$ rpki-client -vvf repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa File: 3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa (raw, json) Hash identifier: GMU+CWZ37DvQvoDo6BkkC4G2UgM09X3lRKvxQBg5EIg= Subject key identifier: 70:E3:99:39:11:27:76:24:CB:9B:4A:3E:08:6F:A0:F6:57:8B:25:50 Certificate issuer: /CN=CEB4F9AE3476630AAF22F4CD42CE606BB4444140 Certificate serial: 17D131079138C30919FF354DDE2CA9354A2D8063 Authority key identifier: CE:B4:F9:AE:34:76:63:0A:AF:22:F4:CD:42:CE:60:6B:B4:44:41:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa Signing time: Wed 23 Apr 2025 21:00:00 +0000 ROA not before: Wed 23 Apr 2025 20:55:00 +0000 ROA not after: Wed 22 Apr 2026 21:00:00 +0000 asID: 141898 IP address blocks: 157.10.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.crl rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 18:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d1:31:07:91:38:c3:09:19:ff:35:4d:de:2c:a9:35:4a:2d:80:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEB4F9AE3476630AAF22F4CD42CE606BB4444140 Validity Not Before: Apr 23 20:55:00 2025 GMT Not After : Apr 22 21:00:00 2026 GMT Subject: CN=70E3993911277624CB9B4A3E086FA0F6578B2550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9f:36:0f:f9:18:82:21:89:19:85:0d:2b:b3: d9:a3:ee:be:65:8c:1c:44:7c:96:da:92:1a:2e:8a: 7d:3e:20:7b:03:e0:e9:8d:b7:43:6e:c7:34:c3:7d: b3:53:1b:28:83:f7:9c:72:fe:f0:bd:2f:f5:7d:5f: 0d:91:94:ba:98:ef:25:a0:15:c9:4c:a5:8d:47:8f: 1d:68:a4:98:08:c0:c6:58:f7:3e:48:d8:7d:00:91: 36:3b:ac:7a:b3:d1:55:35:6b:43:02:34:67:16:97: 6c:dd:30:67:b4:c1:92:c8:6b:3f:82:e4:90:3c:2c: c9:d6:31:d6:15:3d:73:21:51:47:49:89:f5:d4:4f: a1:61:d1:64:be:8b:6c:91:d2:c3:67:7c:e0:51:bd: 91:e7:69:d1:f0:ba:ff:4b:e9:ed:d9:35:79:fe:b8: a4:10:e8:1d:fa:d9:9b:87:9d:58:1e:0a:08:33:da: 57:6f:67:3b:e7:f4:08:d7:18:8e:40:de:85:a8:b8: 3e:1a:ea:18:7b:37:41:3f:fd:25:cb:ae:bc:06:3d: c1:9e:dc:b6:c3:ac:84:91:0d:5c:1d:e3:45:34:ba: 8d:69:1c:0f:35:2c:db:7a:ec:2d:18:3d:98:30:1e: a6:62:c9:77:7f:e7:6a:0e:0c:85:8c:7d:9a:97:c0: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E3:99:39:11:27:76:24:CB:9B:4A:3E:08:6F:A0:F6:57:8B:25:50 X509v3 Authority Key Identifier: keyid:CE:B4:F9:AE:34:76:63:0A:AF:22:F4:CD:42:CE:60:6B:B4:44:41:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/3135372e31302e3232322e302f32332d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.222.0/23 Signature Algorithm: sha256WithRSAEncryption e1:ce:7b:5f:be:8f:3f:54:23:5e:48:b9:55:d1:9a:10:51:47: 