$ rpki-client -vvf repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa File: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (raw, json) Hash identifier: zJyhGvQzaDs1uZ/vkTZ4lisg94de9IwLPmGapH9vBW8= Subject key identifier: 23:75:6E:6C:36:83:7E:A8:2D:53:DE:3E:32:0F:A5:9C:FF:C2:6B:C3 Certificate issuer: /CN=C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD Certificate serial: 3C8EB9C5FEA2A8C243B79A4BCAB9D144E2FCD2DB Authority key identifier: C1:84:D0:BB:A0:CD:19:44:C1:99:BF:20:D0:EB:A5:1A:9F:B4:7A:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa Signing time: Tue 15 Apr 2025 06:02:23 +0000 ROA not before: Tue 15 Apr 2025 05:57:23 +0000 ROA not after: Tue 14 Apr 2026 06:02:23 +0000 asID: 152754 IP address blocks: 160.19.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.crl rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 08:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:8e:b9:c5:fe:a2:a8:c2:43:b7:9a:4b:ca:b9:d1:44:e2:fc:d2:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD Validity Not Before: Apr 15 05:57:23 2025 GMT Not After : Apr 14 06:02:23 2026 GMT Subject: CN=23756E6C36837EA82D53DE3E320FA59CFFC26BC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:51:10:ea:17:41:5a:ab:cb:95:af:3a:e0:8f: 4a:50:3a:78:5f:40:d0:6c:68:14:08:95:d8:fc:5f: 64:5b:d8:4f:88:68:64:b9:05:cf:c1:86:a7:e9:16: a2:0f:79:ac:79:9a:76:1c:31:76:74:65:8e:96:c1: 31:a2:88:7f:b3:e0:49:94:c3:33:fd:66:0d:3a:fb: a1:1b:2f:cf:a6:24:b9:3b:51:ec:8b:02:8f:e7:ba: 84:c0:61:ce:4b:24:df:d9:f4:46:c8:23:63:54:d0: d2:82:6c:00:c8:29:64:20:f3:39:5a:5f:3d:fd:02: 24:6b:29:2a:b9:e1:db:d9:6c:39:70:0b:12:1f:6e: 68:c9:56:52:14:7c:1f:e3:1a:9e:96:9e:64:7a:db: 1c:ce:a7:76:4e:d4:db:57:cd:4b:06:7a:73:01:a4: 05:68:e4:4d:d4:5f:94:b7:8a:91:a8:18:c9:cd:2e: d6:97:d9:62:07:4c:af:ad:b3:9f:e8:86:da:ec:e3: 13:02:7f:23:da:26:b3:0f:5e:da:ea:1f:75:f5:4b: 94:48:76:fa:89:30:b8:30:7b:a2:cc:57:d2:b8:31: 8a:8e:e9:b2:c4:fd:d3:0f:22:5c:77:9a:c7:97:66: a7:9f:ae:04:72:29:90:2b:cd:fc:cc:ab:92:f4:7f: 6e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:75:6E:6C:36:83:7E:A8:2D:53:DE:3E:32:0F:A5:9C:FF:C2:6B:C3 X509v3 Authority Key Identifier: keyid:C1:84:D0:BB:A0:CD:19:44:C1:99:BF:20:D0:EB:A5:1A:9F:B4:7A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C184D0BBA0CD1944C199BF20D0EBA51A9FB47ADD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/23 Signature Algorithm: sha256WithRSAEncryption 06:35:3a:73:8b:02:92:23:8d:74:f2:fc:f5:e6:60:da:1f:58: 