$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135392e302f32342d3234203d3e20313333383233.roa File: 34352e3131362e3135392e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: 9vKmERWi+/y+esKTTFswCbGkU/rG05yleJxXiPBZcSM= Subject key identifier: 69:21:D2:C2:57:1F:D5:F9:0A:05:62:7F:44:C7:B8:44:43:CB:37:32 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 2DFF6ADA34E2E886CA16502979CB96A3831635F4 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135392e302f32342d3234203d3e20313333383233.roa Signing time: Fri 07 Mar 2025 07:18:45 +0000 ROA not before: Fri 07 Mar 2025 07:13:45 +0000 ROA not after: Fri 06 Mar 2026 07:18:45 +0000 asID: 133823 IP address blocks: 45.116.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 18:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ff:6a:da:34:e2:e8:86:ca:16:50:29:79:cb:96:a3:83:16:35:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Mar 7 07:13:45 2025 GMT Not After : Mar 6 07:18:45 2026 GMT Subject: CN=6921D2C2571FD5F90A05627F44C7B84443CB3732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9d:8b:c5:b7:bb:9a:f5:9a:f1:20:cc:5c:89: b4:26:44:fe:ae:20:de:bd:14:f1:56:e8:3d:16:ea: 9c:28:a6:6e:5a:7f:9c:3d:0a:73:a3:3e:af:fc:ca: d2:ad:2c:f0:15:1f:e7:50:80:4e:d1:7e:fc:00:14: 0f:a3:0d:2b:5d:f0:6a:2d:4a:79:0e:72:c5:ea:09: 34:c5:b6:6e:ee:a5:fc:1f:d6:b4:8d:5b:f9:ed:e7: bd:55:17:f8:23:c1:e8:8c:7b:14:d0:f8:c4:16:44: 75:a9:1b:f2:04:45:fe:3e:8d:06:50:f4:17:f7:8e: 5f:8d:a2:20:e3:da:ce:3d:51:6f:eb:1c:94:06:01: 02:ef:bc:69:ba:7f:ae:41:66:c0:41:5c:30:a7:ac: 38:b0:fc:67:2d:a1:37:1e:1d:22:74:01:e7:7d:60: 0f:49:03:bb:ab:0f:44:33:61:65:3e:d2:54:8a:80: 67:51:c4:e2:23:18:50:2a:b9:1a:c7:91:e1:16:56: b8:f4:2a:44:97:91:ba:6f:86:92:86:57:99:4e:af: e6:5a:f4:ce:6f:bc:88:80:a4:f3:ad:dd:bb:b1:51: 12:08:e5:ad:10:df:ac:0e:40:96:07:3b:a2:0f:21: b3:f1:26:5f:90:cf:b0:21:8c:93:eb:c5:f8:05:04: 2f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:21:D2:C2:57:1F:D5:F9:0A:05:62:7F:44:C7:B8:44:43:CB:37:32 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135392e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.159.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:98:60:17:42:c9:9b:25:37:ec:5e:b8:76:bb:ff:cb:53:46: cf:a0:51:fd:f9:c8:96:7d:a5:04:73:5c:5c:45:de:b2:8d:1a: bc:11:03:68:62:fa:cc:42:c8:bd:d4:7e:be:ea:cf:cb:d5:58: e7:16:ae:d1:16:f4:02:12:e1:f3:60:f4:91:b9:af:15:b1:f3: 84:0c:b7:e0:dc:8a:7c:98:08:0b:cb:b5:4e:3b:5a:23:b0:63: 0c:62:05:83:ed:84:73:ee:85:8e:93:2f:d6:50:ec:9d:4a:54: 2f:0a:d7:c9:b7:a4:58:1c:9b:8d:1d:0a:1e:5f:3e:fd:1f:e0: 58:b7:86:5b:5d:85:79:c5:1e:24:2f:a9:01:49:e8:d4:4b:00: 56:2a:84:fa:0b:de:33:04:32:6a:71:d0:1a:d0:5d:a2:44:68: bd:57:f3:de:3f:2b:c7:34:86:44:e3:fe:e4:85:d6:5a:82:b7: e0:a7:e2:81:64:f3:a3:8e:8f:51:e8:8d:d1:bd:5e:11:d9:1f: af:e3:20:c0:93:44:32:0d:fd:f1:16:0b:14:16:11:05:90:82: 74:1e:10:fc:b9:d6:6c:f2:d2:02:69:bd:48:ce:4f:6d:63:8c: 42:9a:2d:61:71:bb:58:e6:22:92:e6:a4:e6:df:1c:47:a2:55: 15:ac:8f:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULf9q2jTi6IbKFlApecuWo4MWNfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTAzMDcwNzEzNDVaFw0yNjAzMDYwNzE4NDVaMDMxMTAvBgNV BAMTKDY5MjFEMkMyNTcxRkQ1RjkwQTA1NjI3RjQ0QzdCODQ0NDNDQjM3MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCenYvFt7ua9ZrxIMxcibQmRP6u IN69FPFW6D0W6pwopm5af5w9CnOjPq/8ytKtLPAVH+dQgE7RfvwAFA+jDStd8Got SnkOcsXqCTTFtm7upfwf1rSNW/nt571VF/gjweiMexTQ+MQWRHWpG/IERf4+jQZQ 9Bf3jl+NoiDj2s49UW/rHJQGAQLvvGm6f65BZsBBXDCnrDiw/GctoTceHSJ0Aed9 YA9JA7urD0QzYWU+0lSKgGdRxOIjGFAquRrHkeEWVrj0KkSXkbpvhpKGV5lOr+Za 9M5vvIiApPOt3buxURII5a0Q36wOQJYHO6IPIbPxJl+Qz7AhjJPrxfgFBC91AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaSHSwlcf1fkKBWJ/RMe4REPLNzIwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzM0MzUyZTMxMzEzNjJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXSfMA0GCSqG SIb3DQEBCwUAA4IBAQBrmGAXQsmbJTfsXrh2u//LU0bPoFH9+ciWfaUEc1xcRd6y jRq8EQNoYvrMQsi91H6+6s/L1VjnFq7RFvQCEuHzYPSRua8VsfOEDLfg3Ip8mAgL y7VOO1ojsGMMYgWD7YRz7oWOky/WUOydSlQvCtfJt6RYHJuNHQoeXz79H+BYt4Zb XYV5xR4kL6kBSejUSwBWKoT6C94zBDJqcdAa0F2iRGi9V/PePyvHNIZE4/7khdZa grfgp+KBZPOjjo9R6I3RvV4R2R+v4yDAk0QyDf3xFgsUFhEFkIJ0HhD8udZs8tIC ab1Izk9tY4xCmi1hcbtY5iKS5qTm3xxHolUVrI9Y -----END CERTIFICATE-----Generated at Tue Oct 28 06:22:31 2025 by rpki-client