$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa File: 34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: gvli+HahlWwpXT6MXiB6a1x0yRZFhPDWq/40wV3mRrM= Subject key identifier: 33:E9:7D:BB:29:ED:E3:60:7E:64:C1:B7:B8:D5:7F:5D:2D:6A:BA:95 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 3DEBEB1EE148B8B578D099E2AFC7BA2D29F50EF4 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa Signing time: Fri 07 Mar 2025 07:17:40 +0000 ROA not before: Fri 07 Mar 2025 07:12:40 +0000 ROA not after: Fri 06 Mar 2026 07:17:40 +0000 asID: 133823 IP address blocks: 45.116.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 11:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:eb:eb:1e:e1:48:b8:b5:78:d0:99:e2:af:c7:ba:2d:29:f5:0e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Mar 7 07:12:40 2025 GMT Not After : Mar 6 07:17:40 2026 GMT Subject: CN=33E97DBB29EDE3607E64C1B7B8D57F5D2D6ABA95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:4d:3e:d4:e2:af:73:68:35:58:07:70:e4: 03:a2:1f:3b:8e:08:0a:bd:bc:f2:63:95:40:03:72: 81:5d:94:29:26:f0:17:4c:7f:05:f8:2a:63:f9:c9: a5:7f:b3:28:97:bd:e9:94:aa:93:aa:08:e1:44:a6: 8a:e4:29:6a:e0:e1:e7:a5:4e:e9:25:2c:43:c5:0d: e7:b7:97:7b:cd:b3:cc:14:20:5d:65:64:77:03:cb: 16:fe:0d:7f:2e:2c:9f:3d:c8:51:47:4f:7d:af:31: 93:f1:6b:05:1b:a3:b7:8d:89:e5:e7:5b:80:ff:69: 39:70:54:c2:16:d5:eb:d8:1b:4b:ca:d1:d8:d1:44: 53:66:c8:4e:2e:4c:c0:7e:b2:dd:c0:90:8e:d4:e0: dd:52:60:3c:80:58:f3:ec:54:d1:de:87:78:84:14: 04:7f:26:b9:d2:e7:5b:2a:e8:dc:30:b8:e0:18:f9: 35:c9:36:0a:f4:8c:5e:f1:19:34:cf:0e:29:c0:03: 99:85:ee:e1:19:c2:8b:80:79:3a:c3:22:22:3e:54: b5:75:5a:7d:55:ca:88:df:f1:b7:58:9c:93:5a:25: 93:bd:2d:1c:83:78:be:ea:16:1b:8a:66:f9:69:42: 3f:d6:47:6f:7a:ed:7b:bf:8a:1a:34:58:8f:3a:05: 9d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E9:7D:BB:29:ED:E3:60:7E:64:C1:B7:B8:D5:7F:5D:2D:6A:BA:95 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.156.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:17:38:f5:3e:96:11:2b:d3:7e:c6:85:fe:1f:8b:23:69:a8: e1:27:7b:f0:a9:81:cc:2d:59:80:0d:95:59:49:5d:e8:85:7f: ef:0d:15:62:ba:2a:82:0c:20:83:73:c6:8d:b6:b6:1b:e2:78: b3:05:d8:c2:61:a8:b9:5d:8e:f6:d5:d3:f2:c5:73:85:cc:41: 9c:57:c1:1c:68:03:79:05:6d:bc:e1:ce:de:b3:e7:5b:1c:b8: e4:0d:60:60:a4:5a:16:4c:c6:a5:bf:86:72:35:37:42:da:c6: 8e:87:e5:9c:6e:27:cb:aa:dd:71:66:67:4c:a6:74:11:76:10: 57:eb:e4:d2:cc:4c:84:90:67:f0:7c:c8:a1:9c:13:4d:2b:56: e1:50:6a:b9:63:f9:77:30:34:89:30:93:bf:15:7f:f2:82:00: 54:14:30:91:56:77:9e:22:c5:65:00:66:9e:6c:0f:d6:95:9f: 4c:6b:00:f8:23:a6:cc:ab:87:9a:8d:05:57:75:7f:4c:73:a2: c6:ff:be:6e:1a:61:b1:0b:9f:ea:9c:e6:4b:48:c2:65:f0:ff: 43:64:b3:31:03:6a:93:f6:70:38:18:5b:f5:92:56:5d:39:b4: 83:a2:9b:2f:ae:b2:f9:a4:f0:65:40:9f:a4:12:57:e7:e6:fe: 63:13:34:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPevrHuFIuLV40Jnir8e6LSn1DvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTAzMDcwNzEyNDBaFw0yNjAzMDYwNzE3NDBaMDMxMTAvBgNV BAMTKDMzRTk3REJCMjlFREUzNjA3RTY0QzFCN0I4RDU3RjVEMkQ2QUJBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9SU0+1OKvc2g1WAdw5AOiHzuO CAq9vPJjlUADcoFdlCkm8BdMfwX4KmP5yaV/syiXvemUqpOqCOFEporkKWrg4eel TuklLEPFDee3l3vNs8wUIF1lZHcDyxb+DX8uLJ89yFFHT32vMZPxawUbo7eNieXn W4D/aTlwVMIW1evYG0vK0djRRFNmyE4uTMB+st3AkI7U4N1SYDyAWPPsVNHeh3iE FAR/JrnS51sq6NwwuOAY+TXJNgr0jF7xGTTPDinAA5mF7uEZwouAeTrDIiI+VLV1 Wn1Vyojf8bdYnJNaJZO9LRyDeL7qFhuKZvlpQj/WR2967Xu/iho0WI86BZ2nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUM+l9uynt42B+ZMG3uNV/XS1qupUwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzM0MzUyZTMxMzEzNjJlMzEzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXScMA0GCSqG SIb3DQEBCwUAA4IBAQBOFzj1PpYRK9N+xoX+H4sjaajhJ3vwqYHMLVmADZVZSV3o hX/vDRViuiqCDCCDc8aNtrYb4nizBdjCYai5XY721dPyxXOFzEGcV8EcaAN5BW28 4c7es+dbHLjkDWBgpFoWTMalv4ZyNTdC2saOh+WcbifLqt1xZmdMpnQRdhBX6+TS zEyEkGfwfMihnBNNK1bhUGq5Y/l3MDSJMJO/FX/yggBUFDCRVneeIsVlAGaebA/W lZ9MawD4I6bMq4eajQVXdX9Mc6LG/75uGmGxC5/qnOZLSMJl8P9DZLMxA2qT9nA4 GFv1klZdObSDopsvrrL5pPBlQJ+kElfn5v5jEzT8 -----END CERTIFICATE-----Generated at Sat Mar 15 05:49:14 2025 by rpki-client