21:d9:15:e8:b1:de:4c:4b:68:37:85:3e:b0:72:b5:95:c8:0e: ee:4a:26:35:92:9c:01:c4:c9:fb:59:90:c5:2a:6c:a5:7e:5e: 72:51:cc:01:d1:ab:4e:75:ac:df:cb:a5:bf:7d:71:f3:70:a8: bc:32:5e:d1:c5:7d:f8:6b:fc:6d:80:5f:87:b6:48:96:be:92: c0:d1:17:30:74:88:25:82:21:6c:eb:31:e2:88:7f:29:1c:e0: 32:03:2c:cf:2c:28:1c:1d:78:f5:2c:39:a4:ad:5a:e3:d7:ab: e5:eb:ee:48:a5:45:ef:7b:f4:9e:23:e4:ad:55:3e:52:00:a5: 39:d5:21:2e:f2:a5:c4:04:9a:fe:08:0d:62:f7:8f:f8:72:35: 6a:84:a0:e1:cf:91:6e:b6:87:ed:c0:5b:b5:21:64:ac:16:49: 3b:cb:28:70:4e:80:19:fb:4f:0b:7e:5e:fc:a5:ff:28:d8:cc: d0:5f:a8:d7:43:81:34:73:47:af:78:36:f8:3b:a3:f8:30:ae: 80:c6:ce:85:e8:1c:c3:0a:cd:4d:9e:63:f7:64:cd:c7:17:f5: 81:1d:e1:bd:9d:8a:4e:a3:32:93:03:95:5c:13:0d:a9:4e:68: 36:7b:70:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF9ExB5E4wwkZ/zVN3iypNUotgGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VCNEY5QUUzNDc2NjMwQUFGMjJGNENENDJDRTYwNkJC NDQ0NDE0MDAeFw0yNTA0MjMyMDU1MDBaFw0yNjA0MjIyMTAwMDBaMDMxMTAvBgNV BAMTKDcwRTM5OTM5MTEyNzc2MjRDQjlCNEEzRTA4NkZBMEY2NTc4QjI1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqnzYP+RiCIYkZhQ0rs9mj7r5l jBxEfJbakhouin0+IHsD4OmNt0NuxzTDfbNTGyiD95xy/vC9L/V9Xw2RlLqY7yWg FclMpY1Hjx1opJgIwMZY9z5I2H0AkTY7rHqz0VU1a0MCNGcWl2zdMGe0wZLIaz+C 5JA8LMnWMdYVPXMhUUdJifXUT6Fh0WS+i2yR0sNnfOBRvZHnadHwuv9L6e3ZNXn+ uKQQ6B362ZuHnVgeCggz2ldvZzvn9AjXGI5A3oWouD4a6hh7N0E//SXLrrwGPcGe 3LbDrISRDVwd40U0uo1pHA81LNt67C0YPZgwHqZiyXd/52oODIWMfZqXwNSZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcOOZOREndiTLm0o+CG+g9leLJVAwHwYDVR0j BBgwFoAUzrT5rjR2YwqvIvTNQs5ga7REQUAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTM3NmE2ZS0zZWNhLTRmNzMtOGQxNS1kMWRkZWU5MWZmOTgvMC9DRUI0RjlBRTM0 NzY2MzBBQUYyMkY0Q0Q0MkNFNjA2QkI0NDQ0MTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQ0VCNEY5QUUzNDc2NjMwQUFGMjJGNENENDJDRTYwNkJCNDQ0 NDE0MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMzc2YTZlLTNlY2EtNGY3My04 ZDE1LWQxZGRlZTkxZmY5OC8wLzMxMzUzNzJlMzEzMDJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnQreMA0GCSqG SIb3DQEBCwUAA4IBAQDhzntfvo8/VCNeSLlV0ZoQUUch2RXosd5MS2g3hT6wcrWV yA7uSiY1kpwBxMn7WZDFKmylfl5yUcwB0atOdazfy6W/fXHzcKi8Ml7RxX34a/xt gF+HtkiWvpLA0RcwdIglgiFs6zHiiH8pHOAyAyzPLCgcHXj1LDmkrVrj16vl6+5I pUXve/SeI+StVT5SAKU51SEu8qXEBJr+CA1i94/4cjVqhKDhz5FutoftwFu1IWSs Fkk7yyhwToAZ+08Lfl78pf8o2MzQX6jXQ4E0c0eveDb4O6P4MK6Axs6F6BzDCs1N nmP3ZM3HF/WBHeG9nYpOozKTA5VcEw2pTmg2e3Dw -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:22 2025 by rpki-client on console.sobornost.net