$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa File: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM= Subject key identifier: 5C:9F:D0:29:09:34:79:8F:6C:54:F6:29:BD:85:BD:A4:BF:18:97:6C Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 604BA4B4B870FD2270EAA99D96333E6313E28C01 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa Signing time: Mon 02 Jun 2025 02:05:07 +0000 ROA not before: Mon 02 Jun 2025 02:00:07 +0000 ROA not after: Mon 01 Jun 2026 02:05:07 +0000 asID: 135360 IP address blocks: 45.127.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:4b:a4:b4:b8:70:fd:22:70:ea:a9:9d:96:33:3e:63:13:e2:8c:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jun 2 02:00:07 2025 GMT Not After : Jun 1 02:05:07 2026 GMT Subject: CN=5C9FD0290934798F6C54F629BD85BDA4BF18976C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:fe:70:c9:73:f5:22:88:be:4d:4a:ee:c3: 50:dc:58:da:fa:75:61:ef:84:bc:cf:01:e3:56:7e: 56:68:5d:b9:f1:ac:41:3e:93:f3:71:f5:2a:65:d2: a5:20:3f:1c:cf:2b:a4:19:d1:77:97:76:e3:0b:bb: 67:62:04:dc:06:71:a0:3d:fb:e0:fe:f6:7f:dd:c4: 4a:c6:ff:53:f8:7a:27:56:de:09:b4:05:25:7d:b0: 5c:77:d3:da:4d:66:89:52:c6:dc:91:d9:ab:fc:b5: db:2e:8d:88:57:b7:13:13:7b:7f:9a:ae:9d:ca:b2: a3:14:9e:b7:55:9d:b1:24:fd:d7:fa:d1:07:3e:e8: 87:ef:ca:13:c0:86:3a:10:a0:ce:97:b0:d6:00:c7: 3d:0b:82:22:7c:7f:7a:d5:26:48:cb:a5:02:bc:d7: 8b:9c:40:76:7b:f0:f0:c9:32:d1:66:5e:91:a0:54: 00:1d:24:43:76:8f:2f:31:8f:52:9f:16:6f:9a:df: c2:e8:ed:55:e0:4b:24:24:d5:45:0b:81:e4:22:3a: c4:b9:9e:8d:4a:76:9c:35:10:08:9a:a9:3d:23:b1: d1:3f:45:2d:23:19:e2:5f:50:24:82:a5:2b:fc:4e: d6:f2:b2:af:37:dd:43:9c:03:0f:78:f6:4a:33:a3: 9f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9F:D0:29:09:34:79:8F:6C:54:F6:29:BD:85:BD:A4:BF:18:97:6C X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.135.0/24 Signature Algorithm: sha256WithRSAEncryption db:d5:bc:3b:d1:8a:43:bd:e3:60:d3:de:f2:d2:50:d9:87:17: 57:08:f8:12:87:ba:cf:27:cb:70:e7:72:0e:1d:bd:8c:55:e1: f5:df:9e:4d:85:93:2f:11:e0:cb:ea:e7:65:dc:14:dd:75:1b: 0e:00:fd:40:4a:87:6e:bc:3e:22:4e:b7:f0:d8:88:dd:04:2e: 96:1c:51:19:77:8c:a5:64:ba:37:14:b3:db:ff:44:5f:3c:6c: 63:eb:f5:1f:e7:72:08:ec:b0:dc:b9:d8:c8:37:4d:9c:80:cc: 16:5c:01:3f:3a:fe:4f:4d:fb:ba:32:b3:41:67:2f:80:9a:d9: 65:4e:e1:20:f7:dc:f1:6d:0f:d5:3f:d6:e2:66:44:7d:7e:f9: 9a:4f:92:ae:a4:32:45:4e:73:1c:ee:ca:19:5e:bd:60:9d:bc: 5c:b2:fb:37:a7:e2:eb:a7:0a:3e:70:74:bd:e6:85:2f:b4:85: b5:ca:e7:e0:e4:8f:c9:e3:3f:61:3d:29:b4:f6:a8:0c:42:54: 2d:61:25:37:74:4e:7e:96:0c:d5:3c:bd:50:38:f9:d8:0c:2f: 5a:da:45:56:ad:98:a7:8b:63:c2:38:88:d6:f5:fb:62:aa:a1: e0:cc:7e:7d:65:41:0d:01:e3:0a:c1:70:79:09:af:d1:58:d1: 2a:28:e3:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYEuktLhw/SJw6qmdljM+YxPijAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA2MDIwMjAwMDdaFw0yNjA2MDEwMjA1MDdaMDMxMTAvBgNV BAMTKDVDOUZEMDI5MDkzNDc5OEY2QzU0RjYyOUJEODVCREE0QkYxODk3NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5qv5wyXP1Ioi+TUruw1DcWNr6 dWHvhLzPAeNWflZoXbnxrEE+k/Nx9Spl0qUgPxzPK6QZ0XeXduMLu2diBNwGcaA9 ++D+9n/dxErG/1P4eidW3gm0BSV9sFx309pNZolSxtyR2av8tdsujYhXtxMTe3+a rp3KsqMUnrdVnbEk/df60Qc+6IfvyhPAhjoQoM6XsNYAxz0LgiJ8f3rVJkjLpQK8 14ucQHZ78PDJMtFmXpGgVAAdJEN2jy8xj1KfFm+a38Lo7VXgSyQk1UULgeQiOsS5 no1Kdpw1EAiaqT0jsdE/RS0jGeJfUCSCpSv8Ttbysq833UOcAw949kozo589AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXJ/QKQk0eY9sVPYpvYW9pL8Yl2wwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzM0MzUyZTMxMzIzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALX+HMA0GCSqG SIb3DQEBCwUAA4IBAQDb1bw70YpDveNg097y0lDZhxdXCPgSh7rPJ8tw53IOHb2M VeH1355NhZMvEeDL6udl3BTddRsOAP1ASoduvD4iTrfw2IjdBC6WHFEZd4ylZLo3 FLPb/0RfPGxj6/Uf53II7LDcudjIN02cgMwWXAE/Ov5PTfu6MrNBZy+AmtllTuEg 99zxbQ/VP9biZkR9fvmaT5KupDJFTnMc7soZXr1gnbxcsvs3p+Lrpwo+cHS95oUv tIW1yufg5I/J4z9hPSm09qgMQlQtYSU3dE5+lgzVPL1QOPnYDC9a2kVWrZini2PC OIjW9ftiqqHgzH59ZUENAeMKwXB5Ca/RWNEqKOPe -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:39 2025 by rpki-client