$ rpki-client -vvf repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32342d3234203d3e20313533303832.roa File: 3136302e32322e3231382e302f32342d3234203d3e20313533303832.roa (raw, json) Hash identifier: 396wvI67jqZy7okjsFOHdqyMEvjwT/V6xQtKNILvTEU= Subject key identifier: EF:FD:0B:64:A2:DE:34:AC:B0:02:70:A7:B5:0D:4B:8E:99:18:C5:A5 Certificate issuer: /CN=92BD4E7FB69716E8F64947A59903AFF77CCBE441 Certificate serial: 710DBA817A66028973D5E1047C5FA2C2437275B7 Authority key identifier: 92:BD:4E:7F:B6:97:16:E8:F6:49:47:A5:99:03:AF:F7:7C:CB:E4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92BD4E7FB69716E8F64947A59903AFF77CCBE441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32342d3234203d3e20313533303832.roa Signing time: Tue 10 Dec 2024 02:06:15 +0000 ROA not before: Tue 10 Dec 2024 02:01:15 +0000 ROA not after: Tue 09 Dec 2025 02:06:15 +0000 asID: 153082 IP address blocks: 160.22.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/92BD4E7FB69716E8F64947A59903AFF77CCBE441.crl rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/92BD4E7FB69716E8F64947A59903AFF77CCBE441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92BD4E7FB69716E8F64947A59903AFF77CCBE441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0d:ba:81:7a:66:02:89:73:d5:e1:04:7c:5f:a2:c2:43:72:75:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92BD4E7FB69716E8F64947A59903AFF77CCBE441 Validity Not Before: Dec 10 02:01:15 2024 GMT Not After : Dec 9 02:06:15 2025 GMT Subject: CN=EFFD0B64A2DE34ACB00270A7B50D4B8E9918C5A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:82:69:6e:9b:93:d8:9e:a0:bf:03:dd:9b:be: c2:ed:7a:65:3c:ef:6e:39:9b:33:a3:9f:68:e4:80: 0c:ae:0b:77:31:28:95:94:e3:c1:47:a1:d7:a3:bd: 5c:5e:21:98:33:dd:10:e6:94:4c:88:4b:5c:d5:c5: 2e:c6:fa:03:67:fb:82:63:57:16:18:ab:aa:5e:5e: bb:2b:18:fb:62:92:3c:7c:de:de:4c:cf:86:59:6c: 1c:7d:31:1a:79:25:15:65:54:9c:5e:b9:59:31:28: da:90:28:8b:f6:89:3c:6b:15:c9:58:18:0e:4b:29: 4b:b4:ee:76:8b:63:87:08:3d:95:e9:68:e7:bb:f4: 95:10:48:ca:82:49:72:2e:05:6e:43:2f:b8:32:43: dc:70:a5:75:c1:b3:95:f3:9c:f9:55:1c:72:2f:5d: 20:d7:a5:65:f7:df:30:a4:02:d9:35:5b:bb:2a:b2: 13:5f:84:6c:2b:09:fe:99:fc:75:2f:d2:a9:11:b3: 98:7a:da:dd:35:5a:d5:2b:c7:90:09:9a:ca:e4:bd: a2:65:b0:01:5d:51:8e:df:15:33:ef:a5:80:78:dd: 64:2e:c0:e7:04:87:06:68:30:b1:82:1b:f5:d3:6e: a6:e2:4e:fd:42:1c:96:09:ca:bd:af:01:1f:f6:db: 62:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FD:0B:64:A2:DE:34:AC:B0:02:70:A7:B5:0D:4B:8E:99:18:C5:A5 X509v3 Authority Key Identifier: keyid:92:BD:4E:7F:B6:97:16:E8:F6:49:47:A5:99:03:AF:F7:7C:CB:E4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/92BD4E7FB69716E8F64947A59903AFF77CCBE441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/92BD4E7FB69716E8F64947A59903AFF77CCBE441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acdb2bf8-beb3-4cc9-83ad-2c9d575f94af/0/3136302e32322e3231382e302f32342d3234203d3e20313533303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.218.0/24 