$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35372e302f32342d3234203d3e20313332363437.roa File: 34352e3132362e35372e302f32342d3234203d3e20313332363437.roa (raw, json) Hash identifier: EEcqACfpJzv9e6aJJ3QgCFqjvxlrFVyI4AnnhuBfrzI= Subject key identifier: 03:A4:F6:25:90:77:FF:E8:61:F8:E9:A4:3D:FD:CB:60:AA:88:A4:B5 Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 7C302A4F1A6D27401B8C5AC58EB289AE0A58B0EE Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35372e302f32342d3234203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 02:44:29 +0000 ROA not before: Mon 22 Sep 2025 02:39:29 +0000 ROA not after: Mon 21 Sep 2026 02:44:29 +0000 asID: 132647 IP address blocks: 45.126.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:30:2a:4f:1a:6d:27:40:1b:8c:5a:c5:8e:b2:89:ae:0a:58:b0:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 02:39:29 2025 GMT Not After : Sep 21 02:44:29 2026 GMT Subject: CN=03A4F6259077FFE861F8E9A43DFDCB60AA88A4B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:76:99:6b:05:a1:e3:88:89:57:64:65:9f: 46:ab:cf:2b:b5:d7:8d:16:c5:5b:fc:81:43:d7:89: 42:32:60:87:31:58:8d:60:8a:6a:fb:78:07:32:ad: 65:b9:69:99:52:cf:a5:6a:78:38:82:f8:50:60:a1: cf:4a:18:34:ef:9b:20:da:de:a3:16:e7:5e:b9:f8: e4:78:27:85:d6:ae:44:55:52:18:8c:b7:96:41:e6: 96:5f:b6:ff:34:5f:18:63:4b:da:f3:9e:f0:c4:cc: b0:5e:8d:fb:ad:27:2e:04:4d:8f:e8:89:5b:48:25: 68:cf:d0:a5:5d:5c:42:9c:77:62:bc:f0:ec:26:e5: 0d:75:de:5e:e6:35:8d:cd:d9:08:e0:83:3f:af:2c: d7:75:14:34:3d:08:7d:13:ba:11:d4:02:6c:0e:a4: db:19:6d:af:9a:58:96:87:8f:c1:32:56:e2:dc:68: 01:ba:91:c7:f9:e2:07:1b:7e:23:18:b8:51:af:93: d5:ee:5b:48:ff:b2:6f:cc:57:e7:01:30:06:90:29: b3:87:0a:d0:c6:81:f2:92:31:09:a2:54:75:d8:29: 3d:df:7c:46:22:ea:47:dc:f5:90:2a:7d:70:de:00: 8c:52:84:ec:22:54:3d:19:14:b5:45:ad:70:26:c3: 9a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A4:F6:25:90:77:FF:E8:61:F8:E9:A4:3D:FD:CB:60:AA:88:A4:B5 X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35372e302f32342d3234203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.57.0/24 Signature Algorithm: sha256WithRSAEncryption a8:38:88:18:6d:55:c4:29:9e:65:26:9d:23:4c:c7:d2:19:3d: 67:28:04:e6:08:de:d7:b0:f3:f3:76:d2:81:65:d7:29:ea:6a: bd:24:eb:89:1d:3e:79:bb:d3:47:4c:bb:c2:c4:4b:ac:f1:34: 5b:10:c9:d8:2d:a9:59:55:4f:8b:28:64:f6:52:33:fd:19:64: 6b:be:af:8a:6a:bd:08:69:e0:51:52:c1:bc:5d:83:02:f6:ac: 98:f1:1b:56:8f:56:d9:4d:0c:31:e0:7b:75:2c:e1:1a:6f:84: cb:69:5c:bf:2c:2c:4c:42:23:3e:5c:60:b1:fd:86:82:2d:9f: dc:f4:97:f4:3b:a9:82:83:83:11:22:1d:33:76:09:2d:13:82: 10:33:aa:26:1b:c7:ff:9f:b5:07:3d:dd:25:ae:71:e0:56:a1: d6:90:d4:ef:eb:b7:cc:c9:07:fe:12:fb:ac:cd:43:96:75:6b: cd:94:11:1e:95:25:87:df:00:fb:23:9d:ae:a2:56:03:80:92: bc:ea:29:1a:54:29:f1:54:aa:14:1b:94:ab:fc:69:69:5d:99: 37:6b:06:70:64:6a:d5:8f:e5:ec:f6:c3:13:e9:17:9a:96:20: 61:79:37:ef:c3:ef:c1:1d:b9:f4:37:98:35:40:7d:bf:4d:7a: c6:07:c9:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfDAqTxptJ0AbjFrFjrKJrgpYsO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JE RjdEQzFENjAeFw0yNTA5MjIwMjM5MjlaFw0yNjA5MjEwMjQ0MjlaMDMxMTAvBgNV BAMTKDAzQTRGNjI1OTA3N0ZGRTg2MUY4RTlBNDNERkRDQjYwQUE4OEE0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC31XaZawWh44iJV2Rln0arzyu1 140WxVv8gUPXiUIyYIcxWI1gimr7eAcyrWW5aZlSz6VqeDiC+FBgoc9KGDTvmyDa 3qMW5165+OR4J4XWrkRVUhiMt5ZB5pZftv80XxhjS9rznvDEzLBejfutJy4ETY/o iVtIJWjP0KVdXEKcd2K88Owm5Q113l7mNY3N2Qjggz+vLNd1FDQ9CH0TuhHUAmwO pNsZba+aWJaHj8EyVuLcaAG6kcf54gcbfiMYuFGvk9XuW0j/sm/MV+cBMAaQKbOH CtDGgfKSMQmiVHXYKT3ffEYi6kfc9ZAqfXDeAIxShOwiVD0ZFLVFrXAmw5pBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA6T2JZB3/+hh+OmkPf3LYKqIpLUwHwYDVR0j BBgwFoAU7J2YcqcQ/nE9xiJB1YdwO999wdYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjYxN2Q4Yy1kMTU0LTQ2MWUtYmNjYS1iNjZkMjY3Y2ZmYzcvMC9FQzlEOTg3MkE3 MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RDMUQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JERjdE QzFENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzM0MzUyZTMxMzIzNjJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzQzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1+OTANBgkqhkiG 9w0BAQsFAAOCAQEAqDiIGG1VxCmeZSadI0zH0hk9ZygE5gje17Dz83bSgWXXKepq vSTriR0+ebvTR0y7wsRLrPE0WxDJ2C2pWVVPiyhk9lIz/Rlka76vimq9CGngUVLB vF2DAvasmPEbVo9W2U0MMeB7dSzhGm+Ey2lcvywsTEIjPlxgsf2Ggi2f3PSX9Dup goODESIdM3YJLROCEDOqJhvH/5+1Bz3dJa5x4Fah1pDU7+u3zMkH/hL7rM1DlnVr zZQRHpUlh98A+yOdrqJWA4CSvOopGlQp8VSqFBuUq/xpaV2ZN2sGcGRq1Y/l7PbD E+kXmpYgYXk378PvwR259DeYNUB9v016xgfJ6g== -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:22 2025 by rpki-client