$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32322d3232203d3e203234353235.roa File: 3230332e3135332e32342e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: IJ0mbFE+P5qEKzjyTBjbNdURVBnTvPgYr38U296geVI= Subject key identifier: 7F:0A:BA:D5:24:94:6F:B4:83:11:0F:87:25:08:AA:15:0C:D3:6B:48 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 5567B16847F5B4CC478FE5BAE36DC8337E549380 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32322d3232203d3e203234353235.roa Signing time: Tue 22 Apr 2025 07:00:07 +0000 ROA not before: Tue 22 Apr 2025 06:55:07 +0000 ROA not after: Tue 21 Apr 2026 07:00:07 +0000 asID: 24525 IP address blocks: 203.153.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 17:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:67:b1:68:47:f5:b4:cc:47:8f:e5:ba:e3:6d:c8:33:7e:54:93:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Apr 22 06:55:07 2025 GMT Not After : Apr 21 07:00:07 2026 GMT Subject: CN=7F0ABAD524946FB483110F872508AA150CD36B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e5:54:7c:73:5d:26:de:d2:ae:72:87:f5:82: 3c:38:bb:c6:14:a8:da:63:f0:22:29:2b:22:9d:1a: cf:5b:0e:aa:16:45:63:80:e3:28:26:58:19:92:f1: 12:f2:21:eb:0f:dd:32:5e:51:0a:25:fb:eb:02:03: 18:7d:d5:36:1f:8f:cf:2e:62:bb:5f:20:ec:07:3d: 95:60:13:5e:5a:01:9d:e6:d1:52:7c:84:64:35:12: 5f:f2:d8:1b:d0:f6:1a:cb:df:90:5d:df:6b:98:52: 11:de:77:a8:95:61:d6:2d:2e:b7:7d:d7:db:2d:e9: 98:8d:f5:58:5e:5c:cd:2f:a8:5c:ea:3b:72:3d:78: 76:0a:7f:6c:ba:8e:5f:71:27:29:38:d7:dc:a0:66: 7b:38:2d:19:bf:03:16:05:45:bf:d7:a7:bc:76:78: c3:75:7f:78:a4:82:69:fc:fe:1b:b9:e3:38:4e:63: 90:5c:03:0b:2f:4f:a7:00:e0:b4:91:56:9a:d3:06: c5:3b:93:f9:58:07:5b:54:91:ee:6a:bd:cd:bd:39: 60:e2:c6:9a:10:76:8c:d6:e5:bb:29:af:94:fb:cc: ca:02:88:f4:cd:24:c5:af:43:5e:01:f6:11:97:96: 97:07:11:69:c3:5c:3f:11:da:f8:12:49:55:b4:1f: 17:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0A:BA:D5:24:94:6F:B4:83:11:0F:87:25:08:AA:15:0C:D3:6B:48 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.24.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:e2:9c:b7:ac:f4:8d:67:28:b5:fd:12:a3:94:26:b7:89:18: 87:06:c4:9b:f1:8d:bc:c9:77:ea:7a:7c:ff:5e:84:7d:a3:77: 0d:64:47:5b:0c:45:ca:aa:c6:b5:45:81:a9:18:cf:9d:1a:15: 46:4a:a6:40:71:4d:1a:54:4e:79:2b:e3:a2:e7:ea:da:31:27: cf:a3:1a:7a:07:f8:f7:73:98:05:48:5d:b8:be:e2:ed:d2:07: 83:3f:3a:18:4a:b4:87:7b:1b:f4:ff:7e:99:94:cc:93:6d:84: aa:c8:02:8d:2b:57:f0:7a:8a:e3:9c:d0:35:24:a8:47:e3:de: cc:63:fe:c9:0f:f3:40:cc:9c:b3:30:28:d4:a3:a8:df:c8:9c: 21:0f:d0:6a:17:41:51:68:55:72:95:f2:6d:b5:4e:4c:2c:88: 94:a7:23:f9:6b:63:88:c8:1f:e0:7c:53:9e:fe:8f:02:1d:ab: e4:07:e5:b0:92:44:39:ae:38:78:e1:0f:ff:61:70:74:2d:f8: 69:78:59:07:7d:50:0d:39:9b:af:82:76:fb:6b:01:a6:ac:c4: 1b:20:cc:2c:0f:39:50:d1:25:55:d8:98:d3:d8:5f:42:aa:d5: 77:4f:26:cf:63:71:07:ef:33:e5:ad:8e:83:6d:55:e9:40:bf: d4:03:e4:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVWexaEf1tMxHj+W6423IM35Uk4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNTA0MjIwNjU1MDdaFw0yNjA0MjEwNzAwMDdaMDMxMTAvBgNV BAMTKDdGMEFCQUQ1MjQ5NDZGQjQ4MzExMEY4NzI1MDhBQTE1MENEMzZCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm5VR8c10m3tKucof1gjw4u8YU qNpj8CIpKyKdGs9bDqoWRWOA4ygmWBmS8RLyIesP3TJeUQol++sCAxh91TYfj88u YrtfIOwHPZVgE15aAZ3m0VJ8hGQ1El/y2BvQ9hrL35Bd32uYUhHed6iVYdYtLrd9 19st6ZiN9VheXM0vqFzqO3I9eHYKf2y6jl9xJyk419ygZns4LRm/AxYFRb/Xp7x2 eMN1f3ikgmn8/hu54zhOY5BcAwsvT6cA4LSRVprTBsU7k/lYB1tUke5qvc29OWDi xpoQdozW5bspr5T7zMoCiPTNJMWvQ14B9hGXlpcHEWnDXD8R2vgSSVW0HxcnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfwq61SSUb7SDEQ+HJQiqFQzTa0gwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsuZGDANBgkqhkiG 9w0BAQsFAAOCAQEAHOKct6z0jWcotf0So5Qmt4kYhwbEm/GNvMl36np8/16EfaN3 DWRHWwxFyqrGtUWBqRjPnRoVRkqmQHFNGlROeSvjoufq2jEnz6Maegf493OYBUhd uL7i7dIHgz86GEq0h3sb9P9+mZTMk22EqsgCjStX8HqK45zQNSSoR+PezGP+yQ/z QMycszAo1KOo38icIQ/QahdBUWhVcpXybbVOTCyIlKcj+WtjiMgf4HxTnv6PAh2r 5AflsJJEOa44eOEP/2FwdC34aXhZB31QDTmbr4J2+2sBpqzEGyDMLA85UNElVdiY 09hfQqrVd08mz2NxB+8z5a2Og21V6UC/1APknQ== -----END CERTIFICATE-----Generated at Thu Apr 24 15:50:15 2025 by rpki-client on console.sobornost.net