$ rpki-client -vvf repo-rpki.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa File: 34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa (raw, json) Hash identifier: VvHLmuXRMUHqTPfrpSgqTa3OVr8h9pb8S/5kTj+y7+8= Subject key identifier: A4:C1:BF:C9:60:6D:8B:1B:B3:36:3D:33:78:0E:89:91:79:4F:B1:44 Certificate issuer: /CN=D0DE430E423B23AB634EBCF0195F1126B44A525E Certificate serial: 464FC4A7B177A90C621512854D5727F1D03987C6 Authority key identifier: D0:DE:43:0E:42:3B:23:AB:63:4E:BC:F0:19:5F:11:26:B4:4A:52:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0DE430E423B23AB634EBCF0195F1126B44A525E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa Signing time: Sat 20 Sep 2025 12:00:02 +0000 ROA not before: Sat 20 Sep 2025 11:55:02 +0000 ROA not after: Sat 19 Sep 2026 12:00:02 +0000 asID: 152026 IP address blocks: 45.123.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/D0DE430E423B23AB634EBCF0195F1126B44A525E.crl rsync://repo-rpki.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/D0DE430E423B23AB634EBCF0195F1126B44A525E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0DE430E423B23AB634EBCF0195F1126B44A525E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 09:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:4f:c4:a7:b1:77:a9:0c:62:15:12:85:4d:57:27:f1:d0:39:87:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0DE430E423B23AB634EBCF0195F1126B44A525E Validity Not Before: Sep 20 11:55:02 2025 GMT Not After : Sep 19 12:00:02 2026 GMT Subject: CN=A4C1BFC9606D8B1BB3363D33780E8991794FB144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:2a:0b:37:83:4c:7d:31:bd:fb:3a:fe:7c: 7e:b4:83:b9:a2:7b:3a:b3:82:19:4f:63:e9:e1:d9: 89:2c:17:f1:cf:b5:83:67:b9:ea:48:d7:7b:ae:0c: b9:da:e4:06:61:ff:91:9d:b4:c7:a5:f4:fa:ad:9d: ad:ff:13:bb:00:09:13:45:2d:8a:b8:90:5a:89:67: ec:b1:8d:fc:ed:d1:b5:c3:20:28:bb:3e:4f:75:c3: b4:df:e0:58:20:91:79:54:72:ce:54:3e:46:1b:e3: df:6d:c8:60:5a:22:b4:87:8b:be:77:1d:df:2b:e3: bf:b8:0f:3e:cf:b0:07:04:2b:3b:e1:4b:eb:5e:5f: 62:11:a2:8a:7c:e5:ab:72:bd:37:7b:a7:06:f2:5d: 1f:81:0b:53:47:5a:06:60:0e:e2:41:6b:17:69:01: d0:93:99:21:24:2a:bd:10:01:60:54:0b:85:6e:81: 92:cf:d2:ea:cb:03:6d:2d:08:50:6a:0c:e5:ba:fa: a0:f4:c6:cb:e2:26:89:69:b7:12:e2:49:b1:c9:f0: 5c:c1:c5:6c:11:f8:f3:60:79:d0:00:01:d7:e5:38: d0:6b:09:01:c9:77:82:db:4d:bb:c0:66:8f:a1:1a: eb:f7:81:7a:87:25:cf:36:ac:28:8e:7e:7a:38:03: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C1:BF:C9:60:6D:8B:1B:B3:36:3D:33:78:0E:89:91:79:4F:B1:44 X509v3 Authority Key Identifier: keyid:D0:DE:43:0E:42:3B:23:AB:63:4E:BC:F0:19:5F:11:26:B4:4A:52:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/D0DE430E423B23AB634EBCF0195F1126B44A525E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0DE430E423B23AB634EBCF0195F1126B44A525E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d74a1527-5c8e-4bd3-a1c7-9d1ed2d23e14/0/34352e3132332e3134322e302f32342d3234203d3e20313532303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.123.142.0/24 