$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa File: 34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: b1YIXb394hbQaEvgUpDDWq1EiTyAhc+KvTRls7LdNdE= Subject key identifier: A9:14:9C:06:A8:62:90:0A:FB:11:09:C5:01:08:70:8A:01:82:AC:EB Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 2F624EDC4EC846413BAF71DA5CC510B54F4990C9 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:38 +0000 ROA not before: Mon 02 Jun 2025 01:57:38 +0000 ROA not after: Mon 01 Jun 2026 02:02:38 +0000 asID: 131745 IP address blocks: 49.128.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 01:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:62:4e:dc:4e:c8:46:41:3b:af:71:da:5c:c5:10:b5:4f:49:90:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:38 2025 GMT Not After : Jun 1 02:02:38 2026 GMT Subject: CN=A9149C06A862900AFB1109C50108708A0182ACEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f9:a8:23:a7:16:e4:53:7b:9b:cc:02:fd:ce: 61:26:7b:fe:c1:74:33:5e:48:92:0a:ee:03:ae:c3: 2d:0c:6b:87:85:15:e5:45:63:7c:aa:d5:b9:04:ec: 5d:da:af:cd:76:86:47:04:30:2b:ce:f8:e5:b4:cc: 37:02:12:af:5f:20:98:ee:cb:16:80:b9:4e:ac:e5: 33:81:23:9d:a2:86:7b:c3:d4:cf:8a:6b:2d:8b:e5: fe:2a:47:4a:fa:4b:77:94:46:ec:6f:85:13:62:a0: fa:e3:27:64:65:7a:7d:e4:51:60:40:97:fc:66:a0: 62:b9:38:59:d3:f3:ce:a5:db:9c:1a:f5:76:06:38: 6b:bb:20:09:fb:26:46:f7:c2:8b:bd:91:58:57:74: 8d:5c:ee:b0:0f:9d:1a:42:8b:55:c6:bb:13:8c:22: 76:93:b7:aa:2c:22:3f:74:36:6a:58:76:bc:f1:f1: 1e:4a:20:36:fc:21:99:b7:e2:50:3c:00:73:93:c9: 25:40:0f:86:e2:69:1e:1f:f3:a3:d7:8b:1e:49:7a: fe:6c:80:37:81:6a:d8:69:30:5e:4f:87:4d:a4:87: 4a:cf:ba:be:cc:46:3a:67:4b:42:b0:17:ca:4e:d2: 2a:14:08:8f:2c:a2:00:b9:67:ee:d4:1d:2c:ed:bc: 40:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:14:9C:06:A8:62:90:0A:FB:11:09:C5:01:08:70:8A:01:82:AC:EB X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.184.0/22 Signature Algorithm: sha256WithRSAEncryption af:7f:45:f1:b6:0b:16:bb:11:c4:42:25:70:ec:17:cd:74:fa: c3:cc:61:3c:56:7b:d0:48:79:fd:57:71:cb:f3:71:d2:b9:51: 4f:3a:8f:22:23:72:b5:49:7e:66:a1:f2:aa:ea:72:9f:0f:87: 7e:28:67:64:c9:1c:4e:1b:ec:16:2b:c3:e3:67:f2:b5:d0:82: 15:99:0d:aa:a2:85:88:b0:21:ca:6e:ba:f8:7f:3f:6c:a0:ac: fb:0f:19:2a:d6:bf:22:5b:a2:42:1a:0f:9e:39:2f:8b:cf:b4: bf:7b:2c:1b:2a:b3:77:d8:6a:37:8c:fb:bc:d2:3a:eb:0c:03: 0c:1c:86:d2:68:93:d7:60:b3:20:7f:70:53:92:7d:97:1d:a4: 77:0e:fa:73:89:82:b4:37:77:8f:84:0d:92:e9:3a:9f:d3:c4: 3e:80:c2:4c:9d:80:f2:d2:cb:31:59:e9:a3:0d:58:35:a7:6c: bb:b4:e6:fc:1c:88:6b:c0:c1:80:81:8b:4e:55:f5:df:64:f4: 68:22:ce:4b:3d:0c:87:06:a4:e5:07:37:a9:1d:b0:55:89:0d: 03:70:e3:5c:29:28:65:45:f9:05:ef:9f:60:71:8f:8d:1d:d0: dc:15:45:1a:2b:a1:82:44:17:a1:1d:ed:1f:dc:60:e5:1a:ef: 26:0a:fb:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL2JO3E7IRkE7r3HaXMUQtU9JkMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzhaFw0yNjA2MDEwMjAyMzhaMDMxMTAvBgNV BAMTKEE5MTQ5QzA2QTg2MjkwMEFGQjExMDlDNTAxMDg3MDhBMDE4MkFDRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg+agjpxbkU3ubzAL9zmEme/7B dDNeSJIK7gOuwy0Ma4eFFeVFY3yq1bkE7F3ar812hkcEMCvO+OW0zDcCEq9fIJju yxaAuU6s5TOBI52ihnvD1M+Kay2L5f4qR0r6S3eURuxvhRNioPrjJ2Rlen3kUWBA l/xmoGK5OFnT886l25wa9XYGOGu7IAn7Jkb3wou9kVhXdI1c7rAPnRpCi1XGuxOM InaTt6osIj90NmpYdrzx8R5KIDb8IZm34lA8AHOTySVAD4biaR4f86PXix5Jev5s gDeBathpMF5Ph02kh0rPur7MRjpnS0KwF8pO0ioUCI8sogC5Z+7UHSztvEBJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqRScBqhikAr7EQnFAQhwigGCrOswHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzM0MzkyZTMxMzIzODJlMzEzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCMYC4MA0GCSqG SIb3DQEBCwUAA4IBAQCvf0XxtgsWuxHEQiVw7BfNdPrDzGE8VnvQSHn9V3HL83HS uVFPOo8iI3K1SX5mofKq6nKfD4d+KGdkyRxOG+wWK8PjZ/K10IIVmQ2qooWIsCHK brr4fz9soKz7Dxkq1r8iW6JCGg+eOS+Lz7S/eywbKrN32Go3jPu80jrrDAMMHIbS aJPXYLMgf3BTkn2XHaR3DvpziYK0N3ePhA2S6Tqf08Q+gMJMnYDy0ssxWemjDVg1 p2y7tOb8HIhrwMGAgYtOVfXfZPRoIs5LPQyHBqTlBzepHbBViQ0DcONcKShlRfkF 759gcY+NHdDcFUUaK6GCRBehHe0f3GDlGu8mCvv4 -----END CERTIFICATE-----Generated at Fri Oct 24 22:30:59 2025 by rpki-client