$ rpki-client -vvf repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/34352e3131352e3133362e302f32322d3234203d3e203633383733.roa File: 34352e3131352e3133362e302f32322d3234203d3e203633383733.roa (raw, json) Hash identifier: 6NGp/IxdbJP7Vhpnk9z8nNolHX+E4iOl92U87OVivbQ= Subject key identifier: 83:CF:9B:49:86:B2:61:14:B9:F4:D6:3F:F2:FC:C6:98:81:EC:9B:07 Certificate issuer: /CN=6E740E0191A423D6D9A0908C8B778DD2416F842E Certificate serial: 588148DBE90178B9E8B074DE6E4DEB2153DE093C Authority key identifier: 6E:74:0E:01:91:A4:23:D6:D9:A0:90:8C:8B:77:8D:D2:41:6F:84:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/34352e3131352e3133362e302f32322d3234203d3e203633383733.roa Signing time: Mon 02 Jun 2025 02:04:40 +0000 ROA not before: Mon 02 Jun 2025 01:59:40 +0000 ROA not after: Mon 01 Jun 2026 02:04:40 +0000 asID: 63873 IP address blocks: 45.115.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.crl rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:81:48:db:e9:01:78:b9:e8:b0:74:de:6e:4d:eb:21:53:de:09:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E740E0191A423D6D9A0908C8B778DD2416F842E Validity Not Before: Jun 2 01:59:40 2025 GMT Not After : Jun 1 02:04:40 2026 GMT Subject: CN=83CF9B4986B26114B9F4D63FF2FCC69881EC9B07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:6f:b7:03:4c:49:35:24:cc:37:34:4c:c1:93: 01:30:4b:a9:45:3d:e6:e0:b5:45:2d:b4:bb:b5:59: 3a:55:a2:b2:88:2b:20:0a:f0:18:2e:da:d2:8a:74: b9:f6:c0:e6:54:03:65:47:58:25:f2:10:72:41:75: 18:00:f4:af:79:ea:ce:5e:be:7d:05:ac:38:84:42: d7:a2:e4:31:ca:47:0c:91:7e:44:bd:50:67:2f:d0: 89:d6:49:77:31:7a:98:cc:fc:aa:37:be:cc:20:ff: 92:93:1f:a6:59:54:0a:c2:a7:8f:99:ed:2d:dd:b3: 81:94:d5:60:f8:4e:ac:86:74:f7:3a:5b:bf:d9:34: 9e:85:e9:e9:bf:85:ad:15:52:09:a7:a9:ad:83:b4: 2a:81:5c:7b:2e:f4:d0:c5:48:65:02:f3:3f:36:b3: 6a:22:73:cf:c6:24:0e:b1:94:1a:ad:63:e1:0d:e9: f3:04:34:83:1c:58:39:d6:12:4a:75:93:b2:36:40: 0c:4f:b9:12:c6:fe:2f:cf:1e:af:51:bf:39:49:cf: 67:46:8e:85:9d:fb:dd:28:4c:33:fd:d4:85:c8:83: 12:31:9a:e6:f7:80:04:c4:1c:c9:8e:8a:9f:15:33: 39:15:8d:39:0c:06:94:31:6b:42:4e:7c:62:69:99: 42:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CF:9B:49:86:B2:61:14:B9:F4:D6:3F:F2:FC:C6:98:81:EC:9B:07 X509v3 Authority Key Identifier: keyid:6E:74:0E:01:91:A4:23:D6:D9:A0:90:8C:8B:77:8D:D2:41:6F:84:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/34352e3131352e3133362e302f32322d3234203d3e203633383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.115.136.