$ rpki-client -vvf repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa File: 3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa (raw, json) Hash identifier: 3018KqaCeIgQPe+mGEUAX9QQkpcPilw0dwx6vwsisv4= Subject key identifier: 54:4F:D9:7E:E0:02:85:BF:84:84:89:35:B3:19:11:F0:F8:57:C4:30 Certificate issuer: /CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Certificate serial: 44FE2D0435345B64E1FE8D5356C6E6DAB5D30424 Authority key identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa Signing time: Sun 20 Apr 2025 08:01:13 +0000 ROA not before: Sun 20 Apr 2025 07:56:13 +0000 ROA not after: Sun 19 Apr 2026 08:01:13 +0000 asID: 152416 IP address blocks: 157.20.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:fe:2d:04:35:34:5b:64:e1:fe:8d:53:56:c6:e6:da:b5:d3:04:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Validity Not Before: Apr 20 07:56:13 2025 GMT Not After : Apr 19 08:01:13 2026 GMT Subject: CN=544FD97EE00285BF84848935B31911F0F857C430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2b:33:24:94:a8:98:75:36:c0:c2:e7:1c:7d: 79:03:d4:b0:01:f1:c8:2a:cf:76:4c:0a:5e:d2:5f: 26:bf:ab:08:90:6a:73:b7:e2:ef:3a:a1:6b:e2:2e: db:60:8c:93:e5:43:1f:6a:97:04:96:f5:1e:61:45: c9:c1:cd:3b:7d:35:d2:5f:24:5b:0f:af:03:9a:6c: eb:a6:13:8a:e2:8d:ef:f8:b1:b4:df:6e:85:ab:c8: 80:c0:dc:fc:61:27:6a:5a:0f:72:eb:21:ce:b0:45: 81:19:1c:a3:85:a3:f9:df:26:d6:6a:3b:ee:5b:4e: 29:bd:bf:7e:16:10:b0:bd:79:d6:98:0d:0b:10:0d: 7f:20:d4:58:29:60:5f:3e:1d:60:05:18:a6:eb:8f: 25:af:fa:04:f7:aa:5b:32:81:21:da:ed:65:2f:fa: 0e:bc:a1:5f:cf:95:12:e5:8e:0e:fc:f4:17:92:17: ea:f2:81:71:93:68:df:3f:dc:c9:2a:bd:62:7f:8d: ea:67:bf:d5:dc:b1:7a:88:df:79:57:7b:b5:ad:a8: de:a5:22:40:3c:88:4e:c2:0c:dc:bb:08:1b:64:d8: 8f:02:bf:66:25:63:14:60:67:c2:3d:0c:14:2a:45: d6:64:78:a5:20:98:c6:75:9f:34:2d:b3:c4:a9:34: ad:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4F:D9:7E:E0:02:85:BF:84:84:89:35:B3:19:11:F0:F8:57:C4:30 X509v3 Authority Key Identifier: keyid:C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230382e302f32332d3233203d3e20313532343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.208.0/23 Signature Algorithm: sha256WithRSAEncryption c2:f3:71:dc:1e:3c:83:06:b5:c8:f2:a7:0e:ef:17:34:82:77: 5a:11:82:fc:76:f0:5e:11:a2:06:d6:1a:4e:2d:71:e9:b0:cd: 49:29:83:d1:c3:aa:a2:c3:fb:a2:cc:b8:ef:af:22:ba:a6:04: 9c:40:7f:76:97:74:6b:f5:49:5e:4e:33:59:ed:13:33:33:62: 7d:b8:f3:fe:cd:d5:8a:e2:2d:4e:55:00:4a:d6:81:09:b4:89: 06:b6:46:14:15:73:0f:f8:21:a7:8c:e3:48:0d:a6:65:5e:85: 04:b5:26:67:6e:e4:f6:28:b1:7c:7f:4a:b1:6a:d4:42:cf:83: c3:45:f0:50:18:10:ed:53:fb:9b:bc:ba:ea:6a:ae:b1:21:c0: b2:76:d2:a2:1e:19:29:6c:bd:fc:5a:5a:d8:8d:60:76:45:14: e9:ed:5f:73:92:c5:de:77:56:34:d6:ac:0d:07:e1:d7:06:50: ba:16:fe:9c:63:03:b8:31:f0:1a:dc:88:d2:42:7d:f9:9f:c6: aa:1a:13:ea:6b:40:16:0f:88:e8:c7:aa:75:db:4d:64:f8:e8: 45:14:d7:9a:2a:71:34:34:64:aa:1d:02:7e:b2:e1:49:a2:ff: 5d:07:82:5e:06:fc:95:5a:a5:48:55:71:cc:89:81:e7:47:1f: 6e:80:ac:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURP4tBDU0W2Th/o1TVsbm2rXTBCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3 NkFEMDJFQzAeFw0yNTA0MjAwNzU2MTNaFw0yNjA0MTkwODAxMTNaMDMxMTAvBgNV BAMTKDU0NEZEOTdFRTAwMjg1QkY4NDg0ODkzNUIzMTkxMUYwRjg1N0M0MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtKzMklKiYdTbAwuccfXkD1LAB 8cgqz3ZMCl7SXya/qwiQanO34u86oWviLttgjJPlQx9qlwSW9R5hRcnBzTt9NdJf JFsPrwOabOumE4rije/4sbTfboWryIDA3PxhJ2paD3LrIc6wRYEZHKOFo/nfJtZq O+5bTim9v34WELC9edaYDQsQDX8g1FgpYF8+HWAFGKbrjyWv+gT3qlsygSHa7WUv +g68oV/PlRLljg789BeSF+rygXGTaN8/3MkqvWJ/jepnv9XcsXqI33lXe7WtqN6l IkA8iE7CDNy7CBtk2I8Cv2YlYxRgZ8I9DBQqRdZkeKUgmMZ1nzQts8SpNK2BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVE/ZfuAChb+EhIk1sxkR8PhXxDAwHwYDVR0j BBgwFoAUxFNjDxq+X/mS+UinXbRYd3atAuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzQwOTRkMi1lMThkLTQ4NDAtODRmYS1jNTc1N2FmNTgwZjEvMC9DNDUzNjMwRjFB QkU1RkY5OTJGOTQ4QTc1REI0NTg3Nzc2QUQwMkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3NkFE MDJFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQyLWUxOGQtNDg0MC04 NGZhLWM1NzU3YWY1ODBmMS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRTQMA0GCSqG SIb3DQEBCwUAA4IBAQDC83HcHjyDBrXI8qcO7xc0gndaEYL8dvBeEaIG1hpOLXHp sM1JKYPRw6qiw/uizLjvryK6pgScQH92l3Rr9UleTjNZ7RMzM2J9uPP+zdWK4i1O VQBK1oEJtIkGtkYUFXMP+CGnjONIDaZlXoUEtSZnbuT2KLF8f0qxatRCz4PDRfBQ GBDtU/ubvLrqaq6xIcCydtKiHhkpbL38WlrYjWB2RRTp7V9zksXed1Y01qwNB+HX BlC6Fv6cYwO4MfAa3IjSQn35n8aqGhPqa0AWD4jox6p1201k+OhFFNeaKnE0NGSq HQJ+suFJov9dB4JeBvyVWqVIVXHMiYHnRx9ugKzr -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:24 2025 by rpki-client on console.sobornost.net