$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35372e302f32342d3234203d3e203535363637.roa File: 34392e3135362e35372e302f32342d3234203d3e203535363637.roa (raw, json) Hash identifier: PyngY50Jc6jfJpjhLI7AvXD7abuw+Cb9szwCdvvMqIM= Subject key identifier: 76:94:E0:75:FE:9C:5B:35:8F:1D:4F:F7:82:EE:0E:83:44:60:31:40 Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Certificate serial: 795A0A9E8C7B429166E1F9325BCB7FC9F78CF4B0 Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35372e302f32342d3234203d3e203535363637.roa Signing time: Thu 04 Sep 2025 09:00:52 +0000 ROA not before: Thu 04 Sep 2025 08:55:52 +0000 ROA not after: Thu 03 Sep 2026 09:00:52 +0000 asID: 55667 IP address blocks: 49.156.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 21:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:5a:0a:9e:8c:7b:42:91:66:e1:f9:32:5b:cb:7f:c9:f7:8c:f4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060 Validity Not Before: Sep 4 08:55:52 2025 GMT Not After : Sep 3 09:00:52 2026 GMT Subject: CN=7694E075FE9C5B358F1D4FF782EE0E8344603140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:91:6c:fb:c3:d6:d4:0b:35:c1:37:4a:1d: c9:30:a4:ea:c7:32:91:df:38:74:25:82:07:4e:c6: 27:05:7e:61:73:51:8d:a6:0b:89:9e:5f:bd:8c:5c: b7:82:12:1a:0a:2f:97:7b:86:90:78:8b:84:e6:78: 3a:a2:29:77:2a:13:97:51:4d:d4:b9:73:8d:d3:ef: 5e:06:45:e2:0f:20:9a:f6:02:83:e3:3c:f8:27:1d: ac:89:07:4b:2f:c8:48:10:53:bf:b6:9d:03:13:66: b2:d8:74:13:d5:d6:c3:5d:26:fc:27:dd:8e:06:83: 04:d2:4e:57:c8:2c:2a:fd:d9:e8:5f:95:22:e6:b3: 86:2d:96:d3:88:92:bd:b2:bd:71:54:79:f3:71:89: eb:db:3c:a1:f0:de:69:db:66:45:8e:6d:55:ef:39: 73:c7:d4:33:ab:b0:cd:16:c5:47:4a:a9:cc:bb:c3: 31:17:a4:c4:f7:90:3a:cd:6b:4c:de:b0:5f:94:5e: 00:87:69:c5:00:1f:16:33:e2:a9:a0:c3:9b:4e:be: d2:b2:b5:09:52:ea:cc:7a:31:2d:c3:59:f2:c7:3c: ad:dd:53:a9:dd:fe:3c:c0:d1:92:2f:d7:f9:51:bf: 13:0c:38:8b:05:aa:34:5d:fa:cb:7e:47:09:b5:77: 04:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:94:E0:75:FE:9C:5B:35:8F:1D:4F:F7:82:EE:0E:83:44:60:31:40 X509v3 Authority Key Identifier: keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35372e302f32342d3234203d3e203535363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.57.0/24 Signature Algorithm: sha256WithRSAEncryption 20:89:68:e5:68:02:35:40:42:b9:97:f3:6a:e8:c8:00:1a:06: 62:04:7b:e4:6f:79:7b:06:c3:3e:d6:cc:e2:f7:8e:d0:3e:a1: 