4c:78:6c:cf:bd:5d:41:d0:15:83:b6:5e:01:8a:a4:bc:91:c3: 7c:15:da:fa:7a:ea:cd:d9:af:77:43:07:96:b3:79:49:fc:15: 84:b1:16:7a:ac:66:b1:6a:e7:75:44:2d:e0:aa:bb:3b:3b:14: d6:3b:55:12:5e:c3:4e:2f:d3:2d:0d:bb:8b:6e:db:84:17:91: d1:16:2f:1c:05:45:df:6e:c4:0c:dd:51:09:06:12:b6:d2:1f: 8e:7c:18:2d:6b:9e:51:d1:32:0c:da:4f:7b:0e:80:3d:fe:c3: 8a:ef:fa:35:16:7a:83:c8:e3:3a:4c:e2:02:26:a2:1d:e0:7b: 85:a0:2d:70:5f:3d:3b:5d:ee:39:37:00:13:6d:b1:ee:96:91: 4a:67:a3:bb:7c:5e:b0:26:36:3d:a4:f9:9e:14:ab:08:a3:74: 16:b5:35:ef:eb:9b:5b:bd:52:a7:de:c7:d4:bc:ae:49:06:b5: ad:c2:9a:29:4a:43:e9:8f:0c:8c:26:c6:70:63:62:a0:1c:f0: 75:ae:f1:91:72:e1:43:7c:56:eb:20:5a:b3:82:79:b8:b6:25: bc:39:46:2a:84:19:13:fd:37:91:b3:43:91:91:4b:b5:30:06: 8c:c1:64:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPI65xf6iqMJDt5pLyrnRROL80tswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE4NEQwQkJBMENEMTk0NEMxOTlCRjIwRDBFQkE1MUE5 RkI0N0FERDAeFw0yNTA0MTUwNTU3MjNaFw0yNjA0MTQwNjAyMjNaMDMxMTAvBgNV BAMTKDIzNzU2RTZDMzY4MzdFQTgyRDUzREUzRTMyMEZBNTlDRkZDMjZCQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEURDqF0Faq8uVrzrgj0pQOnhf QNBsaBQIldj8X2Rb2E+IaGS5Bc/BhqfpFqIPeax5mnYcMXZ0ZY6WwTGiiH+z4EmU wzP9Zg06+6EbL8+mJLk7UeyLAo/nuoTAYc5LJN/Z9EbII2NU0NKCbADIKWQg8zla Xz39AiRrKSq54dvZbDlwCxIfbmjJVlIUfB/jGp6WnmR62xzOp3ZO1NtXzUsGenMB pAVo5E3UX5S3ipGoGMnNLtaX2WIHTK+ts5/ohtrs4xMCfyPaJrMPXtrqH3X1S5RI dvqJMLgwe6LMV9K4MYqO6bLE/dMPIlx3mseXZqefrgRyKZArzfzMq5L0f24BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI3VubDaDfqgtU94+Mg+lnP/Ca8MwHwYDVR0j BBgwFoAUwYTQu6DNGUTBmb8g0OulGp+0et0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTM3NGQ0OC01YTcwLTRjN2YtYmRmZC1kODA1MmViYWYwYWIvMC9DMTg0RDBCQkEw Q0QxOTQ0QzE5OUJGMjBEMEVCQTUxQTlGQjQ3QURELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzE4NEQwQkJBMENEMTk0NEMxOTlCRjIwRDBFQkE1MUE5RkI0 N0FERC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlMzc0ZDQ4LTVhNzAtNGM3Zi1i ZGZkLWQ4MDUyZWJhZjBhYi8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaATVDANBgkqhkiG 9w0BAQsFAAOCAQEABjU6c4sCkiONdPL89eZg2h9YTHhsz71dQdAVg7ZeAYqkvJHD fBXa+nrqzdmvd0MHlrN5SfwVhLEWeqxmsWrndUQt4Kq7OzsU1jtVEl7DTi/TLQ27 i27bhBeR0RYvHAVF327EDN1RCQYSttIfjnwYLWueUdEyDNpPew6APf7Diu/6NRZ6 g8jjOkziAiaiHeB7haAtcF89O13uOTcAE22x7paRSmeju3xesCY2PaT5nhSrCKN0 FrU17+ubW71Sp97H1LyuSQa1rcKaKUpD6Y8MjCbGcGNioBzwda7xkXLhQ3xW6yBa s4J5uLYlvDlGKoQZE/03kbNDkZFLtTAGjMFkpw== -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:50 2025 by rpki-client on console.sobornost.net