$ rpki-client -vvf repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa File: 34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa (raw, json) Hash identifier: Vo/mboEbk69z19LDtpsICVZqO1i3uTxReKXu5TG16v8= Subject key identifier: 53:1C:54:DD:1C:BA:9B:7E:44:FF:01:23:08:7E:FE:2C:A9:97:0E:49 Certificate issuer: /CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Certificate serial: 0424BE44119DE006507BE34F848492FB0F08A7EA Authority key identifier: 12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa Signing time: Tue 04 Mar 2025 04:01:59 +0000 ROA not before: Tue 04 Mar 2025 03:56:59 +0000 ROA not after: Tue 03 Mar 2026 04:01:59 +0000 asID: 139396 IP address blocks: 45.113.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:24:be:44:11:9d:e0:06:50:7b:e3:4f:84:84:92:fb:0f:08:a7:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Validity Not Before: Mar 4 03:56:59 2025 GMT Not After : Mar 3 04:01:59 2026 GMT Subject: CN=531C54DD1CBA9B7E44FF0123087EFE2CA9970E49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c3:dc:27:fe:9b:3c:89:67:13:2e:85:d9:04: e0:65:b4:b3:dc:c8:99:a2:dc:58:73:68:b5:32:40: fd:97:f4:eb:70:a6:19:db:27:19:e3:93:14:87:f4: 98:be:c4:0a:b0:1c:5f:fa:ca:a2:22:5a:1f:e2:da: 0c:05:eb:67:64:1a:ef:e4:e4:6c:e4:da:4d:d8:b5: 8d:3f:ec:4d:f4:2e:dc:4b:6d:8e:ba:77:78:a0:31: 66:60:ea:61:60:13:3f:ed:6c:d9:ef:c2:17:71:66: 31:2b:fd:d0:dd:35:e5:99:cb:bc:17:d9:34:6a:a5: 35:51:d3:32:00:0e:7e:46:23:24:dd:8a:35:84:23: 5e:e6:04:9c:74:ac:4d:1a:4d:99:7b:b3:2f:42:7e: 5e:97:04:71:c1:69:bf:b2:a5:03:26:1d:9f:28:b5: a5:37:f4:71:86:50:c9:f7:4b:f8:83:39:ca:a0:8f: e2:e4:7b:a5:50:f4:8c:72:40:06:92:29:c3:9c:98: e4:1a:94:b9:b8:a0:17:27:f5:48:b7:70:ba:0c:23: dd:e2:2f:55:67:43:0a:68:5e:87:4c:9d:c9:e3:11: fa:47:c1:1a:27:a9:2d:6a:c5:e4:fe:cb:99:cd:26: 16:06:5a:0f:7b:5d:d1:5d:ac:f9:20:40:ee:3f:7a: c5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:1C:54:DD:1C:BA:9B:7E:44:FF:01:23:08:7E:FE:2C:A9:97:0E:49 X509v3 Authority Key Identifier: keyid:12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:9f:83:12:ec:33:26:6f:1f:96:2a:2f:c9:19:f3:ff:c3:fb: 43:ef:f4:ce:5e:80:99:e9:c6:51:27:f9:70:e1:05:25:84:05: 0b:3a:df:6c:83:7f:46:9b:12:3f:7e:b2:e5:69:08:7a:77:0f: 22:59:c4:35:9a:b7:e7:e2:d3:ec:7a:b0:2e:7b:73:d1:9c:7e: 4c:af:93:71:46:61:d5:4e:00:a6:98:6c:91:be:af:ba:0d:58: 0b:f4:59:b2:33:74:fd:e1:75:b9:a3:44:10:1b:29:49:44:e0: b4:c8:2f:c3:9e:d6:3c:4e:2b:f4:82:16:d0:92:91:5f:09:27: 3f:13:cf:b4:ef:1d:bd:c1:c5:a3:f1:a3:15:39:f4:61:4c:a3: e4:e0:72:a7:3d:fa:ef:cf:e7:52:66:a3:a1:25:f3:d2:7e:59: ad:a2:05:6e:c3:84:7b:68:4c:8b:bc:20:6b:b8:d4:83:06:3c: 98:ff:c6:74:a6:16:2f:02:5a:75:bd:b0:95:82:e3:19:89:a9: 3a:37:d6:a8:16:66:c7:33:b6:c8:77:89:d5:07:3d:16:d5:5b: 63:69:fe:f2:ed:6d:a8:97:21:b1:4a:05:ba:55:dd:a7:42:f4: 50:42:0e:b6:7a:00:b1:c9:1f:29:db:7f:b9:d9:6f:43:d5:40: 9f:8e:8e:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBCS+RBGd4AZQe+NPhISS+w8Ip+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERD M0NFNTdGOTAeFw0yNTAzMDQwMzU2NTlaFw0yNjAzMDMwNDAxNTlaMDMxMTAvBgNV BAMTKDUzMUM1NEREMUNCQTlCN0U0NEZGMDEyMzA4N0VGRTJDQTk5NzBFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0w9wn/ps8iWcTLoXZBOBltLPc yJmi3FhzaLUyQP2X9OtwphnbJxnjkxSH9Ji+xAqwHF/6yqIiWh/i2gwF62dkGu/k 5Gzk2k3YtY0/7E30LtxLbY66d3igMWZg6mFgEz/tbNnvwhdxZjEr/dDdNeWZy7wX 2TRqpTVR0zIADn5GIyTdijWEI17mBJx0rE0aTZl7sy9Cfl6XBHHBab+ypQMmHZ8o taU39HGGUMn3S/iDOcqgj+Lke6VQ9IxyQAaSKcOcmOQalLm4oBcn9Ui3cLoMI93i L1VnQwpoXodMncnjEfpHwRonqS1qxeT+y5nNJhYGWg97XdFdrPkgQO4/esXDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUxxU3Ry6m35E/wEjCH7+LKmXDkkwHwYDVR0j BBgwFoAUEpqu/AjSBOm+VDnIB/+EDcPOV/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM2NTVmMS0zOGI2LTQ0MTUtOGZhZi0yYjViOTE1M2U1MmQvMC8xMjlBQUVGQzA4 RDIwNEU5QkU1NDM5QzgwN0ZGODQwREMzQ0U1N0Y5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERDM0NF NTdGOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzY1NWYxLTM4YjYtNDQxNS04 ZmFmLTJiNWI5MTUzZTUyZC8wLzM0MzUyZTMxMzEzMzJlMzIzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXHkMA0GCSqG SIb3DQEBCwUAA4IBAQCNn4MS7DMmbx+WKi/JGfP/w/tD7/TOXoCZ6cZRJ/lw4QUl hAULOt9sg39GmxI/frLlaQh6dw8iWcQ1mrfn4tPserAue3PRnH5Mr5NxRmHVTgCm mGyRvq+6DVgL9FmyM3T94XW5o0QQGylJROC0yC/DntY8Tiv0ghbQkpFfCSc/E8+0 7x29wcWj8aMVOfRhTKPk4HKnPfrvz+dSZqOhJfPSflmtogVuw4R7aEyLvCBruNSD BjyY/8Z0phYvAlp1vbCVguMZiak6N9aoFmbHM7bId4nVBz0W1Vtjaf7y7W2olyGx SgW6Vd2nQvRQQg62egCxyR8p23+52W9D1UCfjo5m -----END CERTIFICATE-----Generated at Sun Apr 6 17:55:17 2025 by rpki-client