$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36362e302f32332d3233203d3e203338373533.roa File: 34352e3131352e36362e302f32332d3233203d3e203338373533.roa (raw, json) Hash identifier: 9++l08KZW1/42zUX2Ep2yuwdvdDkJ0rNmSYCMZ5xoKQ= Subject key identifier: 54:A4:95:94:0C:D9:97:9B:D9:10:D1:F3:80:AC:54:50:B1:F0:83:59 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 5CC240EDD2DA86C371725C7C3469C3F1A33BD47F Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36362e302f32332d3233203d3e203338373533.roa Signing time: Tue 03 Jun 2025 08:03:24 +0000 ROA not before: Tue 03 Jun 2025 07:58:24 +0000 ROA not after: Tue 02 Jun 2026 08:03:24 +0000 asID: 38753 IP address blocks: 45.115.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 16:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c2:40:ed:d2:da:86:c3:71:72:5c:7c:34:69:c3:f1:a3:3b:d4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jun 3 07:58:24 2025 GMT Not After : Jun 2 08:03:24 2026 GMT Subject: CN=54A495940CD9979BD910D1F380AC5450B1F08359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8e:c8:3e:a6:aa:6d:31:ea:16:10:9e:1f:8f: 0f:b4:07:57:d4:20:dc:93:7d:7c:a4:6d:72:4d:4b: 67:48:db:0a:f6:98:d0:29:2f:5b:b0:d3:d3:f2:fe: 2c:4b:28:a2:e3:29:e9:b1:3a:67:23:c8:70:08:92: 9d:00:8b:e2:46:36:31:3e:b0:e7:e1:b7:94:95:7b: 45:25:d8:d1:d2:c1:8d:68:34:91:18:2f:a0:e5:41: 5d:f5:33:34:e0:92:21:c4:53:19:db:ef:9f:aa:86: 2b:1a:1d:fb:70:d0:79:a0:94:87:8f:60:7e:10:11: 04:8d:c6:10:a7:ef:b0:2b:d7:04:41:cd:99:ab:3b: 49:cb:88:7a:7c:a5:49:a8:b8:fe:94:4b:5e:a7:94: eb:00:6f:91:0e:69:63:7a:d4:5e:a4:c6:fa:bb:e9: 41:f6:95:2d:72:3e:a9:f1:d9:ec:6b:ee:d9:63:51: b7:33:71:f0:70:d3:88:b6:80:e3:4b:ba:ff:35:ea: 59:89:7f:04:57:af:4c:d8:0a:6c:6b:1a:a8:ce:a6: 6c:67:c0:1e:d0:67:f1:d9:08:43:f6:86:34:aa:e6: f5:96:c4:80:38:72:84:f5:1f:a4:7c:34:12:f5:79: dc:c3:da:3b:3a:e6:01:67:c6:3e:3f:54:4c:5f:bf: 15:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A4:95:94:0C:D9:97:9B:D9:10:D1:F3:80:AC:54:50:B1:F0:83:59 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36362e302f32332d3233203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.115.66.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:f6:54:f8:34:b3:a0:0a:91:9a:35:81:88:00:f7:c9:00:ff: cd:92:b3:70:01:b6:b2:8f:b2:7e:45:8f:25:bd:8e:94:76:94: fe:b3:94:78:4f:b3:85:83:17:e8:c6:a5:89:e5:f0:20:25:92: 73:3d:dd:34:35:a1:95:97:b0:6e:88:bd:9a:52:37:16:60:38: 1a:9d:91:18:9a:67:15:65:47:f3:75:21:ed:67:67:20:29:8b: 5d:29:fb:8e:b5:fd:cb:e8:d2:88:42:f0:f3:6f:f5:32:b0:c3: 12:66:20:f1:72:a3:be:e2:91:53:a9:2b:1b:b1:0f:39:fd:19: ae:9f:31:7e:b8:8f:c2:d7:d3:f1:d9:61:c0:80:26:d3:a9:7d: 04:dc:1b:54:be:80:ae:39:0f:16:22:94:b8:5d:04:03:21:05: ee:1a:48:e0:1a:ab:21:99:46:cc:e7:f3:89:28:b0:42:3c:d6: b2:8c:a9:da:0c:c9:dd:50:9a:3c:99:0c:aa:bf:73:c6:f9:13: a7:ec:b5:94:f2:7f:bc:31:40:b4:bb:ff:c6:2f:3b:b1:56:4c: ba:41:93:cb:42:74:93:2e:29:9e:50:9b:4e:72:0f:67:cb:6f: f6:d7:a0:33:a3:40:00:f1:12:0b:fc:aa:ec:ee:20:ff:78:13: 5e:4a:3e:71 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXMJA7dLahsNxclx8NGnD8aM71H8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTA2MDMwNzU4MjRaFw0yNjA2MDIwODAzMjRaMDMxMTAvBgNV BAMTKDU0QTQ5NTk0MENEOTk3OUJEOTEwRDFGMzgwQUM1NDUwQjFGMDgzNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbjsg+pqptMeoWEJ4fjw+0B1fU INyTfXykbXJNS2dI2wr2mNApL1uw09Py/ixLKKLjKemxOmcjyHAIkp0Ai+JGNjE+ sOfht5SVe0Ul2NHSwY1oNJEYL6DlQV31MzTgkiHEUxnb75+qhisaHftw0HmglIeP YH4QEQSNxhCn77Ar1wRBzZmrO0nLiHp8pUmouP6US16nlOsAb5EOaWN61F6kxvq7 6UH2lS1yPqnx2exr7tljUbczcfBw04i2gONLuv816lmJfwRXr0zYCmxrGqjOpmxn wB7QZ/HZCEP2hjSq5vWWxIA4coT1H6R8NBL1edzD2js65gFnxj4/VExfvxXjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUVKSVlAzZl5vZENHzgKxUULHwg1kwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzM0MzUyZTMxMzEzNTJlMzYzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtc0IwDQYJKoZIhvcN AQELBQADggEBAF/2VPg0s6AKkZo1gYgA98kA/82Ss3ABtrKPsn5FjyW9jpR2lP6z lHhPs4WDF+jGpYnl8CAlknM93TQ1oZWXsG6IvZpSNxZgOBqdkRiaZxVlR/N1Ie1n ZyApi10p+461/cvo0ohC8PNv9TKwwxJmIPFyo77ikVOpKxuxDzn9Ga6fMX64j8LX 0/HZYcCAJtOpfQTcG1S+gK45DxYilLhdBAMhBe4aSOAaqyGZRszn84kosEI81rKM qdoMyd1QmjyZDKq/c8b5E6fstZTyf7wxQLS7/8YvO7FWTLpBk8tCdJMuKZ5Qm05y D2fLb/bXoDOjQADxEgv8quzuIP94E15KPnE= -----END CERTIFICATE-----Generated at Sat Jun 7 15:33:39 2025 by rpki-client