$ rpki-client -vvf repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/3135372e36362e33362e302f32342d3234203d3e20313430303136.roa File: 3135372e36362e33362e302f32342d3234203d3e20313430303136.roa (raw, json) Hash identifier: zDfqmAp3VO5lL/pBx5N4cR8KEoRuNAmls9zWuktjlvE= Subject key identifier: 49:FF:10:86:BA:FA:E1:2A:BD:2E:21:57:C2:7A:7C:77:DE:D1:9D:30 Certificate issuer: /CN=EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA Certificate serial: 7AE8BB4A81C453D52988C717AA135160C4C54988 Authority key identifier: EF:AF:3D:BC:84:57:8E:58:6E:A4:A0:4F:C3:5E:6A:46:FA:0E:28:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/3135372e36362e33362e302f32342d3234203d3e20313430303136.roa Signing time: Tue 15 Apr 2025 11:00:00 +0000 ROA not before: Tue 15 Apr 2025 10:55:00 +0000 ROA not after: Tue 14 Apr 2026 11:00:00 +0000 asID: 140016 IP address blocks: 157.66.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.crl rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e8:bb:4a:81:c4:53:d5:29:88:c7:17:aa:13:51:60:c4:c5:49:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA Validity Not Before: Apr 15 10:55:00 2025 GMT Not After : Apr 14 11:00:00 2026 GMT Subject: CN=49FF1086BAFAE12ABD2E2157C27A7C77DED19D30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:cb:8f:74:47:bc:b0:46:32:5c:d3:52:22: b0:d0:ac:f0:7f:10:6f:48:7f:13:5d:cb:d2:33:bb: 46:d7:f5:07:d6:c7:0d:ab:a0:3d:25:be:c6:71:80: bd:5e:3f:9a:86:96:02:50:cd:68:45:83:fd:fc:a0: 7f:59:15:f0:df:75:c7:18:69:80:c0:65:ac:97:74: 8c:00:3c:77:d6:03:71:bf:78:a2:0f:9b:59:18:00: 18:ea:86:bc:b4:e3:27:6f:12:2f:94:64:13:a2:60: d0:31:70:e4:8f:2b:ef:c9:53:df:2c:3f:0d:cd:ff: 62:48:b8:f1:2c:bb:71:a0:46:73:99:e4:8b:7d:5b: ad:79:0a:86:92:45:7f:8b:af:55:45:3d:94:d1:4b: bf:ef:af:19:45:ae:da:4e:93:50:c8:36:41:88:e1: 2d:8a:85:fe:84:fc:20:33:bb:9f:0c:0c:be:3c:dd: c2:f2:83:d4:e0:58:2f:cc:2c:6b:84:10:36:02:a4: f9:e1:bc:e6:ac:e1:02:3d:dc:c8:ee:01:d9:23:34: 28:99:30:00:4d:65:be:10:03:bd:fe:9a:b5:e7:77: eb:f7:10:51:01:03:c4:ff:95:78:19:40:e8:35:11: be:c0:49:ed:3d:0d:8f:43:d1:92:fe:c7:c3:46:54: 08:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FF:10:86:BA:FA:E1:2A:BD:2E:21:57:C2:7A:7C:77:DE:D1:9D:30 X509v3 Authority Key Identifier: keyid:EF:AF:3D:BC:84:57:8E:58:6E:A4:A0:4F:C3:5E:6A:46:FA:0E:28:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/3135372e36362e33362e302f32342d3234203d3e20313430303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.36.0/24 Signature Algorithm: sha256WithRSAEncryption b1:cc:9e:16:ed:46:45:d1:f2:5c:dc:5a:97:35:fc:c6:7c:bc: