$ rpki-client -vvf repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/3135372e31352e37362e302f32342d3234203d3e20313532333734.roa File: 3135372e31352e37362e302f32342d3234203d3e20313532333734.roa (raw, json) Hash identifier: 1Pdkn1XdCzdzum9mckCuLJVHTJHT6dxGV24ibjO79m0= Subject key identifier: 70:B7:E7:70:82:AF:5E:E2:EC:54:11:1A:B0:55:E4:0F:23:D6:01:0C Certificate issuer: /CN=9D23189F67CA669A4612567DD77CC645E3AFDF71 Certificate serial: 24866A8AAEA984D3EB3D8D6609222E2FD88E2CFF Authority key identifier: 9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer Subject info access: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/3135372e31352e37362e302f32342d3234203d3e20313532333734.roa Signing time: Mon 10 Mar 2025 16:00:00 +0000 ROA not before: Mon 10 Mar 2025 15:55:00 +0000 ROA not after: Mon 09 Mar 2026 16:00:00 +0000 asID: 152374 IP address blocks: 157.15.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.crl rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:86:6a:8a:ae:a9:84:d3:eb:3d:8d:66:09:22:2e:2f:d8:8e:2c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D23189F67CA669A4612567DD77CC645E3AFDF71 Validity Not Before: Mar 10 15:55:00 2025 GMT Not After : Mar 9 16:00:00 2026 GMT Subject: CN=70B7E77082AF5EE2EC54111AB055E40F23D6010C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:7d:12:52:f8:5d:05:40:ab:5d:fe:8b:c5: fe:80:83:c3:2d:84:01:05:5d:7d:fc:ca:c7:3e:18: 74:10:e8:e8:4f:82:6e:11:97:fd:2e:32:ae:03:74: 1a:f0:55:bf:9f:b5:15:85:4c:82:a7:a1:74:06:29: 6b:2c:a1:54:bf:e5:92:cd:b7:c6:cc:4e:de:1c:1c: 23:2d:98:d6:b2:7d:35:dd:26:bd:c1:4e:7b:bf:40: 0d:e7:b8:af:57:b2:cd:9d:2d:8a:31:c1:a7:c5:53: 2a:45:5e:8f:b0:8c:ae:ec:0f:a6:1f:8e:4e:69:c6: bf:96:09:98:d8:c1:9d:ae:98:36:a2:98:9f:c0:41: af:7e:ef:53:ab:a7:a4:07:b4:99:00:93:c3:56:58: 08:30:5e:c5:0e:23:65:90:1a:3d:5d:8a:c5:31:24: 57:79:ca:a0:e4:de:a5:46:6a:76:6c:ec:8f:3a:7e: 31:eb:52:23:23:c8:3c:5f:e7:c5:31:72:c8:8c:32: 9a:8e:30:ef:80:5c:56:d3:58:db:f1:dc:d8:42:61: 79:b0:51:e8:04:7c:cf:c2:5c:49:a9:8a:54:69:c0: 2b:69:e7:11:2a:99:f0:77:b4:41:40:e6:70:fa:72: af:b3:23:57:7d:23:5b:d3:2d:a0:f5:c2:0a:fc:c4: 3f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B7:E7:70:82:AF:5E:E2:EC:54:11:1A:B0:55:E4:0F:23:D6:01:0C X509v3 Authority Key Identifier: keyid:9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/3135372e31352e37362e302f32342d3234203d3e20313532333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.76.0/24 Signature Algorithm: sha256WithRSAEncryption 30:19:8b:f7:46:0a:71:9f:0d:4d:39:d4:a1:db:54:ef:d0:5e: 