$ rpki-client -vvf repo-rpki.idnic.net/repo/ea143a19-217a-49ef-8cb1-593012d2b759/0/3136302e32352e34362e302f32332d3233203d3e20313533303539.roa File: 3136302e32352e34362e302f32332d3233203d3e20313533303539.roa (raw, json) Hash identifier: HyQIrSfaVLasp8fH2cuEU5XU64FY/TlMBq7lyZFmW5w= Subject key identifier: 8C:27:B9:27:BC:33:99:53:30:8C:19:C2:7A:B5:61:94:4D:EE:53:D3 Certificate issuer: /CN=C69451771D2C519C2269EA17115B3E600E9CF809 Certificate serial: 0E3EB5FA48A96D26F400D9C155C0F5A9497C534C Authority key identifier: C6:94:51:77:1D:2C:51:9C:22:69:EA:17:11:5B:3E:60:0E:9C:F8:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C69451771D2C519C2269EA17115B3E600E9CF809.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea143a19-217a-49ef-8cb1-593012d2b759/0/3136302e32352e34362e302f32332d3233203d3e20313533303539.roa Signing time: Mon 20 Jan 2025 04:53:30 +0000 ROA not before: Mon 20 Jan 2025 04:48:30 +0000 ROA not after: Mon 19 Jan 2026 04:53:30 +0000 asID: 153059 IP address blocks: 160.25.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea143a19-217a-49ef-8cb1-593012d2b759/0/C69451771D2C519C2269EA17115B3E600E9CF809.crl rsync://repo-rpki.idnic.net/repo/ea143a19-217a-49ef-8cb1-593012d2b759/0/C69451771D2C519C2269EA17115B3E600E9CF809.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C69451771D2C519C2269EA17115B3E600E9CF809.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 18:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3e:b5:fa:48:a9:6d:26:f4:00:d9:c1:55:c0:f5:a9:49:7c:53:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69451771D2C519C2269EA17115B3E600E9CF809 Validity Not Before: Jan 20 04:48:30 2025 GMT Not After : Jan 19 04:53:30 2026 GMT Subject: CN=8C27B927BC339953308C19C27AB561944DEE53D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:29:22:69:21:07:1d:f5:01:48:1e:32:fc:9a: c9:8b:8d:55:d7:72:0c:6e:5e:56:da:97:e7:03:80: 0d:48:ce:09:06:23:c1:54:fb:23:b2:05:4c:5b:70: 79:c4:ac:6c:3e:03:d3:46:95:03:68:37:86:e0:a3: 0d:9e:76:f2:2e:86:9e:50:34:fb:48:3f:9b:85:8c: 84:4d:b8:ee:67:8e:5a:1a:ae:13:cb:0d:43:04:fd: 14:00:74:08:32:1d:4d:77:0b:8c:fe:e4:f3:f9:59: f6:80:26:ad:90:09:43:99:81:e6:73:a2:d3:01:cb: 87:aa:72:f1:fd:c2:85:48:20:dd:82:75:ac:1f:74: 8a:84:fe:1c:a0:b0:fb:3a:fd:08:be:cc:9c:cb:ee: 63:d9:cd:b2:f4:20:d6:06:b1:ab:62:a9:03:f8:6c: f0:50:1b:44:a4:b9:d6:5c:c6:d2:ef:46:fe:d4:b9: 89:8c:87:36:dc:7e:c1:0d:05:37:06:7b:05:c6:2e: 05:38:90:b0:7c:17:c5:65:fa:9a:94:f3:4a:08:b9: ee:d2:fc:52:04:ac:1d:b8:59:e6:3a:39:9f:89:60: 5f:75:35:57:61:81:aa:40:4f:e8:3c:cd:b1:f9:11: 83:fc:4d:ac:2f:78:b1:4a:87:08:16:dd:12:bf:24: d2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:27:B9:27:BC:33:99:53:30:8C:19:C2:7A:B5:61:94:4D:EE:53:D3 X509v3 Authority Key Identifier: keyid:C6:94:51:77:1D:2C:51:9C:22:69:EA:17:11:5B:3E:60:0E:9C:F8:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea143a19-217a-49ef-8cb1-593012d2b759/0/C69451771D2C519C2269EA17115B3E600E9CF809.