$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: sxL8WI3UrWSTsLdgL4krtb4YzuPS2/H7rwpNl9kG2s8= Subject key identifier: D0:BE:EE:A5:23:54:1C:B5:B8:DA:F5:7E:A5:82:17:D9:27:59:29:3A Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 3799ABD076D6DCA2951CE2334684F415560BE67D Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:52 +0000 ROA not before: Mon 02 Jun 2025 00:57:52 +0000 ROA not after: Mon 01 Jun 2026 01:02:52 +0000 asID: 131717 IP address blocks: 45.118.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:99:ab:d0:76:d6:dc:a2:95:1c:e2:33:46:84:f4:15:56:0b:e6:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:52 2025 GMT Not After : Jun 1 01:02:52 2026 GMT Subject: CN=D0BEEEA523541CB5B8DAF57EA58217D92759293A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4a:79:6d:15:b0:74:1e:6a:3f:f1:c4:e1:fa: b5:98:4c:73:e3:a7:90:86:40:52:f7:03:bc:f4:02: 60:69:23:29:d8:de:f0:27:80:77:cf:f4:93:29:9c: 4c:bf:d0:fa:74:ca:ad:c4:11:c3:39:fa:d1:67:50: 33:ba:4c:b2:3d:6c:44:91:c1:94:fe:27:54:44:ca: de:15:ab:61:26:e9:96:87:47:1b:1d:06:cb:7c:81: ca:0d:ad:24:e6:f6:34:d1:9b:d2:61:9c:33:ef:f4: 3b:bc:cf:2c:df:01:4d:fb:87:ed:30:e2:a5:35:d7: cb:6b:13:f1:d4:4f:a5:29:a9:c0:84:d4:21:39:c1: 30:59:4b:54:ab:f9:e2:97:23:b7:cf:33:76:62:ba: 75:15:ae:e3:52:79:97:f6:77:dd:93:ae:4f:23:a2: a1:3f:73:e4:f4:af:9c:f1:71:e0:44:2a:de:6d:71: f9:59:73:30:b0:e0:0c:5b:87:d8:5b:59:63:7e:62: db:eb:4f:af:92:f6:96:72:20:b9:75:5e:ee:de:2d: 42:00:31:de:b4:4b:2c:ef:92:68:26:ff:e1:e2:dd: a8:4d:2d:33:a5:ee:82:35:63:a5:e3:47:2c:0c:07: e2:5e:01:42:b6:0d:59:4d:58:23:49:c8:c9:91:6e: 1e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BE:EE:A5:23:54:1C:B5:B8:DA:F5:7E:A5:82:17:D9:27:59:29:3A X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.115.0/24 Signature Algorithm: sha256WithRSAEncryption a8:ac:48:67:6e:e9:c6:12:7d:42:58:e3:de:3c:b3:d4:5f:a9: a2:5e:14:eb:96:0e:78:68:b8:2b:38:c5:cd:94:c3:4b:3c:5c: 40:2b:7b:e6:52:83:71:33:e8:5a:dc:9d:5d:08:70:7d:ad:c5: d1:11:0f:2f:65:c7:6b:24:f8:e3:3b:dc:ff:ed:29:d1:fc:2e: 26:e5:28:4c:ce:c9:01:44:c2:fd:6b:3a:7b:bb:3c:42:cd:7d: d0:a6:d6:dc:be:f5:97:e2:19:25:52:4e:a4:e3:e3:a4:f8:af: 82:00:ee:88:3c:64:65:a5:a6:0a:59:1a:9a:56:e5:f5:d6:6f: 3e:dd:b9:ef:e2:e5:5e:78:b5:94:8f:e4:b6:9a:87:37:be:40: 8a:ee:e1:00:0a:4d:ec:fd:f0:5b:2d:f8:69:1e:8f:75:63:5f: eb:b1:ff:a3:2d:82:9a:b9:47:e8:82:98:87:41:21:ad:e3:e5: 9f:e2:a4:80:52:fa:fc:e4:97:34:1a:5b:5f:09:b9:16:9e:3a: d8:d6:e0:c9:f4:ba:29:e6:b9:b0:e0:c0:f3:76:99:ce:92:90: 30:98:75:fb:c7:67:5e:d1:cc:9b:c2:6c:b0:3b:93:7a:4d:c3: 57:c6:9c:a3:d8:a9:44:86:43:4a:70:06:eb:a8:ba:94:a7:8c: a4:d6:5e:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN5mr0HbW3KKVHOIzRoT0FVYL5n0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTJaFw0yNjA2MDEwMTAyNTJaMDMxMTAvBgNV BAMTKEQwQkVFRUE1MjM1NDFDQjVCOERBRjU3RUE1ODIxN0Q5Mjc1OTI5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDESnltFbB0Hmo/8cTh+rWYTHPj p5CGQFL3A7z0AmBpIynY3vAngHfP9JMpnEy/0Pp0yq3EEcM5+tFnUDO6TLI9bESR wZT+J1REyt4Vq2Em6ZaHRxsdBst8gcoNrSTm9jTRm9JhnDPv9Du8zyzfAU37h+0w 4qU118trE/HUT6UpqcCE1CE5wTBZS1Sr+eKXI7fPM3ZiunUVruNSeZf2d92Trk8j oqE/c+T0r5zxceBEKt5tcflZczCw4Axbh9hbWWN+YtvrT6+S9pZyILl1Xu7eLUIA Md60Syzvkmgm/+Hi3ahNLTOl7oI1Y6XjRywMB+JeAUK2DVlNWCNJyMmRbh73AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0L7upSNUHLW42vV+pYIX2SdZKTowHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZzMA0GCSqG SIb3DQEBCwUAA4IBAQCorEhnbunGEn1CWOPePLPUX6miXhTrlg54aLgrOMXNlMNL PFxAK3vmUoNxM+ha3J1dCHB9rcXREQ8vZcdrJPjjO9z/7SnR/C4m5ShMzskBRML9 azp7uzxCzX3QptbcvvWX4hklUk6k4+Ok+K+CAO6IPGRlpaYKWRqaVuX11m8+3bnv 4uVeeLWUj+S2moc3vkCK7uEACk3s/fBbLfhpHo91Y1/rsf+jLYKauUfogpiHQSGt 4+Wf4qSAUvr85Jc0GltfCbkWnjrY1uDJ9Lop5rmw4MDzdpnOkpAwmHX7x2de0cyb wmywO5N6TcNXxpyj2KlEhkNKcAbrqLqUp4yk1l5Z -----END CERTIFICATE-----Generated at Sat Jun 7 14:10:57 2025 by rpki-client