$ rpki-client -vvf repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa File: 33362e35302e3231372e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: suvA+Wk962jHlhC9+yItBsXmZi+V1BXvTufHDqbDzJE= Subject key identifier: E1:33:05:4D:3B:EC:8E:6D:FF:E9:AA:83:3B:48:BF:70:B4:0D:77:96 Certificate issuer: /CN=6DBB100D8D4669AB8A5C7EE057228ED67A98099E Certificate serial: 7C43ADA02568F6D988432834E01E368A5858431B Authority key identifier: 6D:BB:10:0D:8D:46:69:AB:8A:5C:7E:E0:57:22:8E:D6:7A:98:09:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa Signing time: Sat 12 Apr 2025 13:00:01 +0000 ROA not before: Sat 12 Apr 2025 12:55:01 +0000 ROA not after: Sat 11 Apr 2026 13:00:01 +0000 asID: 147128 IP address blocks: 36.50.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.crl rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 07:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:43:ad:a0:25:68:f6:d9:88:43:28:34:e0:1e:36:8a:58:58:43:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DBB100D8D4669AB8A5C7EE057228ED67A98099E Validity Not Before: Apr 12 12:55:01 2025 GMT Not After : Apr 11 13:00:01 2026 GMT Subject: CN=E133054D3BEC8E6DFFE9AA833B48BF70B40D7796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:30:77:2c:7f:fa:c5:43:e6:be:3b:00:c4: 98:e3:84:26:56:28:4a:52:be:ba:da:06:ff:38:95: 40:6f:17:0f:66:9c:72:e0:20:e7:10:30:92:7e:b6: 63:c5:fc:40:bd:f2:f9:03:d9:7c:3e:82:ef:2e:51: f5:b2:65:0d:89:43:83:b7:b4:12:41:89:73:05:77: 69:6a:dd:66:3a:5d:e1:c6:3d:2b:50:de:8b:1c:fa: f2:96:2c:b8:5a:ed:6a:74:5f:38:2e:98:c9:db:ce: c1:83:17:de:5d:00:30:58:f3:14:60:b0:e8:6e:17: 88:c9:46:c0:ec:3c:cc:00:ae:43:8d:e7:3c:f3:fd: 5e:50:16:45:77:0f:b5:f8:d9:f2:86:73:5a:80:e5: aa:9f:46:dd:c9:84:c4:fe:20:a5:20:24:1c:ac:57: c5:47:22:f5:25:d3:1e:31:58:a5:24:ad:6b:72:ef: 6a:7b:4b:95:71:08:e4:e4:9b:21:0c:3a:37:11:9f: 3f:82:fa:3f:46:90:62:96:e8:a7:be:b9:57:b3:80: 5e:1b:0b:37:98:5e:53:31:e4:ab:9b:76:aa:ba:58: 6c:58:f2:49:15:e7:d3:03:bf:b9:d9:55:7a:b3:70: 46:78:fd:94:a0:f3:4a:20:cc:bc:c8:e9:95:d2:ed: 09:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:33:05:4D:3B:EC:8E:6D:FF:E9:AA:83:3B:48:BF:70:B4:0D:77:96 X509v3 Authority Key Identifier: keyid:6D:BB:10:0D:8D:46:69:AB:8A:5C:7E:E0:57:22:8E:D6:7A:98:09:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBB100D8D4669AB8A5C7EE057228ED67A98099E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65989faf-48fb-4f40-9e77-243d78a5b5c4/0/33362e35302e3231372e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.217.0/24 Signature Algorithm: sha256WithRSAEncryption