e1:e5:e4:74:d3:51:fa:7d:8e:64:61:b0:2f:d6:7f:6f:fe:22: 9a:71:da:9e:66:8d:5c:95:72:01:13:4f:49:b1:c1:b5:0e:8a: 60:05:df:99:c8:65:10:bb:c4:f3:32:63:8d:18:c9:1b:1b:37: f4:38:3d:48:b3:ce:ae:fd:97:af:28:ab:f8:84:f6:0f:57:0d: 29:2c:78:09:ea:8f:ab:97:22:75:6c:f9:14:a3:25:ba:6d:57: 30:51:42:86:5f:16:a9:5d:23:61:0e:ef:a7:78:d7:99:99:68: 9c:e5:ee:a0:16:71:8f:fb:41:a9:c2:9c:6a:df:8d:83:1a:99: 69:4b:df:4f:2d:3d:46:f0:16:f0:08:b9:20:22:82:2e:d8:b9: 36:42:21:74:3d:8e:ab:83:da:45:1f:65:3a:78:8e:14:2d:1b: 35:7f:8f:6d:d4:f4:ff:25:9d:c9:cd:48:f0:96:ec:33:fe:db: 61:13:91:ba:f0:9e:fd:ad:d2:b8:54:44:de:49:74:44:70:2e: 28:33:72:08:e6:71:0b:e1:87:bb:5e:60:f5:39:f2:75:b1:b3: 17:0b:18:6f:19:3a:06:55:a7:86:96:36:34:65:20:f0:4d:01: ea:6e:60:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeui7SoHEU9UpiMcXqhNRYMTFSYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZBRjNEQkM4NDU3OEU1ODZFQTRBMDRGQzM1RTZBNDZG QTBFMjhFQTAeFw0yNTA0MTUxMDU1MDBaFw0yNjA0MTQxMTAwMDBaMDMxMTAvBgNV BAMTKDQ5RkYxMDg2QkFGQUUxMkFCRDJFMjE1N0MyN0E3Qzc3REVEMTlEMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPu8uPdEe8sEYyXNNSIrDQrPB/ EG9IfxNdy9Izu0bX9QfWxw2roD0lvsZxgL1eP5qGlgJQzWhFg/38oH9ZFfDfdccY aYDAZayXdIwAPHfWA3G/eKIPm1kYABjqhry04ydvEi+UZBOiYNAxcOSPK+/JU98s Pw3N/2JIuPEsu3GgRnOZ5It9W615CoaSRX+Lr1VFPZTRS7/vrxlFrtpOk1DINkGI 4S2Khf6E/CAzu58MDL483cLyg9TgWC/MLGuEEDYCpPnhvOas4QI93MjuAdkjNCiZ MABNZb4QA73+mrXnd+v3EFEBA8T/lXgZQOg1Eb7ASe09DY9D0ZL+x8NGVAi1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSf8Qhrr64Sq9LiFXwnp8d97RnTAwHwYDVR0j BBgwFoAU7689vIRXjlhupKBPw15qRvoOKOowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZjllMWE4YS0zOWYxLTRmZTItODMyYS1iYjJmMjA5MmZiZjYvMC9FRkFGM0RCQzg0 NTc4RTU4NkVBNEEwNEZDMzVFNkE0NkZBMEUyOEVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRUZBRjNEQkM4NDU3OEU1ODZFQTRBMDRGQzM1RTZBNDZGQTBF MjhFQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmOWUxYThhLTM5ZjEtNGZlMi04 MzJhLWJiMmYyMDkyZmJmNi8wLzMxMzUzNzJlMzYzNjJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMwMzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ1CJDANBgkqhkiG 9w0BAQsFAAOCAQEAscyeFu1GRdHyXNxalzX8xny84eXkdNNR+n2OZGGwL9Z/b/4i mnHanmaNXJVyARNPSbHBtQ6KYAXfmchlELvE8zJjjRjJGxs39Dg9SLPOrv2Xryir +IT2D1cNKSx4CeqPq5cidWz5FKMlum1XMFFChl8WqV0jYQ7vp3jXmZlonOXuoBZx j/tBqcKcat+NgxqZaUvfTy09RvAW8Ai5ICKCLti5NkIhdD2Oq4PaRR9lOniOFC0b NX+PbdT0/yWdyc1I8JbsM/7bYRORuvCe/a3SuFRE3kl0RHAuKDNyCOZxC+GHu15g 9TnydbGzFwsYbxk6BlWnhpY2NGUg8E0B6m5gbA== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:03 2025 by rpki-client on console.sobornost.net