$ rpki-client -vvf repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa File: 34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa (raw, json) Hash identifier: PuA0O7on+Tv+yi4m5sFC8JVnpsZv77062xaCNSQ10PY= Subject key identifier: A5:86:7A:8D:BC:43:1C:AC:DB:34:62:4B:EC:78:85:8E:24:AD:8E:FF Certificate issuer: /CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Certificate serial: 2ED91BD9DEA2F9B704F5F7D5883B32B7BDBEA8F6 Authority key identifier: 4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa Signing time: Mon 02 Jun 2025 02:03:57 +0000 ROA not before: Mon 02 Jun 2025 01:58:57 +0000 ROA not after: Mon 01 Jun 2026 02:03:57 +0000 asID: 135457 IP address blocks: 45.120.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d9:1b:d9:de:a2:f9:b7:04:f5:f7:d5:88:3b:32:b7:bd:be:a8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DD0C95B43B8B653601FED39AB010E1DD0DC17F2 Validity Not Before: Jun 2 01:58:57 2025 GMT Not After : Jun 1 02:03:57 2026 GMT Subject: CN=A5867A8DBC431CACDB34624BEC78858E24AD8EFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:01:62:c2:20:6f:ce:c2:fe:fc:0f:83:9b:aa: 34:6d:4e:11:28:5a:8b:bd:ee:0c:b5:89:5a:ea:17: db:c6:23:0a:4e:47:d6:74:5e:d3:30:95:c6:fa:94: 26:ac:15:b5:ba:5a:d8:4e:f1:cb:e9:70:e2:1f:b8: 16:ed:f3:86:aa:16:8e:82:f6:95:89:bc:0f:7c:be: 09:3b:34:6f:9b:f2:4f:c8:38:7d:cc:d2:16:6b:14: cb:9d:df:7a:85:d4:fd:85:6f:7f:8f:1b:c6:de:fb: a0:4d:69:92:b2:cb:2f:04:30:a5:f9:02:6a:60:e5: 99:e4:65:51:25:8d:bc:99:41:ef:7c:eb:9d:53:52: 4e:8b:88:80:4f:aa:12:b0:25:56:20:6b:f6:a0:f7: 8d:22:a4:f2:fd:b2:d4:cb:10:92:e1:2c:de:63:9a: 7a:bd:9a:c5:a2:7e:7c:8b:68:f7:05:02:54:9c:8a: a7:e6:45:f6:b1:f1:54:26:8a:33:c9:89:9a:e1:ef: 79:f7:4b:b1:64:9b:ac:90:14:7f:8d:58:56:42:dd: 68:00:0b:70:ca:21:f3:eb:3e:b8:4f:d4:c4:af:11: 24:ff:84:08:ce:c5:2a:69:47:56:48:0e:63:27:41: 8e:1e:6c:0c:f0:2b:f3:bb:01:93:39:1f:55:ba:84: 4d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:86:7A:8D:BC:43:1C:AC:DB:34:62:4B:EC:78:85:8E:24:AD:8E:FF X509v3 Authority Key Identifier: keyid:4D:D0:C9:5B:43:B8:B6:53:60:1F:ED:39:AB:01:0E:1D:D0:DC:17:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DD0C95B43B8B653601FED39AB010E1DD0DC17F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82780f85-ef2f-4cf8-a4b8-5225c45b96a1/0/34352e3132302e3234342e302f32322d3234203d3e20313335343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.120.244.