$ rpki-client -vvf repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35382e302f32342d3234203d3e20313332363437.roa File: 34352e3132362e35382e302f32342d3234203d3e20313332363437.roa (raw, json) Hash identifier: WUYYTi2XuFyUmWlSOlOmbSyC8k33VJEvWxEEHToe/f4= Subject key identifier: D1:4C:77:E9:14:29:A7:26:13:1F:DA:9E:54:7E:51:C0:9B:D0:B9:E7 Certificate issuer: /CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Certificate serial: 598505B81FEC35ADFE3E76A4B74E52CFF689805B Authority key identifier: EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35382e302f32342d3234203d3e20313332363437.roa Signing time: Mon 22 Sep 2025 02:44:44 +0000 ROA not before: Mon 22 Sep 2025 02:39:44 +0000 ROA not after: Mon 21 Sep 2026 02:44:44 +0000 asID: 132647 IP address blocks: 45.126.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 06:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:85:05:b8:1f:ec:35:ad:fe:3e:76:a4:b7:4e:52:cf:f6:89:80:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC9D9872A710FE713DC62241D587703BDF7DC1D6 Validity Not Before: Sep 22 02:39:44 2025 GMT Not After : Sep 21 02:44:44 2026 GMT Subject: CN=D14C77E91429A726131FDA9E547E51C09BD0B9E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a4:37:3c:c0:e3:06:6b:7a:4e:f3:ad:0e:7d: 60:c9:b4:1c:95:ad:80:91:c7:89:07:f1:ec:b1:2e: a3:ac:62:06:62:5a:f2:1f:7f:f0:80:e6:16:3e:65: ec:f7:3d:ab:1a:76:49:0a:fa:d9:d5:ab:39:fd:27: f2:6d:1b:7f:2a:a0:b3:ad:6d:c1:f9:93:19:37:73: db:57:2e:b9:c7:7d:85:5c:c4:de:74:7a:05:be:d0: 5b:29:ae:ea:d2:2b:bb:16:fd:a1:96:86:a9:9b:70: 27:7c:39:ee:46:48:0c:bf:27:ac:77:8b:2e:75:dd: 71:bd:2d:be:04:d1:c5:d2:f6:d7:22:4a:f1:d7:d0: 2b:04:99:07:af:ab:e4:40:6b:e3:0c:e5:ea:ce:25: 94:96:34:17:52:c5:a6:ef:9a:9d:0d:aa:46:ad:0b: ad:2a:85:b1:5a:ee:45:cb:e4:91:dd:75:10:aa:bc: 61:b6:92:c6:6d:03:51:33:95:11:5d:9c:42:76:21: 24:76:c3:bc:50:dd:90:ec:70:74:f8:7d:66:81:6d: 1f:62:7e:18:39:5e:fd:9c:ca:92:fd:93:aa:7a:e0: 43:df:47:61:e5:ea:86:32:12:57:f4:50:23:a7:34: 95:20:5d:75:cb:89:78:ee:9a:73:5e:e7:81:ca:7f: 3a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:4C:77:E9:14:29:A7:26:13:1F:DA:9E:54:7E:51:C0:9B:D0:B9:E7 X509v3 Authority Key Identifier: keyid:EC:9D:98:72:A7:10:FE:71:3D:C6:22:41:D5:87:70:3B:DF:7D:C1:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/EC9D9872A710FE713DC62241D587703BDF7DC1D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC9D9872A710FE713DC62241D587703BDF7DC1D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6617d8c-d154-461e-bcca-b66d267cffc7/0/34352e3132362e35382e302f32342d3234203d3e20313332363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.58.0/24 