4b:5d:fa:11:14:d8:59:63:47:07:f5:af:4e:50:87:49:0d:e1: 51:3a:66:f6:8f:d7:8a:e3:af:97:b6:38:62:63:5d:64:8f:84: 6b:92:3c:1f:5e:83:55:d9:a2:0b:1b:72:24:91:c7:e8:cf:47: 25:15:8d:a1:88:0b:e5:f1:8e:5b:27:8f:b9:c3:1b:58:cd:47: 91:75:0b:51:29:6b:6a:c9:3e:13:46:bc:8f:8d:20:b4:cd:60: 98:a2:48:3e:74:01:fc:33:86:fd:2b:b9:bc:02:c8:33:cd:b2: e8:56:4c:b1:d8:4e:87:92:98:7f:ba:1a:e5:5b:fe:12:54:f0: 08:70:49:87:21:74:83:be:5a:47:9d:77:6f:39:4c:d0:73:a8: 30:6c:d5:af:98:15:76:9b:f5:2a:c1:29:26:4e:c0:68:36:e6: 7b:c8:59:2e:ec:9c:83:88:98:72:8e:21:60:0a:c5:7d:26:77: 1a:ef:72:ab:1f:51:ea:5e:41:14:66:04:f9:e9:08:d0:35:f6: 9c:f6:07:cb:b3:c0:65:fc:c2:0c:21:9c:0c:97:76:95:c8:79: 53:27:ef:4c:e6:80:06:f5:8b:b0:f7:aa:49:38:8e:82:da:a4: 7d:da:6a:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJIZqiq6phNPrPY1mCSIuL9iOLP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMzE4OUY2N0NBNjY5QTQ2MTI1NjdERDc3Q0M2NDVF M0FGREY3MTAeFw0yNTAzMTAxNTU1MDBaFw0yNjAzMDkxNjAwMDBaMDMxMTAvBgNV BAMTKDcwQjdFNzcwODJBRjVFRTJFQzU0MTExQUIwNTVFNDBGMjNENjAxMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3UH0SUvhdBUCrXf6Lxf6Ag8Mt hAEFXX38ysc+GHQQ6OhPgm4Rl/0uMq4DdBrwVb+ftRWFTIKnoXQGKWssoVS/5ZLN t8bMTt4cHCMtmNayfTXdJr3BTnu/QA3nuK9Xss2dLYoxwafFUypFXo+wjK7sD6Yf jk5pxr+WCZjYwZ2umDaimJ/AQa9+71Orp6QHtJkAk8NWWAgwXsUOI2WQGj1disUx JFd5yqDk3qVGanZs7I86fjHrUiMjyDxf58UxcsiMMpqOMO+AXFbTWNvx3NhCYXmw UegEfM/CXEmpilRpwCtp5xEqmfB3tEFA5nD6cq+zI1d9I1vTLaD1wgr8xD+NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcLfncIKvXuLsVBEasFXkDyPWAQwwHwYDVR0j BBgwFoAUnSMYn2fKZppGElZ913zGReOv33EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MzVhY2IwNy05ZDVmLTQ5N2YtOTkzMi0zM2E0MzRkM2FhMzIvMC85RDIzMTg5RjY3 Q0E2NjlBNDYxMjU2N0RENzdDQzY0NUUzQUZERjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMzE4OUY2N0NBNjY5QTQ2MTI1NjdERDc3Q0M2NDVFM0FG REY3MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNWFjYjA3LTlkNWYtNDk3Zi05 OTMyLTMzYTQzNGQzYWEzMi8wLzMxMzUzNzJlMzEzNTJlMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMzMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0PTDANBgkqhkiG 9w0BAQsFAAOCAQEAMBmL90YKcZ8NTTnUodtU79BeS136ERTYWWNHB/WvTlCHSQ3h UTpm9o/XiuOvl7Y4YmNdZI+Ea5I8H16DVdmiCxtyJJHH6M9HJRWNoYgL5fGOWyeP ucMbWM1HkXULUSlrask+E0a8j40gtM1gmKJIPnQB/DOG/Su5vALIM82y6FZMsdhO h5KYf7oa5Vv+ElTwCHBJhyF0g75aR513bzlM0HOoMGzVr5gVdpv1KsEpJk7AaDbm e8hZLuycg4iYco4hYArFfSZ3Gu9yqx9R6l5BFGYE+ekI0DX2nPYHy7PAZfzCDCGc DJd2lch5UyfvTOaABvWLsPeqSTiOgtqkfdpqYg== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:11 2025 by rpki-client on console.sobornost.net