$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153067.roa File: AS153067.roa (raw, json) Hash identifier: +M9jqWOyoEO6tFXyN7W7oi5Qkf8fFXkxX0UfPgHn0Ko= Subject key identifier: F6:00:95:B9:F6:7D:8C:3B:96:BC:E1:A3:9D:65:FE:E1:93:8C:CB:A4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5D6FDB0E70ECC88567A393742D113673E69F71BF Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153067.roa Signing time: Thu 06 Feb 2025 10:44:54 +0000 ROA not before: Thu 06 Feb 2025 10:39:54 +0000 ROA not after: Thu 05 Feb 2026 10:44:54 +0000 asID: 153067 IP address blocks: 160.22.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6f:db:0e:70:ec:c8:85:67:a3:93:74:2d:11:36:73:e6:9f:71:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 6 10:39:54 2025 GMT Not After : Feb 5 10:44:54 2026 GMT Subject: CN=F60095B9F67D8C3B96BCE1A39D65FEE1938CCBA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7a:d7:da:e6:9f:36:7c:49:47:fe:03:b4:20: db:a9:88:6a:69:7e:b3:99:09:81:4c:16:39:ed:4c: 4d:c6:23:80:ca:85:76:8a:39:8d:2f:8d:9d:ec:41: c0:5d:cb:9a:e6:0e:10:e2:e7:82:61:92:16:df:b0: 29:c2:92:bd:d2:bc:1e:ca:1c:c7:5d:ba:c4:4c:af: 59:4b:9a:f3:81:60:cc:bd:d6:f7:91:b5:53:25:cc: 0e:22:a8:0b:e1:57:b1:4b:1f:44:f4:4a:86:13:76: cd:55:8f:4c:d7:3f:c8:af:83:41:41:b5:a1:98:1f: 0c:b8:fc:57:34:4a:bb:eb:53:46:44:be:b1:78:0a: b8:49:7a:35:ca:17:c3:51:77:ec:6d:a2:c2:12:5c: 74:10:22:16:7e:41:91:38:40:3c:45:63:3b:ec:b5: 93:cf:91:72:80:05:80:f2:fc:c4:b3:a3:73:0d:ed: b2:03:70:a7:27:28:90:60:81:79:98:90:65:b0:38: 82:bd:b9:d0:3f:ba:dc:96:77:7e:6f:55:04:7b:46: c2:2e:7c:0b:80:c8:da:70:6d:36:b1:ff:ce:06:0a: 61:a0:63:7f:4f:cf:68:8e:a0:bd:4c:95:06:20:cb: 45:34:4b:2e:fb:cb:6c:ee:58:30:31:8b:5e:7d:63: 59:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:00:95:B9:F6:7D:8C:3B:96:BC:E1:A3:9D:65:FE:E1:93:8C:CB:A4 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153067.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.45.0/24 Signature Algorithm: sha256WithRSAEncryption 22:0e:03:39:fc:53:7a:f2:d2:3f:89:d7:95:f4:f1:fd:da:32: 0b:5a:30:b8:07:9a:e4:5c:c4:24:a7:e5:d8:5a:10:5c:06:47: 8a:73:6f:6d:1d:11:f3:74:7d:3d:15:42:ff:34:eb:cf:68:74: 45:9f:7c:c4:f6:b2:ea:e4:84:b3:52:a9:bc:cc:99:0a:e7:a1: 14:ff:71:e7:20:c8:88:82:9f:17:e9:50:53:99:ef:1a:1e:69: a7:9e:35:35:5b:89:c8:38:8a:e9:b9:5c:e8:d1:93:c1:cf:be: d9:34:18:d7:5b:db:b1:44:cb:67:08:fa:56:0c:f9:84:a5:0c: 34:c9:b9:26:81:07:02:6d:6d:0b:01:20:4c:f5:f3:df:ff:d6: 04:7f:bd:2b:83:fb:74:03:2a:6a:63:43:b8:21:e7:8e:60:a1: 94:ef:1b:b3:5e:2e:01:6a:4f:c2:4f:98:da:a0:cb:7f:51:21: 60:c9:5b:b8:f0:44:43:19:11:4b:f5:26:0e:4b:56:ca:d5:3e: ac:95:61:ae:a4:55:41:c9:5c:af:fb:71:77:80:93:79:40:7b: 1e:22:c4:29:2e:69:09:3f:3f:7f:45:1f:32:23:0c:ca:ac:04: 1c:5d:da:94:23:d6:e9:93:72:10:d6:65:af:c0:0d:95:1d:a4: 82:e5:93:95 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXW/bDnDsyIVno5N0LRE2c+afcb8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIwNjEwMzk1NFoX DTI2MDIwNTEwNDQ1NFowMzExMC8GA1UEAxMoRjYwMDk1QjlGNjdEOEMzQjk2QkNF MUEzOUQ2NUZFRTE5MzhDQ0JBNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJ619rmnzZ8SUf+A7Qg26mIaml+s5kJgUwWOe1MTcYjgMqFdoo5jS+NnexB wF3LmuYOEOLngmGSFt+wKcKSvdK8Hsocx126xEyvWUua84FgzL3W95G1UyXMDiKo C+FXsUsfRPRKhhN2zVWPTNc/yK+DQUG1oZgfDLj8VzRKu+tTRkS+sXgKuEl6NcoX w1F37G2iwhJcdBAiFn5BkThAPEVjO+y1k8+RcoAFgPL8xLOjcw3tsgNwpycokGCB eZiQZbA4gr250D+63JZ3fm9VBHtGwi58C4DI2nBtNrH/zgYKYaBjf0/PaI6gvUyV BiDLRTRLLvvLbO5YMDGLXn1jWR0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT2AJW5 9n2MO5a84aOdZf7hk4zLpDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzA2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKAWLTANBgkqhkiG9w0BAQsFAAOCAQEAIg4DOfxTevLSP4nXlfTx /doyC1owuAea5FzEJKfl2FoQXAZHinNvbR0R83R9PRVC/zTrz2h0RZ98xPay6uSE s1KpvMyZCuehFP9x5yDIiIKfF+lQU5nvGh5pp541NVuJyDiK6blc6NGTwc++2TQY 11vbsUTLZwj6Vgz5hKUMNMm5JoEHAm1tCwEgTPXz3//WBH+9K4P7dAMqamNDuCHn jmChlO8bs14uAWpPwk+Y2qDLf1EhYMlbuPBEQxkRS/UmDktWytU+rJVhrqRVQclc r/txd4CTeUB7HiLEKS5pCT8/f0UfMiMMyqwEHF3alCPW6ZNyENZlr8ANlR2kguWT lQ== -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net