Signature Algorithm: sha256WithRSAEncryption a9:fb:fe:0c:e7:43:f9:9c:bc:b1:f9:44:51:81:b8:1e:fa:d2: e1:7e:13:ae:f6:f6:1c:92:d9:21:35:1f:77:7a:8b:52:d3:2f: d2:1f:3e:cb:f5:3d:61:6b:65:97:e8:64:9c:f6:7d:7f:da:c6: a4:ec:11:ae:0b:6a:6b:8e:a7:89:60:c3:43:fe:72:2e:f8:56: 9f:23:58:2a:ae:f5:34:b2:3d:4f:1c:c5:4e:90:fb:b1:c0:3b: 07:cc:52:87:f4:9c:ba:2d:63:20:e7:ff:08:7e:f0:9a:cc:ba: 0f:a6:38:17:cb:43:fc:97:04:01:e8:39:aa:13:45:47:2d:3e: b3:92:ab:37:e2:c0:be:6e:5c:4b:4b:be:ba:44:5e:cd:90:62: ba:aa:d8:87:49:44:43:db:8f:f7:7d:f7:57:e0:e6:4c:b9:d0: f4:1f:47:c7:da:c4:4f:aa:e1:c1:c6:33:5a:49:2c:9d:ac:48: 5a:73:99:60:ca:04:a8:fe:42:22:91:d0:5c:6c:9a:8e:fd:8d: 0a:2e:57:ab:1c:c6:a9:ad:76:d7:b3:6b:3d:83:ab:13:86:87: 10:a1:3d:2d:e8:1f:be:7b:86:ad:2f:c2:65:ad:18:85:9e:9a: 5b:af:83:4b:57:ef:4f:88:da:3c:85:6e:3b:c9:8e:71:11:d5: 24:81:57:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWYUFuB/sNa3+Pnakt05Sz/aJgFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JE RjdEQzFENjAeFw0yNTA5MjIwMjM5NDRaFw0yNjA5MjEwMjQ0NDRaMDMxMTAvBgNV BAMTKEQxNEM3N0U5MTQyOUE3MjYxMzFGREE5RTU0N0U1MUMwOUJEMEI5RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmpDc8wOMGa3pO860OfWDJtByV rYCRx4kH8eyxLqOsYgZiWvIff/CA5hY+Zez3PasadkkK+tnVqzn9J/JtG38qoLOt bcH5kxk3c9tXLrnHfYVcxN50egW+0FsprurSK7sW/aGWhqmbcCd8Oe5GSAy/J6x3 iy513XG9Lb4E0cXS9tciSvHX0CsEmQevq+RAa+MM5erOJZSWNBdSxabvmp0Nqkat C60qhbFa7kXL5JHddRCqvGG2ksZtA1EzlRFdnEJ2ISR2w7xQ3ZDscHT4fWaBbR9i fhg5Xv2cypL9k6p64EPfR2Hl6oYyElf0UCOnNJUgXXXLiXjumnNe54HKfzozAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0Ux36RQppyYTH9qeVH5RwJvQuecwHwYDVR0j BBgwFoAU7J2YcqcQ/nE9xiJB1YdwO999wdYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjYxN2Q4Yy1kMTU0LTQ2MWUtYmNjYS1iNjZkMjY3Y2ZmYzcvMC9FQzlEOTg3MkE3 MTBGRTcxM0RDNjIyNDFENTg3NzAzQkRGN0RDMUQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUM5RDk4NzJBNzEwRkU3MTNEQzYyMjQxRDU4NzcwM0JERjdE QzFENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NjE3ZDhjLWQxNTQtNDYxZS1i Y2NhLWI2NmQyNjdjZmZjNy8wLzM0MzUyZTMxMzIzNjJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzQzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1+OjANBgkqhkiG 9w0BAQsFAAOCAQEAqfv+DOdD+Zy8sflEUYG4HvrS4X4Trvb2HJLZITUfd3qLUtMv 0h8+y/U9YWtll+hknPZ9f9rGpOwRrgtqa46niWDDQ/5yLvhWnyNYKq71NLI9TxzF TpD7scA7B8xSh/Scui1jIOf/CH7wmsy6D6Y4F8tD/JcEAeg5qhNFRy0+s5KrN+LA vm5cS0u+ukRezZBiuqrYh0lEQ9uP9333V+DmTLnQ9B9Hx9rET6rhwcYzWkksnaxI WnOZYMoEqP5CIpHQXGyajv2NCi5XqxzGqa1217NrPYOrE4aHEKE9LegfvnuGrS/C Za0YhZ6aW6+DS1fvT4jaPIVuO8mOcRHVJIFX8w== -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:21 2025 by rpki-client