$ rpki-client -vvf repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/3136302e31392e38362e302f32342d3234203d3e20313431363030.roa File: 3136302e31392e38362e302f32342d3234203d3e20313431363030.roa (raw, json) Hash identifier: xAoPpGiqJPKLajKP9A6xSCK7J0LB9rX24Vj8odXUlPU= Subject key identifier: 48:DC:D5:54:E2:C5:14:E8:DA:DB:92:91:3B:6B:93:DC:60:FC:73:E1 Certificate issuer: /CN=340A98C1E96A3909CEB0BEB588C40CFBDD3CA295 Certificate serial: 2942ACA04F1B86DE7E76FEAF4B93E1D3EAC486BD Authority key identifier: 34:0A:98:C1:E9:6A:39:09:CE:B0:BE:B5:88:C4:0C:FB:DD:3C:A2:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/3136302e31392e38362e302f32342d3234203d3e20313431363030.roa Signing time: Fri 18 Apr 2025 07:00:02 +0000 ROA not before: Fri 18 Apr 2025 06:55:02 +0000 ROA not after: Fri 17 Apr 2026 07:00:02 +0000 asID: 141600 IP address blocks: 160.19.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.crl rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 03:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:42:ac:a0:4f:1b:86:de:7e:76:fe:af:4b:93:e1:d3:ea:c4:86:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=340A98C1E96A3909CEB0BEB588C40CFBDD3CA295 Validity Not Before: Apr 18 06:55:02 2025 GMT Not After : Apr 17 07:00:02 2026 GMT Subject: CN=48DCD554E2C514E8DADB92913B6B93DC60FC73E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f0:09:5e:0f:9a:eb:15:62:f4:f0:00:57:a8: a5:53:ab:ae:bd:16:7d:3b:3e:a5:17:6e:9b:66:87: 83:32:1c:31:78:84:7b:5f:6c:e2:f6:1b:36:6c:87: c0:09:1c:e2:5b:2b:36:56:e0:c2:2f:df:6a:6a:e0: e5:a7:8d:58:57:54:1e:11:a5:f4:43:00:41:84:27: 6c:80:3d:c8:59:f5:f3:8e:6a:36:a4:78:99:12:df: 6f:ed:1f:83:4f:71:82:71:51:c1:68:51:0c:9c:2c: e0:24:d6:00:f7:7e:e3:db:0d:6b:e5:05:c8:05:cc: 77:87:cf:82:3c:59:58:a2:54:79:db:96:29:64:75: a3:8e:4e:44:6e:8e:43:8a:39:da:bf:4f:76:a5:79: 6b:28:f2:9a:8d:6d:9d:4d:c6:31:c9:01:fa:47:e3: 43:3d:df:3a:be:c3:6e:a6:5d:ee:9c:43:c6:c1:c5: 99:ef:2d:3f:9c:f6:c6:25:f3:ae:ae:9b:cb:5f:f4: 3b:07:8e:87:e3:4e:4d:9a:72:0a:b1:f5:44:a2:c4: da:04:62:ca:e5:2d:20:90:86:48:b1:18:f4:08:8a: 41:7a:86:82:b7:d7:c6:7f:da:71:39:4d:9d:2d:6f: 1b:c6:f8:b9:d7:05:3b:df:74:18:95:95:e1:a6:a1: 72:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DC:D5:54:E2:C5:14:E8:DA:DB:92:91:3B:6B:93:DC:60:FC:73:E1 X509v3 Authority Key Identifier: keyid:34:0A:98:C1:E9:6A:39:09:CE:B0:BE:B5:88:C4:0C:FB:DD:3C:A2:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/340A98C1E96A3909CEB0BEB588C40CFBDD3CA295.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/0/3136302e31392e38362e302f32342d3234203d3e20313431363030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.86.