$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36342e302f32332d3233203d3e203338373533.roa File: 34352e3131352e36342e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: yYnHwJTysEq/R+AHpU1RZ6TbqPOKGDBM0+AwxU3rM4s= Subject key identifier: C1:52:99:6F:91:CE:E5:62:54:17:E8:E9:42:B6:60:0F:E8:EB:96:B1 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 5F9E7AA49FDE31A5FB2249DD535463899CA942EA Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36342e302f32332d3233203d3e203338373533.roa Signing time: Tue 03 Jun 2025 08:03:23 +0000 ROA not before: Tue 03 Jun 2025 07:58:23 +0000 ROA not after: Tue 02 Jun 2026 08:03:23 +0000 asID: 38753 IP address blocks: 45.115.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:9e:7a:a4:9f:de:31:a5:fb:22:49:dd:53:54:63:89:9c:a9:42:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 3 07:58:23 2025 GMT Not After : Jun 2 08:03:23 2026 GMT Subject: CN=C152996F91CEE5625417E8E942B6600FE8EB96B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e3:92:ad:26:65:8c:e2:2c:61:d8:61:6d:12: 58:9b:e8:f8:87:7c:af:ce:aa:c4:6e:0a:15:31:60: 1a:5f:1f:ec:95:71:a3:e1:9a:f1:94:15:bd:10:9c: 72:8f:ef:cc:f5:be:1c:fe:6d:a0:75:d9:bf:f2:c3: be:97:f6:a8:b8:08:c7:a1:d3:c1:b4:fe:4c:27:23: a5:84:6c:c6:14:6f:45:32:97:01:4b:9b:e3:19:45: 52:ff:a3:ad:92:4e:bc:9c:ae:c6:91:69:99:7d:ac: 22:ff:d6:c4:0f:83:64:39:92:75:cf:7b:6b:f4:92: 59:3e:e5:f1:35:cf:5a:11:b4:8a:9c:92:f0:38:ab: a9:9a:5c:68:84:f4:1d:d5:e9:6e:92:09:86:f3:f7: 8e:36:da:00:46:ba:4a:9d:e5:b3:83:dd:16:f2:48: 40:3d:0f:f7:26:aa:b6:32:b3:b3:87:53:b6:bd:95: 06:5e:bb:08:9f:46:6f:b2:c8:c3:49:b7:ee:ea:a7: 24:ee:82:e0:8a:c0:23:1b:51:45:91:14:af:f7:62: e0:72:cd:85:83:c9:8d:ba:08:48:30:0d:3c:38:8d: 8f:2d:5c:25:e5:6b:37:b3:3d:b5:44:e3:94:c1:6b: 55:d7:11:d5:78:ec:c6:83:47:15:53:1f:6d:8b:da: 66:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:52:99:6F:91:CE:E5:62:54:17:E8:E9:42:B6:60:0F:E8:EB:96:B1 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36342e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.115.64.0/23 Signature Algorithm: sha256WithRSAEncryption 82:ef:df:c9:7a:1d:19:f4:c5:ec:9e:d2:63:22:77:79:0e:5f: 76:c5:15:bd:7a:03:35:97:2b:f6:fd:c7:c0:78:aa:03:5c:9b: 6c:18:63:45:7a:1b:02:08:cc:91:ec:77:4c:fe:b3:88:b2:ec: b8:4d:a9:dd:a2:29:a5:99:ba:7a:23:1a:a4:1d:7a:19:0b:f2: d1:43:13:83:83:cf:c5:fb:59:95:1e:62:f4:bf:7b:ac:e3:45: c5:92:69:97:6f:75:83:1b:f1:55:9a:93:4e:f3:a3:f5:75:19: d9:e2:0d:7a:82:cb:80:15:0b:33:13:a2:58:31:2e:7e:38:d1: 15:e0:65:f1:4f:1e:df:83:c6:92:32:01:fc:aa:11:e3:3f:89: 35:87:b7:4c:64:a8:5a:d6:d8:95:ae:6d:3a:53:ed:1f:ea:40: bb:80:8e:1b:13:a4:61:0e:6d:77:41:0f:da:3a:e0:27:35:1c: 97:9f:2d:77:57:56:4c:37:1f:df:28:e6:88:43:8d:3e:d2:b2: 99:46:8c:79:1e:8d:3a:7e:6c:c4:17:c2:7d:d2:a9:3f:86:18: e9:41:42:50:7a:c7:f4:74:07:90:d9:2d:08:b8:a3:60:27:71: 3f:b2:b0:1f:83:d1:fe:ef:17:67:8e:1a:78:dc:29:8d:8c:a4: bf:68:b4:e7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUX556pJ/eMaX7IkndU1RjiZypQuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA2MDMwNzU4MjNaFw0yNjA2MDIwODAzMjNaMDMxMTAvBgNV BAMTKEMxNTI5OTZGOTFDRUU1NjI1NDE3RThFOTQyQjY2MDBGRThFQjk2QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX45KtJmWM4ixh2GFtElib6PiH fK/OqsRuChUxYBpfH+yVcaPhmvGUFb0QnHKP78z1vhz+baB12b/yw76X9qi4CMeh 08G0/kwnI6WEbMYUb0UylwFLm+MZRVL/o62STrycrsaRaZl9rCL/1sQPg2Q5knXP e2v0klk+5fE1z1oRtIqckvA4q6maXGiE9B3V6W6SCYbz94422gBGukqd5bOD3Rby SEA9D/cmqrYys7OHU7a9lQZeuwifRm+yyMNJt+7qpyTuguCKwCMbUUWRFK/3YuBy zYWDyY26CEgwDTw4jY8tXCXlazezPbVE45TBa1XXEdV47MaDRxVTH22L2matAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUwVKZb5HO5WJUF+jpQrZgD+jrlrEwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzM0MzUyZTMxMzEzNTJlMzYzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtc0AwDQYJKoZIhvcN AQELBQADggEBAILv38l6HRn0xeye0mMid3kOX3bFFb16AzWXK/b9x8B4qgNcm2wY Y0V6GwIIzJHsd0z+s4iy7LhNqd2iKaWZunojGqQdehkL8tFDE4ODz8X7WZUeYvS/ e6zjRcWSaZdvdYMb8VWak07zo/V1GdniDXqCy4AVCzMTolgxLn440RXgZfFPHt+D xpIyAfyqEeM/iTWHt0xkqFrW2JWubTpT7R/qQLuAjhsTpGEObXdBD9o64Cc1HJef LXdXVkw3H98o5ohDjT7SsplGjHkejTp+bMQXwn3SqT+GGOlBQlB6x/R0B5DZLQi4 o2AncT+ysB+D0f7vF2eOGnjcKY2MpL9otOc= -----END CERTIFICATE-----Generated at Sat Jun 7 15:26:50 2025 by rpki-client