$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS135649.roa File: AS135649.roa (raw, json) Hash identifier: YR8oL0zXBYA6zhi7LjKhyst7EBnjQYXwEd1D9vcLcLA= Subject key identifier: 24:29:93:4E:2A:B9:04:1B:51:3F:AA:72:71:34:E6:F1:D1:0F:E4:58 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 478255E6E0A704CE8032096F5B58E02CDB29384F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS135649.roa Signing time: Wed 16 Apr 2025 03:34:47 +0000 ROA not before: Wed 16 Apr 2025 03:29:47 +0000 ROA not after: Wed 15 Apr 2026 03:34:47 +0000 asID: 135649 IP address blocks: 160.250.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:82:55:e6:e0:a7:04:ce:80:32:09:6f:5b:58:e0:2c:db:29:38:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 16 03:29:47 2025 GMT Not After : Apr 15 03:34:47 2026 GMT Subject: CN=2429934E2AB9041B513FAA727134E6F1D10FE458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9c:b1:75:7d:84:56:f1:8c:18:88:25:4e:6b: 33:9b:64:cd:eb:75:f2:c2:03:b0:07:f2:98:ac:54: c5:b4:31:87:af:ed:bc:94:da:47:cf:78:d8:88:1c: 38:5f:f9:fa:fb:3e:89:0f:44:2e:78:88:89:ef:78: 42:26:45:18:59:c5:76:8f:3e:52:1c:07:8a:19:85: 50:37:a4:ea:3b:aa:bc:54:02:e3:4a:de:ed:ec:f9: 35:3a:4c:6e:65:72:e8:de:bf:12:2b:77:ff:5a:3f: 59:30:58:ee:f3:4d:ac:c5:31:97:0a:b9:21:ab:a4: 85:6b:4d:d6:7f:51:c5:53:64:0a:98:58:a2:88:31: ae:0a:a5:68:af:e5:0d:b6:5b:c4:89:0f:dd:9f:1b: 4f:7e:95:12:39:17:29:7c:62:c3:26:2c:6a:34:c5: c9:31:0b:d5:a4:28:31:0e:e5:72:41:88:0f:9f:ac: a3:1a:dd:80:6e:d6:13:b6:99:15:cb:66:f7:ff:b5: b1:0f:6e:57:fa:82:a3:22:75:d7:46:36:25:a8:a7: 69:79:58:bc:51:2c:4d:83:e4:62:ae:9d:4e:d5:0b: 18:fd:4f:c7:95:5e:ff:47:f7:47:cd:5a:00:2a:51: ff:66:6a:e5:8b:a5:7f:17:fa:f6:54:4e:2b:bc:a1: 6a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:29:93:4E:2A:B9:04:1B:51:3F:AA:72:71:34:E6:F1:D1:0F:E4:58 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS135649.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.250.226.0/24 Signature Algorithm: sha256WithRSAEncryption 80:93:7f:1b:df:6a:ca:c1:c5:8a:40:46:f1:22:d4:30:c5:2f: a3:c1:a8:4f:8d:6a:9b:f6:06:8b:67:05:ac:c7:a3:77:a8:e6: e6:53:fd:65:8a:8f:01:64:cf:6a:52:fb:9b:4b:6a:6f:58:eb: ee:94:0b:f6:73:84:5e:61:12:ba:e5:15:73:34:07:81:5f:b6: 57:2f:94:d1:06:59:93:ac:d3:9a:51:65:dc:53:9b:8a:e6:13: c2:7e:05:18:36:20:28:75:46:f1:ca:cf:d8:12:14:1f:43:8f: 47:b0:ae:6b:f9:5c:03:94:5e:77:08:1b:fb:5b:21:f3:e4:34: 02:02:ff:fd:c4:47:ec:c1:d3:31:be:97:59:1f:b6:00:48:43: bc:37:6b:46:15:b7:b8:83:e9:9b:61:47:4f:21:a1:12:3e:b1: e2:64:91:c4:de:67:d2:08:e7:bf:d2:84:48:ba:3a:e0:a6:d5: 32:90:72:da:6e:dc:f0:02:fc:6c:5c:64:3f:e3:72:a3:dd:5e: 8e:e6:2c:f7:c9:b3:ec:93:bc:68:bd:76:10:4c:5e:87:a8:44: 8a:fb:0b:0d:c5:cd:ae:9b:7a:f3:87:66:94:26:a0:59:2f:56: 98:f7:74:9c:66:37:1c:14:66:a7:41:f0:e6:80:ba:9a:ce:1d: d6:3b:e1:9b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR4JV5uCnBM6AMglvW1jgLNspOE8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQxNjAzMjk0N1oX DTI2MDQxNTAzMzQ0N1owMzExMC8GA1UEAxMoMjQyOTkzNEUyQUI5MDQxQjUxM0ZB QTcyNzEzNEU2RjFEMTBGRTQ1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKCcsXV9hFbxjBiIJU5rM5tkzet18sIDsAfymKxUxbQxh6/tvJTaR8942Igc OF/5+vs+iQ9ELniIie94QiZFGFnFdo8+UhwHihmFUDek6juqvFQC40re7ez5NTpM bmVy6N6/Eit3/1o/WTBY7vNNrMUxlwq5IaukhWtN1n9RxVNkCphYoogxrgqlaK/l DbZbxIkP3Z8bT36VEjkXKXxiwyYsajTFyTEL1aQoMQ7lckGID5+soxrdgG7WE7aZ Fctm9/+1sQ9uV/qCoyJ110Y2JainaXlYvFEsTYPkYq6dTtULGP1Px5Ve/0f3R81a ACpR/2Zq5Yulfxf69lROK7yhar0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQkKZNO KrkEG1E/qnJxNObx0Q/kWDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNTY0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKD64jANBgkqhkiG9w0BAQsFAAOCAQEAgJN/G99qysHFikBG8SLU MMUvo8GoT41qm/YGi2cFrMejd6jm5lP9ZYqPAWTPalL7m0tqb1jr7pQL9nOEXmES uuUVczQHgV+2Vy+U0QZZk6zTmlFl3FObiuYTwn4FGDYgKHVG8crP2BIUH0OPR7Cu a/lcA5Redwgb+1sh8+Q0AgL//cRH7MHTMb6XWR+2AEhDvDdrRhW3uIPpm2FHTyGh Ej6x4mSRxN5n0gjnv9KESLo64KbVMpBy2m7c8AL8bFxkP+Nyo91ejuYs98mz7JO8 aL12EExeh6hEivsLDcXNrpt684dmlCagWS9WmPd0nGY3HBRmp0Hw5oC6ms4d1jvh mw== -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net