$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa File: 3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa (raw, json) Hash identifier: zEX2zvBjt157yqeJ3lViczjWUiYCUWpG52AxWV4xz8k= Subject key identifier: 37:DB:D9:0F:6D:BC:46:0E:F5:61:EB:9D:BF:23:87:D5:5D:F3:6F:99 Certificate issuer: /CN=FC4AE05C1547B778063F91C4687D12E8D6978309 Certificate serial: 589D8140DB97444F81222EA980387BB8E4C91053 Authority key identifier: FC:4A:E0:5C:15:47:B7:78:06:3F:91:C4:68:7D:12:E8:D6:97:83:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC4AE05C1547B778063F91C4687D12E8D6978309.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa Signing time: Mon 31 Mar 2025 09:00:01 +0000 ROA not before: Mon 31 Mar 2025 08:55:01 +0000 ROA not after: Mon 30 Mar 2026 09:00:01 +0000 asID: 152431 IP address blocks: 157.20.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/FC4AE05C1547B778063F91C4687D12E8D6978309.crl rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/FC4AE05C1547B778063F91C4687D12E8D6978309.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC4AE05C1547B778063F91C4687D12E8D6978309.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 18:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9d:81:40:db:97:44:4f:81:22:2e:a9:80:38:7b:b8:e4:c9:10:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4AE05C1547B778063F91C4687D12E8D6978309 Validity Not Before: Mar 31 08:55:01 2025 GMT Not After : Mar 30 09:00:01 2026 GMT Subject: CN=37DBD90F6DBC460EF561EB9DBF2387D55DF36F99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:88:8c:cf:9d:e0:de:56:44:c5:60:1c:60: 9b:95:44:88:e9:e0:24:de:d5:2a:73:98:57:ac:32: 47:a8:41:df:c5:6d:65:36:08:97:16:af:28:a9:72: e6:76:ad:fc:be:54:b0:2c:0a:5f:5a:7d:6b:f0:19: 7a:dc:d6:f4:ca:c6:13:75:b2:b6:33:35:56:d9:da: 8a:5c:5a:69:87:84:7a:3b:c9:f2:43:58:5c:4c:8b: 58:26:11:b8:95:2a:c5:37:90:0c:af:22:11:ef:ea: 35:37:47:a9:be:d6:a9:1c:8e:77:41:de:d4:e6:9e: de:e8:b3:9a:75:a2:97:9d:13:76:35:21:e6:81:d8: a8:69:be:3a:d0:20:4f:0c:b6:55:d6:f8:21:78:32: 63:b1:b0:f6:8e:fc:79:fe:3b:b5:ee:26:7e:39:18: 0b:c2:e2:86:43:7a:db:f1:b7:e0:8b:8b:d1:08:59: cc:91:74:c1:64:e3:2b:aa:0d:cd:36:59:35:91:9d: d9:4a:fb:76:df:28:bd:a4:7d:ea:c0:0e:e4:e9:5c: 64:be:00:10:56:91:9d:e4:9d:75:4e:78:7e:3f:0e: f5:d0:af:32:f0:e9:df:05:22:e2:0e:72:d1:7a:f2: a0:e6:be:da:70:32:ed:27:6f:78:15:cd:c4:49:e1: 2f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DB:D9:0F:6D:BC:46:0E:F5:61:EB:9D:BF:23:87:D5:5D:F3:6F:99 X509v3 Authority Key Identifier: keyid:FC:4A:E0:5C:15:47:B7:78:06:3F:91:C4:68:7D:12:E8:D6:97:83:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/FC4AE05C1547B778063F91C4687D12E8D6978309.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FC4AE05C1547B778063F91C4687D12E8D6978309.