$ rpki-client -vvf repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132322e35322e302f32322d3234203d3e20313335343438.roa File: 34352e3132322e35322e302f32322d3234203d3e20313335343438.roa (raw, json) Hash identifier: DkpLk9wjtee+olEloYKtXa5HH1pKUw3+B87062+6qXc= Subject key identifier: 00:95:65:99:B9:6A:B3:B9:8A:3F:77:A2:2C:60:44:36:03:1E:37:18 Certificate issuer: /CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Certificate serial: 7EEF040864C6BD968325D96C6F0F06E7C07A12BA Authority key identifier: 03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject info access: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132322e35322e302f32322d3234203d3e20313335343438.roa Signing time: Mon 02 Jun 2025 02:03:42 +0000 ROA not before: Mon 02 Jun 2025 01:58:42 +0000 ROA not after: Mon 01 Jun 2026 02:03:42 +0000 asID: 135448 IP address blocks: 45.122.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ef:04:08:64:c6:bd:96:83:25:d9:6c:6f:0f:06:e7:c0:7a:12:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03315D0E966A85B878EA9058B8CF03EAF2881889 Validity Not Before: Jun 2 01:58:42 2025 GMT Not After : Jun 1 02:03:42 2026 GMT Subject: CN=00956599B96AB3B98A3F77A22C604436031E3718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9f:d9:af:6e:27:51:bd:72:18:1f:4b:c9:a3: ea:f3:1f:0a:60:92:95:a0:bf:e3:c9:71:01:35:8a: f7:65:40:43:37:5c:47:f6:9d:ec:8a:1b:83:ae:b3: 50:66:92:ec:71:0c:0d:16:46:9d:9f:97:74:23:e5: 68:c0:e9:39:9c:3c:9f:42:17:73:78:31:2a:13:19: a5:cb:ac:0e:2b:16:7d:7e:52:f2:c7:10:5f:30:7f: dd:20:91:0d:a2:9f:ed:56:f6:5a:ab:d5:b8:fa:5d: 97:25:ed:30:e9:07:71:b4:c6:56:a5:0a:a9:ca:9f: 51:50:85:87:6e:59:eb:94:09:d4:08:fa:74:6a:32: e2:f7:7a:6b:c5:f1:02:2e:c9:09:d9:b1:3c:b7:d5: f9:3d:26:57:18:36:9a:70:a8:7a:b7:28:e2:bc:7f: 76:5c:bb:b6:43:c6:f8:b6:ef:38:f2:50:8a:9a:33: 7d:2d:e7:d7:1d:c2:72:ca:d4:05:39:0e:3c:4a:b2: 2a:b5:68:8c:b6:05:aa:f5:b7:89:86:a4:0d:ee:fb: 79:94:5a:e3:59:cc:ea:d1:12:0a:43:bc:de:58:ef: 54:db:71:f7:ce:a9:09:41:0c:72:6a:ef:45:e3:7e: 4d:4c:0f:d7:bc:4e:06:77:88:3d:3a:09:01:0e:f1: cf:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:95:65:99:B9:6A:B3:B9:8A:3F:77:A2:2C:60:44:36:03:1E:37:18 X509v3 Authority Key Identifier: keyid:03:31:5D:0E:96:6A:85:B8:78:EA:90:58:B8:CF:03:EA:F2:88:18:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/03315D0E966A85B878EA9058B8CF03EAF2881889.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03315D0E966A85B878EA9058B8CF03EAF2881889.