$ rpki-client -vvf repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa File: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (raw, json) Hash identifier: 5HetFGZszR8N+jVJsMmxP9KoRUdy7YyfVMX9PkmHTvY= Subject key identifier: 53:4D:EC:4A:02:9B:4B:56:07:00:8B:D8:C6:02:7F:6B:48:41:BF:28 Certificate issuer: /CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Certificate serial: 66DBE51D2A67F4EEA833895323941CA47D750152 Authority key identifier: 25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa Signing time: Sun 20 Apr 2025 05:00:02 +0000 ROA not before: Sun 20 Apr 2025 04:55:02 +0000 ROA not after: Sun 19 Apr 2026 05:00:02 +0000 asID: 152754 IP address blocks: 160.19.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:db:e5:1d:2a:67:f4:ee:a8:33:89:53:23:94:1c:a4:7d:75:01:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2 Validity Not Before: Apr 20 04:55:02 2025 GMT Not After : Apr 19 05:00:02 2026 GMT Subject: CN=534DEC4A029B4B5607008BD8C6027F6B4841BF28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:33:81:52:4c:04:ce:35:86:1c:93:1b:77:bb: 46:a6:fd:db:1f:05:d1:9b:3e:88:33:c8:b0:60:fa: 51:f6:c5:c3:68:8b:0e:84:66:5a:e6:50:ca:87:4b: f0:72:58:27:3e:75:a6:ee:ba:4b:77:0b:1c:f1:50: 6a:eb:0f:e3:8b:fe:33:d8:d8:2f:85:b4:39:f1:1d: f4:f7:fb:7f:74:ec:ab:0c:88:80:01:09:2d:50:8c: 2e:ac:d7:b1:0f:8e:5c:69:58:43:50:74:b7:32:17: e1:91:b6:a4:03:74:a2:a3:97:40:ec:47:22:55:5f: 31:11:58:96:06:b5:9e:b2:ef:0d:bf:a2:52:d6:75: d3:6a:10:dd:64:57:b8:86:88:00:58:ec:49:ab:44: cb:57:3b:87:61:7f:25:b3:1a:6d:bc:dd:b0:fb:07: 3d:11:22:e2:57:8c:41:5f:3f:88:75:22:c6:37:4e: bb:b0:69:55:c6:7b:38:a1:c4:ba:8a:c7:17:88:d6: 96:71:17:8f:dd:27:c0:03:ce:ea:e6:5c:9e:e9:ae: ad:39:9e:ee:4d:d5:ec:a3:d6:4b:be:46:f1:78:51: b0:b6:11:ef:7d:8d:b2:cf:b1:cb:62:79:a4:06:6b: 5d:cf:65:e7:db:34:86:5f:c7:8d:3d:3c:8b:76:c9: ac:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4D:EC:4A:02:9B:4B:56:07:00:8B:D8:C6:02:7F:6B:48:41:BF:28 X509v3 Authority Key Identifier: keyid:25:15:D4:BF:9E:F7:AA:E5:AE:BC:22:F5:2C:17:FF:17:DC:D6:FD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2515D4BF9EF7AAE5AEBC22F52C17FF17DCD6FDC2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba098f00-a0a0-4b5c-9e83-606737128cb1/0/3136302e31392e38342e302f32332d3233203d3e20313532373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.84.0/23 Signature Algorithm: sha256WithRSAEncryption 94:81:97:1f:b1:f7:b3:48:0c:63:89:b6:07:82:a0:bf:68:c0: 