$ rpki-client -vvf repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/34392e302e32342e302f32332d3234203d3e203137393935.roa File: 34392e302e32342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: G15jhzfZRAvw44ZtH89JpUZ7Q4CGTBRIfeHqxNKeprc= Subject key identifier: FF:A3:2B:A1:67:16:06:5A:F8:8E:90:D6:A7:BA:0C:68:A3:10:1D:3E Certificate issuer: /CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Certificate serial: 7E2CCA5409399A721F084E7968515128B710DA13 Authority key identifier: E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/34392e302e32342e302f32332d3234203d3e203137393935.roa Signing time: Thu 25 Sep 2025 16:01:11 +0000 ROA not before: Thu 25 Sep 2025 15:56:11 +0000 ROA not after: Thu 24 Sep 2026 16:01:11 +0000 asID: 17995 IP address blocks: 49.0.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 10:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2c:ca:54:09:39:9a:72:1f:08:4e:79:68:51:51:28:b7:10:da:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E94D4099064713F1C3A5E211E817CFC2A40E6370 Validity Not Before: Sep 25 15:56:11 2025 GMT Not After : Sep 24 16:01:11 2026 GMT Subject: CN=FFA32BA16716065AF88E90D6A7BA0C68A3101D3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e8:e0:29:bd:b3:bf:27:82:f7:16:9f:4c:1d: 3b:ef:bc:d5:9c:41:07:ec:37:0e:5d:c1:33:ae:33: e7:ad:e7:e2:b6:d8:7f:91:82:89:5f:36:c3:5b:f1: f6:97:3c:e8:70:76:05:8d:06:26:15:7d:b4:49:c0: 7a:c3:5d:d9:66:03:90:47:24:53:8e:69:dc:9e:8a: d0:cd:f2:99:7c:ca:17:ff:26:4b:70:0a:7d:55:d5: a1:b7:5b:35:73:66:08:77:04:cb:6a:9b:9e:5e:db: 39:aa:3b:d6:b0:e7:d1:c8:d8:9d:cf:08:20:18:ff: 57:35:34:81:0b:7b:4a:bf:35:b5:4a:f4:86:f8:49: 14:5e:ca:b2:a3:39:4b:cf:5e:b6:62:cc:b9:da:92: 72:c5:b8:6f:e0:2d:c2:de:8e:16:aa:cc:32:b1:55: 38:20:af:36:6c:a9:c1:26:b3:26:26:d3:cd:b2:2f: cd:fc:31:58:8d:05:94:90:8a:63:9c:1c:62:c2:e7: 18:fe:a6:30:1e:5f:ff:a8:fe:33:b6:2e:de:36:8b: bf:a0:23:bf:9f:a7:66:fc:92:0b:55:24:27:2a:67: 69:dd:bd:54:a4:ca:e8:23:2c:9d:b9:cd:13:ee:99: d9:7e:3d:fa:59:fb:4c:2b:69:8e:8c:5c:96:a8:3b: 1a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A3:2B:A1:67:16:06:5A:F8:8E:90:D6:A7:BA:0C:68:A3:10:1D:3E X509v3 Authority Key Identifier: keyid:E9:4D:40:99:06:47:13:F1:C3:A5:E2:11:E8:17:CF:C2:A4:0E:63:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/E94D4099064713F1C3A5E211E817CFC2A40E6370.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E94D4099064713F1C3A5E211E817CFC2A40E6370.