$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa File: 34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: GNr97+CgZOUFbCIDGfnRBjjUL8CMyp0MB4VIgO96YwM= Subject key identifier: A2:E0:EB:C8:42:DA:FF:1A:97:6F:88:14:83:7D:94:CD:F4:C8:8E:C6 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 54C3A0DDFE3CDAC015A0A60FBA13A4F4E7BC0B48 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:52 +0000 ROA not before: Mon 02 Jun 2025 00:57:52 +0000 ROA not after: Mon 01 Jun 2026 01:02:52 +0000 asID: 131717 IP address blocks: 45.118.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c3:a0:dd:fe:3c:da:c0:15:a0:a6:0f:ba:13:a4:f4:e7:bc:0b:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:52 2025 GMT Not After : Jun 1 01:02:52 2026 GMT Subject: CN=A2E0EBC842DAFF1A976F8814837D94CDF4C88EC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:83:95:70:ec:70:bc:79:de:85:c1:bc:52: ee:db:ec:5d:f6:9e:2c:b4:e7:f7:65:42:26:85:33: 99:d7:53:97:f2:0e:15:7e:5c:7e:c3:69:6e:78:99: 2c:8f:1d:25:04:0b:14:10:cb:83:89:e8:5d:b0:10: 87:81:cc:1b:09:71:59:99:8d:74:f4:f3:14:bd:94: 60:25:45:e7:a2:fe:8c:e5:78:2a:ab:bf:19:c7:c2: e7:7d:68:79:20:df:0e:cd:29:c3:a1:0d:d5:3e:17: 3b:3a:f9:2f:f8:21:28:7c:a2:95:b7:9e:3d:ca:26: 2a:77:0c:32:dd:29:c3:64:d7:f0:a4:9d:64:2b:48: b8:52:ab:40:3a:fb:7f:3e:f4:95:aa:e3:37:5c:f8: b6:9c:4a:0c:89:2e:4a:70:2e:a5:e7:37:31:91:59: cb:50:cc:a8:2b:a6:88:8c:e6:18:1f:9e:56:fd:2d: 45:91:f1:a2:78:34:12:1d:0c:f2:84:3c:96:46:5f: fc:99:b7:e2:fd:f4:ee:b7:f8:39:82:85:7d:42:5d: 2f:d7:4b:a2:65:db:08:e4:c8:3a:e0:20:e4:28:a3: 27:85:2f:e6:21:b4:bd:d7:d0:e4:35:12:4c:de:bd: e9:0f:78:b7:1d:82:76:d6:7a:24:60:eb:94:e3:08: ce:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E0:EB:C8:42:DA:FF:1A:97:6F:88:14:83:7D:94:CD:F4:C8:8E:C6 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:37:d5:8c:63:0c:41:77:08:76:ec:9b:e6:57:a4:c6:a9:1a: 74:75:c9:0a:26:bf:b9:d6:f7:63:f0:17:16:20:3c:4b:99:65: c8:1c:71:7a:7e:c7:db:d3:36:55:5b:a7:7f:f8:ab:2b:6c:48: e0:12:6a:15:31:f8:c4:1e:3e:38:68:5f:c0:22:5f:ad:0f:b7: 00:c7:5f:fd:b4:5d:89:2d:b7:d4:3c:fd:54:f9:3a:55:70:8e: f4:55:34:76:50:f9:cf:d9:61:e5:7e:48:39:35:ca:29:77:07: 75:b0:7f:70:1b:fe:4d:1e:77:08:5e:80:58:25:43:89:76:d8: bc:04:3f:b5:a6:85:cd:9a:4b:76:32:a4:c4:f9:49:fe:e7:c3: 58:1e:10:e7:dd:1f:de:4a:a2:84:8c:72:21:e5:38:0e:b6:56: 48:47:1d:03:e0:5f:d6:bb:13:8d:3d:36:5f:71:47:81:fa:93: 03:48:d2:04:99:20:13:a1:41:19:85:ad:29:27:06:64:69:eb: 28:e5:21:16:50:19:28:bf:d3:6f:52:86:60:66:e4:64:51:1d: 01:2d:87:1d:52:be:d6:46:2e:4e:31:8c:19:67:38:93:1b:03: de:cd:3f:e6:7f:24:8e:5b:aa:e1:55:48:6e:5b:d4:95:a9:a2: 32:0b:ae:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVMOg3f482sAVoKYPuhOk9Oe8C0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTJaFw0yNjA2MDEwMTAyNTJaMDMxMTAvBgNV BAMTKEEyRTBFQkM4NDJEQUZGMUE5NzZGODgxNDgzN0Q5NENERjRDODhFQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2KYOVcOxwvHnehcG8Uu7b7F32 niy05/dlQiaFM5nXU5fyDhV+XH7DaW54mSyPHSUECxQQy4OJ6F2wEIeBzBsJcVmZ jXT08xS9lGAlReei/ozleCqrvxnHwud9aHkg3w7NKcOhDdU+Fzs6+S/4ISh8opW3 nj3KJip3DDLdKcNk1/CknWQrSLhSq0A6+38+9JWq4zdc+LacSgyJLkpwLqXnNzGR WctQzKgrpoiM5hgfnlb9LUWR8aJ4NBIdDPKEPJZGX/yZt+L99O63+DmChX1CXS/X S6Jl2wjkyDrgIOQooyeFL+YhtL3X0OQ1EkzevekPeLcdgnbWeiRg65TjCM71AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUouDryELa/xqXb4gUg32UzfTIjsYwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXZwMA0GCSqG SIb3DQEBCwUAA4IBAQBuN9WMYwxBdwh27JvmV6TGqRp0dckKJr+51vdj8BcWIDxL mWXIHHF6fsfb0zZVW6d/+KsrbEjgEmoVMfjEHj44aF/AIl+tD7cAx1/9tF2JLbfU PP1U+TpVcI70VTR2UPnP2WHlfkg5Ncopdwd1sH9wG/5NHncIXoBYJUOJdti8BD+1 poXNmkt2MqTE+Un+58NYHhDn3R/eSqKEjHIh5TgOtlZIRx0D4F/WuxONPTZfcUeB +pMDSNIEmSAToUEZha0pJwZkaeso5SEWUBkov9NvUoZgZuRkUR0BLYcdUr7WRi5O MYwZZziTGwPezT/mfySOW6rhVUhuW9SVqaIyC66V -----END CERTIFICATE-----Generated at Sat Oct 25 01:57:21 2025 by rpki-client