$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS140421.roa File: AS140421.roa (raw, json) Hash identifier: RfoESpxBfC9xRwHZO2fU/8RUGYVevfom5f/XSg00ECU= Subject key identifier: 25:46:99:84:09:74:45:78:12:7B:08:14:D0:05:CB:C4:37:86:65:35 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 0C0B309C7D1D9882CA7452E028629A0432F68030 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS140421.roa Signing time: Fri 11 Apr 2025 04:09:01 +0000 ROA not before: Fri 11 Apr 2025 04:04:01 +0000 ROA not after: Fri 10 Apr 2026 04:09:01 +0000 asID: 140421 IP address blocks: 202.87.177.0/24 maxlen: 24 202.87.180.0/24 maxlen: 24 202.87.181.0/24 maxlen: 24 202.87.182.0/24 maxlen: 24 202.87.183.0/24 maxlen: 24 202.87.185.0/24 maxlen: 24 202.87.186.0/24 maxlen: 24 202.87.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:0b:30:9c:7d:1d:98:82:ca:74:52:e0:28:62:9a:04:32:f6:80:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Apr 11 04:04:01 2025 GMT Not After : Apr 10 04:09:01 2026 GMT Subject: CN=2546998409744578127B0814D005CBC437866535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:1d:b2:54:f8:db:c4:4c:78:fc:0f:23:c2: 57:76:cc:c3:0c:a1:a9:48:e0:20:52:c2:0f:47:ef: fd:b8:2e:b9:ba:75:e5:01:07:e7:9c:f5:f9:6d:0d: 1d:26:d0:97:b0:b2:71:60:ea:42:b6:93:b7:22:1c: 73:87:d3:e2:09:c1:f9:99:6e:7e:03:3e:f8:40:1b: 3b:8d:a4:cc:de:10:87:2c:ae:83:33:20:02:9d:8a: 63:4a:f2:69:97:d8:f7:e5:3a:57:85:1d:c4:7a:22: 9f:95:57:4a:4c:cb:d6:e3:ae:22:55:21:7c:a5:2a: 64:b7:84:0b:8e:20:83:4a:c3:00:d2:74:c3:cf:b2: a8:63:20:eb:db:e0:03:6e:67:94:bd:02:81:9b:c1: aa:0e:f9:c4:5e:4b:8f:19:20:74:14:77:46:67:bd: 64:46:3c:5f:04:78:d6:ad:be:af:8f:61:2f:df:4d: 01:87:89:e7:3f:d3:92:ab:df:de:5f:09:7d:49:02: d6:eb:b5:13:6c:e3:4a:56:f9:09:3e:d0:d6:2f:f0: c0:84:06:67:38:00:12:5c:c3:c5:15:e8:9c:fb:30: b2:e6:35:d6:b9:44:a8:aa:75:a2:ec:a4:01:81:2f: d8:c4:0c:4f:bf:5f:59:4e:00:7a:d3:bb:e4:0d:f0: f1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:46:99:84:09:74:45:78:12:7B:08:14:D0:05:CB:C4:37:86:65:35 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS140421.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.177.0/24 202.87.180.0/22 202.87.185.0-202.87.186.255 202.87.189.0/24 Signature Algorithm: sha256WithRSAEncryption 47:f4:74:b6:9b:ef:dc:33:4e:40:9a:7a:39:51:90:9f:4c:bc: d3:6a:c2:cb:e7:bd:bf:87:ef:02:e2:97:eb:50:9e:e8:d1:7c: 94:d2:d7:65:a3:31:a7:9f:79:9e:4f:04:5d:18:a2:01:a1:e3: 40:3e:a6:41:ef:16:e4:08:e0:79:31:a6:72:3f:1d:39:61:da: d2:a5:8d:4d:4f:bd:22:16:95:8e:05:37:fd:0b:30:d3:ba:91: 26:69:27:07:52:e6:d2:b9:db:1a:b8:05:f4:4c:9e:4c:b0:d1: d1:6e:4d:5c:2e:ff:91:9b:54:62:73:64:20:0e:30:f3:98:8f: 76:a5:04:63:23:48:9d:13:c3:ab:bd:cf:e2:06:fb:50:53:01: 2c:04:b0:4e:7c:d7:9f:93:12:eb:9d:ac:0b:1f:e2:c3:5e:ee: 7d:f8:46:7e:0a:c7:91:45:2c:49:c0:f6:c1:1b:08:7c:12:75: 9f:13:b5:eb:0a:4f:6b:41:7e:1a:98:44:e3:30:4c:6c:4c:a0: 34:07:e6:d1:dc:b3:ec:bf:e7:3d:7f:4a:65:b3:6d:93:f7:5b: 69:0d:25:93:89:6f:f0:7d:0e:f1:9f:eb:a6:f9:47:40:f3:12: 8b:67:fb:34:c7:e8:39:c4:31:6b:bf:89:32:23:a4:e6:02:cb: 2e:94:df:73 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIUDAswnH0dmILKdFLgKGKaBDL2gDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTA0MTEwNDA0MDFaFw0yNjA0MTAwNDA5MDFaMDMxMTAvBgNV BAMTKDI1NDY5OTg0MDk3NDQ1NzgxMjdCMDgxNEQwMDVDQkM0Mzc4NjY1MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDAh2yVPjbxEx4/A8jwld2zMMM oalI4CBSwg9H7/24Lrm6deUBB+ec9fltDR0m0JewsnFg6kK2k7ciHHOH0+IJwfmZ bn4DPvhAGzuNpMzeEIcsroMzIAKdimNK8mmX2PflOleFHcR6Ip+VV0pMy9bjriJV IXylKmS3hAuOIINKwwDSdMPPsqhjIOvb4ANuZ5S9AoGbwaoO+cReS48ZIHQUd0Zn vWRGPF8EeNatvq+PYS/fTQGHiec/05Kr395fCX1JAtbrtRNs40pW+Qk+0NYv8MCE Bmc4ABJcw8UV6Jz7MLLmNda5RKiqdaLspAGBL9jEDE+/X1lOAHrTu+QN8PEpAgMB AAGjggIZMIICFTAdBgNVHQ4EFgQUJUaZhAl0RXgSewgU0AXLxDeGZTUwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwcAYIKwYBBQUHAQsEZDBiMGAGCCsGAQUFBzALhlRyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzE0MDQyMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA5BggrBgEFBQcBBwEB/wQqMCgwJgQCAAEwIAMEAMpXsQMEAspXtDAMAwQA yle5AwQAyle6AwQAyle9MA0GCSqGSIb3DQEBCwUAA4IBAQBH9HS2m+/cM05Amno5 UZCfTLzTasLL572/h+8C4pfrUJ7o0XyU0tdlozGnn3meTwRdGKIBoeNAPqZB7xbk COB5MaZyPx05YdrSpY1NT70iFpWOBTf9CzDTupEmaScHUubSudsauAX0TJ5MsNHR bk1cLv+Rm1Ric2QgDjDzmI92pQRjI0idE8Orvc/iBvtQUwEsBLBOfNefkxLrnawL H+LDXu59+EZ+CseRRSxJwPbBGwh8EnWfE7XrCk9rQX4amETjMExsTKA0B+bR3LPs v+c9f0pls22T91tpDSWTiW/wfQ7xn+um+UdA8xKLZ/s0x+g5xDFrv4kyI6TmAssu lN9z -----END CERTIFICATE-----Generated at Fri Apr 25 00:06:29 2025 by rpki-client on console.sobornost.net