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:18:eb:34:45:0b:2d:92:ea:5d:90:02:84:13:ae:9e:0e:dd: 82:65:2b:63:25:2f:1f:b4:36:d4:ef:95:75:ab:c0:be:90:da: 80:70:91:40:d9:86:06:3b:d8:ea:1f:8e:40:8b:44:1a:4d:47: 65:5a:00:58:aa:a6:d9:76:f4:18:de:84:d5:bc:93:c5:14:06: 30:e1:6a:d4:96:fb:1c:a5:c6:58:23:c8:4f:5b:7f:f4:2f:9b: ed:8a:ca:fb:30:40:5b:3d:b6:09:6a:63:29:14:a6:56:73:14: 6b:ad:96:1c:79:42:49:50:d7:00:4c:b9:87:bc:be:d3:d6:64: 8b:a7:3a:23:77:56:56:79:9b:70:08:2e:c0:c2:54:b7:e9:86: ee:15:b2:68:9a:4a:9a:28:49:a8:1e:4a:36:66:36:77:30:a5: 7c:5a:3b:05:9b:06:bf:c7:11:5a:88:ef:84:a1:b0:52:d2:3f: 9e:24:e9:07:c6:b9:f5:d6:ec:6f:a1:37:1b:9f:d3:f2:ed:70: 74:dd:f8:0d:35:09:00:a8:1d:03:5c:a7:8a:17:83:de:b7:44: ca:8d:fb:a1:c8:91:fc:e7:60:67:00:c4:2a:f3:5a:2b:d8:04: c3:ea:23:6f:0d:5f:94:36:79:73:f6:9b:92:16:2b:6b:c9:51: af:b6:f5:fe -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUKsoE8bht5+dv6vS5Ph0+rEhr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQwQTk4QzFFOTZBMzkwOUNFQjBCRUI1ODhDNDBDRkJE RDNDQTI5NTAeFw0yNTA0MTgwNjU1MDJaFw0yNjA0MTcwNzAwMDJaMDMxMTAvBgNV BAMTKDQ4RENENTU0RTJDNTE0RThEQURCOTI5MTNCNkI5M0RDNjBGQzczRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL8AleD5rrFWL08ABXqKVTq669 Fn07PqUXbptmh4MyHDF4hHtfbOL2GzZsh8AJHOJbKzZW4MIv32pq4OWnjVhXVB4R pfRDAEGEJ2yAPchZ9fOOajakeJkS32/tH4NPcYJxUcFoUQycLOAk1gD3fuPbDWvl BcgFzHeHz4I8WViiVHnblilkdaOOTkRujkOKOdq/T3aleWso8pqNbZ1NxjHJAfpH 40M93zq+w26mXe6cQ8bBxZnvLT+c9sYl866um8tf9DsHjofjTk2acgqx9USixNoE YsrlLSCQhkixGPQIikF6hoK318Z/2nE5TZ0tbxvG+LnXBTvfdBiVleGmoXKXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSNzVVOLFFOja25KRO2uT3GD8c+EwHwYDVR0j BBgwFoAUNAqYwelqOQnOsL61iMQM+908opUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTQ0ZDk3YS1lM2ZiLTRmZmMtYjdmNy1mN2I4YjY2NTlhYzQvMC8zNDBBOThDMUU5 NkEzOTA5Q0VCMEJFQjU4OEM0MENGQkREM0NBMjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzQwQTk4QzFFOTZBMzkwOUNFQjBCRUI1ODhDNDBDRkJERDND QTI5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNDRkOTdhLWUzZmItNGZmYy1i N2Y3LWY3YjhiNjY1OWFjNC8wLzMxMzYzMDJlMzEzOTJlMzgzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKATVjANBgkqhkiG 9w0BAQsFAAOCAQEAXRjrNEULLZLqXZAChBOung7dgmUrYyUvH7Q21O+VdavAvpDa gHCRQNmGBjvY6h+OQItEGk1HZVoAWKqm2Xb0GN6E1byTxRQGMOFq1Jb7HKXGWCPI T1t/9C+b7YrK+zBAWz22CWpjKRSmVnMUa62WHHlCSVDXAEy5h7y+09Zki6c6I3dW VnmbcAguwMJUt+mG7hWyaJpKmihJqB5KNmY2dzClfFo7BZsGv8cRWojvhKGwUtI/ niTpB8a59dbsb6E3G5/T8u1wdN34DTUJAKgdA1yniheD3rdEyo37ociR/OdgZwDE KvNaK9gEw+ojbw1flDZ5c/abkhYra8lRr7b1/g== -----END CERTIFICATE-----Generated at Sun Apr 27 05:32:54 2025 by rpki-client on console.sobornost.net