22:f2:94:48:bb:43:e3:8d:e1:72:8f:2b:4e:30:16:63:13:c3: 4d:4e:11:10:b2:bf:ca:ac:22:95:96:a9:17:1c:a5:6f:50:bd: 7c:c3:2f:e2:e5:9d:c6:19:4d:cc:8d:8e:40:b5:8c:2c:c1:cf: 13:ed:81:83:29:88:82:8c:d1:08:71:7d:7c:a6:8c:5b:d9:21: ac:99:a7:16:a3:c4:9f:1d:06:92:77:23:f3:ba:fb:52:f0:f0: 21:99:f4:46:cc:7a:f7:16:45:c2:65:19:a8:2b:56:1e:4a:67: e0:2e:1e:8e:f0:b5:50:84:ab:e3:65:bc:d7:bf:cb:d0:39:4a: 84:10:4a:c6:6c:3f:e7:19:94:1d:09:b2:be:44:d7:ff:6b:68: 94:4e:d7:c1:0f:76:7f:da:a6:67:4b:4f:f4:d9:ef:ee:e3:73: fe:87:09:4c:7f:ed:32:bf:15:94:d3:08:f5:c4:c4:ed:e8:94: 36:f5:3e:ae:5b:6d:76:4a:3c:4c:fe:e7:74:6a:05:70:e0:45: 6a:9f:5f:8b:b7:ae:cc:02:e9:25:3c:33:3f:69:14:fc:32:2f: 71:08:c3:27 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeVoKnox7QpFm4fkyW8t/yfeM9LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZB OTczQTA2MDAeFw0yNTA5MDQwODU1NTJaFw0yNjA5MDMwOTAwNTJaMDMxMTAvBgNV BAMTKDc2OTRFMDc1RkU5QzVCMzU4RjFENEZGNzgyRUUwRTgzNDQ2MDMxNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPM5Fs+8PW1As1wTdKHckwpOrH MpHfOHQlggdOxicFfmFzUY2mC4meX72MXLeCEhoKL5d7hpB4i4TmeDqiKXcqE5dR TdS5c43T714GReIPIJr2AoPjPPgnHayJB0svyEgQU7+2nQMTZrLYdBPV1sNdJvwn 3Y4GgwTSTlfILCr92ehflSLms4YtltOIkr2yvXFUefNxievbPKHw3mnbZkWObVXv OXPH1DOrsM0WxUdKqcy7wzEXpMT3kDrNa0zesF+UXgCHacUAHxYz4qmgw5tOvtKy tQlS6sx6MS3DWfLHPK3dU6nd/jzA0ZIv1/lRvxMMOIsFqjRd+st+Rwm1dwQzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdpTgdf6cWzWPHU/3gu4Og0RgMUAwHwYDVR0j BBgwFoAUXd3M3zr8SS9sxIcdYHKlr6lzoGAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MjA2Y2Y1MC1hM2QxLTRjYzktOTI2MC05ODdiMmNhMGM5MjcvMC81REREQ0NERjNB RkM0OTJGNkNDNDg3MUQ2MDcyQTVBRkE5NzNBMDYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURERENDREYzQUZDNDkyRjZDQzQ4NzFENjA3MkE1QUZBOTcz QTA2MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMDZjZjUwLWEzZDEtNGNjOS05 MjYwLTk4N2IyY2EwYzkyNy8wLzM0MzkyZTMxMzUzNjJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxnDkwDQYJKoZIhvcN AQELBQADggEBACCJaOVoAjVAQrmX82royAAaBmIEe+RveXsGwz7WzOL3jtA+oSLy lEi7Q+ON4XKPK04wFmMTw01OERCyv8qsIpWWqRccpW9QvXzDL+LlncYZTcyNjkC1 jCzBzxPtgYMpiIKM0QhxfXymjFvZIayZpxajxJ8dBpJ3I/O6+1Lw8CGZ9EbMevcW RcJlGagrVh5KZ+AuHo7wtVCEq+NlvNe/y9A5SoQQSsZsP+cZlB0Jsr5E1/9raJRO 18EPdn/apmdLT/TZ7+7jc/6HCUx/7TK/FZTTCPXExO3olDb1Pq5bbXZKPEz+53Rq BXDgRWqfX4u3rswC6SU8Mz9pFPwyL3EIwyc= -----END CERTIFICATE-----Generated at Mon Sep 8 10:45:23 2025 by rpki-client