$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135372e302f32342d3234203d3e20313333383233.roa File: 34352e3131362e3135372e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: murX+k5R8h8ESiT+QSuCpzrPj9+7vb21yxp17P+JmVI= Subject key identifier: F3:13:54:1D:79:A8:E7:33:E4:98:4D:6E:41:00:82:A5:E4:35:0B:91 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 378D7D3ABD376132A51331431054EAD700ACDD25 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135372e302f32342d3234203d3e20313333383233.roa Signing time: Fri 07 Mar 2025 07:18:00 +0000 ROA not before: Fri 07 Mar 2025 07:13:00 +0000 ROA not after: Fri 06 Mar 2026 07:18:00 +0000 asID: 133823 IP address blocks: 45.116.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 11:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:8d:7d:3a:bd:37:61:32:a5:13:31:43:10:54:ea:d7:00:ac:dd:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Mar 7 07:13:00 2025 GMT Not After : Mar 6 07:18:00 2026 GMT Subject: CN=F313541D79A8E733E4984D6E410082A5E4350B91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:7f:78:57:a3:3b:32:2c:8d:79:b5:5a:d9: 50:10:54:0c:10:cf:30:88:0b:50:69:81:75:e9:fe: c5:43:cb:8a:74:c7:a4:e3:48:63:60:cf:f0:07:fd: 7c:98:96:6d:4f:ba:b7:fd:85:37:1b:2b:0d:53:db: ee:25:2c:48:ef:e7:5b:5e:d9:64:af:d8:a0:df:2e: 13:5b:43:af:85:60:a0:5d:5e:5f:bc:ce:06:bc:a4: 38:23:04:3c:e2:29:95:a8:74:2e:d5:9c:ab:d4:1a: 6f:f5:c6:e5:61:77:78:8e:51:c4:79:53:d1:45:59: 60:8b:82:64:73:d7:c9:9a:18:a1:b2:fd:b9:aa:80: 72:12:a1:eb:0a:17:9d:cf:83:c3:56:c4:a3:77:83: fe:4e:a0:fe:99:d4:c8:22:c3:99:11:f6:9b:69:ab: 5d:12:2a:86:5f:bd:55:3b:f0:2c:71:30:cc:53:e8: 9a:a8:34:49:68:84:4c:9f:f1:86:64:12:ac:a9:43: c2:75:ca:dd:df:6f:48:72:93:ef:5a:28:73:ed:72: 88:9b:ec:f5:2c:a3:38:0c:74:bf:42:c9:3d:83:64: db:fc:c7:29:a2:0a:3b:5c:eb:35:26:4a:f8:95:a2: ab:59:14:1b:59:4f:42:92:94:c8:c8:5b:33:36:a7: 54:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:13:54:1D:79:A8:E7:33:E4:98:4D:6E:41:00:82:A5:E4:35:0B:91 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135372e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.157.0/24 Signature Algorithm: sha256WithRSAEncryption 80:cf:36:bb:e2:13:32:86:ab:f3:dc:de:6f:0e:8e:09:2d:ca: 3a:56:0d:08:16:a6:88:6a:26:4f:ec:5e:26:41:68:ce:6a:11: 98:e1:08:b5:80:2b:29:b4:4f:12:87:d0:65:85:b9:a8:32:c1: 2d:7d:7a:c9:87:a8:1f:e9:cd:f6:5b:67:2e:b5:00:1b:59:66: c8:1f:d5:16:17:2a:75:4b:56:6b:be:e4:86:34:32:37:e3:3b: d4:81:5e:62:ff:73:71:5d:08:bc:61:7d:26:9d:06:26:94:2b: e7:56:84:86:eb:17:9f:f9:4c:3f:46:f2:51:89:c1:50:d5:d8: 81:dc:e0:7d:a9:21:3a:48:11:24:a8:3a:dd:20:a0:f4:5b:f1: 2f:79:e3:b1:11:5d:9f:22:d2:a7:08:ba:3c:15:9e:33:80:27: 9b:49:48:d4:f0:f9:fe:f4:24:0f:88:47:e4:86:5e:af:c0:3d: e8:eb:26:73:3f:67:7b:0c:d7:d3:6b:ef:bc:b4:50:e8:e0:dc: 7f:4e:8e:e4:f3:66:2f:06:71:53:dc:95:b6:e3:2e:66:41:80: f3:a9:eb:28:38:30:6f:e8:68:15:a6:df:8a:e8:41:8a:02:5b: 81:a5:07:09:71:c5:a5:be:34:9d:9e:ec:39:81:0d:3d:33:87: 71:59:41:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN419Or03YTKlEzFDEFTq1wCs3SUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTAzMDcwNzEzMDBaFw0yNjAzMDYwNzE4MDBaMDMxMTAvBgNV BAMTKEYzMTM1NDFENzlBOEU3MzNFNDk4NEQ2RTQxMDA4MkE1RTQzNTBCOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQZX94V6M7MiyNebVa2VAQVAwQ zzCIC1BpgXXp/sVDy4p0x6TjSGNgz/AH/XyYlm1Purf9hTcbKw1T2+4lLEjv51te 2WSv2KDfLhNbQ6+FYKBdXl+8zga8pDgjBDziKZWodC7VnKvUGm/1xuVhd3iOUcR5 U9FFWWCLgmRz18maGKGy/bmqgHISoesKF53Pg8NWxKN3g/5OoP6Z1Mgiw5kR9ptp q10SKoZfvVU78CxxMMxT6JqoNElohEyf8YZkEqypQ8J1yt3fb0hyk+9aKHPtcoib 7PUsozgMdL9CyT2DZNv8xymiCjtc6zUmSviVoqtZFBtZT0KSlMjIWzM2p1RBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8xNUHXmo5zPkmE1uQQCCpeQ1C5EwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzM0MzUyZTMxMzEzNjJlMzEzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXSdMA0GCSqG SIb3DQEBCwUAA4IBAQCAzza74hMyhqvz3N5vDo4JLco6Vg0IFqaIaiZP7F4mQWjO ahGY4Qi1gCsptE8Sh9BlhbmoMsEtfXrJh6gf6c32W2cutQAbWWbIH9UWFyp1S1Zr vuSGNDI34zvUgV5i/3NxXQi8YX0mnQYmlCvnVoSG6xef+Uw/RvJRicFQ1diB3OB9 qSE6SBEkqDrdIKD0W/EveeOxEV2fItKnCLo8FZ4zgCebSUjU8Pn+9CQPiEfkhl6v wD3o6yZzP2d7DNfTa++8tFDo4Nx/To7k82YvBnFT3JW24y5mQYDzqesoODBv6GgV pt+K6EGKAluBpQcJccWlvjSdnuw5gQ09M4dxWUFA -----END CERTIFICATE-----Generated at Sat Mar 15 05:49:13 2025 by rpki-client