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:3b:8d:43:fc:ce:62:0b:04:71:df:00:04:43:b7:c2:a1:22: ba:82:ca:70:b3:4e:f6:94:22:b2:fe:21:d6:5c:1a:52:62:a9: 9f:c1:24:62:15:66:84:95:d6:38:ec:84:bb:be:11:98:de:9a: c3:f6:3c:50:93:79:35:f8:60:1f:c5:07:31:f8:f5:82:6f:22: 57:98:40:8c:d0:f2:dc:67:65:74:a0:75:d6:57:e8:e8:e0:10: 73:26:80:86:f4:60:3c:2f:01:e8:5b:ee:11:2f:e1:3c:2b:a2: e2:8d:c8:3c:2f:1d:e8:67:74:85:f9:10:ac:21:76:b7:b5:88: 89:e8:06:46:08:4d:14:4b:68:ca:38:8b:43:f7:65:8a:bf:05: 12:9d:ea:0a:5b:f5:7c:56:ae:67:0e:47:cb:c9:71:6d:b5:02: a6:29:05:a8:d1:cd:a1:3d:a9:15:95:3f:78:c0:f1:b2:fe:bb: 3d:1c:4f:0f:dd:23:63:f4:e8:45:3c:cc:95:ed:ca:cb:c1:87: 11:52:4d:eb:12:08:f9:1a:69:eb:37:50:b7:c0:8c:78:75:fa: e6:ab:00:49:e0:c2:83:16:4c:1d:ef:e7:42:97:34:f5:3f:7f: 70:0e:d6:44:42:b9:ed:4a:cc:ff:2a:2d:5f:8d:80:30:f8:58: e3:ce:df:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULtkb2d6i+bcE9ffViDsyt72+qPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMURE MERDMTdGMjAeFw0yNTA2MDIwMTU4NTdaFw0yNjA2MDEwMjAzNTdaMDMxMTAvBgNV BAMTKEE1ODY3QThEQkM0MzFDQUNEQjM0NjI0QkVDNzg4NThFMjRBRDhFRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5AWLCIG/Owv78D4ObqjRtThEo Wou97gy1iVrqF9vGIwpOR9Z0XtMwlcb6lCasFbW6WthO8cvpcOIfuBbt84aqFo6C 9pWJvA98vgk7NG+b8k/IOH3M0hZrFMud33qF1P2Fb3+PG8be+6BNaZKyyy8EMKX5 Ampg5ZnkZVEljbyZQe98651TUk6LiIBPqhKwJVYga/ag940ipPL9stTLEJLhLN5j mnq9msWifnyLaPcFAlSciqfmRfax8VQmijPJiZrh73n3S7Fkm6yQFH+NWFZC3WgA C3DKIfPrPrhP1MSvEST/hAjOxSppR1ZIDmMnQY4ebAzwK/O7AZM5H1W6hE3ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpYZ6jbxDHKzbNGJL7HiFjiStjv8wHwYDVR0j BBgwFoAUTdDJW0O4tlNgH+05qwEOHdDcF/IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Mjc4MGY4NS1lZjJmLTRjZjgtYTRiOC01MjI1YzQ1Yjk2YTEvMC80REQwQzk1QjQz QjhCNjUzNjAxRkVEMzlBQjAxMEUxREQwREMxN0YyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEREMEM5NUI0M0I4QjY1MzYwMUZFRDM5QUIwMTBFMUREMERD MTdGMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNzgwZjg1LWVmMmYtNGNmOC1h NGI4LTUyMjVjNDViOTZhMS8wLzM0MzUyZTMxMzIzMDJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXj0MA0GCSqG SIb3DQEBCwUAA4IBAQAtO41D/M5iCwRx3wAEQ7fCoSK6gspws072lCKy/iHWXBpS YqmfwSRiFWaEldY47IS7vhGY3prD9jxQk3k1+GAfxQcx+PWCbyJXmECM0PLcZ2V0 oHXWV+jo4BBzJoCG9GA8LwHoW+4RL+E8K6Lijcg8Lx3oZ3SF+RCsIXa3tYiJ6AZG CE0US2jKOItD92WKvwUSneoKW/V8Vq5nDkfLyXFttQKmKQWo0c2hPakVlT94wPGy /rs9HE8P3SNj9OhFPMyV7crLwYcRUk3rEgj5GmnrN1C3wIx4dfrmqwBJ4MKDFkwd 7+dClzT1P39wDtZEQrntSsz/Ki1fjYAw+Fjjzt/+ -----END CERTIFICATE-----Generated at Sat Jun 7 05:00:18 2025 by rpki-client