$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: yQorJw+u2n8BFPvZbej71Ji8nM/16g2mSwkEj1PF54g= Subject key identifier: F8:90:61:C2:E1:10:93:F3:AD:A9:2F:BE:81:CD:CD:65:5B:A5:ED:23 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 3A8D5789C189B328328C2CAEE4FE943A066DBE43 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:52 +0000 ROA not before: Mon 02 Jun 2025 00:57:52 +0000 ROA not after: Mon 01 Jun 2026 01:02:52 +0000 asID: 131717 IP address blocks: 45.118.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8d:57:89:c1:89:b3:28:32:8c:2c:ae:e4:fe:94:3a:06:6d:be:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:52 2025 GMT Not After : Jun 1 01:02:52 2026 GMT Subject: CN=F89061C2E11093F3ADA92FBE81CDCD655BA5ED23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1e:e4:37:32:5e:5d:0b:8a:e2:17:30:13:98: 57:58:e1:9c:30:e2:6f:21:fe:9d:7a:28:c7:4f:ee: 8b:50:11:a3:b0:9b:1d:41:72:e1:e9:ba:0e:f0:9d: 31:d0:6c:30:f7:8f:d6:45:43:9e:9a:9b:11:da:f3: bb:9c:28:8d:fb:f4:a2:3d:39:8e:01:f3:1e:d7:e7: d4:16:5d:76:49:d8:c5:cf:77:d6:90:e2:94:67:94: f6:c3:2f:9c:e6:ce:35:d8:0d:24:d4:7a:2d:65:22: 0a:d4:9d:1a:5b:1e:e6:fc:d2:45:f0:a5:32:d2:e4: 12:9e:01:ee:b4:bc:35:61:1e:2e:50:be:2f:f1:1e: 28:b9:be:e9:93:92:c8:21:06:54:3b:70:da:1c:48: c1:29:20:c5:6d:5c:92:8d:3d:66:15:0f:8a:4a:c4: 05:0a:18:65:ab:56:e8:c5:2d:5e:72:46:55:ef:85: 79:9f:56:c8:90:bb:17:3a:2f:79:76:a0:a2:ed:74: ce:71:33:e2:33:ba:bf:ea:ec:d4:6b:c3:67:25:e1: e5:dd:5e:59:d6:21:67:60:ba:0f:fe:1f:90:70:81: 34:f9:f3:2c:b1:cb:4b:06:bf:ed:c2:32:32:c7:58: 4a:3f:45:de:65:92:c0:c5:39:56:cd:b1:54:5c:08: 62:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:90:61:C2:E1:10:93:F3:AD:A9:2F:BE:81:CD:CD:65:5B:A5:ED:23 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.114.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:91:82:53:4f:3a:02:57:0a:a3:ae:7c:11:a3:f3:fd:9c:ea: df:e3:d2:47:17:56:ad:67:57:35:3f:2d:ff:5f:74:d5:f6:60: 3a:95:ed:8e:0a:4c:51:0f:db:37:1a:88:74:30:80:d0:ab:c2: 9b:4f:d1:12:55:78:d0:fb:a7:13:f1:83:00:ef:dc:13:bd:4e: 6b:34:3e:09:83:df:b0:cf:f9:d9:9f:b3:d6:b8:d0:15:21:10: 9f:b3:b5:cc:37:a8:e5:7a:d1:05:92:1b:ee:55:7e:3f:f8:11: 91:6e:49:a9:62:d4:05:81:25:ce:9b:fa:22:9d:c4:a8:fe:9d: ac:e0:a0:91:3a:8c:6f:af:55:04:1e:30:e8:92:b2:1c:34:6b: d8:f5:0a:79:fa:b9:d4:88:68:5f:d2:02:10:f3:14:7f:17:15: 23:2a:60:30:de:45:73:d4:18:46:b2:02:10:20:ce:02:c5:89: 4b:e2:f0:ac:e2:de:54:f2:a1:4d:a8:2c:e7:5e:ed:99:54:48: 2a:99:f7:76:27:52:be:53:2f:3d:95:a5:e8:ad:8e:bb:7f:ec: c5:a2:d9:ed:e6:00:a6:0b:70:47:06:49:5f:91:dc:0d:ce:eb: 2e:d1:e8:e6:3c:60:ab:8f:49:cf:1a:75:eb:f7:cc:c9:72:c3: 34:55:fb:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOo1XicGJsygyjCyu5P6UOgZtvkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTJaFw0yNjA2MDEwMTAyNTJaMDMxMTAvBgNV BAMTKEY4OTA2MUMyRTExMDkzRjNBREE5MkZCRTgxQ0RDRDY1NUJBNUVEMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNHuQ3Ml5dC4riFzATmFdY4Zww 4m8h/p16KMdP7otQEaOwmx1BcuHpug7wnTHQbDD3j9ZFQ56amxHa87ucKI379KI9 OY4B8x7X59QWXXZJ2MXPd9aQ4pRnlPbDL5zmzjXYDSTUei1lIgrUnRpbHub80kXw pTLS5BKeAe60vDVhHi5Qvi/xHii5vumTksghBlQ7cNocSMEpIMVtXJKNPWYVD4pK xAUKGGWrVujFLV5yRlXvhXmfVsiQuxc6L3l2oKLtdM5xM+Izur/q7NRrw2cl4eXd XlnWIWdgug/+H5BwgTT58yyxy0sGv+3CMjLHWEo/Rd5lksDFOVbNsVRcCGIHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+JBhwuEQk/OtqS++gc3NZVul7SMwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZyMA0GCSqG SIb3DQEBCwUAA4IBAQCdkYJTTzoCVwqjrnwRo/P9nOrf49JHF1atZ1c1Py3/X3TV 9mA6le2OCkxRD9s3Goh0MIDQq8KbT9ESVXjQ+6cT8YMA79wTvU5rND4Jg9+wz/nZ n7PWuNAVIRCfs7XMN6jletEFkhvuVX4/+BGRbkmpYtQFgSXOm/oincSo/p2s4KCR Ooxvr1UEHjDokrIcNGvY9Qp5+rnUiGhf0gIQ8xR/FxUjKmAw3kVz1BhGsgIQIM4C xYlL4vCs4t5U8qFNqCznXu2ZVEgqmfd2J1K+Uy89laXorY67f+zFotnt5gCmC3BH BklfkdwNzusu0ejmPGCrj0nPGnXr98zJcsM0Vfv1 -----END CERTIFICATE-----Generated at Sat Jun 7 05:52:18 2025 by rpki-client