$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa File: 34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: PEID3XKJSjAMKHW4g/PrORB0lwET0vZoCogwVtoSUzQ= Subject key identifier: 3C:15:7F:55:D3:39:B1:C6:69:3B:48:0C:C0:72:EE:1A:E1:FA:7F:56 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 5191A8B54F8F5691C73C2FD8B12D47AAA5577BF3 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa Signing time: Fri 06 Feb 2026 08:00:02 +0000 ROA not before: Fri 06 Feb 2026 07:55:02 +0000 ROA not after: Fri 05 Feb 2027 08:00:02 +0000 asID: 133823 IP address blocks: 45.116.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:91:a8:b5:4f:8f:56:91:c7:3c:2f:d8:b1:2d:47:aa:a5:57:7b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Feb 6 07:55:02 2026 GMT Not After : Feb 5 08:00:02 2027 GMT Subject: CN=3C157F55D339B1C6693B480CC072EE1AE1FA7F56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f2:85:9d:6a:40:40:f3:d1:8f:b1:82:35:b3: 43:24:b2:05:0e:3d:0a:dd:04:eb:85:c0:3f:51:51: b9:23:39:c7:bd:07:2b:1d:5a:24:76:30:3e:0f:8c: 05:7f:0e:64:51:de:eb:42:8d:75:a1:8b:1a:3c:c3: 3f:1c:28:2c:3e:5d:55:ba:8e:e8:9c:08:cf:fd:e0: 57:f8:22:3d:9f:b5:5d:20:d1:5e:95:5f:68:f9:9e: 53:0c:36:5d:3d:17:2f:74:20:16:d7:bf:13:68:f9: 6c:be:68:e2:3c:10:c6:33:4d:9e:22:2a:df:fe:b2: 69:46:96:a6:11:ca:9c:6b:ab:66:2a:43:d0:95:7f: 76:95:f3:de:27:5d:d0:c5:06:89:16:69:05:d9:09: 32:73:55:d1:2b:dd:92:17:2c:c1:59:49:9d:5c:77: f8:ae:de:d4:43:d4:d6:b0:37:62:50:6e:7d:c2:b1: 1e:20:22:cb:28:73:c8:f6:ff:70:8c:54:54:9d:b0: 96:79:96:1a:9c:cc:8b:57:ef:fa:a8:6c:a6:46:fc: 81:ae:11:ec:39:75:51:12:ec:a8:99:d9:cc:06:fd: b2:48:3b:2f:78:1e:80:24:60:da:cb:b2:34:a5:74: cc:a2:b3:d3:c9:69:ce:ad:50:fe:42:1e:cb:7e:a8: 07:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:15:7F:55:D3:39:B1:C6:69:3B:48:0C:C0:72:EE:1A:E1:FA:7F:56 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135362e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.156.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:93:b1:8c:8c:9b:bc:4b:f7:14:6c:9f:97:4b:ca:52:8a:d7: f0:d8:e9:2b:1c:63:86:03:03:1c:ff:09:ee:5e:8a:1c:6f:5b: a3:f4:0f:90:96:cf:d4:09:b4:2c:b6:07:89:72:ec:42:e9:c6: fd:f1:f3:ed:73:32:00:36:36:a0:70:22:b7:1c:88:a0:e0:3b: 68:d8:88:42:62:46:e6:47:c8:ce:a7:41:e0:d5:8f:a2:7f:2b: 60:23:ae:63:c2:0a:07:97:aa:1d:97:7d:41:aa:97:ef:2f:23: b7:89:80:4e:7b:b2:3f:ce:0a:1a:be:78:81:cc:3f:97:88:d9: 0c:4e:89:5f:bd:6e:53:62:1f:4f:89:24:27:9c:54:2e:31:9b: 61:a1:3d:65:4d:ff:d2:47:25:15:c6:8c:fb:cb:7e:79:0e:b4: c9:12:37:93:49:56:6f:14:b4:33:86:36:c8:8c:7f:24:cd:06: 25:a9:bb:24:78:7d:e0:2c:3d:e5:ae:03:4a:90:1c:14:72:c3: a5:d0:5b:56:f0:21:40:81:70:4d:e1:70:4c:19:d9:38:71:ed: 2a:08:85:65:a6:80:61:57:a4:92:b7:8b:f5:f6:6a:7e:57:7d: cf:d4:a5:ee:35:7a:af:50:28:40:91:24:32:3d:6f:de:02:30: f2:52:e5:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUZGotU+PVpHHPC/YsS1HqqVXe/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNjAyMDYwNzU1MDJaFw0yNzAyMDUwODAwMDJaMDMxMTAvBgNV BAMTKDNDMTU3RjU1RDMzOUIxQzY2OTNCNDgwQ0MwNzJFRTFBRTFGQTdGNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE8oWdakBA89GPsYI1s0MksgUO PQrdBOuFwD9RUbkjOce9BysdWiR2MD4PjAV/DmRR3utCjXWhixo8wz8cKCw+XVW6 juicCM/94Ff4Ij2ftV0g0V6VX2j5nlMMNl09Fy90IBbXvxNo+Wy+aOI8EMYzTZ4i Kt/+smlGlqYRypxrq2YqQ9CVf3aV894nXdDFBokWaQXZCTJzVdEr3ZIXLMFZSZ1c d/iu3tRD1NawN2JQbn3CsR4gIssoc8j2/3CMVFSdsJZ5lhqczItX7/qobKZG/IGu Eew5dVES7KiZ2cwG/bJIOy94HoAkYNrLsjSldMyis9PJac6tUP5CHst+qAcvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPBV/VdM5scZpO0gMwHLuGuH6f1YwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzM0MzUyZTMxMzEzNjJlMzEzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXScMA0GCSqG SIb3DQEBCwUAA4IBAQAPk7GMjJu8S/cUbJ+XS8pSitfw2OkrHGOGAwMc/wnuXooc b1uj9A+Qls/UCbQstgeJcuxC6cb98fPtczIANjagcCK3HIig4Dto2IhCYkbmR8jO p0Hg1Y+ifytgI65jwgoHl6odl31BqpfvLyO3iYBOe7I/zgoavniBzD+XiNkMTolf vW5TYh9PiSQnnFQuMZthoT1lTf/SRyUVxoz7y355DrTJEjeTSVZvFLQzhjbIjH8k zQYlqbskeH3gLD3lrgNKkBwUcsOl0FtW8CFAgXBN4XBMGdk4ce0qCIVlpoBhV6SS t4v19mp+V33P1KXuNXqvUChAkSQyPW/eAjDyUuWU -----END CERTIFICATE-----Generated at Mon Mar 2 15:42:11 2026 by rpki-client