$ rpki-client -vvf repo-rpki.idnic.net/repo/32880ddb-3d94-4e34-92dc-4d4538b905a2/0/3135372e32302e3139332e302f32342d3234203d3e20313532343237.roa File: 3135372e32302e3139332e302f32342d3234203d3e20313532343237.roa (raw, json) Hash identifier: xyltXPiPOHbvKePnlpJnsx741KzCQWK/N5bnmbeAlMM= Subject key identifier: 51:70:DA:E1:6A:A2:0A:11:B7:DF:EB:AF:B4:08:8A:10:FD:DA:BD:29 Certificate issuer: /CN=46A2E634FFF40AE545EC7DB67A888189AAEB5D03 Certificate serial: 33D887345FA286C80EDBF7E53F94B27882CA4AA1 Authority key identifier: 46:A2:E6:34:FF:F4:0A:E5:45:EC:7D:B6:7A:88:81:89:AA:EB:5D:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46A2E634FFF40AE545EC7DB67A888189AAEB5D03.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32880ddb-3d94-4e34-92dc-4d4538b905a2/0/3135372e32302e3139332e302f32342d3234203d3e20313532343237.roa Signing time: Tue 25 Feb 2025 08:00:01 +0000 ROA not before: Tue 25 Feb 2025 07:55:01 +0000 ROA not after: Tue 24 Feb 2026 08:00:01 +0000 asID: 152427 IP address blocks: 157.20.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32880ddb-3d94-4e34-92dc-4d4538b905a2/0/46A2E634FFF40AE545EC7DB67A888189AAEB5D03.crl rsync://repo-rpki.idnic.net/repo/32880ddb-3d94-4e34-92dc-4d4538b905a2/0/46A2E634FFF40AE545EC7DB67A888189AAEB5D03.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46A2E634FFF40AE545EC7DB67A888189AAEB5D03.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:d8:87:34:5f:a2:86:c8:0e:db:f7:e5:3f:94:b2:78:82:ca:4a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46A2E634FFF40AE545EC7DB67A888189AAEB5D03 Validity Not Before: Feb 25 07:55:01 2025 GMT Not After : Feb 24 08:00:01 2026 GMT Subject: CN=5170DAE16AA20A11B7DFEBAFB4088A10FDDABD29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:83:0c:8c:91:cb:fb:e5:ac:c7:e0:b4:32:97: 8b:62:e6:cb:0e:4a:f3:98:22:ec:7a:3e:ee:f5:c2: ef:a2:69:7d:af:fc:99:8e:eb:7f:76:b7:32:9b:89: d3:b4:9d:b8:44:3d:73:12:74:72:cc:6c:00:41:28: 01:0c:6d:6e:69:80:53:0c:cf:b8:8a:d7:8e:d7:80: 69:ae:bd:b7:5c:9b:39:a5:3a:81:78:f8:e1:dd:a7: 26:80:89:77:64:a1:1d:42:4a:b4:00:5b:a2:a6:5e: 72:6b:f5:33:fd:55:45:a5:44:c9:55:c2:c2:61:84: 42:b5:17:b5:95:03:2a:4c:3d:92:88:20:db:b4:a5: 6f:c5:d0:5c:d9:31:6b:5f:b9:d9:88:d6:4b:6b:d7: 7c:e9:b5:66:e3:c5:a5:60:74:9e:62:f1:ff:0c:6f: 49:ea:ed:59:02:41:8b:cd:3d:75:e7:19:aa:9d:bb: c2:81:dc:b5:7c:58:0a:8f:d6:5d:10:67:30:4a:71: 57:7e:98:35:0d:dc:2d:48:63:e7:c3:87:c4:46:d1: 48:4f:dd:d5:d6:58:9f:4e:64:fd:7a:d9:4a:42:94: b5:95:e1:75:07:1e:0a:1f:b4:87:76:06:2a:14:3f: dd:9e:8b:37:b9:65:3c:26:f2:43:df:48:f6:56:9b: e9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:70:DA:E1:6A:A2:0A:11:B7:DF:EB:AF:B4:08:8A:10:FD:DA:BD:29 X509v3 Authority Key Identifier: keyid:46:A2:E6:34:FF:F4:0A:E5:45:EC:7D:B6:7A:88:81:89:AA:EB:5D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32880ddb-3d94-4e34-92dc-4d4538b905a2/0/46A2E634FFF40AE545EC7DB67A888189AAEB5D03.