$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231362e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3231362e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: PpAfKuTLC2LZflDGFc6yX8hZy8hNL9DWJF0ArhdPsJs= Subject key identifier: 51:B9:90:7A:B3:BA:30:73:6E:9F:20:EA:73:EA:F3:48:B9:D1:B6:E1 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 0A401E8EF167610D0DE4E1BD1DCCE800AD267B4E Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231362e302f32342d3234203d3e203535363638.roa Signing time: Fri 10 Oct 2025 05:00:01 +0000 ROA not before: Fri 10 Oct 2025 04:55:01 +0000 ROA not after: Fri 09 Oct 2026 05:00:01 +0000 asID: 55668 IP address blocks: 49.236.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 09:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:40:1e:8e:f1:67:61:0d:0d:e4:e1:bd:1d:cc:e8:00:ad:26:7b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Oct 10 04:55:01 2025 GMT Not After : Oct 9 05:00:01 2026 GMT Subject: CN=51B9907AB3BA30736E9F20EA73EAF348B9D1B6E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:e6:e1:63:67:df:04:5b:dd:ee:c0:c1:e0: 38:3e:1f:61:71:9d:8c:81:c8:6a:c8:f2:68:3b:3c: 15:70:52:39:e7:bc:f9:d0:70:a9:66:0c:17:2c:aa: ee:a9:ae:f3:84:0f:a8:f1:07:d8:59:aa:73:0d:ac: 2a:07:c2:b5:42:77:7f:c4:54:63:d1:67:84:e5:0c: ae:1b:08:5f:71:52:89:8b:36:3e:a8:71:ed:bf:cb: f1:1d:6f:af:01:82:4c:7f:bc:ea:3e:5d:de:95:19: 39:2c:bc:2a:15:29:3f:a3:43:9d:ea:94:6b:d0:9b: af:3b:9c:ac:dc:45:8e:57:ef:8e:e3:31:4d:cb:5e: 1a:39:41:0a:e3:ef:47:9a:72:12:ac:a0:12:13:70: 81:7a:26:30:21:ab:26:f1:4c:1f:b6:4a:2d:49:48: 60:ce:ed:bd:34:34:5a:15:ac:5d:2d:4b:39:7d:7f: d6:ef:2a:47:c6:e0:d7:8d:25:0f:09:20:90:05:17: 13:93:68:46:ab:f2:03:9a:5c:09:09:21:fb:04:7f: 94:89:65:0a:15:c1:5d:9b:87:7c:9b:28:83:a4:a5: a3:48:ad:cb:cb:61:32:54:46:ed:63:cb:a4:8a:2e: 9a:d2:55:0f:82:bd:95:6e:a0:23:19:8d:e9:05:4f: 74:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B9:90:7A:B3:BA:30:73:6E:9F:20:EA:73:EA:F3:48:B9:D1:B6:E1 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3231362e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.216.0/24 Signature Algorithm: sha256WithRSAEncryption 07:95:8d:72:12:f8:dd:07:fc:62:33:74:b8:68:16:32:63:2e: 19:09:82:67:75:c1:ff:c7:6a:19:a0:81:9b:5d:78:ab:93:6d: e5:04:5c:eb:03:d2:e6:8b:c6:00:20:06:af:4a:f1:fe:fb:2d: 3c:b5:6a:e4:f8:34:36:25:45:ce:80:dc:ed:94:95:ef:49:62: 40:48:d8:3d:de:53:64:80:f5:bc:27:f7:64:89:ac:f6:bd:12: a1:13:fc:66:a9:07:84:79:52:3f:d0:a3:c6:83:95:8a:56:b2: e0:e0:f0:8f:b2:bf:67:22:f2:a3:92:d2:c4:41:d8:c8:11:5d: c3:74:64:8f:c4:23:4e:c3:c2:28:74:fa:49:8b:6f:c2:a7:97: 17:58:1d:35:d5:72:71:54:a7:e4:d5:71:78:7a:2e:57:36:e8: 78:32:cb:ae:fd:6a:5b:c5:47:c4:84:05:1a:eb:7b:66:d1:58: 66:2e:0c:ad:a5:3c:40:e5:66:42:29:44:b4:35:7d:7b:7f:36: 57:4e:f3:55:90:42:82:90:74:2b:69:6a:fb:50:27:8d:ed:a3: 52:81:31:fb:f6:c7:68:2e:d2:63:75:2b:41:61:d7:c2:23:a8: af:d7:89:4f:93:c2:e4:94:88:e0:30:00:a9:e7:75:79:f9:c0: 91:56:9a:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCkAejvFnYQ0N5OG9HczoAK0me04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNTEwMTAwNDU1MDFaFw0yNjEwMDkwNTAwMDFaMDMxMTAvBgNV BAMTKDUxQjk5MDdBQjNCQTMwNzM2RTlGMjBFQTczRUFGMzQ4QjlEMUI2RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/MubhY2ffBFvd7sDB4Dg+H2Fx nYyByGrI8mg7PBVwUjnnvPnQcKlmDBcsqu6prvOED6jxB9hZqnMNrCoHwrVCd3/E VGPRZ4TlDK4bCF9xUomLNj6oce2/y/Edb68Bgkx/vOo+Xd6VGTksvCoVKT+jQ53q lGvQm687nKzcRY5X747jMU3LXho5QQrj70eachKsoBITcIF6JjAhqybxTB+2Si1J SGDO7b00NFoVrF0tSzl9f9bvKkfG4NeNJQ8JIJAFFxOTaEar8gOaXAkJIfsEf5SJ ZQoVwV2bh3ybKIOkpaNIrcvLYTJURu1jy6SKLprSVQ+CvZVuoCMZjekFT3SJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUbmQerO6MHNunyDqc+rzSLnRtuEwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs2DANBgkqhkiG 9w0BAQsFAAOCAQEAB5WNchL43Qf8YjN0uGgWMmMuGQmCZ3XB/8dqGaCBm114q5Nt 5QRc6wPS5ovGACAGr0rx/vstPLVq5Pg0NiVFzoDc7ZSV70liQEjYPd5TZID1vCf3 ZIms9r0SoRP8ZqkHhHlSP9CjxoOVilay4ODwj7K/ZyLyo5LSxEHYyBFdw3Rkj8Qj TsPCKHT6SYtvwqeXF1gdNdVycVSn5NVxeHouVzboeDLLrv1qW8VHxIQFGut7ZtFY Zi4MraU8QOVmQilEtDV9e382V07zVZBCgpB0K2lq+1Anje2jUoEx+/bHaC7SY3Ur QWHXwiOor9eJT5PC5JSI4DAAqed1efnAkVaa4Q== -----END CERTIFICATE-----Generated at Mon Oct 20 13:22:21 2025 by rpki-client