aa:ca:ed:ac:19:f4:72:05:91:cb:7c:33:06:46:3a:39:c2:d7: 09:a2:5e:34:70:d8:75:ed:35:32:97:0d:5d:66:b3:48:21:a0: 19:aa:fd:83:af:c7:02:fc:4d:f7:94:42:ee:a6:68:0d:b6:33: d1:2f:95:96:26:c1:89:df:d5:53:cd:b7:53:d7:f1:c2:0e:d1: fb:0e:d6:5a:15:46:22:7b:3b:f0:78:68:e5:6f:95:cf:0c:d9: 59:94:df:66:32:c2:e4:86:e0:90:80:0d:35:00:91:52:4b:e3: b7:94:83:f5:6b:a8:cc:d1:e1:d1:71:a0:ec:75:36:5f:6d:76: b7:c5:1e:37:55:39:c8:7f:d8:df:77:c2:89:95:37:1a:3a:6d: d4:69:19:e7:2f:bc:28:55:42:cc:79:a6:b4:6a:53:b5:64:bc: 4e:88:66:e8:9c:de:f8:39:62:30:eb:33:d5:1f:23:38:6a:5d: f2:73:f7:81:5d:16:93:0d:f7:66:7c:a3:51:2a:0d:12:0f:78: 5a:06:a6:16:bd:d9:bc:29:b6:ca:0e:6d:16:00:2b:b9:84:83: 65:53:bd:17:a2:97:6c:f3:af:ec:a9:7e:4f:27:15:93:13:1d: ad:f1:b3:be:56:f0:f6:d9:a3:2b:b5:af:4c:b4:0d:c3:fc:4a: 5b:87:08:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfEOtoCVo9tmIQyg04B42ilhYQxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRCQjEwMEQ4RDQ2NjlBQjhBNUM3RUUwNTcyMjhFRDY3 QTk4MDk5RTAeFw0yNTA0MTIxMjU1MDFaFw0yNjA0MTExMzAwMDFaMDMxMTAvBgNV BAMTKEUxMzMwNTREM0JFQzhFNkRGRkU5QUE4MzNCNDhCRjcwQjQwRDc3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmADB3LH/6xUPmvjsAxJjjhCZW KEpSvrraBv84lUBvFw9mnHLgIOcQMJJ+tmPF/EC98vkD2Xw+gu8uUfWyZQ2JQ4O3 tBJBiXMFd2lq3WY6XeHGPStQ3osc+vKWLLha7Wp0XzgumMnbzsGDF95dADBY8xRg sOhuF4jJRsDsPMwArkON5zzz/V5QFkV3D7X42fKGc1qA5aqfRt3JhMT+IKUgJBys V8VHIvUl0x4xWKUkrWty72p7S5VxCOTkmyEMOjcRnz+C+j9GkGKW6Ke+uVezgF4b CzeYXlMx5Kubdqq6WGxY8kkV59MDv7nZVXqzcEZ4/ZSg80ogzLzI6ZXS7QnlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4TMFTTvsjm3/6aqDO0i/cLQNd5YwHwYDVR0j BBgwFoAUbbsQDY1GaauKXH7gVyKO1nqYCZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTk4OWZhZi00OGZiLTRmNDAtOWU3Ny0yNDNkNzhhNWI1YzQvMC82REJCMTAwRDhE NDY2OUFCOEE1QzdFRTA1NzIyOEVENjdBOTgwOTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRCQjEwMEQ4RDQ2NjlBQjhBNUM3RUUwNTcyMjhFRDY3QTk4 MDk5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1OTg5ZmFmLTQ4ZmItNGY0MC05 ZTc3LTI0M2Q3OGE1YjVjNC8wLzMzMzYyZTM1MzAyZTMyMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMxMzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACQy2TANBgkqhkiG 9w0BAQsFAAOCAQEAqsrtrBn0cgWRy3wzBkY6OcLXCaJeNHDYde01MpcNXWazSCGg Gar9g6/HAvxN95RC7qZoDbYz0S+VlibBid/VU823U9fxwg7R+w7WWhVGIns78Hho 5W+VzwzZWZTfZjLC5IbgkIANNQCRUkvjt5SD9WuozNHh0XGg7HU2X212t8UeN1U5 yH/Y33fCiZU3Gjpt1GkZ5y+8KFVCzHmmtGpTtWS8Tohm6Jze+DliMOsz1R8jOGpd 8nP3gV0Wkw33ZnyjUSoNEg94WgamFr3ZvCm2yg5tFgAruYSDZVO9F6KXbPOv7Kl+ TycVkxMdrfGzvlbw9tmjK7WvTLQNw/xKW4cIIQ== -----END CERTIFICATE-----Generated at Thu Apr 24 06:49:50 2025 by rpki-client on console.sobornost.net