$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152808.roa File: AS152808.roa (raw, json) Hash identifier: oyKMJ0gAtJPPdL39Y25x8UYoya9NS9ZqkiLV4WoTvgk= Subject key identifier: E5:92:3D:57:1C:9A:41:BE:5B:46:2F:01:99:8B:B6:7D:E7:A3:B7:13 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 19FBBAB5B9A491D86147B82D63EECFCFA9FC5C98 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152808.roa Signing time: Thu 06 Feb 2025 10:44:57 +0000 ROA not before: Thu 06 Feb 2025 10:39:57 +0000 ROA not after: Thu 05 Feb 2026 10:44:57 +0000 asID: 152808 IP address blocks: 160.22.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:fb:ba:b5:b9:a4:91:d8:61:47:b8:2d:63:ee:cf:cf:a9:fc:5c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 6 10:39:57 2025 GMT Not After : Feb 5 10:44:57 2026 GMT Subject: CN=E5923D571C9A41BE5B462F01998BB67DE7A3B713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:44:56:87:a8:db:e9:1f:ba:73:5b:ae:0d:33: d5:50:f8:52:95:76:a9:26:09:fd:03:5a:67:f2:27: 87:bf:c6:b7:cf:b4:7d:8d:5f:bc:c1:d1:25:5d:fb: 04:7a:db:1a:9d:70:b0:fc:02:e9:ec:02:5c:c0:62: 55:2b:d9:e7:28:2b:25:16:a5:0c:00:0e:05:fd:41: 49:7a:76:70:ee:68:08:25:9a:11:4e:3f:aa:65:b9: bb:d3:5b:a2:65:e7:a8:2a:ae:b2:1d:3f:b0:03:94: fe:21:0f:2d:e9:0e:9a:a8:a6:e0:3a:59:46:17:f6: 51:2c:34:be:17:70:cf:9f:43:6a:2e:7f:c2:9f:cc: 1f:39:53:22:4a:e2:34:6c:7c:06:2b:80:57:3d:96: c2:34:6d:a1:9b:89:10:73:a6:c8:06:0e:f7:25:d7: 61:80:26:13:68:03:c4:17:b0:be:fb:90:13:3a:76: 94:f3:92:84:e2:ed:4d:3c:34:64:25:49:a4:16:bf: 40:cd:c1:f7:96:b6:7e:f3:02:4f:97:08:75:53:f1: 37:85:ee:00:b5:dd:f4:88:07:05:7e:97:81:4f:52: 82:4c:ab:b9:6b:16:6b:ac:c4:b8:5d:06:ad:72:26: ba:b8:22:29:b0:e5:90:67:2f:62:71:95:e3:93:a5: 6e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:92:3D:57:1C:9A:41:BE:5B:46:2F:01:99:8B:B6:7D:E7:A3:B7:13 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152808.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.100.0/24 Signature Algorithm: sha256WithRSAEncryption 07:9a:82:e9:44:96:22:1d:0a:86:7d:de:2c:7a:45:7f:b3:53: a6:05:aa:1a:42:d1:24:97:5b:b1:a9:cc:8d:82:89:e7:d4:8a: da:0d:fb:bd:7f:87:b9:a6:7e:bf:86:01:06:55:a9:a5:27:17: 81:09:f8:75:ae:f1:cd:fd:84:b8:94:86:b5:38:44:11:20:bb: 3f:8d:90:34:a7:e4:64:0a:a6:a6:2f:07:de:60:26:1d:16:11: fd:78:1d:9e:6b:98:6d:40:06:22:f0:2b:06:c3:3c:2a:39:5e: ae:53:1c:6e:3c:67:da:78:75:6b:7b:91:54:68:e2:9e:f8:e8: cc:77:77:f9:04:71:91:06:34:01:3f:29:0e:50:4f:54:4e:c1: 81:4e:40:93:e4:ca:87:52:28:1b:88:17:e2:f2:59:81:78:3f: 78:48:7d:af:a1:ce:58:4e:1f:5f:d5:bc:64:00:af:40:34:32: 97:57:02:9e:b0:26:d9:40:61:54:19:6d:6c:b4:25:c5:1b:69: fa:29:50:9c:0f:79:83:36:08:f2:cf:0e:5e:f6:f5:70:d6:bd: e6:8e:96:97:e0:9f:21:1a:8f:79:64:6e:cd:73:ad:bd:d2:1f: 9a:60:25:66:2c:5c:5d:13:40:a6:5c:ae:15:b6:af:51:9d:7b: da:4a:a7:8c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGfu6tbmkkdhhR7gtY+7Pz6n8XJgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1N1oX DTI2MDIwNTEwNDQ1N1owMzExMC8GA1UEAxMoRTU5MjNENTcxQzlBNDFCRTVCNDYy RjAxOTk4QkI2N0RFN0EzQjcxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPFEVoeo2+kfunNbrg0z1VD4UpV2qSYJ/QNaZ/Inh7/Gt8+0fY1fvMHRJV37 BHrbGp1wsPwC6ewCXMBiVSvZ5ygrJRalDAAOBf1BSXp2cO5oCCWaEU4/qmW5u9Nb omXnqCqush0/sAOU/iEPLekOmqim4DpZRhf2USw0vhdwz59Dai5/wp/MHzlTIkri NGx8BiuAVz2WwjRtoZuJEHOmyAYO9yXXYYAmE2gDxBewvvuQEzp2lPOShOLtTTw0 ZCVJpBa/QM3B95a2fvMCT5cIdVPxN4XuALXd9IgHBX6XgU9SgkyruWsWa6zEuF0G rXImurgiKbDlkGcvYnGV45OlbgMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTlkj1X HJpBvltGLwGZi7Z956O3EzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjgwOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKAWZDANBgkqhkiG9w0BAQsFAAOCAQEAB5qC6USWIh0Khn3eLHpF f7NTpgWqGkLRJJdbsanMjYKJ59SK2g37vX+HuaZ+v4YBBlWppScXgQn4da7xzf2E uJSGtThEESC7P42QNKfkZAqmpi8H3mAmHRYR/XgdnmuYbUAGIvArBsM8KjlerlMc bjxn2nh1a3uRVGjinvjozHd3+QRxkQY0AT8pDlBPVE7BgU5Ak+TKh1IoG4gX4vJZ gXg/eEh9r6HOWE4fX9W8ZACvQDQyl1cCnrAm2UBhVBltbLQlxRtp+ilQnA95gzYI 8s8OXvb1cNa95o6Wl+CfIRqPeWRuzXOtvdIfmmAlZixcXRNAplyuFbavUZ172kqn jA== -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net