$ rpki-client -vvf repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa File: 3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa (raw, json) Hash identifier: JcxcaxwKLkaXPPx4myqNJpdCaATZRCOkTz9pp1mz/yI= Subject key identifier: B4:78:E4:50:A6:0A:27:97:1C:3B:15:5D:9B:4D:B6:0A:38:49:66:8C Certificate issuer: /CN=AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3 Certificate serial: 181549431F9E2B4E91C79077289E9A60E2BACC9D Authority key identifier: AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa Signing time: Fri 07 Mar 2025 15:00:01 +0000 ROA not before: Fri 07 Mar 2025 14:55:01 +0000 ROA not after: Fri 06 Mar 2026 15:00:01 +0000 asID: 152349 IP address blocks: 157.10.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.crl rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:15:49:43:1f:9e:2b:4e:91:c7:90:77:28:9e:9a:60:e2:ba:cc:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3 Validity Not Before: Mar 7 14:55:01 2025 GMT Not After : Mar 6 15:00:01 2026 GMT Subject: CN=B478E450A60A27971C3B155D9B4DB60A3849668C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:45:36:fc:3f:5a:03:0e:2b:08:a4:bd:cc:06: 99:40:18:44:fe:27:d8:99:5b:b7:c9:1f:14:da:0c: 36:f4:f7:6e:8d:f5:52:e7:30:c1:cf:d3:ad:37:d0: 9f:21:36:f7:c5:44:44:54:71:38:ec:3b:1f:6f:7e: a8:25:ed:a7:be:57:74:d2:ee:e6:9e:cc:ba:06:ae: eb:40:c7:45:88:c3:54:6f:c0:80:58:4f:0c:c1:63: 67:30:92:5d:4c:78:66:02:cd:26:c2:6d:96:95:67: 0c:c6:8d:68:11:26:fd:ea:d1:a0:e5:81:96:6e:9d: de:35:e2:4b:9d:f1:62:f5:39:76:2e:12:a9:7e:2b: 15:ef:1f:24:9c:8c:9b:2d:26:bf:20:82:de:f3:c6: a3:9b:85:72:3e:47:52:e5:c4:aa:fe:b7:48:18:ca: 3c:3d:af:b7:fa:69:61:ef:a9:fd:a6:50:9a:81:49: 7d:ab:34:24:37:d3:60:97:69:27:b0:c1:67:b4:09: c5:5e:27:1f:61:17:58:76:57:56:96:aa:1f:86:87: fd:68:80:e5:74:45:21:be:50:53:d1:3b:bf:3f:fc: 8d:5e:be:a4:05:da:98:af:36:37:41:eb:87:a0:5c: aa:93:cc:7d:68:57:9d:03:a9:23:fe:c9:82:47:66: fe:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:78:E4:50:A6:0A:27:97:1C:3B:15:5D:9B:4D:B6:0A:38:49:66:8C X509v3 Authority Key Identifier: keyid:AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/3135372e31302e3138312e302f32342d3234203d3e20313532333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.181.0/24 Signature Algorithm: sha256WithRSAEncryption 88:05:83:b2:10:3d:f9:5c:e6:dd:af:cc:c6:be:b7:9d:bd:7d: 89:b8:ea:52:11:24:2d:19:c1:08:19:90:95:0c:7e:01:18:20: 