83:35:b4:ba:4b:2e:be:8b:c0:a2:ab:fc:18:a4:58:8a:d5:83: b1:b7:0d:2b:0f:ea:a2:d5:d2:23:9a:99:a7:d8:d8:61:44:c9: ea:e6:f5:81:a5:f2:26:4d:02:ed:f1:55:28:53:b0:f4:1c:b8: ed:b2:2d:44:b3:e3:04:2a:92:6a:de:f9:99:0b:36:45:58:fd: 49:67:0a:b5:90:e5:2c:d0:d4:14:2a:00:76:8a:4e:6d:f5:79: bc:a6:a9:0f:28:22:49:d8:77:2f:48:b3:e0:f1:17:63:61:a1: 39:48:bc:af:0c:5f:67:7e:89:fa:80:53:e7:e6:7f:30:e4:18: 6e:01:0c:34:8d:29:70:90:47:bc:36:74:3f:32:92:e5:3b:71: 3a:eb:4d:5c:a8:c0:47:e9:0f:34:3e:31:9b:54:42:d2:69:36: 14:69:c3:9f:4b:5d:22:45:76:5b:56:dd:b5:b1:4c:6d:f2:ce: 58:98:07:e0:a3:3a:f1:a0:cf:97:bb:2f:06:09:06:e3:ba:71: 07:40:da:ff:a9:d7:5e:12:15:4a:63:4c:a8:1d:26:56:8c:d4: b9:1e:f9:04:2f:c1:49:d4:ec:a5:8d:95:c1:d7:c3:6f:87:94: 56:39:42:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZtvlHSpn9O6oM4lTI5QcpH11AVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdE Q0Q2RkRDMjAeFw0yNTA0MjAwNDU1MDJaFw0yNjA0MTkwNTAwMDJaMDMxMTAvBgNV BAMTKDUzNERFQzRBMDI5QjRCNTYwNzAwOEJEOEM2MDI3RjZCNDg0MUJGMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgM4FSTATONYYckxt3u0am/dsf BdGbPogzyLBg+lH2xcNoiw6EZlrmUMqHS/ByWCc+dabuukt3CxzxUGrrD+OL/jPY 2C+FtDnxHfT3+3907KsMiIABCS1QjC6s17EPjlxpWENQdLcyF+GRtqQDdKKjl0Ds RyJVXzERWJYGtZ6y7w2/olLWddNqEN1kV7iGiABY7EmrRMtXO4dhfyWzGm283bD7 Bz0RIuJXjEFfP4h1IsY3TruwaVXGezihxLqKxxeI1pZxF4/dJ8ADzurmXJ7prq05 nu5N1eyj1ku+RvF4UbC2Ee99jbLPsctieaQGa13PZefbNIZfx409PIt2yax9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU03sSgKbS1YHAIvYxgJ/a0hBvygwHwYDVR0j BBgwFoAUJRXUv573quWuvCL1LBf/F9zW/cIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTA5OGYwMC1hMGEwLTRiNWMtOWU4My02MDY3MzcxMjhjYjEvMC8yNTE1RDRCRjlF RjdBQUU1QUVCQzIyRjUyQzE3RkYxN0RDRDZGREMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMjUxNUQ0QkY5RUY3QUFFNUFFQkMyMkY1MkMxN0ZGMTdEQ0Q2 RkRDMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhMDk4ZjAwLWEwYTAtNGI1Yy05 ZTgzLTYwNjczNzEyOGNiMS8wLzMxMzYzMDJlMzEzOTJlMzgzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaATVDANBgkqhkiG 9w0BAQsFAAOCAQEAlIGXH7H3s0gMY4m2B4Kgv2jAgzW0uksuvovAoqv8GKRYitWD sbcNKw/qotXSI5qZp9jYYUTJ6ub1gaXyJk0C7fFVKFOw9By47bItRLPjBCqSat75 mQs2RVj9SWcKtZDlLNDUFCoAdopObfV5vKapDygiSdh3L0iz4PEXY2GhOUi8rwxf Z36J+oBT5+Z/MOQYbgEMNI0pcJBHvDZ0PzKS5TtxOutNXKjAR+kPND4xm1RC0mk2 FGnDn0tdIkV2W1bdtbFMbfLOWJgH4KM68aDPl7svBgkG47pxB0Da/6nXXhIVSmNM qB0mVozUuR75BC/BSdTspY2VwdfDb4eUVjlCLA== -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:23 2025 by rpki-client on console.sobornost.net