$ rpki-client -vvf repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa File: 3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa (raw, json) Hash identifier: SBNjwJJYCJHvL2QmCRz+yZ8PvTB10n4BHiXO1+hrRxM= Subject key identifier: 06:6D:C2:EA:D9:6F:0D:04:AE:F8:7C:7B:49:0D:76:79:68:56:9C:B7 Certificate issuer: /CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Certificate serial: 1182299128B18BF8F8DA0FF14D0F6808DC74E670 Authority key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa Signing time: Mon 31 Mar 2025 06:00:01 +0000 ROA not before: Mon 31 Mar 2025 05:55:01 +0000 ROA not after: Mon 30 Mar 2026 06:00:01 +0000 asID: 152376 IP address blocks: 157.15.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:82:29:91:28:b1:8b:f8:f8:da:0f:f1:4d:0f:68:08:dc:74:e6:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Validity Not Before: Mar 31 05:55:01 2025 GMT Not After : Mar 30 06:00:01 2026 GMT Subject: CN=066DC2EAD96F0D04AEF87C7B490D767968569CB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:73:23:23:67:63:41:50:d1:fd:3c:dd:80:85: f3:19:78:ea:53:80:32:0a:9d:92:89:bf:f1:ba:00: 33:28:b8:ce:6b:b5:54:58:b8:1e:e1:d0:38:83:ab: bb:4b:3d:f9:57:31:7a:8c:54:67:f4:b7:ce:70:47: d2:c2:9a:db:75:8a:a4:14:19:42:85:4a:7d:6d:dc: e6:a8:e6:e0:da:f5:93:9c:f6:81:ff:be:c0:11:41: 65:b2:e1:2a:a7:f7:11:ac:85:56:3f:27:5e:8c:8b: 6f:34:87:fd:70:bb:08:c7:02:96:25:1f:fb:8e:ab: d3:8f:04:ff:1b:4b:8b:08:fd:c7:5e:09:93:06:39: 3e:60:be:3c:14:bb:d3:64:3d:4c:50:b0:c6:e3:bf: c2:3e:ad:0e:61:fc:68:a2:61:e3:46:6e:73:bd:a5: d6:e2:68:43:86:60:aa:21:04:f3:09:56:fe:1b:7e: 6f:07:9f:58:d0:fa:d1:d9:d2:b2:c4:e1:8e:8d:6f: e5:96:a4:37:81:f5:d2:8d:b3:e3:c5:ef:f9:e3:a8: f3:b3:de:62:6d:5e:5a:4c:6e:bd:ff:5c:2b:a3:14: 74:6c:cb:c0:e4:87:b1:80:8a:51:b0:5e:02:b1:b9: e5:91:6e:7c:db:4a:38:da:32:7e:15:8f:61:a9:a0: 25:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6D:C2:EA:D9:6F:0D:04:AE:F8:7C:7B:49:0D:76:79:68:56:9C:B7 X509v3 Authority Key Identifier: keyid:22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/3135372e31352e3134342e302f32342d3234203d3e20313532333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/24 Signature Algorithm: sha256WithRSAEncryption 56:9f:fb:5d:25:03:6c:4c:d9:7f:f9:f9:ea:3e:e8:30:2d:a9: 6c:2b:9f:0d:08:08:20:e6:2c:28:2f:02:99:1b:7c:fb:07:f9: d4:31:b9:8a:31:7b:6d:90:d5:7b:c0:ea:0f:68:c6:49:7c:83: d3:a9:cb:87:f2:63:85:d3:8c:19:40:79:39:cf:a0:55:d0:53: 0a:95:ce:b7:1e:c4:cd:47:7b:39:7d:03:9c:64:a1:29:3f:95: 43:2d:a3:bc:6d:47:02:f8:6d:97:bc:31:4a:cd:c6:6e:63:61: ed:51:66:94:86:b9:29:88:33:b8:d7:0b:04:42:41:e0:3f:96: 3f:a1:a0:ce:f6:fe:4e:6e:22:16:11:a5:ea:1d:af:68:80:91: bd:54:c6:68:a2:50:37:2a:49:43:d5:6c:cf:f3:3f:ad:f6:2a: 15:64:26:64:02:5a:aa:d3:31:9d:f4:f7:dc:f3:ee:8e:20:1d: dc:8e:f4:63:5c:67:02:d5:2f:aa:50:fd:02:e5:90:7f:2c:ac: e5:27:f5:42:df:4b:35:4b:e8:35:9c:23:60:4b:45:c4:37:ca: 39:5f:d6:d5:3f:44:6c:18:f5:1a:0f:a1:7f:7b:13:f1:5f:14: 59:ec:b8:64:2b:ae:ff:2e:6e:e9:93:cc:db:54:f2:19:58:9c: c2:1b:67:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEYIpkSixi/j42g/xTQ9oCNx05nAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1 RkE1RTczRjAeFw0yNTAzMzEwNTU1MDFaFw0yNjAzMzAwNjAwMDFaMDMxMTAvBgNV BAMTKDA2NkRDMkVBRDk2RjBEMDRBRUY4N0M3QjQ5MEQ3Njc5Njg1NjlDQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWcyMjZ2NBUNH9PN2AhfMZeOpT gDIKnZKJv/G6ADMouM5rtVRYuB7h0DiDq7tLPflXMXqMVGf0t85wR9LCmtt1iqQU GUKFSn1t3Oao5uDa9ZOc9oH/vsARQWWy4Sqn9xGshVY/J16Mi280h/1wuwjHApYl H/uOq9OPBP8bS4sI/cdeCZMGOT5gvjwUu9NkPUxQsMbjv8I+rQ5h/GiiYeNGbnO9 pdbiaEOGYKohBPMJVv4bfm8Hn1jQ+tHZ0rLE4Y6Nb+WWpDeB9dKNs+PF7/njqPOz 3mJtXlpMbr3/XCujFHRsy8Dkh7GAilGwXgKxueWRbnzbSjjaMn4Vj2GpoCWvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBm3C6tlvDQSu+Hx7SQ12eWhWnLcwHwYDVR0j BBgwFoAUIkYBX/8vxV/vucRKitQWtV+l5z8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMC8yMjQ2MDE1RkZG MkZDNTVGRUZCOUM0NEE4QUQ0MTZCNTVGQTVFNzNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjI0NjAxNUZGRjJGQzU1RkVGQjlDNDRBOEFENDE2QjU1RkE1 RTczRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3LWU5MTctNDBmNS1h Y2VlLTAzZDY4YmU1ZmQ5Ny8wLzMxMzUzNzJlMzEzNTJlMzEzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQ+QMA0GCSqG SIb3DQEBCwUAA4IBAQBWn/tdJQNsTNl/+fnqPugwLalsK58NCAgg5iwoLwKZG3z7 B/nUMbmKMXttkNV7wOoPaMZJfIPTqcuH8mOF04wZQHk5z6BV0FMKlc63HsTNR3s5 fQOcZKEpP5VDLaO8bUcC+G2XvDFKzcZuY2HtUWaUhrkpiDO41wsEQkHgP5Y/oaDO 9v5ObiIWEaXqHa9ogJG9VMZoolA3KklD1WzP8z+t9ioVZCZkAlqq0zGd9Pfc8+6O IB3cjvRjXGcC1S+qUP0C5ZB/LKzlJ/VC30s1S+g1nCNgS0XEN8o5X9bVP0RsGPUa D6F/exPxXxRZ7LhkK67/Lm7pk8zbVPIZWJzCG2eF -----END CERTIFICATE-----Generated at Fri Apr 25 00:06:29 2025 by rpki-client on console.sobornost.net