$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS137346.roa File: AS137346.roa (raw, json) Hash identifier: tOblgROOASh7HlVYO/bKHw+TZ313wDr+G5Xa7VoS5U8= Subject key identifier: 6F:79:C8:91:72:95:FE:37:96:B0:0A:65:5C:9E:A9:7F:29:BF:F7:A4 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 384F9CB7BC474EDC16F9B47DCB9D4205FB37064D Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS137346.roa Signing time: Fri 11 Apr 2025 04:13:47 +0000 ROA not before: Fri 11 Apr 2025 04:08:47 +0000 ROA not after: Fri 10 Apr 2026 04:13:47 +0000 asID: 137346 IP address blocks: 115.178.125.0/24 maxlen: 24 115.178.126.0/24 maxlen: 24 115.178.127.0/24 maxlen: 24 116.66.205.0/24 maxlen: 24 182.23.171.0/24 maxlen: 24 202.87.187.0/24 maxlen: 24 223.27.147.0/24 maxlen: 24 223.27.155.0/24 maxlen: 24 2402:3700::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4f:9c:b7:bc:47:4e:dc:16:f9:b4:7d:cb:9d:42:05:fb:37:06:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Apr 11 04:08:47 2025 GMT Not After : Apr 10 04:13:47 2026 GMT Subject: CN=6F79C8917295FE3796B00A655C9EA97F29BFF7A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b2:2c:c0:ef:41:cd:b3:23:f1:8a:70:4d:2b: 60:f2:49:f5:2b:a0:58:ab:1e:ea:a0:ca:0b:d1:cf: 22:95:61:9e:32:bf:f2:6a:31:d0:88:cc:49:11:e1: 9f:2a:70:c2:85:fe:b0:89:7f:6d:86:f1:51:83:d2: 15:c6:b7:5f:25:0e:e7:1c:91:42:6a:28:da:72:66: 5f:21:f7:b8:b8:f1:d2:5e:03:f4:66:08:9c:51:37: 5f:08:98:cf:07:66:2a:03:5b:74:81:f7:2e:a4:99: 37:c9:53:1a:df:9e:47:4a:b8:24:14:d7:62:0a:1f: c7:36:26:83:47:eb:d3:12:b6:da:af:e8:da:03:23: ff:d7:32:c5:1e:45:d0:05:e6:9b:d1:69:e0:80:56: 63:03:62:8f:99:df:a7:8f:e5:84:87:d6:3d:a4:5e: 62:92:47:3d:d7:e5:d7:37:37:4c:15:84:1d:26:50: 6b:79:cd:aa:2c:6d:5f:ac:50:ad:15:89:55:b5:0a: 95:73:3a:4f:82:66:e7:96:9b:3f:4a:40:db:2a:64: be:f2:9c:05:52:7c:6e:80:0a:a7:3a:43:af:f9:62: d0:80:83:72:33:60:19:c9:dd:85:90:ba:b6:83:e5: 6e:cc:d4:ad:d5:95:3a:b0:71:2e:97:66:62:7d:2e: 55:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:79:C8:91:72:95:FE:37:96:B0:0A:65:5C:9E:A9:7F:29:BF:F7:A4 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS137346.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.125.0-115.178.127.255 116.66.205.0/24 182.23.171.0/24 202.87.187.0/24 223.27.147.0/24 223.27.155.0/24 IPv6: 2402:3700::/32 Signature Algorithm: sha256WithRSAEncryption 05:3e:d9:41:62:c2:2d:67:7b:73:fa:c7:07:48:46:e3:d7:48: 29:50:5d:1a:51:fa:43:21:5c:63:cc:98:de:df:0e:ea:a6:64: 01:38:1b:18:7d:d1:b2:00:06:14:36:7f:1b:1b:aa:ec:08:c8: af:46:76:09:d5:b9:65:52:08:4d:a3:7e:44:49:33:1a:81:29: d9:35:c9:84:e5:dd:5f:f4:0d:93:00:e5:cc:ac:ff:f3:68:df: f7:20:d2:d7:53:84:2c:89:a1:84:55:74:5f:d3:eb:0f:a8:5e: a1:5b:c2:76:2c:f7:d7:ba:ed:36:57:f3:7b:cc:cf:d6:d6:d5: 62:d0:d7:d5:c4:81:61:65:ee:f3:fe:27:91:80:91:53:ba:d2: 1a:5d:78:be:ff:9b:58:c0:4a:c9:3f:4c:9a:70:0c:03:b6:fe: 7a:e5:3c:43:76:63:54:64:f0:03:1a:87:b8:68:43:0e:5e:98: 01:bf:3c:e8:72:36:8b:79:e2:54:6b:b7:6e:27:59:c6:12:35: b3:3c:be:55:89:f4:ef:27:30:bb:2c:fe:b0:6a:8d:72:81:54: b8:aa:83:89:5e:eb:3d:f9:af:ac:83:e6:7e:b0:10:c6:29:ed: 46:0a:76:9b:bf:d9:5b:ba:f6:a2:17:35:a5:87:a9:07:9d:a5: 88:55:e2:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOE+ct7xHTtwW+bR9y51CBfs3Bk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTA0MTEwNDA4NDdaFw0yNjA0MTAwNDEzNDdaMDMxMTAvBgNV BAMTKDZGNzlDODkxNzI5NUZFMzc5NkIwMEE2NTVDOUVBOTdGMjlCRkY3QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNsizA70HNsyPxinBNK2DySfUr oFirHuqgygvRzyKVYZ4yv/JqMdCIzEkR4Z8qcMKF/rCJf22G8VGD0hXGt18lDucc kUJqKNpyZl8h97i48dJeA/RmCJxRN18ImM8HZioDW3SB9y6kmTfJUxrfnkdKuCQU 12IKH8c2JoNH69MSttqv6NoDI//XMsUeRdAF5pvRaeCAVmMDYo+Z36eP5YSH1j2k XmKSRz3X5dc3N0wVhB0mUGt5zaosbV+sUK0ViVW1CpVzOk+CZueWmz9KQNsqZL7y nAVSfG6ACqc6Q6/5YtCAg3IzYBnJ3YWQuraD5W7M1K3VlTqwcS6XZmJ9LlUNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb3nIkXKV/jeWsAplXJ6pfym/96QwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzEzNzM0Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjBUBggrBgEFBQcBBwEB/wRFMEMwMgQCAAEwLDAMAwQAc7J9AwQHc7IAAwQA dELNAwQAtherAwQAyle7AwQA3xuTAwQA3xubMA0EAgACMAcDBQAkAjcAMA0GCSqG SIb3DQEBCwUAA4IBAQAFPtlBYsItZ3tz+scHSEbj10gpUF0aUfpDIVxjzJje3w7q pmQBOBsYfdGyAAYUNn8bG6rsCMivRnYJ1bllUghNo35ESTMagSnZNcmE5d1f9A2T AOXMrP/zaN/3INLXU4QsiaGEVXRf0+sPqF6hW8J2LPfXuu02V/N7zM/W1tVi0NfV xIFhZe7z/ieRgJFTutIaXXi+/5tYwErJP0yacAwDtv565TxDdmNUZPADGoe4aEMO XpgBvzzocjaLeeJUa7duJ1nGEjWzPL5VifTvJzC7LP6wao1ygVS4qoOJXus9+a+s g+Z+sBDGKe1GCnabv9lbuvaiFzWlh6kHnaWIVeJ9 -----END CERTIFICATE-----Generated at Fri Apr 25 00:06:29 2025 by rpki-client on console.sobornost.net