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff7ae82f-537e-4626-be9e-33394a2dc969/0/34392e302e32342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.0.24.0/23 Signature Algorithm: sha256WithRSAEncryption b8:ec:5b:92:a0:69:de:e8:ca:10:5c:d9:cd:d8:0a:a4:85:a0: 99:de:7d:35:a0:94:a1:78:e2:ed:e0:23:a6:07:5a:94:5e:69: fa:d7:65:a8:64:88:d1:48:6d:91:3f:1c:bd:53:f3:7b:b4:2c: a8:cb:de:78:7f:9a:1a:c8:b9:22:1e:13:63:43:4b:64:03:00: 88:e9:14:0c:05:35:eb:0e:a9:96:b7:eb:16:b1:9f:c4:94:02: 56:19:2e:ac:71:c3:b4:79:22:bb:75:f5:94:c9:22:e3:dc:18: 98:c6:d9:fa:34:ec:58:55:7a:8e:01:63:0e:11:84:f6:e4:69: 34:e4:9c:6b:35:7c:e7:94:4c:a6:8f:d1:86:4c:e5:cc:7f:1f: 14:dc:ef:6f:89:80:4f:3d:65:e6:5c:8d:c8:7a:e7:ed:4e:30: 6f:23:c2:76:4c:c2:a8:43:19:84:7e:c3:db:49:d3:1a:50:dc: 5f:ed:85:42:93:f1:97:f1:bb:9a:d0:04:65:f5:a8:b1:06:4d: 7a:db:7c:a3:5e:f0:6b:d6:40:01:1e:47:1c:38:2e:73:2a:74: fd:25:ac:0a:22:de:7d:e4:f2:b9:19:83:86:af:f8:92:f6:9b: cc:3b:fa:25:93:ff:db:1c:90:05:f3:57:2c:ce:00:91:10:3d: 6c:bf:96:1b -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUfizKVAk5mnIfCE55aFFRKLcQ2hMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJB NDBFNjM3MDAeFw0yNTA5MjUxNTU2MTFaFw0yNjA5MjQxNjAxMTFaMDMxMTAvBgNV BAMTKEZGQTMyQkExNjcxNjA2NUFGODhFOTBENkE3QkEwQzY4QTMxMDFEM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR6OApvbO/J4L3Fp9MHTvvvNWc QQfsNw5dwTOuM+et5+K22H+RgolfNsNb8faXPOhwdgWNBiYVfbRJwHrDXdlmA5BH JFOOadyeitDN8pl8yhf/JktwCn1V1aG3WzVzZgh3BMtqm55e2zmqO9aw59HI2J3P CCAY/1c1NIELe0q/NbVK9Ib4SRReyrKjOUvPXrZizLnaknLFuG/gLcLejhaqzDKx VTggrzZsqcEmsyYm082yL838MViNBZSQimOcHGLC5xj+pjAeX/+o/jO2Lt42i7+g I7+fp2b8kgtVJCcqZ2ndvVSkyugjLJ25zRPumdl+PfpZ+0wraY6MXJaoOxoFAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQU/6MroWcWBlr4jpDWp7oMaKMQHT4wHwYDVR0j BBgwFoAU6U1AmQZHE/HDpeIR6BfPwqQOY3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjdhZTgyZi01MzdlLTQ2MjYtYmU5ZS0zMzM5NGEyZGM5NjkvMC9FOTRENDA5OTA2 NDcxM0YxQzNBNUUyMTFFODE3Q0ZDMkE0MEU2MzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTk0RDQwOTkwNjQ3MTNGMUMzQTVFMjExRTgxN0NGQzJBNDBF NjM3MC5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmY3YWU4MmYtNTM3ZS00NjI2LWJl OWUtMzMzOTRhMmRjOTY5LzAvMzQzOTJlMzAyZTMyMzQyZTMwMmYzMjMzMmQzMjM0 MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBMQAYMA0GCSqGSIb3DQEBCwUA A4IBAQC47FuSoGne6MoQXNnN2AqkhaCZ3n01oJSheOLt4COmB1qUXmn612WoZIjR SG2RPxy9U/N7tCyoy954f5oayLkiHhNjQ0tkAwCI6RQMBTXrDqmWt+sWsZ/ElAJW GS6sccO0eSK7dfWUySLj3BiYxtn6NOxYVXqOAWMOEYT25Gk05JxrNXznlEymj9GG TOXMfx8U3O9viYBPPWXmXI3IeuftTjBvI8J2TMKoQxmEfsPbSdMaUNxf7YVCk/GX 8bua0ARl9aixBk1623yjXvBr1kABHkccOC5zKnT9JawKIt595PK5GYOGr/iS9pvM O/olk//bHJAF81cszgCRED1sv5Yb -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:09 2025 by rpki-client