$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa File: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: vyo5RypkFQEnVHU24LrFw7oPwATfGzPKn/kBk5If2Fc= Subject key identifier: 8C:97:74:5C:26:3B:47:19:56:D6:0A:EF:8C:66:57:18:4C:5E:C5:BD Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 48C77A99FA47F7CAE99335B49D90F6E6D9F11D5A Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa Signing time: Mon 02 Jun 2025 02:04:30 +0000 ROA not before: Mon 02 Jun 2025 01:59:30 +0000 ROA not after: Mon 01 Jun 2026 02:04:30 +0000 asID: 58477 IP address blocks: 45.64.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c7:7a:99:fa:47:f7:ca:e9:93:35:b4:9d:90:f6:e6:d9:f1:1d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Jun 2 01:59:30 2025 GMT Not After : Jun 1 02:04:30 2026 GMT Subject: CN=8C97745C263B471956D60AEF8C6657184C5EC5BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:70:11:3e:7f:c6:aa:9c:a3:36:e4:1e:e0:90: a1:6b:14:9b:66:50:03:84:ed:13:6b:2d:60:32:47: ea:d7:5b:37:3e:69:5a:ac:9c:f6:cb:e5:de:28:fe: 1c:67:f7:0c:c5:8e:4b:39:ea:7a:a1:ec:18:ad:fe: 49:d9:0e:4b:47:69:1f:c6:24:ef:7d:f3:ad:1d:fe: cb:37:87:1f:47:26:8c:23:c1:82:84:c8:45:89:1b: 42:ac:c1:64:64:1b:8a:b4:f2:ab:ea:a6:c6:9d:98: 57:1c:d6:12:b7:f5:2e:0c:fd:1d:32:71:e8:2e:72: 96:c0:f8:73:7f:29:f9:fb:5b:7c:87:06:00:25:cd: 3f:dc:90:dd:40:b6:64:96:e6:c8:20:62:78:e7:21: 64:b9:91:a4:80:be:89:34:f6:06:f2:70:99:93:2c: 22:34:48:bb:33:2b:27:dd:fc:c5:33:64:6c:62:36: a4:84:09:1f:8a:44:39:de:d6:ac:35:61:9f:8d:f2: cc:62:78:2d:b4:be:d4:c5:fa:99:75:58:75:b3:e1: a9:4f:e4:36:16:4b:aa:20:6c:f0:26:5d:2a:4d:b5: f8:42:3e:bc:bf:ae:be:82:dd:bf:5e:93:80:0c:c0: 5e:cc:14:47:23:d9:ca:4c:6f:48:19:11:32:64:53: c2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:97:74:5C:26:3B:47:19:56:D6:0A:EF:8C:66:57:18:4C:5E:C5:BD X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/34352e36342e39382e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.98.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:fc:4a:e5:5f:43:98:be:46:9f:93:05:74:66:06:2e:16:e5: f5:01:ca:ee:da:3c:fe:52:e9:62:2c:1a:5b:77:3c:d1:15:1c: 3c:ca:46:45:5c:69:af:94:fd:6d:fe:f1:9f:d7:fc:36:dd:eb: e6:95:b1:d4:2b:87:c6:d6:ba:7f:a3:18:56:4a:54:f7:79:7f: 40:45:b9:4c:52:47:93:7c:44:b3:55:a5:39:a9:53:79:c9:d8: de:3b:ca:fd:fd:ff:53:e9:e5:91:c3:a0:bb:95:65:89:bf:34: 5f:4d:77:4c:13:18:fc:31:38:73:de:5b:f3:67:10:dd:fb:f3: a9:99:98:5d:4f:6a:56:ae:52:eb:f5:f2:25:ac:2e:1c:73:f9: e0:d7:ce:a5:26:2c:21:c6:a6:2e:99:da:ba:3c:75:de:fc:2d: f2:da:41:82:08:98:8e:b1:23:23:04:48:22:c9:d2:96:d5:cb: a6:94:e6:9a:b3:29:a4:4c:6e:45:43:16:77:7d:b6:66:4a:f7: 16:fe:0d:5a:5c:3d:9e:a5:e7:3b:5b:06:aa:ec:87:89:2a:05: d8:fc:63:f7:68:e9:b5:66:04:5e:73:5b:ef:90:aa:33:d1:69: 16:e7:29:a9:ac:d6:25:0c:c6:cb:c2:9a:c7:03:fc:24:6c:01: fb:cd:2b:52 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUSMd6mfpH98rpkzW0nZD25tnxHVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTA2MDIwMTU5MzBaFw0yNjA2MDEwMjA0MzBaMDMxMTAvBgNV BAMTKDhDOTc3NDVDMjYzQjQ3MTk1NkQ2MEFFRjhDNjY1NzE4NEM1RUM1QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfcBE+f8aqnKM25B7gkKFrFJtm UAOE7RNrLWAyR+rXWzc+aVqsnPbL5d4o/hxn9wzFjks56nqh7Bit/knZDktHaR/G JO99860d/ss3hx9HJowjwYKEyEWJG0KswWRkG4q08qvqpsadmFcc1hK39S4M/R0y cegucpbA+HN/Kfn7W3yHBgAlzT/ckN1AtmSW5sggYnjnIWS5kaSAvok09gbycJmT LCI0SLszKyfd/MUzZGxiNqSECR+KRDne1qw1YZ+N8sxieC20vtTF+pl1WHWz4alP 5DYWS6ogbPAmXSpNtfhCPry/rr6C3b9ek4AMwF7MFEcj2cpMb0gZETJkU8J7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUjJd0XCY7RxlW1grvjGZXGExexb0wHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMzQzNTJlMzYzNDJlMzkzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM1MzgzNDM3Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtQGIwDQYJKoZIhvcNAQEL BQADggEBAAv8SuVfQ5i+Rp+TBXRmBi4W5fUByu7aPP5S6WIsGlt3PNEVHDzKRkVc aa+U/W3+8Z/X/Dbd6+aVsdQrh8bWun+jGFZKVPd5f0BFuUxSR5N8RLNVpTmpU3nJ 2N47yv39/1Pp5ZHDoLuVZYm/NF9Nd0wTGPwxOHPeW/NnEN3786mZmF1PalauUuv1 8iWsLhxz+eDXzqUmLCHGpi6Z2ro8dd78LfLaQYIImI6xIyMESCLJ0pbVy6aU5pqz KaRMbkVDFnd9tmZK9xb+DVpcPZ6l5ztbBqrsh4kqBdj8Y/do6bVmBF5zW++QqjPR aRbnKams1iUMxsvCmscD/CRsAfvNK1I= -----END CERTIFICATE-----Generated at Sat Jun 7 22:52:32 2025 by rpki-client