Signature Algorithm: sha256WithRSAEncryption bf:70:74:25:43:79:58:55:2e:aa:57:35:7c:3b:7d:05:d9:a4: 04:95:da:f9:ce:04:69:68:ac:e0:1a:99:25:86:2d:ca:12:f7: b9:4d:46:97:d3:1f:39:89:6f:9e:eb:03:04:bf:89:2a:4a:c6: 7b:12:89:b3:6c:2a:6c:f3:dc:c6:27:e9:03:f5:da:f4:cd:f0: 67:8e:bb:e9:0a:26:84:2b:2c:35:bd:44:2b:0b:3c:d0:55:70: 8c:f2:79:c2:ae:16:af:94:12:d6:3d:1d:6c:62:9a:35:ed:b1: ef:77:37:db:93:88:14:0d:8c:03:6a:0e:cf:16:c9:64:03:45: 95:b9:3e:2b:a4:31:64:5d:29:e1:33:68:83:6a:55:9c:1c:34: 6d:56:c3:b9:7f:a3:0b:f8:60:57:e0:db:a6:23:57:a0:a4:c4: 16:14:5e:a7:d2:46:64:d2:82:a5:65:62:85:39:89:fd:21:16: d6:ba:e7:1f:41:18:de:c7:5b:92:e3:89:d0:76:49:04:c4:6c: 82:7d:d1:d9:f0:1f:e2:15:f3:97:af:98:b1:a3:25:c3:70:7d: 6d:10:49:be:34:ad:61:7d:2e:8b:de:3e:e2:cf:3f:4d:34:88: 75:0b:b5:5f:c9:4f:5a:ef:31:bb:87:43:2c:aa:ab:1e:11:6e: e8:03:03:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURk/Ep7F3qQxiFRKFTVcn8dA5h8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBERTQzMEU0MjNCMjNBQjYzNEVCQ0YwMTk1RjExMjZC NDRBNTI1RTAeFw0yNTA5MjAxMTU1MDJaFw0yNjA5MTkxMjAwMDJaMDMxMTAvBgNV BAMTKEE0QzFCRkM5NjA2RDhCMUJCMzM2M0QzMzc4MEU4OTkxNzk0RkIxNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpWyoLN4NMfTG9+zr+fH60g7mi ezqzghlPY+nh2YksF/HPtYNnuepI13uuDLna5AZh/5GdtMel9Pqtna3/E7sACRNF LYq4kFqJZ+yxjfzt0bXDICi7Pk91w7Tf4FggkXlUcs5UPkYb499tyGBaIrSHi753 Hd8r47+4Dz7PsAcEKzvhS+teX2IRoop85atyvTd7pwbyXR+BC1NHWgZgDuJBaxdp AdCTmSEkKr0QAWBUC4VugZLP0urLA20tCFBqDOW6+qD0xsviJolptxLiSbHJ8FzB xWwR+PNgedAAAdflONBrCQHJd4LbTbvAZo+hGuv3gXqHJc82rCiOfno4A4JxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpMG/yWBtixuzNj0zeA6JkXlPsUQwHwYDVR0j BBgwFoAU0N5DDkI7I6tjTrzwGV8RJrRKUl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzRhMTUyNy01YzhlLTRiZDMtYTFjNy05ZDFlZDJkMjNlMTQvMC9EMERFNDMwRTQy M0IyM0FCNjM0RUJDRjAxOTVGMTEyNkI0NEE1MjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBERTQzMEU0MjNCMjNBQjYzNEVCQ0YwMTk1RjExMjZCNDRB NTI1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3NGExNTI3LTVjOGUtNGJkMy1h MWM3LTlkMWVkMmQyM2UxNC8wLzM0MzUyZTMxMzIzMzJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXuOMA0GCSqG SIb3DQEBCwUAA4IBAQC/cHQlQ3lYVS6qVzV8O30F2aQEldr5zgRpaKzgGpklhi3K Eve5TUaX0x85iW+e6wMEv4kqSsZ7EomzbCps89zGJ+kD9dr0zfBnjrvpCiaEKyw1 vUQrCzzQVXCM8nnCrhavlBLWPR1sYpo17bHvdzfbk4gUDYwDag7PFslkA0WVuT4r pDFkXSnhM2iDalWcHDRtVsO5f6ML+GBX4NumI1egpMQWFF6n0kZk0oKlZWKFOYn9 IRbWuucfQRjex1uS44nQdkkExGyCfdHZ8B/iFfOXr5ixoyXDcH1tEEm+NK1hfS6L 3j7izz9NNIh1C7VfyU9a7zG7h0MsqqseEW7oAwMm -----END CERTIFICATE-----Generated at Tue Oct 21 04:23:24 2025 by rpki-client