$ rpki-client -vvf repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa File: 3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa (raw, json) Hash identifier: 5QnTSlvCk726GieVYJxHVbjFxqMGOnNRBgYZOV3yvc0= Subject key identifier: E6:B4:8C:D5:69:62:BA:34:AD:CA:87:4D:28:C8:BB:2D:BC:39:42:5E Certificate issuer: /CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Certificate serial: 4D5C3AF694EF98143CF4241F8BBE64904FB6455C Authority key identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa Signing time: Sun 20 Apr 2025 08:01:13 +0000 ROA not before: Sun 20 Apr 2025 07:56:13 +0000 ROA not after: Sun 19 Apr 2026 08:01:13 +0000 asID: 152416 IP address blocks: 157.20.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:5c:3a:f6:94:ef:98:14:3c:f4:24:1f:8b:be:64:90:4f:b6:45:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Validity Not Before: Apr 20 07:56:13 2025 GMT Not After : Apr 19 08:01:13 2026 GMT Subject: CN=E6B48CD56962BA34ADCA874D28C8BB2DBC39425E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:d7:fc:14:07:1b:65:29:64:29:cc:c1:66: f9:b9:58:ae:93:1d:6b:c3:ed:48:7b:87:e2:df:45: 95:fa:5b:f5:0a:65:2c:b9:88:22:6d:e7:09:08:9d: e3:dd:ce:15:18:cd:f2:70:93:52:f9:db:e8:85:8b: c6:e8:87:c1:d8:7c:39:d8:4c:3e:53:52:13:25:7d: 9a:96:a6:c6:72:ab:6f:a2:4c:60:ad:cb:1f:0b:93: 1e:1a:e0:87:14:15:06:c9:8d:e8:59:ab:b0:d8:2a: f6:6f:5b:8f:25:c1:23:3e:86:88:f4:07:68:bd:30: 0f:38:b8:1a:97:d6:5b:c2:a8:94:21:98:f5:a8:fd: a7:bb:0c:09:b0:cc:70:a7:8e:92:e5:c0:b3:02:08: 11:ad:c2:a6:ca:6f:5d:3c:2d:46:d7:e9:80:6a:1c: cd:33:6d:97:aa:91:0e:a3:85:0a:a6:11:b4:ef:90: bc:4c:1d:f1:01:82:86:14:ec:3c:68:e1:24:1c:dc: a1:5d:e6:0c:3b:15:07:f8:ec:a3:1e:3d:83:d8:4f: ac:01:c3:01:e5:91:ad:a0:94:7e:39:c9:29:71:e0: 79:5d:79:bc:a1:8e:ad:26:55:cb:5e:c0:3f:8c:1d: 64:b4:89:d3:77:02:b4:0d:04:5a:8a:db:39:a9:c8: 71:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B4:8C:D5:69:62:BA:34:AD:CA:87:4D:28:C8:BB:2D:BC:39:42:5E X509v3 Authority Key Identifier: keyid:C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/3135372e32302e3230392e302f32342d3234203d3e20313532343136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.209.0/24 Signature Algorithm: sha256WithRSAEncryption a0:e4:88:04:53:bb:4a:14:0b:46:4f:ef:c0:e2:56:95:53:86: 5f:03:f7:5c:54:02:dc:10:8c:a5:3d:07:5d:59:97:f3:7f:44: 03:aa:fb:7b:4e:b0:83:b8:77:31:e0:93:c2:67:55:8e:e9:c3: d4:e6:93:60:0f:16:ae:3d:cb:b5:50:99:0e:5a:64:47:aa:e3: ea:6e:40:23:dd:a0:3c:ff:cb:a4:9a:3b:ff:46:58:61:c1:f9: 5c:47:78:d9:a4:a2:13:07:1c:b4:38:91:17:1d:27:cb:9c:9d: bb:c1:4e:ba:c6:0c:cf:24:07:ea:c5:6c:34:f5:1e:2f:b5:e2: 08:c4:f0:54:54:56:97:5b:f0:26:ee:13:f8:fc:76:76:05:a8: b9:b3:a1:82:78:d0:dc:77:ad:d8:40:91:58:51:b3:04:4f:5b: b7:c2:36:52:85:40:dc:80:c6:72:29:fb:9e:7a:fb:b1:7c:81: be:07:1d:ba:ee:a7:80:e3:8d:2d:52:bf:18:59:73:3c:54:a4: e6:d8:81:b1:aa:9a:9c:13:62:f3:d0:9f:b4:02:c9:2e:0a:83: c5:0b:f2:c4:25:c7:cd:41:27:fd:fe:f7:4f:cd:da:47:7f:40: d3:af:93:aa:18:8b:26:a8:00:79:3c:fa:cc:6f:af:6e:d6:09: bf:a0:97:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTVw69pTvmBQ89CQfi75kkE+2RVwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3 NkFEMDJFQzAeFw0yNTA0MjAwNzU2MTNaFw0yNjA0MTkwODAxMTNaMDMxMTAvBgNV BAMTKEU2QjQ4Q0Q1Njk2MkJBMzRBRENBODc0RDI4QzhCQjJEQkMzOTQyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40Nf8FAcbZSlkKczBZvm5WK6T HWvD7Uh7h+LfRZX6W/UKZSy5iCJt5wkInePdzhUYzfJwk1L52+iFi8boh8HYfDnY TD5TUhMlfZqWpsZyq2+iTGCtyx8Lkx4a4IcUFQbJjehZq7DYKvZvW48lwSM+hoj0 B2i9MA84uBqX1lvCqJQhmPWo/ae7DAmwzHCnjpLlwLMCCBGtwqbKb108LUbX6YBq HM0zbZeqkQ6jhQqmEbTvkLxMHfEBgoYU7Dxo4SQc3KFd5gw7FQf47KMePYPYT6wB wwHlka2glH45ySlx4Hldebyhjq0mVctewD+MHWS0idN3ArQNBFqK2zmpyHFfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5rSM1WliujStyodNKMi7Lbw5Ql4wHwYDVR0j BBgwFoAUxFNjDxq+X/mS+UinXbRYd3atAuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YzQwOTRkMi1lMThkLTQ4NDAtODRmYS1jNTc1N2FmNTgwZjEvMC9DNDUzNjMwRjFB QkU1RkY5OTJGOTQ4QTc1REI0NTg3Nzc2QUQwMkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzQ1MzYzMEYxQUJFNUZGOTkyRjk0OEE3NURCNDU4Nzc3NkFE MDJFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQyLWUxOGQtNDg0MC04 NGZhLWM1NzU3YWY1ODBmMS8wLzMxMzUzNzJlMzIzMDJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTRMA0GCSqG SIb3DQEBCwUAA4IBAQCg5IgEU7tKFAtGT+/A4laVU4ZfA/dcVALcEIylPQddWZfz f0QDqvt7TrCDuHcx4JPCZ1WO6cPU5pNgDxauPcu1UJkOWmRHquPqbkAj3aA8/8uk mjv/RlhhwflcR3jZpKITBxy0OJEXHSfLnJ27wU66xgzPJAfqxWw09R4vteIIxPBU VFaXW/Am7hP4/HZ2Bai5s6GCeNDcd63YQJFYUbMET1u3wjZShUDcgMZyKfueevux fIG+Bx267qeA440tUr8YWXM8VKTm2IGxqpqcE2Lz0J+0AskuCoPFC/LEJcfNQSf9 /vdPzdpHf0DTr5OqGIsmqAB5PPrMb69u1gm/oJf3 -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:24 2025 by rpki-client on console.sobornost.net