$ rpki-client -vvf repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa File: 3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa (raw, json) Hash identifier: t5UQflYV4fmOKRuImyydzjWxt8L0DDMOftvIQeAVR58= Subject key identifier: 77:DA:82:51:7C:48:F8:6E:C5:73:A4:73:BD:EB:7D:5E:E2:31:EC:22 Certificate issuer: /CN=92BD4E7FB69716E8F64947A59903AFF77CCBE441 Certificate serial: 7F7A8E8E27ABD7DA5D7644F0A44CC592DFCB24E2 Authority key identifier: 92:BD:4E:7F:B6:97:16:E8:F6:49:47:A5:99:03:AF:F7:7C:CB:E4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92BD4E7FB69716E8F64947A59903AFF77CCBE441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa Signing time: Tue 10 Dec 2024 02:06:06 +0000 ROA not before: Tue 10 Dec 2024 02:01:06 +0000 ROA not after: Tue 09 Dec 2025 02:06:06 +0000 asID: 153082 IP address blocks: 160.22.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/92BD4E7FB69716E8F64947A59903AFF77CCBE441.crl rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/92BD4E7FB69716E8F64947A59903AFF77CCBE441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92BD4E7FB69716E8F64947A59903AFF77CCBE441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7a:8e:8e:27:ab:d7:da:5d:76:44:f0:a4:4c:c5:92:df:cb:24:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92BD4E7FB69716E8F64947A59903AFF77CCBE441 Validity Not Before: Dec 10 02:01:06 2024 GMT Not After : Dec 9 02:06:06 2025 GMT Subject: CN=77DA82517C48F86EC573A473BDEB7D5EE231EC22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6a:c0:0f:e1:cf:fe:a3:8d:08:ba:8e:fa:6a: d4:ef:b2:b1:74:15:aa:aa:01:2a:d7:13:72:06:30: fc:d8:77:27:34:da:4b:5e:be:ed:cc:f3:0a:5f:1c: ec:5d:1b:79:bb:64:23:d5:c0:68:d3:45:a9:4a:12: 4f:9c:59:fb:0d:ef:7e:4b:e4:a0:ca:ee:a5:13:85: cc:2b:2a:d7:f5:34:a2:1e:05:16:1b:31:99:18:3b: b8:0f:73:7d:4c:2e:2f:c1:14:87:87:af:0e:d5:d1: f1:e7:dd:4e:29:60:b4:61:69:a6:4f:ed:2a:c9:86: be:ac:4c:32:19:cc:2d:1a:c4:f7:02:71:ba:87:bf: 04:be:86:83:34:44:80:cd:0c:a2:63:6d:ec:39:2a: 72:0e:cd:ab:8d:16:38:04:67:bf:24:8a:89:1a:47: 7f:79:98:9b:60:71:e1:98:5e:fe:80:07:0b:d5:8b: 87:33:3d:d5:1d:4d:1d:6f:3d:7c:4e:39:02:da:b0: 8b:33:8d:a1:1d:e4:b3:d9:f0:37:f6:c1:95:c5:e9: 91:bd:ae:ea:5c:9b:b4:38:ee:7b:f2:73:b5:88:48: 5d:49:3a:50:89:dc:d3:93:62:7d:16:cc:a7:78:f9: 34:75:93:84:59:56:74:8d:ce:f0:fb:2d:59:03:e3: 29:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DA:82:51:7C:48:F8:6E:C5:73:A4:73:BD:EB:7D:5E:E2:31:EC:22 X509v3 Authority Key Identifier: keyid:92:BD:4E:7F:B6:97:16:E8:F6:49:47:A5:99:03:AF:F7:7C:CB:E4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/92BD4E7FB69716E8F64947A59903AFF77CCBE441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92BD4E7FB69716E8F64947A59903AFF77CCBE441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32332d3233203d3e20313533303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.218.