Signature Algorithm: sha256WithRSAEncryption 59:0b:c0:a1:b1:49:ea:de:09:93:52:51:cf:c5:eb:53:50:7a: ad:e4:95:7f:85:4a:b5:c3:08:54:55:2f:af:01:25:8b:f0:49: 6c:a8:5b:78:8e:16:20:fa:7e:3d:78:1a:ca:16:f4:f7:a3:3a: f4:54:58:81:92:14:99:66:33:be:33:57:65:55:3e:76:86:9a: f3:aa:6a:a1:44:e6:78:fb:5f:0e:32:35:a0:58:50:a6:1e:07: 17:08:d3:82:b4:38:e8:f3:a2:3e:16:b5:4d:88:a0:46:71:f4: 01:b8:41:8e:61:00:94:63:65:1e:5c:22:19:d9:e3:63:03:52: b3:92:99:22:47:bf:99:f2:f4:40:35:a9:82:d1:85:fe:b5:c9: 03:ec:7c:a5:cf:83:c0:23:18:f0:59:e1:98:16:b2:eb:7e:c5: ca:96:40:8f:9f:a2:45:9b:6b:a9:15:6f:69:34:c8:1b:36:51: 53:41:7a:46:d3:fc:13:1f:76:d2:06:27:89:0f:69:be:3d:9a: 58:8c:0f:e5:f9:f8:bd:23:96:e5:2f:4a:8f:07:b5:1b:e6:dd: c9:22:e4:0b:66:ee:3d:63:80:ef:a2:31:00:c3:53:f1:ca:44: 2c:a5:83:52:9b:40:c0:88:c2:89:51:69:46:49:b8:28:8d:a5: a3:97:60:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcQ26gXpmAolz1eEEfF+iwkNydbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTJCRDRFN0ZCNjk3MTZFOEY2NDk0N0E1OTkwM0FGRjc3 Q0NCRTQ0MTAeFw0yNDEyMTAwMjAxMTVaFw0yNTEyMDkwMjA2MTVaMDMxMTAvBgNV BAMTKEVGRkQwQjY0QTJERTM0QUNCMDAyNzBBN0I1MEQ0QjhFOTkxOEM1QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcgmlum5PYnqC/A92bvsLtemU8 7245mzOjn2jkgAyuC3cxKJWU48FHodejvVxeIZgz3RDmlEyIS1zVxS7G+gNn+4Jj VxYYq6peXrsrGPtikjx83t5Mz4ZZbBx9MRp5JRVlVJxeuVkxKNqQKIv2iTxrFclY GA5LKUu07naLY4cIPZXpaOe79JUQSMqCSXIuBW5DL7gyQ9xwpXXBs5XznPlVHHIv XSDXpWX33zCkAtk1W7sqshNfhGwrCf6Z/HUv0qkRs5h62t01WtUrx5AJmsrkvaJl sAFdUY7fFTPvpYB43WQuwOcEhwZoMLGCG/XTbqbiTv1CHJYJyr2vAR/222IHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7/0LZKLeNKywAnCntQ1LjpkYxaUwHwYDVR0j BBgwFoAUkr1Of7aXFuj2SUelmQOv93zL5EEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2RiMmJmOC1iZWIzLTRjYzktODNhZC0yYzlkNTc1Zjk0YWYvMC85MkJENEU3RkI2 OTcxNkU4RjY0OTQ3QTU5OTAzQUZGNzdDQ0JFNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTJCRDRFN0ZCNjk3MTZFOEY2NDk0N0E1OTkwM0FGRjc3Q0NC RTQ0MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjZGIyYmY4LWJlYjMtNGNjOS04 M2FkLTJjOWQ1NzVmOTRhZi8wLzMxMzYzMDJlMzIzMjJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbaMA0GCSqG SIb3DQEBCwUAA4IBAQBZC8ChsUnq3gmTUlHPxetTUHqt5JV/hUq1wwhUVS+vASWL 8ElsqFt4jhYg+n49eBrKFvT3ozr0VFiBkhSZZjO+M1dlVT52hprzqmqhROZ4+18O MjWgWFCmHgcXCNOCtDjo86I+FrVNiKBGcfQBuEGOYQCUY2UeXCIZ2eNjA1Kzkpki R7+Z8vRANamC0YX+tckD7Hylz4PAIxjwWeGYFrLrfsXKlkCPn6JFm2upFW9pNMgb NlFTQXpG0/wTH3bSBieJD2m+PZpYjA/l+fi9I5blL0qPB7Ub5t3JIuQLZu49Y4Dv ojEAw1PxykQspYNSm0DAiMKJUWlGSbgojaWjl2Al -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:52 2025 by rpki-client on console.sobornost.net