$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32342d3234203d3e203535363637.roa File: 34392e3135362e35362e302f32342d3234203d3e203535363637.roa (raw, json) Hash identifier: QTtjZwFvhIv1xSth/5URjOWWXMaKhYuFu5hw4Cr+XZk= Subject key identifier: 9B:BC:16:90:2B:DC:B0:07:21:80:A5:CD:EF:BB:D1:62:11:9B:38:B5 Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Certificate serial: 26BB8F28DAC7E7F53D58547101D6A88CEB705386 Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32342d3234203d3e203535363637.roa Signing time: Thu 04 Sep 2025 09:00:52 +0000 ROA not before: Thu 04 Sep 2025 08:55:52 +0000 ROA not after: Thu 03 Sep 2026 09:00:52 +0000 asID: 55667 IP address blocks: 49.156.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 21:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:bb:8f:28:da:c7:e7:f5:3d:58:54:71:01:d6:a8:8c:eb:70:53:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Validity Not Before: Sep 4 08:55:52 2025 GMT Not After : Sep 3 09:00:52 2026 GMT Subject: CN=9BBC16902BDCB0072180A5CDEFBBD162119B38B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9f:94:d3:8e:eb:eb:5f:6c:31:0e:8b:b9:9c: b0:5f:a4:35:fe:49:b5:e0:92:a0:2c:16:65:1e:22: dc:f0:d6:db:6b:18:f4:1e:f2:61:66:6d:1e:0d:61: 83:7f:25:a7:63:07:63:a7:e9:09:e8:23:a3:7f:6f: 4c:a7:c5:df:01:8c:b5:0e:cd:1e:ce:82:ba:e2:ea: a1:ed:4d:7d:5e:a6:48:13:fb:78:2c:ac:bb:32:f0: 07:aa:ab:c1:b3:f5:dd:40:95:6e:4e:3c:c6:67:ac: b5:6b:5f:cf:31:06:62:68:af:17:3a:d3:60:7a:dd: 09:71:92:fe:05:17:51:79:43:35:68:17:eb:cb:b6: fb:51:21:b8:9b:95:b3:6f:30:ed:7a:2b:23:d6:62: 1d:d4:f6:dc:cc:dc:4a:63:f6:91:de:f5:65:14:66: e7:0f:d8:ba:c3:8b:90:37:9c:aa:6c:a9:4e:f6:f1: 81:7d:e4:31:21:c4:ca:d8:10:49:10:54:38:b6:92: 80:a2:18:07:e6:91:49:87:da:27:e8:33:a2:4f:ef: 39:8a:ab:e8:10:9c:19:7b:1c:c7:17:64:4d:a2:56: 92:eb:d4:40:58:ba:1c:ae:d2:09:ab:9f:65:d0:40: 20:f8:86:a0:24:63:ea:da:21:11:36:a2:e4:bf:c5: af:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BC:16:90:2B:DC:B0:07:21:80:A5:CD:EF:BB:D1:62:11:9B:38:B5 X509v3 Authority Key Identifier: keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35362e302f32342d3234203d3e203535363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.56.0/24 Signature Algorithm: sha256WithRSAEncryption 29:81:9e:54:1a:7f:41:07:11:3a:33:1a:e3:8f:32:d6:e9:5c: 7e:4f:29:62:44:ac:66:94:1c:d6:58:53:89:3f:41:3e:28:49: bd:6a:bf:3e:7c:aa:cd:fa:a2:f8:e5:4b:83:7a:50:24:6b:f0: 70:18:02:dd:44:48:da:ac:c3:27:2f:2b:d5:df:e6:db:1b:15: 76:c0:71:3c:d2:91:2e:ea:e2:fb:e3:0d:63:b9:d6:eb:44:1d: ce:86:6f:84:8a:22:31:c8:7b:29:1f:33:e6:1f:ce:14:bc:6e: 86:bb:3f:d9:81:07:ac:0d:4c:ce:23:8d:17:87:a5:4b:81:a3: 93:d0:ac:7d:d3:36:ab:f2:8a:e3:af:ef:d0:50:0c:d0:cd:0a: 0e:c3:56:46:53:e2:a7:3e:d8:ed:10:94:fe:06:fb:e6:9f:ba: 3b:4d:b6:25:21:d3:85:87:a8:3b:e0:b7:01:f2:32:99:8f:ec: c7:2d:83:a6:2d:cf:f7:9c:cd:20:ea:28:8c:93:d3:9f:70:fe: 65:6b:9e:f5:24:2b:b3:8d:90:25:c4:c0:0b:55:dc:75:f4:72: 47:77:1e:b2:3a:44:8f:72:02:84:a9:1f:53:9c:f8:e8:46:8c: 73:bb:25:5e:25:8f:4a:99:47:98:fa:b0:12:2b:71:4a:fd:b9: 8a:6e:71:5b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJruPKNrH5/U9WFRxAdaojOtwU4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZB OTczQTA2MDAeFw0yNTA5MDQwODU1NTJaFw0yNjA5MDMwOTAwNTJaMDMxMTAvBgNV BAMTKDlCQkMxNjkwMkJEQ0IwMDcyMTgwQTVDREVGQkJEMTYyMTE5QjM4QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTn5TTjuvrX2wxDou5nLBfpDX+ SbXgkqAsFmUeItzw1ttrGPQe8mFmbR4NYYN/JadjB2On6QnoI6N/b0ynxd8BjLUO zR7Ogrri6qHtTX1epkgT+3gsrLsy8Aeqq8Gz9d1AlW5OPMZnrLVrX88xBmJorxc6 02B63Qlxkv4FF1F5QzVoF+vLtvtRIbiblbNvMO16KyPWYh3U9tzM3Epj9pHe9WUU ZucP2LrDi5A3nKpsqU728YF95DEhxMrYEEkQVDi2koCiGAfmkUmH2ifoM6JP7zmK q+gQnBl7HMcXZE2iVpLr1EBYuhyu0gmrn2XQQCD4hqAkY+raIRE2ouS/xa91AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUm7wWkCvcsAchgKXN77vRYhGbOLUwHwYDVR0j BBgwFoAUXd3M3zr8SS9sxIcdYHKlr6lzoGAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjA2Y2Y1MC1hM2QxLTRjYzktOTI2MC05ODdiMmNhMGM5MjcvMC81REREQ0NERjNB RkM0OTJGNkNDNDg3MUQ2MDcyQTVBRkE5NzNBMDYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZBOTcz QTA2MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMDZjZjUwLWEzZDEtNGNjOS05 MjYwLTk4N2IyY2EwYzkyNy8wLzM0MzkyZTMxMzUzNjJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxnDgwDQYJKoZIhvcN AQELBQADggEBACmBnlQaf0EHETozGuOPMtbpXH5PKWJErGaUHNZYU4k/QT4oSb1q vz58qs36ovjlS4N6UCRr8HAYAt1ESNqswycvK9Xf5tsbFXbAcTzSkS7q4vvjDWO5 1utEHc6Gb4SKIjHIeykfM+YfzhS8boa7P9mBB6wNTM4jjReHpUuBo5PQrH3TNqvy iuOv79BQDNDNCg7DVkZT4qc+2O0QlP4G++afujtNtiUh04WHqDvgtwHyMpmP7Mct g6Ytz/eczSDqKIyT059w/mVrnvUkK7ONkCXEwAtV3HX0ckd3HrI6RI9yAoSpH1Oc +OhGjHO7JV4lj0qZR5j6sBIrcUr9uYpucVs= -----END CERTIFICATE-----Generated at Mon Sep 8 10:51:29 2025 by rpki-client