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C69451771D2C519C2269EA17115B3E600E9CF809.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea143a19-217a-49ef-8cb1-593012d2b759/0/3136302e32352e34362e302f32332d3233203d3e20313533303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.46.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:86:6f:d0:b5:71:bb:d3:d4:02:94:62:e1:ba:f6:0c:3c:c6: 3c:fe:ec:5c:2c:cc:16:67:55:ee:a5:fe:5c:e2:62:07:8e:a6: 4a:12:f6:ad:d1:b0:25:e7:5f:c5:da:36:4e:33:ce:a5:cf:f5: eb:a7:b0:25:ce:df:03:80:73:ec:87:85:63:17:35:e8:d5:5b: da:e7:12:a8:7b:77:ab:20:1a:c8:1a:80:08:22:6a:e5:ce:77: 2e:b9:eb:a6:5b:22:fa:b3:95:0d:6b:93:ab:8f:93:c9:75:be: bb:d6:d9:cd:df:4e:d1:0a:8d:63:86:1e:ed:cb:ee:87:19:91: 43:42:55:d2:7f:d5:9a:a5:0b:b7:c0:9c:77:cf:26:3b:9b:61: e7:57:0f:11:79:08:a0:8f:9d:c5:d0:88:35:88:22:77:f3:a3: 54:f7:dd:64:48:a7:7e:da:62:bb:8b:f6:5a:a2:09:df:ac:19: 5f:25:c4:29:56:e9:9e:39:36:d0:0e:1d:f5:b6:51:ad:13:43: 42:d0:9b:d6:02:28:34:49:85:fd:09:c9:43:27:11:4a:a1:12: 0c:05:24:5e:19:86:5c:c5:c9:0d:3b:b9:a6:53:3c:d1:71:15: f9:01:88:3c:4d:dd:a4:fd:10:a1:94:9c:5c:ab:a9:19:8a:a7: 17:86:08:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDj61+kipbSb0ANnBVcD1qUl8U0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5NDUxNzcxRDJDNTE5QzIyNjlFQTE3MTE1QjNFNjAw RTlDRjgwOTAeFw0yNTAxMjAwNDQ4MzBaFw0yNjAxMTkwNDUzMzBaMDMxMTAvBgNV BAMTKDhDMjdCOTI3QkMzMzk5NTMzMDhDMTlDMjdBQjU2MTk0NERFRTUzRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTKSJpIQcd9QFIHjL8msmLjVXX cgxuXlbal+cDgA1IzgkGI8FU+yOyBUxbcHnErGw+A9NGlQNoN4bgow2edvIuhp5Q NPtIP5uFjIRNuO5njloarhPLDUME/RQAdAgyHU13C4z+5PP5WfaAJq2QCUOZgeZz otMBy4eqcvH9woVIIN2CdawfdIqE/hygsPs6/Qi+zJzL7mPZzbL0INYGsatiqQP4 bPBQG0SkudZcxtLvRv7UuYmMhzbcfsENBTcGewXGLgU4kLB8F8Vl+pqU80oIue7S /FIErB24WeY6OZ+JYF91NVdhgapAT+g8zbH5EYP8TawveLFKhwgW3RK/JNIHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjCe5J7wzmVMwjBnCerVhlE3uU9MwHwYDVR0j BBgwFoAUxpRRdx0sUZwiaeoXEVs+YA6c+AkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTE0M2ExOS0yMTdhLTQ5ZWYtOGNiMS01OTMwMTJkMmI3NTkvMC9DNjk0NTE3NzFE MkM1MTlDMjI2OUVBMTcxMTVCM0U2MDBFOUNGODA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzY5NDUxNzcxRDJDNTE5QzIyNjlFQTE3MTE1QjNFNjAwRTlD RjgwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhMTQzYTE5LTIxN2EtNDllZi04 Y2IxLTU5MzAxMmQyYjc1OS8wLzMxMzYzMDJlMzIzNTJlMzQzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMzMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZLjANBgkqhkiG 9w0BAQsFAAOCAQEAfoZv0LVxu9PUApRi4br2DDzGPP7sXCzMFmdV7qX+XOJiB46m ShL2rdGwJedfxdo2TjPOpc/166ewJc7fA4Bz7IeFYxc16NVb2ucSqHt3qyAayBqA CCJq5c53Lrnrplsi+rOVDWuTq4+TyXW+u9bZzd9O0QqNY4Ye7cvuhxmRQ0JV0n/V mqULt8Ccd88mO5th51cPEXkIoI+dxdCINYgid/OjVPfdZEinftpiu4v2WqIJ36wZ XyXEKVbpnjk20A4d9bZRrRNDQtCb1gIoNEmF/QnJQycRSqESDAUkXhmGXMXJDTu5 plM80XEV+QGIPE3dpP0QoZScXKupGYqnF4YIig== -----END CERTIFICATE-----Generated at Thu Apr 24 04:31:50 2025 by rpki-client on console.sobornost.net