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:5b:09:be:fb:ad:5b:00:a1:2a:fa:61:5d:31:de:51:07:48: b8:1e:14:41:6d:73:a4:14:c0:7f:0b:16:0a:ee:13:20:58:8b: 00:ea:f6:26:8b:7f:64:8d:dc:38:57:52:55:8e:ee:a0:5c:7d: 1a:3f:a5:65:6d:ae:f5:e2:01:ee:24:13:8b:58:e6:ef:ba:08: 33:11:1c:86:57:6a:70:53:7c:9b:80:71:2f:08:26:08:d6:d5: b1:44:31:50:6f:b5:0e:6b:22:c7:01:b1:e3:3e:ed:19:9a:00: e4:10:98:df:9f:4c:b7:18:f3:de:ba:a8:12:40:ce:b4:60:da: 7a:62:79:51:81:0d:53:39:00:2e:20:b8:fc:64:b0:50:fd:94: 44:91:c7:f9:8b:a2:49:e9:71:61:24:bd:df:d3:68:60:f8:81: fe:7a:63:e7:57:21:4d:0f:43:78:bc:e1:44:66:41:a1:14:5f: 7e:e9:1f:1b:fe:0f:76:08:f0:82:db:22:db:af:9b:73:c2:ad: 9e:2a:f1:4a:80:74:c9:e6:b0:ad:32:78:d6:80:78:ff:e2:48: 8c:d8:f7:ea:0b:01:d8:19:46:79:7a:98:9e:2b:62:81:08:8d: f5:50:79:ed:55:b6:89:fc:4a:50:8f:21:df:c9:75:38:89:69: 3f:6c:32:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf3qOjier19pddkTwpEzFkt/LJOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJCRDRFN0ZCNjk3MTZFOEY2NDk0N0E1OTkwM0FGRjc3 Q0NCRTQ0MTAeFw0yNDEyMTAwMjAxMDZaFw0yNTEyMDkwMjA2MDZaMDMxMTAvBgNV BAMTKDc3REE4MjUxN0M0OEY4NkVDNTczQTQ3M0JERUI3RDVFRTIzMUVDMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChasAP4c/+o40Iuo76atTvsrF0 FaqqASrXE3IGMPzYdyc02ktevu3M8wpfHOxdG3m7ZCPVwGjTRalKEk+cWfsN735L 5KDK7qUThcwrKtf1NKIeBRYbMZkYO7gPc31MLi/BFIeHrw7V0fHn3U4pYLRhaaZP 7SrJhr6sTDIZzC0axPcCcbqHvwS+hoM0RIDNDKJjbew5KnIOzauNFjgEZ78kioka R395mJtgceGYXv6ABwvVi4czPdUdTR1vPXxOOQLasIszjaEd5LPZ8Df2wZXF6ZG9 rupcm7Q47nvyc7WISF1JOlCJ3NOTYn0WzKd4+TR1k4RZVnSNzvD7LVkD4ykxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd9qCUXxI+G7Fc6Rzvet9XuIx7CIwHwYDVR0j BBgwFoAUkr1Of7aXFuj2SUelmQOv93zL5EEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2RiMmJmOC1iZWIzLTRjYzktODNhZC0yYzlkNTc1Zjk0YWYvMC85MkJENEU3RkI2 OTcxNkU4RjY0OTQ3QTU5OTAzQUZGNzdDQ0JFNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTJCRDRFN0ZCNjk3MTZFOEY2NDk0N0E1OTkwM0FGRjc3Q0NC RTQ0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjZGIyYmY4LWJlYjMtNGNjOS04 M2FkLTJjOWQ1NzVmOTRhZi8wLzMxMzYzMDJlMzIzMjJlMzIzMTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMzMzAzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBoBbaMA0GCSqG SIb3DQEBCwUAA4IBAQAfWwm++61bAKEq+mFdMd5RB0i4HhRBbXOkFMB/CxYK7hMg WIsA6vYmi39kjdw4V1JVju6gXH0aP6Vlba714gHuJBOLWObvuggzERyGV2pwU3yb gHEvCCYI1tWxRDFQb7UOayLHAbHjPu0ZmgDkEJjfn0y3GPPeuqgSQM60YNp6YnlR gQ1TOQAuILj8ZLBQ/ZREkcf5i6JJ6XFhJL3f02hg+IH+emPnVyFND0N4vOFEZkGh FF9+6R8b/g92CPCC2yLbr5tzwq2eKvFKgHTJ5rCtMnjWgHj/4kiM2PfqCwHYGUZ5 epieK2KBCI31UHntVbaJ/EpQjyHfyXU4iWk/bDIh -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:52 2025 by rpki-client on console.sobornost.net