$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa File: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE= Subject key identifier: 2C:6B:BB:05:EF:02:3E:F9:4A:A0:DD:8B:E3:AE:52:9B:9C:74:B1:52 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 3809302BCD26C647479631094106172CC2456BE8 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa Signing time: Mon 02 Jun 2025 02:05:07 +0000 ROA not before: Mon 02 Jun 2025 02:00:07 +0000 ROA not after: Mon 01 Jun 2026 02:05:07 +0000 asID: 58477 IP address blocks: 45.127.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:09:30:2b:cd:26:c6:47:47:96:31:09:41:06:17:2c:c2:45:6b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jun 2 02:00:07 2025 GMT Not After : Jun 1 02:05:07 2026 GMT Subject: CN=2C6BBB05EF023EF94AA0DD8BE3AE529B9C74B152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:53:db:de:2d:52:97:74:57:1c:89:0c:d7:d3: ef:a1:e8:ac:09:08:f5:4c:2f:b3:c5:e1:10:39:24: a7:72:4b:43:59:e7:05:a9:89:6f:e9:e5:06:bd:75: 81:f9:ef:69:9a:c3:51:4a:53:da:51:bd:72:82:6c: 21:59:6b:0b:a0:5b:8f:05:b7:ca:8e:1b:3e:7b:8d: 3e:39:8e:14:b1:27:85:4c:1f:3c:bf:fb:78:03:12: 75:ba:33:3f:e7:76:03:14:3b:1a:7e:84:93:3e:95: 6e:64:00:8d:ac:4b:79:86:4a:71:6c:f5:eb:59:88: 7b:44:c6:6d:c1:25:f7:9c:b7:d2:df:4f:77:82:00: 17:c3:51:08:61:51:87:bd:ff:65:21:40:c5:2d:71: ed:33:b4:a1:55:db:2a:fa:c7:51:cf:5d:34:8d:bd: 68:98:4a:6d:5e:91:78:f0:8b:73:b2:24:81:14:01: f5:0d:ab:b6:80:de:a0:00:56:ec:3d:fb:c5:97:8c: cf:5e:92:17:5b:39:19:4e:da:1b:f3:f8:56:fe:ad: e1:fb:2b:7f:98:97:ca:a6:ae:9a:6d:b6:97:82:83: 46:2b:65:1f:c1:7f:76:49:89:4c:95:c7:d1:e9:11: 59:ca:a2:ed:0f:36:35:47:dc:52:84:88:31:f9:59: e8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:6B:BB:05:EF:02:3E:F9:4A:A0:DD:8B:E3:AE:52:9B:9C:74:B1:52 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133332e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.133.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:a3:37:2f:61:bd:fd:fc:96:1f:cb:b4:8e:22:29:b3:80:8c: 18:3f:8c:3b:8a:64:e3:74:6b:33:24:a9:c5:8b:50:74:a6:24: e8:64:7c:ed:ca:5a:ef:fa:53:1e:04:41:c7:f5:79:61:de:ae: 50:88:85:db:ae:5b:fa:19:45:2c:7a:b7:71:8c:81:13:1d:df: 40:a6:e3:ff:f0:2f:7a:b4:5c:b3:ec:57:0c:b4:8a:b6:02:84: ea:1e:61:76:3c:0b:95:79:f0:df:34:a9:54:a7:56:bd:8f:c6: 12:be:9f:90:3f:f5:df:0d:38:0f:f0:17:1b:3f:cf:16:22:50: 58:2c:54:d5:9f:24:0b:27:0f:9b:06:f1:cf:a6:92:f6:63:4b: a3:7d:be:c6:44:2c:ac:d5:86:b7:c2:d8:f3:79:e3:8b:ef:d3: 25:d4:a2:12:77:7b:6c:3b:de:93:5a:a2:24:0a:74:47:c7:09: 67:56:36:15:9b:27:c0:b7:6b:23:54:18:f1:aa:0d:05:77:56: 0f:3e:f8:6b:81:a7:07:b5:57:25:43:42:2a:02:db:31:60:f5: e6:47:40:87:b6:bd:9a:74:cf:d5:12:62:28:8b:8a:ff:64:45: 17:47:a4:1d:e0:19:10:24:3d:5f:61:00:7a:b6:7b:b5:0e:e7: 57:ff:75:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOAkwK80mxkdHljEJQQYXLMJFa+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA2MDIwMjAwMDdaFw0yNjA2MDEwMjA1MDdaMDMxMTAvBgNV BAMTKDJDNkJCQjA1RUYwMjNFRjk0QUEwREQ4QkUzQUU1MjlCOUM3NEIxNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCU9veLVKXdFcciQzX0++h6KwJ CPVML7PF4RA5JKdyS0NZ5wWpiW/p5Qa9dYH572maw1FKU9pRvXKCbCFZawugW48F t8qOGz57jT45jhSxJ4VMHzy/+3gDEnW6Mz/ndgMUOxp+hJM+lW5kAI2sS3mGSnFs 9etZiHtExm3BJfect9LfT3eCABfDUQhhUYe9/2UhQMUtce0ztKFV2yr6x1HPXTSN vWiYSm1ekXjwi3OyJIEUAfUNq7aA3qAAVuw9+8WXjM9ekhdbORlO2hvz+Fb+reH7 K3+Yl8qmrppttpeCg0YrZR/Bf3ZJiUyVx9HpEVnKou0PNjVH3FKEiDH5WeixAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULGu7Be8CPvlKoN2L465Sm5x0sVIwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1/hTANBgkqhkiG 9w0BAQsFAAOCAQEAHKM3L2G9/fyWH8u0jiIps4CMGD+MO4pk43RrMySpxYtQdKYk 6GR87cpa7/pTHgRBx/V5Yd6uUIiF265b+hlFLHq3cYyBEx3fQKbj//AverRcs+xX DLSKtgKE6h5hdjwLlXnw3zSpVKdWvY/GEr6fkD/13w04D/AXGz/PFiJQWCxU1Z8k CycPmwbxz6aS9mNLo32+xkQsrNWGt8LY83nji+/TJdSiEnd7bDvek1qiJAp0R8cJ Z1Y2FZsnwLdrI1QY8aoNBXdWDz74a4GnB7VXJUNCKgLbMWD15kdAh7a9mnTP1RJi KIuK/2RFF0ekHeAZECQ9X2EAerZ7tQ7nV/916g== -----END CERTIFICATE-----Generated at Thu Jun 5 18:20:46 2025 by rpki-client