13: 88:34:68:14:80:ed:6e:36:7d:ee:15:eb:14:e8:30: e5:8a:c6:03:d3:74:1e:40:c6:e5:d1:6c:e1:d9:04: f5:9c:c8:f7:84:e5:e8:d8:4f:39:4d:f9:09:f2:ad: cb:72:2a:05:67:cb:ec:07:1e:6a:95:56:55:e6:a9: 21:2e:8e:30:42:fd:c7:d7:ae:f8:8d:33:ec:77:8b: e9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:06:84:AE:D0:9B:FD:60:58:5C:4F:54:AB:04:05:08:C9:2B:44:1D X509v3 Authority Key Identifier: keyid:24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/3136302e32352e33342e302f32332d3234203d3e20313532383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:7e:b6:18:7c:6e:27:0d:34:24:e1:6a:dd:87:4e:fb:bb:27: 5e:cd:d1:87:b3:10:6e:32:92:28:1d:7f:8e:30:1c:a3:18:bb: b4:6c:f3:0c:47:a3:f3:66:4a:32:6e:9c:56:a1:c4:73:2b:1a: 48:88:35:39:9f:3e:b4:e5:b1:6a:89:a9:22:08:31:86:ea:05: fd:c5:3f:00:dc:39:09:90:ae:a1:01:56:da:06:a1:ea:72:2e: 27:33:8f:74:a6:47:83:b0:3a:63:af:88:a4:5e:83:44:c6:95: e2:1b:a2:9d:76:f6:ac:73:af:00:c6:66:c7:b3:66:c6:7d:36: 52:14:c7:e6:56:dd:f6:63:1b:f2:14:12:a1:15:79:02:e3:cb: 19:e2:e3:4d:93:a6:94:6f:a9:4f:27:c9:f9:8b:d2:bc:f5:85: 5d:f9:e7:14:bf:82:47:10:0d:c2:bf:e1:89:74:0d:d7:fb:f4: c2:07:07:c5:0b:e1:3d:fb:54:94:8e:7c:a4:90:05:01:8d:17: 5b:5d:04:da:a7:6d:08:73:80:03:98:cb:74:3f:35:69:95:02: 68:0a:68:fa:df:14:8d:66:be:ca:fb:cd:3c:5f:89:b0:7c:f9: f7:69:f5:7f:25:78:a1:ff:f0:06:e5:1c:65:3c:b8:50:a3:bd: f7:43:84:7b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBEzTnBxxrLuEGXA0CRdSGBcTGGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRD NjJBQUJEODAeFw0yNTAyMjcxNzE5NDVaFw0yNjAyMjYxNzI0NDVaMDMxMTAvBgNV BAMTKDMyMDY4NEFFRDA5QkZENjA1ODVDNEY1NEFCMDQwNTA4QzkyQjQ0MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNT2Feu9k16eVknmXWze2b+rxp S9rFlNgoAVP73es+7SvG6Kp0Nk+lduqT6Pzqh8McbKjscCZ5lZ5jGfccSBC4tNBt D5TaZiJdeqDkVJPv0vntQi5CURUWhffP14FV/fChGkReJHdbR0LF9SZpvBu1lnov HouJujBn4eMDhgFDo8mwvPhWLFmyr9jzZmt+ZSrA31yD9YAzIb6vDW54NkZnNlVP DFzyowZ2aAprDAQQbE8eE4g0aBSA7W42fe4V6xToMOWKxgPTdB5AxuXRbOHZBPWc yPeE5ejYTzlN+QnyrctyKgVny+wHHmqVVlXmqSEujjBC/cfXrviNM+x3i+m5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMgaErtCb/WBYXE9UqwQFCMkrRB0wHwYDVR0j BBgwFoAUJK7N0KCCekjV+671Af7T9MYqq9gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMC8yNEFFQ0REMEEw ODI3QTQ4RDVGQkFFRjUwMUZFRDNGNEM2MkFBQkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjRBRUNERDBBMDgyN0E0OEQ1RkJBRUY1MDFGRUQzRjRDNjJB QUJEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5YjhjLTNiZTctNGMwMi05 NTUxLWZiYzZmZmM0MDcwZi8wLzMxMzYzMDJlMzIzNTJlMzMzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjM4MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZIjANBgkqhkiG 9w0BAQsFAAOCAQEAen62GHxuJw00JOFq3YdO+7snXs3Rh7MQbjKSKB1/jjAcoxi7 tGzzDEej82ZKMm6cVqHEcysaSIg1OZ8+tOWxaompIggxhuoF/cU/ANw5CZCuoQFW 2gah6nIuJzOPdKZHg7A6Y6+IpF6DRMaV4huinXb2rHOvAMZmx7Nmxn02UhTH5lbd 9mMb8hQSoRV5AuPLGeLjTZOmlG+pTyfJ+YvSvPWFXfnnFL+CRxANwr/hiXQN1/v0 wgcHxQvhPftUlI58pJAFAY0XW10E2qdtCHOAA5jLdD81aZUCaApo+t8UjWa+yvvN PF+JsHz592n1fyV4of/wBuUcZTy4UKO990OEew== -----END CERTIFICATE-----Generated at Sat Apr 26 06:13:30 2025 by rpki-client on console.sobornost.net