$ rpki-client -vvf repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e20313532373434.roa File: 3135372e36362e3134322e302f32342d3234203d3e20313532373434.roa (raw, json) Hash identifier: zfFIkrI79y1jMzLo8UOIhnSZ5RPxNVXsh++JmRaaiiI= Subject key identifier: E5:C5:62:93:33:07:EE:09:A8:17:98:6A:E7:6D:A0:DE:A1:A1:AF:B0 Certificate issuer: /CN=9C0CD04CE56225A0085EF8AB28640C3808768B42 Certificate serial: 25E70352E6510E918FA98AAD2B7797E05AD3C06B Authority key identifier: 9C:0C:D0:4C:E5:62:25:A0:08:5E:F8:AB:28:64:0C:38:08:76:8B:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e20313532373434.roa Signing time: Fri 18 Apr 2025 17:00:00 +0000 ROA not before: Fri 18 Apr 2025 16:55:00 +0000 ROA not after: Fri 17 Apr 2026 17:00:00 +0000 asID: 152744 IP address blocks: 157.66.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.crl rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e7:03:52:e6:51:0e:91:8f:a9:8a:ad:2b:77:97:e0:5a:d3:c0:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C0CD04CE56225A0085EF8AB28640C3808768B42 Validity Not Before: Apr 18 16:55:00 2025 GMT Not After : Apr 17 17:00:00 2026 GMT Subject: CN=E5C562933307EE09A817986AE76DA0DEA1A1AFB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:99:de:f2:a3:29:17:5d:91:cf:94:19:50:9a: 9b:0d:6e:6f:e1:67:53:25:95:2b:a2:35:61:00:48: fc:d0:71:e7:60:23:1a:9d:bb:f3:e8:34:8f:35:4b: 3b:7c:e7:a5:4b:6d:11:30:3a:05:2a:1b:3b:f5:b7: 7c:6c:ac:e3:be:5f:66:8c:d0:75:88:9f:e3:5d:8b: c2:4e:e8:61:e2:12:96:ca:a2:0e:4b:a4:63:d7:18: d0:9d:59:c4:68:52:63:15:71:5a:ca:7c:10:1a:22: 4d:6d:96:9c:8e:85:9e:01:d6:ea:9d:d1:dd:51:7e: e8:b6:0f:37:06:60:a8:5f:2c:cc:ee:9d:80:50:bb: 85:5b:d4:8c:f0:0c:d0:40:36:8d:9e:79:86:08:ff: 36:96:4c:b6:0c:29:a4:4d:8e:5e:8c:8f:bc:49:f8: 65:35:aa:20:d6:dc:fd:c8:1e:ca:f1:78:be:ad:3a: fb:0f:ec:9a:69:5f:c1:79:06:dc:cb:94:dd:14:22: 92:3d:dc:d9:ab:73:92:ba:91:bb:d2:60:fd:85:35: 59:0f:c0:f0:80:12:da:e8:cb:f8:0c:8c:e9:d2:39: 4a:3a:b6:2b:20:3e:e7:f9:29:74:a5:e1:83:d0:13: 1f:63:6e:1e:8e:08:2d:2c:4b:d0:c3:95:cf:6e:2f: 0c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C5:62:93:33:07:EE:09:A8:17:98:6A:E7:6D:A0:DE:A1:A1:AF:B0 X509v3 Authority Key Identifier: keyid:9C:0C:D0:4C:E5:62:25:A0:08:5E:F8:AB:28:64:0C:38:08:76:8B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/9C0CD04CE56225A0085EF8AB28640C3808768B42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9C0CD04CE56225A0085EF8AB28640C3808768B42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e6311f89-38fd-4424-8a96-fa2172d87d6f/0/3135372e36362e3134322e302f32342d3234203d3e20313532373434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.142.