$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/34352e3235312e37322e302f32322d3234203d3e20313331373131.roa File: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (raw, json) Hash identifier: wQ45tmfAW0vTrcP1CHqdkU4kV8VsIFLIOnBtD5fu+LU= Subject key identifier: 4C:19:2A:68:66:75:C6:44:DA:F6:70:A9:AF:05:D9:EE:06:21:37:94 Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 1CF56208BF090E67D2D7A4185FB7AE85BC1D3EC9 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/34352e3235312e37322e302f32322d3234203d3e20313331373131.roa Signing time: Mon 25 Aug 2025 11:02:28 +0000 ROA not before: Mon 25 Aug 2025 10:57:28 +0000 ROA not after: Mon 24 Aug 2026 11:02:28 +0000 asID: 131711 IP address blocks: 45.251.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f5:62:08:bf:09:0e:67:d2:d7:a4:18:5f:b7:ae:85:bc:1d:3e:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Aug 25 10:57:28 2025 GMT Not After : Aug 24 11:02:28 2026 GMT Subject: CN=4C192A686675C644DAF670A9AF05D9EE06213794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a1:17:b5:95:0e:f5:ae:99:cd:83:87:50:13: 64:f8:6f:52:87:77:03:c2:8e:a1:8b:77:9b:39:00: e2:b6:55:8f:3f:51:40:4b:3a:c7:a9:dc:ac:f5:b6: 5a:0f:21:e1:07:75:21:67:cb:0f:4c:e6:d8:fe:2f: b1:98:e3:ae:d8:29:b8:6b:c7:66:94:00:44:42:d3: c0:24:28:10:62:08:6d:b6:48:c9:5e:af:25:da:4a: 63:54:e2:c4:1d:b3:ee:b9:04:4f:21:91:0e:06:f6: 28:9e:55:8e:8b:17:2b:06:8b:96:ef:a6:bc:4f:d2: c1:34:26:56:13:78:9e:15:e1:d4:1a:3d:54:de:ed: bc:8e:4b:2f:80:f7:b0:c2:bb:a9:80:21:b6:a9:86: e4:ed:f7:80:f5:b5:d3:28:cb:fd:e5:67:2b:7b:87: fa:95:b5:66:d7:c0:54:68:a2:5e:a7:4b:f5:e8:54: b8:22:3a:ea:ed:1b:46:f7:9c:d1:93:b5:3b:0a:93: b6:91:87:81:a3:10:c5:f6:c7:5a:31:98:5f:30:52: f8:3f:58:c5:ae:1b:39:60:06:1a:bf:be:f1:19:d8: 96:8c:f4:fb:0b:53:86:d2:f7:ab:1a:81:64:e5:22: cb:9f:5c:3d:25:5e:c2:c0:2f:44:6b:c6:8b:54:ee: 0e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:19:2A:68:66:75:C6:44:DA:F6:70:A9:AF:05:D9:EE:06:21:37:94 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/34352e3235312e37322e302f32322d3234203d3e20313331373131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.72.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:72:fd:6d:b1:b6:e2:1d:12:89:c3:a1:08:96:92:51:9f:a6: fb:5e:4c:ff:4f:cf:4f:38:49:37:36:b9:bc:91:46:27:da:78: b5:d5:6b:77:10:fc:b4:1f:d4:9d:1f:63:74:fb:d5:47:80:e4: a5:72:c4:cc:cd:07:c0:c5:c5:eb:c1:35:5e:e8:67:73:a4:39: 41:92:8e:f1:7e:5d:45:4e:85:4f:53:d3:50:2a:52:25:65:9b: 0b:4c:57:b5:ae:d7:47:87:3e:8e:16:b6:9e:63:c9:25:f3:da: 01:09:c9:f5:a2:33:c1:04:1f:06:81:02:90:28:85:c1:6e:ba: d7:dd:4b:fa:24:81:4e:40:31:71:79:aa:7b:b1:f5:82:83:24: df:2e:c6:1c:d3:53:58:b4:e1:e5:a8:c5:97:2b:e7:e5:2b:e5: 33:f5:3f:12:9d:10:e9:fa:2c:b7:68:6c:41:88:6b:28:bf:62: 7c:1e:bc:92:18:e9:87:e7:5d:fb:f6:9e:ce:8a:3f:01:ba:4f: c4:33:06:19:f9:45:5d:b4:c1:86:4b:83:fb:36:a5:64:96:a9: 79:61:9c:a5:ae:de:7c:71:b5:72:5a:2b:43:20:5f:49:55:40: 0d:b9:e8:e9:72:af:c7:00:40:ca:fd:10:f6:ef:20:2c:4a:4c: 02:ae:1c:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHPViCL8JDmfS16QYX7euhbwdPskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNTA4MjUxMDU3MjhaFw0yNjA4MjQxMTAyMjhaMDMxMTAvBgNV BAMTKDRDMTkyQTY4NjY3NUM2NDREQUY2NzBBOUFGMDVEOUVFMDYyMTM3OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDToRe1lQ71rpnNg4dQE2T4b1KH dwPCjqGLd5s5AOK2VY8/UUBLOsep3Kz1tloPIeEHdSFnyw9M5tj+L7GY467YKbhr x2aUAERC08AkKBBiCG22SMleryXaSmNU4sQds+65BE8hkQ4G9iieVY6LFysGi5bv prxP0sE0JlYTeJ4V4dQaPVTe7byOSy+A97DCu6mAIbaphuTt94D1tdMoy/3lZyt7 h/qVtWbXwFRool6nS/XoVLgiOurtG0b3nNGTtTsKk7aRh4GjEMX2x1oxmF8wUvg/ WMWuGzlgBhq/vvEZ2JaM9PsLU4bS96sagWTlIsufXD0lXsLAL0RrxotU7g7FAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTBkqaGZ1xkTa9nCprwXZ7gYhN5QwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiMGExMWI1LTk0NDEtNGNjOS1h NjcyLWJlOTc5OWI2NTUyMC8wLzM0MzUyZTMyMzUzMTJlMzczMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi37SDANBgkqhkiG 9w0BAQsFAAOCAQEAGnL9bbG24h0SicOhCJaSUZ+m+15M/0/PTzhJNza5vJFGJ9p4 tdVrdxD8tB/UnR9jdPvVR4DkpXLEzM0HwMXF68E1Xuhnc6Q5QZKO8X5dRU6FT1PT UCpSJWWbC0xXta7XR4c+jha2nmPJJfPaAQnJ9aIzwQQfBoECkCiFwW66191L+iSB TkAxcXmqe7H1goMk3y7GHNNTWLTh5ajFlyvn5SvlM/U/Ep0Q6fost2hsQYhrKL9i fB68khjph+dd+/aezoo/AbpPxDMGGflFXbTBhkuD+zalZJapeWGcpa7efHG1clor QyBfSVVADbno6XKvxwBAyv0Q9u8gLEpMAq4cBA== -----END CERTIFICATE-----Generated at Sun Sep 7 15:41:56 2025 by rpki-client