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf0a77c-3928-4130-a098-b437572d722c/0/3135372e32302e3233302e302f32332d3234203d3e20313532343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.230.0/23 Signature Algorithm: sha256WithRSAEncryption 60:73:f0:cb:d8:dc:84:f3:60:47:ea:82:4a:9e:95:af:76:16: 19:2d:09:b3:3b:b8:d9:ef:53:37:d6:e4:5e:80:5e:be:3e:86: 08:50:ae:c9:76:f7:57:1b:6e:2b:63:43:7b:81:cd:c4:b9:79: 1e:0f:4b:34:e2:2e:3c:ea:3e:b9:76:9e:5b:be:46:ba:95:25: f5:b2:77:b0:4d:ce:19:7a:01:2a:e1:89:f7:26:93:24:36:59: 76:36:58:df:16:da:72:51:33:18:b4:80:b5:e6:2c:19:9f:70: 2c:27:61:e7:79:7f:a6:2b:05:73:cb:38:a1:d6:c1:cd:c1:2d: 60:b7:6d:d2:8a:b8:62:77:4d:24:f3:5f:5d:9a:49:a9:cc:59: a2:ed:5c:61:d1:a3:0e:bd:17:1a:75:d4:1a:84:6c:9e:58:0e: a8:bb:98:d2:4d:3c:71:a7:30:b8:88:0a:3c:67:71:ac:e1:d0: a6:b7:90:2f:fd:00:63:7b:50:33:99:90:ce:ad:07:01:b5:c9: d5:65:27:8b:27:dd:66:74:2c:a3:f3:31:9a:35:af:ae:2b:7c: 37:fd:27:52:53:84:d4:cc:e4:53:86:9f:85:d4:86:04:a2:ce: 20:72:bb:67:9a:63:f7:7e:2b:1b:11:e8:8f:55:fc:eb:05:85: d1:c5:a1:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWJ2BQNuXRE+BIi6pgDh7uOTJEFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM0QUUwNUMxNTQ3Qjc3ODA2M0Y5MUM0Njg3RDEyRThE Njk3ODMwOTAeFw0yNTAzMzEwODU1MDFaFw0yNjAzMzAwOTAwMDFaMDMxMTAvBgNV BAMTKDM3REJEOTBGNkRCQzQ2MEVGNTYxRUI5REJGMjM4N0Q1NURGMzZGOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8WYiMz53g3lZExWAcYJuVRIjp 4CTe1SpzmFesMkeoQd/FbWU2CJcWryipcuZ2rfy+VLAsCl9afWvwGXrc1vTKxhN1 srYzNVbZ2opcWmmHhHo7yfJDWFxMi1gmEbiVKsU3kAyvIhHv6jU3R6m+1qkcjndB 3tTmnt7os5p1opedE3Y1IeaB2KhpvjrQIE8MtlXW+CF4MmOxsPaO/Hn+O7XuJn45 GAvC4oZDetvxt+CLi9EIWcyRdMFk4yuqDc02WTWRndlK+3bfKL2kferADuTpXGS+ ABBWkZ3knXVOeH4/DvXQrzLw6d8FIuIOctF68qDmvtpwMu0nb3gVzcRJ4S+nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN9vZD228Rg71YeudvyOH1V3zb5kwHwYDVR0j BBgwFoAU/ErgXBVHt3gGP5HEaH0S6NaXgwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YwYTc3Yy0zOTI4LTQxMzAtYTA5OC1iNDM3NTcyZDcyMmMvMC9GQzRBRTA1QzE1 NDdCNzc4MDYzRjkxQzQ2ODdEMTJFOEQ2OTc4MzA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkM0QUUwNUMxNTQ3Qjc3ODA2M0Y5MUM0Njg3RDEyRThENjk3 ODMwOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZjBhNzdjLTM5MjgtNDEzMC1h MDk4LWI0Mzc1NzJkNzIyYy8wLzMxMzUzNzJlMzIzMDJlMzIzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTmMA0GCSqG SIb3DQEBCwUAA4IBAQBgc/DL2NyE82BH6oJKnpWvdhYZLQmzO7jZ71M31uRegF6+ PoYIUK7JdvdXG24rY0N7gc3EuXkeD0s04i486j65dp5bvka6lSX1snewTc4ZegEq 4Yn3JpMkNll2NljfFtpyUTMYtIC15iwZn3AsJ2HneX+mKwVzyzih1sHNwS1gt23S irhid00k819dmkmpzFmi7Vxh0aMOvRcaddQahGyeWA6ou5jSTTxxpzC4iAo8Z3Gs 4dCmt5Av/QBje1AzmZDOrQcBtcnVZSeLJ91mdCyj8zGaNa+uK3w3/SdSU4TUzORT hp+F1IYEos4gcrtnmmP3fisbEeiPVfzrBYXRxaGB -----END CERTIFICATE-----Generated at Wed Apr 23 22:12:04 2025 by rpki-client on console.sobornost.net