$ rpki-client -vvf repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa File: 3135372e36362e33382e302f32332d3234203d3e203633383635.roa (raw, json) Hash identifier: ul03DJPa84uV+wn7V8w/eIH5fK3BBIC1WxDMCBsM/QQ= Subject key identifier: 0A:52:D4:76:CB:54:1F:DB:25:FC:81:EC:1B:D1:37:46:9C:11:29:42 Certificate issuer: /CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Certificate serial: 0FADDD1969CADDA1BBB44CAEBD10707581038D22 Authority key identifier: C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa Signing time: Tue 15 Apr 2025 10:01:45 +0000 ROA not before: Tue 15 Apr 2025 09:56:45 +0000 ROA not after: Tue 14 Apr 2026 10:01:45 +0000 asID: 63865 IP address blocks: 157.66.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.crl rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ad:dd:19:69:ca:dd:a1:bb:b4:4c:ae:bd:10:70:75:81:03:8d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Validity Not Before: Apr 15 09:56:45 2025 GMT Not After : Apr 14 10:01:45 2026 GMT Subject: CN=0A52D476CB541FDB25FC81EC1BD137469C112942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:76:fd:ec:bd:6f:fc:24:95:e8:59:9a:18:1c: 0c:18:d0:fa:47:ce:8e:9e:82:f5:51:67:c1:c6:df: 12:dc:1c:13:dc:70:18:1a:5e:25:67:e1:32:48:e3: b8:ce:21:3d:d4:73:2f:e8:13:a1:33:50:ba:b4:43: 14:21:67:b5:2d:f5:76:38:cf:f1:dc:f2:8a:ed:ca: 15:d8:bc:83:81:76:69:de:c5:4d:d7:9f:dd:5d:e5: 26:8b:b9:26:bf:30:fd:9f:aa:20:ca:1f:be:d0:01: 17:45:65:4d:5f:90:83:56:fd:cb:83:eb:c4:f3:2b: 20:ee:7f:c5:21:a6:f1:ed:b3:11:a7:28:78:0c:08: 6d:8e:9f:a6:21:45:e6:9e:1e:a9:8b:b7:0e:f1:9d: af:4c:71:d9:00:a1:3e:07:2e:fb:bf:75:27:ab:2b: 10:61:77:82:f0:35:51:d9:5e:3b:de:fd:6d:a4:1c: 25:66:98:94:35:1f:39:8f:af:63:ea:c9:ea:7c:e6: 50:8d:5d:60:9a:69:bd:35:58:e7:f5:d7:4b:9d:b8: eb:3c:91:a6:33:c5:92:d4:74:1a:ab:4e:ef:bb:45: a0:8d:0a:5e:11:52:e7:1c:2d:62:7e:8b:fd:84:6e: 48:22:7d:09:1d:56:3f:3e:a6:69:2b:7a:fe:03:af: 42:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:52:D4:76:CB:54:1F:DB:25:FC:81:EC:1B:D1:37:46:9C:11:29:42 X509v3 Authority Key Identifier: keyid:C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/3135372e36362e33382e302f32332d3234203d3e203633383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.38.