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:27:9e:25:53:62:b8:7d:fb:cd:d1:cb:40:0a:49:8c:8c:3f: 14:b8:12:1b:49:3c:3a:d1:42:9d:8c:d8:0b:6a:a2:14:96:f3: 54:d8:bd:02:d7:e9:99:09:08:4f:7b:b1:29:fb:86:a1:bf:1d: 31:ff:58:47:4f:ac:41:bf:10:b2:be:c2:c5:09:57:04:74:f2: e7:66:37:f9:09:db:56:44:69:b5:bc:99:1c:22:c9:42:90:5f: c4:f3:82:30:da:85:8f:d4:99:3c:8f:40:14:8f:c7:e9:d1:8d: a4:c4:d8:f5:88:ca:54:05:5b:38:14:ce:69:62:5f:3c:52:d4: 8b:de:51:a8:a5:22:b3:40:de:41:55:01:43:f2:53:9d:f2:e2: 49:9c:84:6d:47:8d:fb:55:d3:54:ee:d7:93:92:99:83:fc:82: fd:10:e4:0e:09:87:4e:d1:c0:4a:7c:58:a1:92:c4:a0:55:5c: b6:91:9f:81:b0:3c:54:6e:24:25:5c:f4:31:b5:e5:66:1c:e9: 29:26:90:c7:b2:c9:7e:6a:7c:17:0a:b4:2e:a2:da:81:11:40: 11:a9:9c:b3:ca:a2:0a:59:cb:b2:84:22:14:b2:3f:44:eb:7f: b8:65:19:35:00:c1:35:08:6c:c1:36:c0:a3:bf:16:15:eb:72: 23:f1:55:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWIFI2+kBeLnosHTebk3rIVPeCTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU3NDBFMDE5MUE0MjNENkQ5QTA5MDhDOEI3NzhERDI0 MTZGODQyRTAeFw0yNTA2MDIwMTU5NDBaFw0yNjA2MDEwMjA0NDBaMDMxMTAvBgNV BAMTKDgzQ0Y5QjQ5ODZCMjYxMTRCOUY0RDYzRkYyRkNDNjk4ODFFQzlCMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwb7cDTEk1JMw3NEzBkwEwS6lF PebgtUUttLu1WTpVorKIKyAK8Bgu2tKKdLn2wOZUA2VHWCXyEHJBdRgA9K956s5e vn0FrDiEQtei5DHKRwyRfkS9UGcv0InWSXcxepjM/Ko3vswg/5KTH6ZZVArCp4+Z 7S3ds4GU1WD4TqyGdPc6W7/ZNJ6F6em/ha0VUgmnqa2DtCqBXHsu9NDFSGUC8z82 s2oic8/GJA6xlBqtY+EN6fMENIMcWDnWEkp1k7I2QAxPuRLG/i/PHq9RvzlJz2dG joWd+90oTDP91IXIgxIxmub3gATEHMmOip8VMzkVjTkMBpQxa0JOfGJpmUJzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUg8+bSYayYRS59NY/8vzGmIHsmwcwHwYDVR0j BBgwFoAUbnQOAZGkI9bZoJCMi3eN0kFvhC4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzUxZTdhYi1hNjM4LTRmYTAtYmJjYy1iMGY4NTZhOGExNTcvMC82RTc0MEUwMTkx QTQyM0Q2RDlBMDkwOEM4Qjc3OEREMjQxNkY4NDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkU3NDBFMDE5MUE0MjNENkQ5QTA5MDhDOEI3NzhERDI0MTZG ODQyRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjNTFlN2FiLWE2MzgtNGZhMC1i YmNjLWIwZjg1NmE4YTE1Ny8wLzM0MzUyZTMxMzEzNTJlMzEzMzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM4MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1ziDANBgkqhkiG 9w0BAQsFAAOCAQEAfyeeJVNiuH37zdHLQApJjIw/FLgSG0k8OtFCnYzYC2qiFJbz VNi9AtfpmQkIT3uxKfuGob8dMf9YR0+sQb8Qsr7CxQlXBHTy52Y3+QnbVkRptbyZ HCLJQpBfxPOCMNqFj9SZPI9AFI/H6dGNpMTY9YjKVAVbOBTOaWJfPFLUi95RqKUi s0DeQVUBQ/JTnfLiSZyEbUeN+1XTVO7Xk5KZg/yC/RDkDgmHTtHASnxYoZLEoFVc tpGfgbA8VG4kJVz0MbXlZhzpKSaQx7LJfmp8Fwq0LqLagRFAEamcs8qiClnLsoQi FLI/ROt/uGUZNQDBNQhswTbAo78WFetyI/FVtA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:15 2025 by rpki-client