$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153158.roa File: AS153158.roa (raw, json) Hash identifier: IUuTodjAU7YRECJ7IOIE/w6pCzTWTTTD1z6oGvycK20= Subject key identifier: A1:1C:1B:F4:3A:CD:29:AF:50:FD:79:81:56:7A:98:03:A0:2F:C5:73 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 14F81E555EDDD155A3037549B5745E5470F1FDE2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153158.roa Signing time: Mon 21 Apr 2025 04:29:33 +0000 ROA not before: Mon 21 Apr 2025 04:24:33 +0000 ROA not after: Mon 20 Apr 2026 04:29:33 +0000 asID: 153158 IP address blocks: 160.191.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f8:1e:55:5e:dd:d1:55:a3:03:75:49:b5:74:5e:54:70:f1:fd:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 21 04:24:33 2025 GMT Not After : Apr 20 04:29:33 2026 GMT Subject: CN=A11C1BF43ACD29AF50FD7981567A9803A02FC573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:07:46:02:24:af:a7:a5:7f:7b:87:81:a6:7e: 12:bd:d6:29:ca:bb:0d:f5:1f:9a:18:bc:fd:2d:47: 4e:66:2b:c1:c5:f0:b8:e2:fe:fa:72:34:ae:9a:6e: c1:35:ef:30:01:39:99:ef:06:58:36:44:b2:0b:70: 59:c7:e7:6a:3f:9c:a4:d1:5e:0f:ae:2b:46:7a:89: db:09:c1:fd:88:9e:e7:a9:44:65:02:01:06:f0:07: 09:59:79:63:c1:1a:3a:d6:f7:b8:43:1e:13:56:4a: 2d:0c:73:de:78:ae:3c:10:86:45:6e:3c:8c:be:b8: 43:89:1e:89:b3:9a:07:a2:2d:de:6c:17:3c:40:3a: 10:c6:3a:c3:22:a5:3b:c4:4c:6f:e4:4b:77:b4:8c: ee:a8:ba:56:4a:bf:5b:43:e1:f1:4a:a7:ed:69:70: cc:c7:60:8e:bb:6a:7e:6a:d6:d9:71:e2:5b:00:12: 55:58:d2:7e:27:9e:af:22:82:b2:9b:21:67:1a:94: 3e:19:e8:ed:0c:ae:a0:fd:3a:a3:ee:f1:af:60:0d: 16:44:2d:f7:af:c0:f5:ce:00:8e:86:11:dc:a1:90: c9:bd:d8:89:61:21:78:a0:42:86:f0:83:8d:c6:fd: 71:4e:df:1c:f9:36:06:aa:b1:9e:b8:8a:5b:7c:6b: 97:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1C:1B:F4:3A:CD:29:AF:50:FD:79:81:56:7A:98:03:A0:2F:C5:73 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153158.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.204.0/23 Signature Algorithm: sha256WithRSAEncryption 31:f8:b2:18:87:92:5b:bf:41:10:f5:dd:28:30:d7:59:6c:77: 9a:6e:68:1a:2d:bb:31:cf:a4:3f:6c:e5:fb:14:55:88:42:9a: e7:18:f2:b5:12:f9:5a:0f:34:7c:7d:b5:17:f0:c7:c1:98:94: 21:e7:e9:6f:9c:9b:41:bc:82:89:67:d6:47:f4:a6:6e:52:8d: ff:08:8c:15:69:65:6b:b6:a9:bf:65:47:56:66:bb:eb:26:15: 3e:f6:85:1c:65:89:50:59:ca:7a:24:52:71:32:4a:78:fb:68: ed:22:76:dd:00:3f:14:ae:ed:4d:6b:b1:f1:1b:2a:fa:30:57: 9e:ea:10:93:d7:b0:45:be:20:a5:06:4f:8f:3f:e8:42:27:d3: e0:e0:6d:bb:3b:b9:d1:a1:e5:3e:7c:2c:88:65:17:ab:f6:3d: 00:c7:f5:8c:7e:28:b4:eb:ee:95:4e:c0:ed:20:03:1c:c7:59: 97:c2:6b:94:13:3d:28:7c:20:e4:7a:74:81:7f:b2:be:6d:f6: ad:dd:2c:d5:5b:5c:0c:2f:a9:7d:1c:94:8c:bd:dd:2a:a5:3b: c4:4b:30:e9:f1:4e:e7:21:b5:d6:d2:13:60:3e:29:5e:ce:7b: ba:1b:0f:71:8d:4f:8e:8f:1d:e8:82:cf:68:79:f7:a2:89:f6: 72:b7:6c:c6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFPgeVV7d0VWjA3VJtXReVHDx/eIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQyMTA0MjQzM1oX DTI2MDQyMDA0MjkzM1owMzExMC8GA1UEAxMoQTExQzFCRjQzQUNEMjlBRjUwRkQ3 OTgxNTY3QTk4MDNBMDJGQzU3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOgHRgIkr6elf3uHgaZ+Er3WKcq7DfUfmhi8/S1HTmYrwcXwuOL++nI0rppu wTXvMAE5me8GWDZEsgtwWcfnaj+cpNFeD64rRnqJ2wnB/Yie56lEZQIBBvAHCVl5 Y8EaOtb3uEMeE1ZKLQxz3niuPBCGRW48jL64Q4keibOaB6It3mwXPEA6EMY6wyKl O8RMb+RLd7SM7qi6Vkq/W0Ph8Uqn7WlwzMdgjrtqfmrW2XHiWwASVVjSfieeryKC spshZxqUPhno7QyuoP06o+7xr2ANFkQt96/A9c4AjoYR3KGQyb3YiWEheKBChvCD jcb9cU7fHPk2BqqxnriKW3xrly8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBShHBv0 Os0pr1D9eYFWepgDoC/FczAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzE1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/zDANBgkqhkiG9w0BAQsFAAOCAQEAMfiyGIeSW79BEPXdKDDX WWx3mm5oGi27Mc+kP2zl+xRViEKa5xjytRL5Wg80fH21F/DHwZiUIefpb5ybQbyC iWfWR/SmblKN/wiMFWlla7apv2VHVma76yYVPvaFHGWJUFnKeiRScTJKePto7SJ2 3QA/FK7tTWux8Rsq+jBXnuoQk9ewRb4gpQZPjz/oQifT4OBtuzu50aHlPnwsiGUX q/Y9AMf1jH4otOvulU7A7SADHMdZl8JrlBM9KHwg5Hp0gX+yvm32rd0s1VtcDC+p fRyUjL3dKqU7xEsw6fFO5yG11tITYD4pXs57uhsPcY1Pjo8d6ILPaHn3oon2crds xg== -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net