$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32332d3233203d3e203535363637.roa File: 34392e3135362e35362e302f32332d3233203d3e203535363637.roa (raw, json) Hash identifier: Pm/YE5XlZI4a5R3H7gW8azydouGoRXTsVjZR6IqTpxU= Subject key identifier: 9D:29:1E:D9:48:A6:6F:45:40:1E:40:70:94:06:7B:64:23:0E:FA:C0 Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Certificate serial: 56F37FA34EBA59704B76D31EDB71E64F3EEBB39C Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32332d3233203d3e203535363637.roa Signing time: Fri 05 Sep 2025 04:00:02 +0000 ROA not before: Fri 05 Sep 2025 03:55:02 +0000 ROA not after: Fri 04 Sep 2026 04:00:02 +0000 asID: 55667 IP address blocks: 49.156.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 21:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f3:7f:a3:4e:ba:59:70:4b:76:d3:1e:db:71:e6:4f:3e:eb:b3:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Validity Not Before: Sep 5 03:55:02 2025 GMT Not After : Sep 4 04:00:02 2026 GMT Subject: CN=9D291ED948A66F45401E407094067B64230EFAC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:16:35:99:18:ce:a6:0d:89:44:6c:90:7a:3c: 52:05:9c:17:43:cb:2a:77:64:eb:67:2e:84:6a:fe: 89:de:fb:ce:a3:48:b8:fa:6c:ff:04:32:c4:41:fb: 52:0e:91:69:86:bf:3c:c2:23:9f:64:76:d5:78:b2: bf:63:0a:db:04:c2:a8:dc:25:df:5d:02:7e:6e:63: bd:75:0a:65:88:be:bb:d0:94:33:e0:59:5b:a7:e4: d3:8d:c7:be:a6:12:db:00:7f:73:b0:26:f6:14:14: ec:13:fb:73:5d:2b:d0:3e:8f:bf:38:11:ad:49:9e: b7:78:71:8e:df:16:00:d9:b1:85:d1:3d:0d:db:0f: c7:c5:e0:8c:35:68:14:6f:54:51:92:4a:c9:76:77: 26:e8:5f:0c:f3:c4:d0:94:94:50:52:ab:3f:1c:f2: 36:5e:c1:bb:cb:9a:e2:76:74:a0:89:75:da:9d:58: 2a:07:20:7f:18:29:38:a8:54:92:5c:50:fb:e6:03: d2:27:65:96:19:09:c1:0c:ec:7b:84:29:bb:18:9a: 17:4e:7e:94:f4:7f:97:b2:a8:57:7d:61:92:cd:77: 29:c6:cc:9f:d7:c8:2d:fc:3d:53:2d:f0:01:83:68: bd:11:a6:d1:09:d0:a8:0d:22:8d:fa:24:7c:57:ad: b4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:29:1E:D9:48:A6:6F:45:40:1E:40:70:94:06:7B:64:23:0E:FA:C0 X509v3 Authority Key Identifier: keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32332d3233203d3e203535363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.56.0/23 Signature Algorithm: sha256WithRSAEncryption 26:07:0e:f7:ea:d6:5a:4f:1d:b7:b6:e3:43:0d:fb:9a:de:8c: 6b:72:6f:31:9f:73:a1:c2:48:2d:f6:dd:de:5c:9b:5b:4c:a6: 87:0c:f5:71:b4:af:cc:82:1f:1b:ab:b5:ba:e4:53:79:2e:d8: 7a:48:ec:a7:26:25:a2:7f:b2:01:ae:32:52:00:a0:07:c9:c8: c4:97:ca:fd:1e:0c:d4:24:c9:e4:79:78:5f:4d:59:a1:89:71: 48:92:f5:f8:16:70:be:88:4e:d7:30:d5:dd:3a:a8:c4:22:3f: 80:22:32:58:79:64:96:b7:61:0e:49:ac:60:d1:14:ff:9e:b9: c1:70:a4:8e:49:d2:07:92:63:62:8c:44:3b:81:d6:3a:46:9f: 93:c9:1e:62:7a:68:bb:4f:51:e3:f6:cc:c3:31:d3:d0:84:b7: b9:09:0a:02:23:62:f4:42:a2:4e:93:10:bc:29:29:d9:b5:2c: dd:9e:a5:15:23:4e:f4:02:63:15:67:3e:8e:8d:ce:0a:70:43: c7:ec:2e:ee:49:5d:c4:8b:97:06:6e:ce:80:b6:2d:3a:08:4f: 29:6c:e5:e5:cd:30:83:eb:65:6d:71:86:8b:aa:33:ee:4f:0b: dc:54:a2:bf:d5:72:2b:1e:f4:31:a3:e6:46:24:a5:fa:6c:2e: 3a:a0:68:f0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVvN/o066WXBLdtMe23HmTz7rs5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZB OTczQTA2MDAeFw0yNTA5MDUwMzU1MDJaFw0yNjA5MDQwNDAwMDJaMDMxMTAvBgNV BAMTKDlEMjkxRUQ5NDhBNjZGNDU0MDFFNDA3MDk0MDY3QjY0MjMwRUZBQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMFjWZGM6mDYlEbJB6PFIFnBdD yyp3ZOtnLoRq/one+86jSLj6bP8EMsRB+1IOkWmGvzzCI59kdtV4sr9jCtsEwqjc Jd9dAn5uY711CmWIvrvQlDPgWVun5NONx76mEtsAf3OwJvYUFOwT+3NdK9A+j784 Ea1Jnrd4cY7fFgDZsYXRPQ3bD8fF4Iw1aBRvVFGSSsl2dyboXwzzxNCUlFBSqz8c 8jZewbvLmuJ2dKCJddqdWCoHIH8YKTioVJJcUPvmA9InZZYZCcEM7HuEKbsYmhdO fpT0f5eyqFd9YZLNdynGzJ/XyC38PVMt8AGDaL0RptEJ0KgNIo36JHxXrbQnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnSke2Uimb0VAHkBwlAZ7ZCMO+sAwHwYDVR0j BBgwFoAUXd3M3zr8SS9sxIcdYHKlr6lzoGAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjA2Y2Y1MC1hM2QxLTRjYzktOTI2MC05ODdiMmNhMGM5MjcvMC81REREQ0NERjNB RkM0OTJGNkNDNDg3MUQ2MDcyQTVBRkE5NzNBMDYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZBOTcz QTA2MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMDZjZjUwLWEzZDEtNGNjOS05 MjYwLTk4N2IyY2EwYzkyNy8wLzM0MzkyZTMxMzUzNjJlMzUzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzUzNjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExnDgwDQYJKoZIhvcN AQELBQADggEBACYHDvfq1lpPHbe240MN+5rejGtybzGfc6HCSC323d5cm1tMpocM 9XG0r8yCHxurtbrkU3ku2HpI7KcmJaJ/sgGuMlIAoAfJyMSXyv0eDNQkyeR5eF9N WaGJcUiS9fgWcL6ITtcw1d06qMQiP4AiMlh5ZJa3YQ5JrGDRFP+eucFwpI5J0geS Y2KMRDuB1jpGn5PJHmJ6aLtPUeP2zMMx09CEt7kJCgIjYvRCok6TELwpKdm1LN2e pRUjTvQCYxVnPo6NzgpwQ8fsLu5JXcSLlwZuzoC2LToITyls5eXNMIPrZW1xhouq M+5PC9xUor/Vcise9DGj5kYkpfpsLjqgaPA= -----END CERTIFICATE-----Generated at Mon Sep 8 10:50:35 2025 by rpki-client