$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131322e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: TUhhdvGp1LOiLtnysRzIGChLZFMNnT5PF4OEU6rQz1g= Subject key identifier: 04:46:78:10:06:20:00:97:EF:85:87:20:BE:73:5F:7A:CE:60:F0:63 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 32B3D9CE34A79A9B98ACD737B347CE6E83A9C09F Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32342d3234203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:52 +0000 ROA not before: Mon 02 Jun 2025 00:57:52 +0000 ROA not after: Mon 01 Jun 2026 01:02:52 +0000 asID: 131717 IP address blocks: 45.118.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b3:d9:ce:34:a7:9a:9b:98:ac:d7:37:b3:47:ce:6e:83:a9:c0:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:52 2025 GMT Not After : Jun 1 01:02:52 2026 GMT Subject: CN=0446781006200097EF858720BE735F7ACE60F063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a3:a6:a5:11:1c:da:e4:95:6c:84:bc:56:56: 32:87:8d:22:b8:00:32:21:c3:ff:75:a1:2e:5b:d3: 07:29:2b:f4:42:db:14:b4:6f:85:b1:fa:ba:29:cf: ea:66:45:91:e3:a7:c9:1c:d8:52:36:98:17:a5:9c: ba:1f:bf:20:c4:c6:fe:7f:b3:6e:29:32:a3:d7:cd: 38:f5:d8:62:d8:ee:97:ec:60:d4:e6:3b:06:b4:86: 9a:dc:d3:66:be:28:58:2b:c5:3c:9b:83:0d:36:da: 2a:ee:70:6e:95:e8:ba:a8:26:cf:15:c8:8d:52:12: 4c:81:68:60:bf:c5:a8:cf:69:3f:9e:dc:cb:6e:5f: bd:62:6c:2a:bf:6d:d4:52:76:be:d6:57:df:66:f2: d8:f3:b6:6d:da:79:ce:3b:fa:db:46:23:6a:81:de: 59:54:cf:9f:c6:53:cb:42:c9:a5:51:8d:6a:f7:03: 4e:67:fd:24:be:38:a6:47:6d:e6:73:18:62:9c:8b: 7c:71:79:e4:33:60:f3:03:83:f0:1e:d8:df:ca:01: 8b:92:2b:75:d4:9b:55:46:85:b5:3d:ba:41:83:df: ee:ac:51:db:f5:41:48:b5:f2:a6:6b:6b:3c:e2:10: cb:da:4e:3f:a0:41:8b:4f:26:24:a5:58:4f:ad:37: e2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:46:78:10:06:20:00:97:EF:85:87:20:BE:73:5F:7A:CE:60:F0:63 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/24 Signature Algorithm: sha256WithRSAEncryption 60:09:34:34:6b:fe:14:0f:07:71:6d:88:3e:1d:6c:5a:d2:a5: d0:58:2d:3c:56:1d:22:cb:26:23:0b:52:81:93:95:c3:17:de: c8:1b:b4:ed:91:3e:b6:ec:01:0d:be:f1:bb:d4:58:9c:f5:d0: 62:c8:f1:dd:d8:96:36:61:54:c2:e3:c2:2e:9f:dd:af:43:90: 52:2c:1f:d2:fa:b7:68:87:1a:20:82:62:6a:e3:a5:ad:b2:48: 72:42:89:33:c0:31:7e:02:33:64:ad:ff:91:fc:1b:29:cb:91: ff:fa:a5:f2:6c:b6:04:b8:c8:25:9b:57:75:8d:84:e8:2c:67: 2f:a4:c2:9b:8c:5d:87:1d:fe:fe:63:48:a6:39:ba:93:72:5f: 99:0d:9b:dd:43:2a:90:c4:34:8f:32:69:82:fb:eb:48:47:7a: 3e:81:c0:38:bf:97:8e:1f:3a:f9:6c:ff:33:e5:8c:c0:ec:a4: 0a:b8:e3:5b:07:90:92:74:cd:c5:c1:ec:5e:33:64:d8:28:4b: c6:1b:2d:ff:0f:55:1a:0d:a3:35:84:7d:ea:ec:36:b5:29:43: 02:ab:b1:e8:3c:1f:7b:a8:d2:02:22:8b:d4:aa:06:0f:45:7f: 3f:d2:80:71:6f:47:b0:ac:15:3d:f1:d6:13:dc:55:1a:eb:ec: b1:be:a9:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMrPZzjSnmpuYrNc3s0fOboOpwJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTJaFw0yNjA2MDEwMTAyNTJaMDMxMTAvBgNV BAMTKDA0NDY3ODEwMDYyMDAwOTdFRjg1ODcyMEJFNzM1RjdBQ0U2MEYwNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfo6alERza5JVshLxWVjKHjSK4 ADIhw/91oS5b0wcpK/RC2xS0b4Wx+ropz+pmRZHjp8kc2FI2mBelnLofvyDExv5/ s24pMqPXzTj12GLY7pfsYNTmOwa0hprc02a+KFgrxTybgw022irucG6V6LqoJs8V yI1SEkyBaGC/xajPaT+e3MtuX71ibCq/bdRSdr7WV99m8tjztm3aec47+ttGI2qB 3llUz5/GU8tCyaVRjWr3A05n/SS+OKZHbeZzGGKci3xxeeQzYPMDg/Ae2N/KAYuS K3XUm1VGhbU9ukGD3+6sUdv1QUi18qZrazziEMvaTj+gQYtPJiSlWE+tN+J5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBEZ4EAYgAJfvhYcgvnNfes5g8GMwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZwMA0GCSqG SIb3DQEBCwUAA4IBAQBgCTQ0a/4UDwdxbYg+HWxa0qXQWC08Vh0iyyYjC1KBk5XD F97IG7TtkT627AENvvG71Fic9dBiyPHd2JY2YVTC48Iun92vQ5BSLB/S+rdohxog gmJq46WtskhyQokzwDF+AjNkrf+R/Bspy5H/+qXybLYEuMglm1d1jYToLGcvpMKb jF2HHf7+Y0imObqTcl+ZDZvdQyqQxDSPMmmC++tIR3o+gcA4v5eOHzr5bP8z5YzA 7KQKuONbB5CSdM3FwexeM2TYKEvGGy3/D1UaDaM1hH3q7Da1KUMCq7HoPB97qNIC IovUqgYPRX8/0oBxb0ewrBU98dYT3FUa6+yxvqlp -----END CERTIFICATE-----Generated at Sat Oct 25 02:00:53 2025 by rpki-client