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:78:c9:0b:1f:f3:92:13:5e:a3:db:1d:7d:ec:ca:70:d9:6a: 93:71:23:ab:9e:77:91:b5:22:75:8d:25:eb:3b:c2:09:a5:5a: 57:e9:a2:6f:fd:8f:d9:13:ef:f9:8a:51:d2:b6:9d:4f:61:ff: 06:33:0e:8a:71:54:7a:79:eb:2b:f6:f6:80:56:e6:f0:c1:23: 4f:f8:a1:40:9d:94:25:b0:78:c0:9c:70:bd:29:ff:60:5f:0c: 4e:c7:28:3f:19:f3:96:8e:e2:d9:53:9b:db:52:1c:1a:84:5e: bc:05:a1:fb:00:79:2d:f2:14:ca:6e:64:0b:d0:cd:b9:99:a0: 9d:53:c7:e1:30:92:2c:df:9a:9c:d7:4b:31:71:2a:19:a3:42: 34:87:f2:a1:83:6b:d6:15:53:f4:cc:84:b4:e1:5e:e7:c0:14: 2a:46:0c:53:5e:06:d4:3d:b7:cd:2c:13:f0:b4:e0:ad:d3:4c: 0b:54:b5:e9:13:90:d4:4a:8e:92:c0:f4:8d:96:f7:c4:32:0c: 0e:96:81:6b:c9:48:25:0a:62:08:c5:97:bd:14:a9:91:eb:af: f2:16:9c:77:2a:1e:c7:36:5d:58:be:14:bc:3f:33:a2:95:b9: a8:4d:2e:54:f6:6a:42:ac:40:59:cd:61:a4:db:94:17:67:5a: 8f:82:d1:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJecDUuZRDpGPqYqtK3eX4FrTwGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUMwQ0QwNENFNTYyMjVBMDA4NUVGOEFCMjg2NDBDMzgw ODc2OEI0MjAeFw0yNTA0MTgxNjU1MDBaFw0yNjA0MTcxNzAwMDBaMDMxMTAvBgNV BAMTKEU1QzU2MjkzMzMwN0VFMDlBODE3OTg2QUU3NkRBMERFQTFBMUFGQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDomd7yoykXXZHPlBlQmpsNbm/h Z1MllSuiNWEASPzQcedgIxqdu/PoNI81Szt856VLbREwOgUqGzv1t3xsrOO+X2aM 0HWIn+Ndi8JO6GHiEpbKog5LpGPXGNCdWcRoUmMVcVrKfBAaIk1tlpyOhZ4B1uqd 0d1Rfui2DzcGYKhfLMzunYBQu4Vb1IzwDNBANo2eeYYI/zaWTLYMKaRNjl6Mj7xJ +GU1qiDW3P3IHsrxeL6tOvsP7JppX8F5BtzLlN0UIpI93Nmrc5K6kbvSYP2FNVkP wPCAEtroy/gMjOnSOUo6tisgPuf5KXSl4YPQEx9jbh6OCC0sS9DDlc9uLwy9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5cVikzMH7gmoF5hq522g3qGhr7AwHwYDVR0j BBgwFoAUnAzQTOViJaAIXvirKGQMOAh2i0IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjMxMWY4OS0zOGZkLTQ0MjQtOGE5Ni1mYTIxNzJkODdkNmYvMC85QzBDRDA0Q0U1 NjIyNUEwMDg1RUY4QUIyODY0MEMzODA4NzY4QjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUMwQ0QwNENFNTYyMjVBMDA4NUVGOEFCMjg2NDBDMzgwODc2 OEI0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2MzExZjg5LTM4ZmQtNDQyNC04 YTk2LWZhMjE3MmQ4N2Q2Zi8wLzMxMzUzNzJlMzYzNjJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKOMA0GCSqG SIb3DQEBCwUAA4IBAQCKeMkLH/OSE16j2x197Mpw2WqTcSOrnneRtSJ1jSXrO8IJ pVpX6aJv/Y/ZE+/5ilHStp1PYf8GMw6KcVR6eesr9vaAVubwwSNP+KFAnZQlsHjA nHC9Kf9gXwxOxyg/GfOWjuLZU5vbUhwahF68BaH7AHkt8hTKbmQL0M25maCdU8fh MJIs35qc10sxcSoZo0I0h/Khg2vWFVP0zIS04V7nwBQqRgxTXgbUPbfNLBPwtOCt 00wLVLXpE5DUSo6SwPSNlvfEMgwOloFryUglCmIIxZe9FKmR66/yFpx3Kh7HNl1Y vhS8PzOilbmoTS5U9mpCrEBZzWGk25QXZ1qPgtFK -----END CERTIFICATE-----Generated at Fri Apr 25 06:02:24 2025 by rpki-client on console.sobornost.net