$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa File: 3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa (raw, json) Hash identifier: cWyOKWctYlbVooNMHms1H1vDLL9MPLPoRH1H2TKVIAo= Subject key identifier: 79:4E:95:DC:19:9B:67:AB:19:E2:48:98:91:91:C5:C4:30:14:01:EA Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 3643320A7A23B160D6661932BC9A33CE47D94F4A Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa Signing time: Mon 31 Mar 2025 06:00:01 +0000 ROA not before: Mon 31 Mar 2025 05:55:01 +0000 ROA not after: Mon 30 Mar 2026 06:00:01 +0000 asID: 152376 IP address blocks: 157.15.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:43:32:0a:7a:23:b1:60:d6:66:19:32:bc:9a:33:ce:47:d9:4f:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Mar 31 05:55:01 2025 GMT Not After : Mar 30 06:00:01 2026 GMT Subject: CN=794E95DC199B67AB19E248989191C5C4301401EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3d:95:bc:d3:44:45:79:0b:14:14:be:60:5d: 66:27:cf:4a:25:14:9a:68:d4:17:f3:db:fb:99:47: 87:51:1e:99:d2:cc:fa:3e:0a:2e:3c:02:b9:24:13: 0b:e8:38:fa:52:7c:32:e5:10:8f:4d:76:ed:e1:9c: 49:d6:c2:95:72:4e:91:ba:df:4e:0c:1b:d6:b5:1d: 5e:4c:40:9b:52:5a:c5:f1:bb:65:97:11:1d:45:0c: 5c:f9:f8:20:aa:c0:15:0d:75:fe:c2:f9:36:89:c3: d7:88:58:e5:87:d0:32:18:5e:82:60:01:b2:99:10: 15:1e:ae:52:45:74:b7:dd:7f:e5:87:c5:ec:27:06: f3:11:87:0d:02:95:17:b8:dc:07:b9:2a:6d:90:a2: 31:6c:1d:91:e5:a6:f4:b9:47:c7:f3:91:2a:ae:13: ed:8b:95:14:34:98:ca:2d:a2:a0:81:b6:ab:c4:a6: 9d:bb:7c:db:68:70:b0:9a:d9:5b:c5:6d:1c:c9:dd: 9f:24:20:f6:7c:06:a8:b5:c3:7f:58:90:0d:57:ce: 62:fd:0f:ef:55:b2:10:43:d4:19:9b:10:58:b0:7f: a2:d9:8f:9f:ee:6e:63:0a:27:8b:48:d9:1c:5f:c2: 06:a4:16:3f:0b:6a:30:d5:86:dc:58:1e:72:b0:5d: ab:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4E:95:DC:19:9B:67:AB:19:E2:48:98:91:91:C5:C4:30:14:01:EA X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32332d3233203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:51:7c:35:11:96:5e:0d:f2:8f:2b:b2:8f:c3:ea:24:93:8e: 08:32:0f:d9:cf:db:83:bf:74:0a:55:9d:c4:67:2c:97:34:4d: 45:7f:fe:d9:9b:d5:8c:f3:88:69:8c:8d:e6:70:87:8e:54:6f: 8b:9d:40:3b:fe:71:13:2f:38:3a:1b:fd:b7:a4:66:df:99:e2: 63:27:56:73:26:03:8b:92:8c:f3:1c:94:9d:97:2c:55:54:bb: a9:bd:86:ec:3c:f2:70:e0:49:9a:7a:32:e4:5b:37:3e:89:7c: c4:29:0e:7d:5b:06:43:e8:c3:2c:e3:2b:16:54:f3:b1:ee:6e: c4:e2:e2:d7:38:83:fc:50:bf:d4:05:3e:69:8f:34:fa:2e:b3: 0d:aa:d3:17:6b:b7:e7:82:82:14:26:cc:00:ca:0a:d3:09:94: 12:9d:a8:e6:d1:dd:28:c6:61:88:d7:93:a9:bc:10:f7:58:f7: 6c:82:88:c4:ba:77:52:b9:a5:e0:df:ff:0b:e8:c2:4e:3f:66: 6b:98:a2:a6:6c:59:0d:1a:f0:d2:ff:7b:6e:3a:fe:b4:55:8b: 00:6a:2d:54:c4:47:b0:cd:07:ca:70:67:b4:25:f7:5e:01:75: f8:b2:45:2e:f6:4e:19:3b:05:f8:5e:1e:4e:0d:2d:ff:25:56: 1a:eb:4e:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNkMyCnojsWDWZhkyvJozzkfZT0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNTAzMzEwNTU1MDFaFw0yNjAzMzAwNjAwMDFaMDMxMTAvBgNV BAMTKDc5NEU5NURDMTk5QjY3QUIxOUUyNDg5ODkxOTFDNUM0MzAxNDAxRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwPZW800RFeQsUFL5gXWYnz0ol FJpo1Bfz2/uZR4dRHpnSzPo+Ci48ArkkEwvoOPpSfDLlEI9Ndu3hnEnWwpVyTpG6 304MG9a1HV5MQJtSWsXxu2WXER1FDFz5+CCqwBUNdf7C+TaJw9eIWOWH0DIYXoJg AbKZEBUerlJFdLfdf+WHxewnBvMRhw0ClRe43Ae5Km2QojFsHZHlpvS5R8fzkSqu E+2LlRQ0mMotoqCBtqvEpp27fNtocLCa2VvFbRzJ3Z8kIPZ8Bqi1w39YkA1XzmL9 D+9VshBD1BmbEFiwf6LZj5/ubmMKJ4tI2RxfwgakFj8LajDVhtxYHnKwXattAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeU6V3BmbZ6sZ4kiYkZHFxDAUAeowHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQ+QMA0GCSqG SIb3DQEBCwUAA4IBAQBbUXw1EZZeDfKPK7KPw+okk44IMg/Zz9uDv3QKVZ3EZyyX NE1Ff/7Zm9WM84hpjI3mcIeOVG+LnUA7/nETLzg6G/23pGbfmeJjJ1ZzJgOLkozz HJSdlyxVVLupvYbsPPJw4EmaejLkWzc+iXzEKQ59WwZD6MMs4ysWVPOx7m7E4uLX OIP8UL/UBT5pjzT6LrMNqtMXa7fngoIUJswAygrTCZQSnajm0d0oxmGI15OpvBD3 WPdsgojEundSuaXg3/8L6MJOP2ZrmKKmbFkNGvDS/3tuOv60VYsAai1UxEewzQfK cGe0JfdeAXX4skUu9k4ZOwX4Xh5ODS3/JVYa607c -----END CERTIFICATE-----Generated at Fri Apr 25 00:06:29 2025 by rpki-client on console.sobornost.net