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/059acb97-6e87-4e31-a569-a2660df4f2b8/0/34352e3132322e35322e302f32322d3234203d3e20313335343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.122.52.0/22 Signature Algorithm: sha256WithRSAEncryption 63:77:fb:7e:ee:6f:07:03:9b:7e:00:dd:62:a2:7c:80:75:e8: 50:2e:51:38:1c:01:e5:a2:25:33:73:4d:a5:17:9d:4a:d5:cf: 25:a0:74:20:46:31:0b:2e:e2:3f:22:a1:ac:ab:d6:56:dc:b1: f2:0e:63:0b:26:9f:6e:dd:f8:26:81:28:3f:b6:ce:a2:45:19: 39:ba:9d:3d:e5:14:c3:90:5e:dc:59:73:69:0f:52:60:90:56: d3:d8:ee:95:b9:49:b6:ec:b3:d7:6a:51:b4:be:29:25:bf:d9: 8c:e1:fc:cf:0e:44:a2:f9:76:e7:36:93:3b:6c:d7:ce:f4:8c: ed:54:dd:73:58:5b:83:1c:87:9b:de:cb:8d:89:cc:bf:e8:5f: 01:c8:22:8a:b7:a0:f6:b0:6f:0a:c4:01:61:f5:a0:4f:57:f9: ce:2a:30:3b:87:44:b4:a6:64:7f:ab:0f:d2:df:9f:22:ed:5a: 76:4f:31:46:88:92:87:96:86:3d:76:2a:bc:4b:b6:52:4e:34: 7d:84:09:f8:7b:b4:36:48:79:4a:a3:8c:c0:ad:b1:cd:33:8a: 23:86:c6:88:3f:84:1a:52:bf:2f:0a:e4:21:37:ed:3a:bc:66: 7e:49:42:cd:fc:df:2c:2a:6e:af:21:1b:17:5a:9b:b3:f2:99: 9d:f7:39:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfu8ECGTGvZaDJdlsbw8G58B6ErowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFG Mjg4MTg4OTAeFw0yNTA2MDIwMTU4NDJaFw0yNjA2MDEwMjAzNDJaMDMxMTAvBgNV BAMTKDAwOTU2NTk5Qjk2QUIzQjk4QTNGNzdBMjJDNjA0NDM2MDMxRTM3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdn9mvbidRvXIYH0vJo+rzHwpg kpWgv+PJcQE1ivdlQEM3XEf2neyKG4Ous1BmkuxxDA0WRp2fl3Qj5WjA6TmcPJ9C F3N4MSoTGaXLrA4rFn1+UvLHEF8wf90gkQ2in+1W9lqr1bj6XZcl7TDpB3G0xlal CqnKn1FQhYduWeuUCdQI+nRqMuL3emvF8QIuyQnZsTy31fk9JlcYNppwqHq3KOK8 f3Zcu7ZDxvi27zjyUIqaM30t59cdwnLK1AU5DjxKsiq1aIy2Bar1t4mGpA3u+3mU WuNZzOrREgpDvN5Y71TbcffOqQlBDHJq70Xjfk1MD9e8TgZ3iD06CQEO8c+DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAJVlmblqs7mKP3eiLGBENgMeNxgwHwYDVR0j BBgwFoAUAzFdDpZqhbh46pBYuM8D6vKIGIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTlhY2I5Ny02ZTg3LTRlMzEtYTU2OS1hMjY2MGRmNGYyYjgvMC8wMzMxNUQwRTk2 NkE4NUI4NzhFQTkwNThCOENGMDNFQUYyODgxODg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMzMTVEMEU5NjZBODVCODc4RUE5MDU4QjhDRjAzRUFGMjg4 MTg4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1OWFjYjk3LTZlODctNGUzMS1h NTY5LWEyNjYwZGY0ZjJiOC8wLzM0MzUyZTMxMzIzMjJlMzUzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi16NDANBgkqhkiG 9w0BAQsFAAOCAQEAY3f7fu5vBwObfgDdYqJ8gHXoUC5ROBwB5aIlM3NNpRedStXP JaB0IEYxCy7iPyKhrKvWVtyx8g5jCyafbt34JoEoP7bOokUZObqdPeUUw5Be3Flz aQ9SYJBW09julblJtuyz12pRtL4pJb/ZjOH8zw5Eovl25zaTO2zXzvSM7VTdc1hb gxyHm97LjYnMv+hfAcgiireg9rBvCsQBYfWgT1f5ziowO4dEtKZkf6sP0t+fIu1a dk8xRoiSh5aGPXYqvEu2Uk40fYQJ+Hu0Nkh5SqOMwK2xzTOKI4bGiD+EGlK/Lwrk ITftOrxmfklCzfzfLCpuryEbF1qbs/KZnfc5hw== -----END CERTIFICATE-----Generated at Sun Jun 8 04:15:55 2025 by rpki-client