$ rpki-client -vvf repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa File: 34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa (raw, json) Hash identifier: Lbof0Eu5fIUUt+ZOnyAgcQnzposa001pRsoMaWB/hPw= Subject key identifier: D7:81:D7:F7:14:C5:5A:95:AE:8B:12:83:F5:1B:BF:FA:42:33:9D:98 Certificate issuer: /CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Certificate serial: 4DB4FD10359EB63BCF859CFA6A011E237A299A80 Authority key identifier: 30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa Signing time: Sat 11 Oct 2025 07:00:01 +0000 ROA not before: Sat 11 Oct 2025 06:55:01 +0000 ROA not after: Sat 10 Oct 2026 07:00:01 +0000 asID: 152027 IP address blocks: 45.249.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 07:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b4:fd:10:35:9e:b6:3b:cf:85:9c:fa:6a:01:1e:23:7a:29:9a:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30D21A97E1EED902F151C3022374D979F0A4A7EF Validity Not Before: Oct 11 06:55:01 2025 GMT Not After : Oct 10 07:00:01 2026 GMT Subject: CN=D781D7F714C55A95AE8B1283F51BBFFA42339D98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a5:87:2c:7d:30:93:bb:02:66:42:32:6c:03: 90:42:46:68:eb:31:8d:77:30:18:f9:dc:8a:18:3f: 2e:6c:50:3e:a6:52:3a:c0:5d:df:8c:c1:31:f5:63: 77:e0:81:91:b2:b2:eb:85:65:39:fe:9c:89:83:00: b0:29:28:e3:2d:e6:77:9a:1f:04:b9:a9:d6:b4:a2: 1d:6f:ba:02:a6:e9:89:b2:8a:06:37:f3:5d:c0:6e: 18:c7:8d:5e:0e:98:f7:2c:2d:aa:00:a1:5b:84:c2: ef:7b:60:39:5e:0e:13:79:90:a7:eb:d3:4b:fd:3b: 0b:fa:7a:50:9a:72:f9:98:b8:31:0b:eb:88:8e:80: b6:26:dd:d5:3f:a0:ce:96:ad:8c:c4:36:3d:43:46: 52:66:ed:30:c8:53:b0:36:e3:ab:61:ac:56:ea:ce: 07:be:8b:ec:43:35:03:51:49:2f:50:e5:2c:f0:9c: 93:c2:d1:5a:26:fd:98:2d:e2:ba:8e:f1:3c:3c:1e: 07:e8:48:8c:d8:0a:62:0e:30:b9:9b:39:28:91:5f: f1:41:d4:bb:11:54:a5:fb:77:ee:b8:55:16:63:73: da:b3:c7:c9:78:6a:18:67:d8:fb:ed:ff:ff:d0:8a: 94:15:6b:db:9b:52:a7:80:a3:c4:b1:41:08:25:0f: 14:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:81:D7:F7:14:C5:5A:95:AE:8B:12:83:F5:1B:BF:FA:42:33:9D:98 X509v3 Authority Key Identifier: keyid:30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.224.0/24 Signature Algorithm: sha256WithRSAEncryption 93:20:bf:10:44:71:31:e6:32:73:07:5b:eb:25:1b:6d:fe:5b: 05:eb:5f:35:66:ff:66:e2:4f:b2:ba:09:64:ad:ef:4f:41:11: 36:51:f3:ba:09:d7:66:d2:29:ff:cc:34:76:d1:b8:8b:09:f1: 58:fd:f5:14:eb:0a:e3:a2:e6:85:fc:16:f2:c5:90:98:17:eb: e8:be:1f:d3:a7:94:99:01:59:47:9c:7d:83:76:f5:56:59:d8: aa:98:80:69:30:b6:5d:c3:57:d8:23:7e:fc:de:94:bb:8b:31: d1:59:1c:31:23:21:bb:70:a4:b7:ba:b2:33:aa:95:7c:84:73: df:2f:6c:e4:e5:cf:1d:d0:8d:7f:7b:04:83:c3:64:67:e3:ee: 37:15:a9:71:b3:e4:ab:88:67:59:81:3e:cd:20:c4:1b:f5:59: aa:7e:33:01:f7:4e:76:56:74:d3:70:da:15:d5:a8:ad:d4:0d: e2:ce:41:73:0f:c6:29:26:5f:2b:90:e7:4a:28:07:2b:70:72: 8a:90:4b:45:6c:59:d9:87:8c:60:ae:08:ba:2f:08:0f:43:44: 17:3e:86:82:a0:d3:34:0a:d8:41:90:9c:79:f0:9c:d9:13:e2: 7a:8a:a9:85:78:a4:50:00:c6:44:cc:d4:f1:05:87:d8:78:87: cb:ae:96:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTbT9EDWetjvPhZz6agEeI3opmoAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlG MEE0QTdFRjAeFw0yNTEwMTEwNjU1MDFaFw0yNjEwMTAwNzAwMDFaMDMxMTAvBgNV BAMTKEQ3ODFEN0Y3MTRDNTVBOTVBRThCMTI4M0Y1MUJCRkZBNDIzMzlEOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMpYcsfTCTuwJmQjJsA5BCRmjr MY13MBj53IoYPy5sUD6mUjrAXd+MwTH1Y3fggZGysuuFZTn+nImDALApKOMt5nea HwS5qda0oh1vugKm6YmyigY3813AbhjHjV4OmPcsLaoAoVuEwu97YDleDhN5kKfr 00v9Owv6elCacvmYuDEL64iOgLYm3dU/oM6WrYzENj1DRlJm7TDIU7A246thrFbq zge+i+xDNQNRSS9Q5SzwnJPC0Vom/Zgt4rqO8Tw8HgfoSIzYCmIOMLmbOSiRX/FB 1LsRVKX7d+64VRZjc9qzx8l4ahhn2Pvt///QipQVa9ubUqeAo8SxQQglDxRJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU14HX9xTFWpWuixKD9Ru/+kIznZgwHwYDVR0j BBgwFoAUMNIal+Hu2QLxUcMCI3TZefCkp+8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWI4OTlhYy00ODcwLTRlMjgtOGU0ZS0yYzIzNzUyYTRhNjAvMC8zMEQyMUE5N0Ux RUVEOTAyRjE1MUMzMDIyMzc0RDk3OUYwQTRBN0VGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzBEMjFBOTdFMUVFRDkwMkYxNTFDMzAyMjM3NEQ5NzlGMEE0 QTdFRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5Yjg5OWFjLTQ4NzAtNGUyOC04 ZTRlLTJjMjM3NTJhNGE2MC8wLzM0MzUyZTMyMzQzOTJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALfngMA0GCSqG SIb3DQEBCwUAA4IBAQCTIL8QRHEx5jJzB1vrJRtt/lsF6181Zv9m4k+yuglkre9P QRE2UfO6Cddm0in/zDR20biLCfFY/fUU6wrjouaF/BbyxZCYF+vovh/Tp5SZAVlH nH2DdvVWWdiqmIBpMLZdw1fYI3783pS7izHRWRwxIyG7cKS3urIzqpV8hHPfL2zk 5c8d0I1/ewSDw2Rn4+43Falxs+SriGdZgT7NIMQb9VmqfjMB9052VnTTcNoV1ait 1A3izkFzD8YpJl8rkOdKKAcrcHKKkEtFbFnZh4xgrgi6LwgPQ0QXPoaCoNM0CthB kJx58JzZE+J6iqmFeKRQAMZEzNTxBYfYeIfLrpYe -----END CERTIFICATE-----Generated at Mon Oct 20 13:24:26 2025 by rpki-client