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/46A2E634FFF40AE545EC7DB67A888189AAEB5D03.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32880ddb-3d94-4e34-92dc-4d4538b905a2/0/3135372e32302e3139332e302f32342d3234203d3e20313532343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.193.0/24 Signature Algorithm: sha256WithRSAEncryption 83:d6:8c:4a:64:32:aa:eb:3d:17:01:d5:8f:3f:eb:a5:7b:dc: 22:e4:f5:6d:e6:94:f8:2d:35:b9:46:99:60:fe:00:ce:43:e4: 0f:ee:4f:5f:3f:4d:52:83:06:22:32:79:f5:b2:e4:3a:8d:0b: 08:5e:0a:aa:76:9f:e8:35:2d:07:ac:0c:72:56:60:0f:92:1a: ee:26:4d:02:b4:e1:00:6b:04:40:51:29:9b:73:4b:77:fe:f5: c6:10:36:e7:a2:a6:80:e5:b1:a9:c2:38:5e:47:ab:c3:8e:38: 3c:ca:36:6b:ba:20:12:05:d5:7c:5b:ff:75:de:dd:df:5a:65: 15:f2:2f:20:8b:9b:81:a4:af:e5:4e:86:cf:74:41:77:bf:86: 22:55:5e:58:70:ea:2f:23:3e:b0:64:2a:2e:c9:63:ef:53:c1: 0f:75:59:b4:34:4c:e2:27:20:c9:33:17:09:ea:65:c4:44:f8: d6:db:c4:22:c1:7b:4a:4e:c7:2f:d6:18:79:16:9c:6a:86:39: e6:94:ff:f2:fa:b7:7f:21:50:0b:29:2c:21:5b:90:42:51:9f: 56:aa:94:1c:93:18:6c:23:55:39:27:48:f6:35:e8:6b:86:a0: 81:56:37:60:29:c9:cf:2f:03:ea:a6:b6:8f:8f:fc:77:d4:77: 89:42:11:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM9iHNF+ihsgO2/flP5SyeILKSqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZBMkU2MzRGRkY0MEFFNTQ1RUM3REI2N0E4ODgxODlB QUVCNUQwMzAeFw0yNTAyMjUwNzU1MDFaFw0yNjAyMjQwODAwMDFaMDMxMTAvBgNV BAMTKDUxNzBEQUUxNkFBMjBBMTFCN0RGRUJBRkI0MDg4QTEwRkREQUJEMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUgwyMkcv75azH4LQyl4ti5ssO SvOYIux6Pu71wu+iaX2v/JmO6392tzKbidO0nbhEPXMSdHLMbABBKAEMbW5pgFMM z7iK147XgGmuvbdcmzmlOoF4+OHdpyaAiXdkoR1CSrQAW6KmXnJr9TP9VUWlRMlV wsJhhEK1F7WVAypMPZKIINu0pW/F0FzZMWtfudmI1ktr13zptWbjxaVgdJ5i8f8M b0nq7VkCQYvNPXXnGaqdu8KB3LV8WAqP1l0QZzBKcVd+mDUN3C1IY+fDh8RG0UhP 3dXWWJ9OZP162UpClLWV4XUHHgoftId2BioUP92eize5ZTwm8kPfSPZWm+k7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUXDa4WqiChG33+uvtAiKEP3avSkwHwYDVR0j BBgwFoAURqLmNP/0CuVF7H22eoiBiarrXQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Mjg4MGRkYi0zZDk0LTRlMzQtOTJkYy00ZDQ1MzhiOTA1YTIvMC80NkEyRTYzNEZG RjQwQUU1NDVFQzdEQjY3QTg4ODE4OUFBRUI1RDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDZBMkU2MzRGRkY0MEFFNTQ1RUM3REI2N0E4ODgxODlBQUVC NUQwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyODgwZGRiLTNkOTQtNGUzNC05 MmRjLTRkNDUzOGI5MDVhMi8wLzMxMzUzNzJlMzIzMDJlMzEzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTBMA0GCSqG SIb3DQEBCwUAA4IBAQCD1oxKZDKq6z0XAdWPP+ule9wi5PVt5pT4LTW5Rplg/gDO Q+QP7k9fP01SgwYiMnn1suQ6jQsIXgqqdp/oNS0HrAxyVmAPkhruJk0CtOEAawRA USmbc0t3/vXGEDbnoqaA5bGpwjheR6vDjjg8yjZruiASBdV8W/913t3fWmUV8i8g i5uBpK/lTobPdEF3v4YiVV5YcOovIz6wZCouyWPvU8EPdVm0NEziJyDJMxcJ6mXE RPjW28QiwXtKTscv1hh5FpxqhjnmlP/y+rd/IVALKSwhW5BCUZ9WqpQckxhsI1U5 J0j2NehrhqCBVjdgKcnPLwPqpraPj/x31HeJQhHB -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:22 2025 by rpki-client on console.sobornost.net