$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa File: 34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa (raw, json) Hash identifier: 4exgwdcQ1exTycgJCK/gqBNOkO+g3t+MeUPzY4BXBs4= Subject key identifier: CA:20:31:43:30:08:76:39:95:70:A6:B8:10:61:C1:FB:40:18:0D:A7 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 2F717A2174D1490ED1AE00DFE071163256F09F2D Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:51 +0000 ROA not before: Mon 02 Jun 2025 00:57:51 +0000 ROA not after: Mon 01 Jun 2026 01:02:51 +0000 asID: 131717 IP address blocks: 45.118.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:71:7a:21:74:d1:49:0e:d1:ae:00:df:e0:71:16:32:56:f0:9f:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:51 2025 GMT Not After : Jun 1 01:02:51 2026 GMT Subject: CN=CA203143300876399570A6B81061C1FB40180DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:45:0d:3c:3d:5a:5b:ce:f1:23:06:a7:26: 69:92:98:9c:49:4f:c5:80:66:55:b6:12:4e:69:c9: de:d9:49:13:b2:7d:7b:83:b1:29:fc:74:70:2a:2f: 68:59:f7:b4:c5:ac:c8:ab:ad:25:6d:82:f8:c4:09: 7c:09:85:1b:d7:b8:3c:c5:ee:05:de:5b:3f:ec:86: df:b6:0d:79:eb:ff:1c:96:da:af:c9:00:c5:99:75: 54:ec:30:52:eb:8d:c4:9a:bb:6f:d8:27:e9:2f:a8: 55:48:0a:da:d3:d1:61:e5:6a:96:74:fb:2b:36:75: 31:26:7d:63:45:3f:d0:5a:44:26:43:7a:4f:08:5c: 47:db:ed:23:89:fd:c4:7c:1e:08:82:74:63:54:b3: e3:d2:07:ae:1c:83:92:cd:e7:43:c9:11:f0:61:a1: 47:10:7b:e2:af:2d:3f:48:9c:7e:f3:f5:dd:cc:89: 18:c5:1a:21:00:cb:69:fb:d1:88:37:4e:1c:1a:35: 79:dd:28:64:f1:03:b4:47:d1:aa:45:75:c9:1e:ed: a7:f3:d2:70:af:6c:2f:49:c2:89:82:eb:db:77:39: fb:06:60:c4:57:5e:bd:98:3d:33:4f:5e:c3:19:92: 78:d7:78:4c:0b:70:ff:25:1e:f1:ad:0d:3e:75:7f: 07:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:20:31:43:30:08:76:39:95:70:A6:B8:10:61:C1:FB:40:18:0D:A7 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/22 Signature Algorithm: sha256WithRSAEncryption ba:d0:82:8d:a5:97:c1:89:66:18:af:71:d7:30:94:0a:36:7d: 3f:eb:69:a5:ce:fa:4b:94:d2:90:9e:4e:e6:d0:c7:f5:a7:e7: d1:57:e4:0f:81:89:a2:c0:97:24:b2:95:85:6a:db:22:50:b7: b5:66:34:41:07:7f:a8:6e:62:a4:56:c2:6f:b9:17:b0:6e:91: 0c:45:ea:96:6c:93:a8:05:35:b3:46:36:85:2d:6c:58:16:46: 4d:b6:71:0d:55:48:97:b6:82:4e:1a:84:9f:1c:ea:ea:2a:77: 07:21:bb:d3:7a:f9:04:ff:f2:d6:a8:f3:40:03:e8:d2:97:6a: ef:59:5c:8c:a4:dc:01:79:09:2c:ca:ab:19:65:32:d9:32:71: 08:f9:6c:25:8f:9d:b6:d6:93:97:86:5d:4d:97:94:a7:8f:32: 50:74:70:c8:26:5b:8e:8b:73:9f:07:4f:94:de:85:eb:ac:b6: 79:5a:5c:9a:c8:62:75:b9:ee:46:1a:e3:67:d0:02:fb:0d:2a: 96:e9:a8:fe:e8:3a:b5:ab:8c:0c:31:0e:d9:8d:43:af:10:49: 6d:bd:22:ce:f2:dc:4b:a8:12:ea:65:96:a0:77:47:a2:f5:92: b1:96:57:df:44:5b:36:ea:40:ae:dd:93:75:86:d5:f4:fa:e9: 8e:88:c2:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL3F6IXTRSQ7RrgDf4HEWMlbwny0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTFaFw0yNjA2MDEwMTAyNTFaMDMxMTAvBgNV BAMTKENBMjAzMTQzMzAwODc2Mzk5NTcwQTZCODEwNjFDMUZCNDAxODBEQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0+UUNPD1aW87xIwanJmmSmJxJ T8WAZlW2Ek5pyd7ZSROyfXuDsSn8dHAqL2hZ97TFrMirrSVtgvjECXwJhRvXuDzF 7gXeWz/sht+2DXnr/xyW2q/JAMWZdVTsMFLrjcSau2/YJ+kvqFVICtrT0WHlapZ0 +ys2dTEmfWNFP9BaRCZDek8IXEfb7SOJ/cR8HgiCdGNUs+PSB64cg5LN50PJEfBh oUcQe+KvLT9InH7z9d3MiRjFGiEAy2n70Yg3ThwaNXndKGTxA7RH0apFdcke7afz 0nCvbC9JwomC69t3OfsGYMRXXr2YPTNPXsMZknjXeEwLcP8lHvGtDT51fwfdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyiAxQzAIdjmVcKa4EGHB+0AYDacwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXZwMA0GCSqG SIb3DQEBCwUAA4IBAQC60IKNpZfBiWYYr3HXMJQKNn0/62mlzvpLlNKQnk7m0Mf1 p+fRV+QPgYmiwJckspWFatsiULe1ZjRBB3+obmKkVsJvuRewbpEMReqWbJOoBTWz RjaFLWxYFkZNtnENVUiXtoJOGoSfHOrqKncHIbvTevkE//LWqPNAA+jSl2rvWVyM pNwBeQksyqsZZTLZMnEI+Wwlj5221pOXhl1Nl5SnjzJQdHDIJluOi3OfB0+U3oXr rLZ5WlyayGJ1ue5GGuNn0AL7DSqW6aj+6Dq1q4wMMQ7ZjUOvEEltvSLO8txLqBLq ZZagd0ei9ZKxllffRFs26kCu3ZN1htX0+umOiMIS -----END CERTIFICATE-----Generated at Sat Jun 7 13:45:35 2025 by rpki-client