4b:46:a9:0c:31:5c:83:24:5a:8b:62:3e:fb:6f:8a:9d:a6:f7: 7d:56:70:f7:a3:e1:a0:84:49:1a:9f:42:83:78:70:16:80:9d: 8e:32:08:df:22:82:e0:6f:8e:42:47:47:40:5b:21:bc:b7:58: 78:e4:c5:11:4b:32:09:9e:c7:4c:86:0d:05:83:fd:83:17:8b: 09:ff:c5:29:cb:47:f3:03:6c:52:e3:8b:5d:cd:28:ae:ef:1b: 4c:9d:18:4b:41:26:7b:26:f0:d7:3d:a2:b5:2f:c5:58:d9:5f: 9e:1d:a5:51:05:ac:0c:08:0d:fc:ff:d5:1b:4c:7a:20:22:da: 8d:e1:97:64:d9:cd:d8:07:20:19:1c:db:b2:cc:3c:cc:47:78: f5:7a:70:fd:40:f7:5f:bd:ed:75:90:db:6b:84:bd:81:68:07: 6b:51:6a:68:d1:95:16:67:23:d5:f9:89:1c:b9:6e:17:ab:95: 74:4c:a4:cd:7e:db:41:de:0e:76:07:b0:61:6a:9f:f1:60:03: a9:88:ad:3e:a3:50:14:38:b8:3c:bf:bd:63:44:1b:d4:38:d6: e4:d2:a1:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGBVJQx+eK06Rx5B3KJ6aYOK6zJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZBN0FFM0Q3OTBBMUYwQzkxNEI4Mzk5RTQ2OTVGNEQ2 MzQyQjRDMzAeFw0yNTAzMDcxNDU1MDFaFw0yNjAzMDYxNTAwMDFaMDMxMTAvBgNV BAMTKEI0NzhFNDUwQTYwQTI3OTcxQzNCMTU1RDlCNERCNjBBMzg0OTY2OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDARTb8P1oDDisIpL3MBplAGET+ J9iZW7fJHxTaDDb0926N9VLnMMHP06030J8hNvfFRERUcTjsOx9vfqgl7ae+V3TS 7uaezLoGrutAx0WIw1RvwIBYTwzBY2cwkl1MeGYCzSbCbZaVZwzGjWgRJv3q0aDl gZZund414kud8WL1OXYuEql+KxXvHyScjJstJr8ggt7zxqObhXI+R1LlxKr+t0gY yjw9r7f6aWHvqf2mUJqBSX2rNCQ302CXaSewwWe0CcVeJx9hF1h2V1aWqh+Gh/1o gOV0RSG+UFPRO78//I1evqQF2pivNjdB64egXKqTzH1oV50DqSP+yYJHZv5XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtHjkUKYKJ5ccOxVdm022CjhJZowwHwYDVR0j BBgwFoAUr6euPXkKHwyRS4OZ5GlfTWNCtMMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTBkMDI2NS0yY2MxLTQ2M2QtOTQ4Yi1jZGVkMTNhMjAyOTUvMC9BRkE3QUUzRDc5 MEExRjBDOTE0QjgzOTlFNDY5NUY0RDYzNDJCNEMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUZBN0FFM0Q3OTBBMUYwQzkxNEI4Mzk5RTQ2OTVGNEQ2MzQy QjRDMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5MGQwMjY1LTJjYzEtNDYzZC05 NDhiLWNkZWQxM2EyMDI5NS8wLzMxMzUzNzJlMzEzMDJlMzEzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQq1MA0GCSqG SIb3DQEBCwUAA4IBAQCIBYOyED35XObdr8zGvredvX2JuOpSESQtGcEIGZCVDH4B GCBLRqkMMVyDJFqLYj77b4qdpvd9VnD3o+GghEkan0KDeHAWgJ2OMgjfIoLgb45C R0dAWyG8t1h45MURSzIJnsdMhg0Fg/2DF4sJ/8Upy0fzA2xS44tdzSiu7xtMnRhL QSZ7JvDXPaK1L8VY2V+eHaVRBawMCA38/9UbTHogItqN4Zdk2c3YByAZHNuyzDzM R3j1enD9QPdfve11kNtrhL2BaAdrUWpo0ZUWZyPV+YkcuW4Xq5V0TKTNfttB3g52 B7Bhap/xYAOpiK0+o1AUOLg8v71jRBvUONbk0qGv -----END CERTIFICATE-----Generated at Thu Apr 24 11:25:24 2025 by rpki-client on console.sobornost.net