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:bd:20:60:5b:c6:1a:e7:d2:df:2b:3a:c8:ec:76:e9:e6:18: 0a:e7:22:7b:9b:d9:e5:6e:b4:24:72:19:e7:cd:3b:65:d1:36: 0e:30:96:b2:90:fd:58:fb:16:d7:95:a2:4a:9f:f5:2d:cf:32: 81:ec:85:16:0e:bd:6a:e9:be:2c:d6:35:30:b2:a9:56:e9:85: af:37:29:24:ab:0a:7a:b8:74:93:60:de:cf:fe:03:7b:51:15: 7c:a9:93:ae:51:4c:b1:47:4f:c9:af:5b:fe:5d:38:b9:a6:8f: 10:26:b9:14:78:8c:4c:4c:74:f9:29:67:76:c9:62:e8:eb:38: 7b:1c:e5:25:f8:93:c6:9a:38:56:9d:9a:c0:aa:1e:57:fc:10: ea:36:1d:81:5b:ea:29:97:52:4d:26:af:61:0e:56:70:1a:2e: 95:f7:17:0a:27:2a:4f:33:85:a5:2a:78:6b:15:ae:40:10:43: 70:0a:fd:31:ba:b3:4f:b3:8f:22:54:04:69:8f:0b:3c:75:5f: d1:54:95:22:3c:1c:78:4f:8e:5d:e3:ce:9e:e8:19:2f:63:ce: 8a:0a:82:a4:d3:27:b7:85:59:b7:e1:1f:77:8f:37:9f:fc:10: 9f:ba:fd:66:8c:c4:67:58:5f:ac:dc:6c:b1:85:e4:1f:5a:c2: 92:6b:b6:93 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUD63dGWnK3aG7tEyuvRBwdYEDjSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzRGQ0RDNDI0QzVCNEIyQTU2M0YwRDA3MjU3M0E1NDky QUNGOEUzNjAeFw0yNTA0MTUwOTU2NDVaFw0yNjA0MTQxMDAxNDVaMDMxMTAvBgNV BAMTKDBBNTJENDc2Q0I1NDFGREIyNUZDODFFQzFCRDEzNzQ2OUMxMTI5NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDldv3svW/8JJXoWZoYHAwY0PpH zo6egvVRZ8HG3xLcHBPccBgaXiVn4TJI47jOIT3Ucy/oE6EzULq0QxQhZ7Ut9XY4 z/Hc8ortyhXYvIOBdmnexU3Xn91d5SaLuSa/MP2fqiDKH77QARdFZU1fkINW/cuD 68TzKyDuf8UhpvHtsxGnKHgMCG2On6YhReaeHqmLtw7xna9McdkAoT4HLvu/dSer KxBhd4LwNVHZXjve/W2kHCVmmJQ1HzmPr2Pqyep85lCNXWCaab01WOf110uduOs8 kaYzxZLUdBqrTu+7RaCNCl4RUuccLWJ+i/2EbkgifQkdVj8+pmkrev4Dr0IDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUClLUdstUH9sl/IHsG9E3RpwRKUIwHwYDVR0j BBgwFoAUxPzcQkxbSypWPw0HJXOlSSrPjjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWIyNjdhNC01MDMwLTRhNGYtYmI4Ni03MWZkMjMwZjUzZDEvMC9DNEZDREM0MjRD NUI0QjJBNTYzRjBEMDcyNTczQTU0OTJBQ0Y4RTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzRGQ0RDNDI0QzVCNEIyQTU2M0YwRDA3MjU3M0E1NDkyQUNG OEUzNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYjI2N2E0LTUwMzAtNGE0Zi1i Yjg2LTcxZmQyMzBmNTNkMS8wLzMxMzUzNzJlMzYzNjJlMzMzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGdQiYwDQYJKoZIhvcN AQELBQADggEBAJu9IGBbxhrn0t8rOsjsdunmGArnInub2eVutCRyGefNO2XRNg4w lrKQ/Vj7FteVokqf9S3PMoHshRYOvWrpvizWNTCyqVbpha83KSSrCnq4dJNg3s/+ A3tRFXypk65RTLFHT8mvW/5dOLmmjxAmuRR4jExMdPkpZ3bJYujrOHsc5SX4k8aa OFadmsCqHlf8EOo2HYFb6imXUk0mr2EOVnAaLpX3FwonKk8zhaUqeGsVrkAQQ3AK /TG6s0+zjyJUBGmPCzx1X9FUlSI8HHhPjl3jzp7oGS9jzooKgqTTJ7eFWbfhH3eP N5/8EJ+6/WaMxGdYX6zcbLGF5B9awpJrtpM= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:25 2025 by rpki-client on console.sobornost.net