$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135382e302f32342d3234203d3e20313333383233.roa File: 34352e3131362e3135382e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: TJAA0cfRh7Kp4BYoW3jwXL5jteUxBl3JeXP7x4bPphM= Subject key identifier: 4E:C7:F4:E1:19:11:6E:B8:02:3B:7F:EB:0B:E0:27:0A:09:C8:D4:E7 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 762BE71BD9593B83974ED77A749438C3B698E49A Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135382e302f32342d3234203d3e20313333383233.roa Signing time: Fri 06 Feb 2026 08:00:01 +0000 ROA not before: Fri 06 Feb 2026 07:55:01 +0000 ROA not after: Fri 05 Feb 2027 08:00:01 +0000 asID: 133823 IP address blocks: 45.116.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:2b:e7:1b:d9:59:3b:83:97:4e:d7:7a:74:94:38:c3:b6:98:e4:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Feb 6 07:55:01 2026 GMT Not After : Feb 5 08:00:01 2027 GMT Subject: CN=4EC7F4E119116EB8023B7FEB0BE0270A09C8D4E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:32:da:e9:95:68:3a:fe:ff:46:e5:a3:e6:1f: c8:49:d1:a8:52:7c:30:77:86:7d:ce:cd:ed:ef:e9: d3:38:ec:dd:e1:48:60:eb:91:0e:aa:c1:47:27:e0: 90:73:b4:d4:2f:09:51:f8:d9:38:c2:22:94:b8:53: d9:38:f7:5b:5d:eb:63:75:79:cf:25:36:a8:1a:cf: 63:98:15:33:4d:7b:84:8b:89:da:d4:ba:b8:6b:4c: 91:cf:c4:c4:d6:ae:8e:70:24:3b:07:43:df:21:51: 64:5f:0a:04:9d:2c:f2:6a:71:11:bf:32:da:c4:37: 4f:5d:dd:b3:a4:17:e4:18:71:52:29:ba:8a:b5:38: a2:00:1c:b3:df:6a:b1:bf:6e:76:d1:b1:f5:9b:9c: f9:68:77:2c:39:5f:68:2e:2c:4f:f2:e6:72:25:d5: c9:1e:62:2f:34:9b:2c:42:93:d9:01:ae:bc:9a:d7: ac:19:6b:29:e7:79:6a:ca:35:91:cf:4a:af:b2:00: 33:fc:65:00:86:53:04:6c:b4:56:c4:20:c9:e4:9e: 28:86:09:71:d2:7d:ad:13:68:52:5d:b9:5d:77:77: e5:5f:1b:bc:a6:6c:cf:46:ec:6b:e7:39:94:99:8d: 13:f2:1d:b4:a6:85:43:39:a2:13:20:7c:46:c3:c9: b6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C7:F4:E1:19:11:6E:B8:02:3B:7F:EB:0B:E0:27:0A:09:C8:D4:E7 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/34352e3131362e3135382e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.158.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:0c:a0:03:45:ba:2c:d4:16:fd:32:a1:b5:36:69:e5:8c:65: f1:4d:75:94:9e:c5:a7:3b:0b:b3:b9:28:2a:3d:7b:b4:56:53: 35:ca:89:68:63:99:36:d4:9d:ba:45:53:2a:ed:d6:2c:27:b1: e9:41:42:0c:e5:59:16:2a:bf:ea:de:b5:fc:d6:35:88:82:a3: 8b:28:58:5e:aa:bf:54:73:93:49:bf:6c:c9:91:d4:ff:8a:19: b0:25:42:67:69:01:57:72:ae:45:25:2b:78:ce:5e:7a:ca:ab: 48:c8:7a:8f:b4:9a:94:3e:db:88:76:9d:7a:5b:38:c9:41:34: 48:da:ed:7e:a1:cb:d8:76:4f:e0:ae:4a:87:6d:80:4a:e8:dd: be:fa:21:bd:28:a6:58:96:6c:fd:37:5f:07:b0:93:c8:01:a0: 9e:15:ae:3a:89:b0:1f:83:fc:68:e5:36:8c:a7:82:0f:0b:a9: 55:c6:3d:66:d4:ad:2a:12:4b:89:90:da:62:97:65:83:07:41: 04:7b:cf:78:fa:03:4a:79:ad:83:50:1b:fd:02:d0:76:3e:f1: ff:1e:03:f6:99:e1:31:10:14:fd:cb:9d:c7:a0:47:20:7e:12: 8e:c7:ec:0f:d9:87:1e:5c:52:15:77:3c:75:28:ae:1f:5b:8f: c6:b1:21:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdivnG9lZO4OXTtd6dJQ4w7aY5JowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNjAyMDYwNzU1MDFaFw0yNzAyMDUwODAwMDFaMDMxMTAvBgNV BAMTKDRFQzdGNEUxMTkxMTZFQjgwMjNCN0ZFQjBCRTAyNzBBMDlDOEQ0RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlMtrplWg6/v9G5aPmH8hJ0ahS fDB3hn3Oze3v6dM47N3hSGDrkQ6qwUcn4JBztNQvCVH42TjCIpS4U9k491td62N1 ec8lNqgaz2OYFTNNe4SLidrUurhrTJHPxMTWro5wJDsHQ98hUWRfCgSdLPJqcRG/ MtrEN09d3bOkF+QYcVIpuoq1OKIAHLPfarG/bnbRsfWbnPlodyw5X2guLE/y5nIl 1ckeYi80myxCk9kBrrya16wZaynneWrKNZHPSq+yADP8ZQCGUwRstFbEIMnkniiG CXHSfa0TaFJduV13d+VfG7ymbM9G7GvnOZSZjRPyHbSmhUM5ohMgfEbDybaJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTsf04RkRbrgCO3/rC+AnCgnI1OcwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzM0MzUyZTMxMzEzNjJlMzEzNTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXSeMA0GCSqG SIb3DQEBCwUAA4IBAQB7DKADRbos1Bb9MqG1NmnljGXxTXWUnsWnOwuzuSgqPXu0 VlM1yoloY5k21J26RVMq7dYsJ7HpQUIM5VkWKr/q3rX81jWIgqOLKFheqr9Uc5NJ v2zJkdT/ihmwJUJnaQFXcq5FJSt4zl56yqtIyHqPtJqUPtuIdp16WzjJQTRI2u1+ ocvYdk/grkqHbYBK6N2++iG9KKZYlmz9N18HsJPIAaCeFa46ibAfg/xo5TaMp4IP C6lVxj1m1K0qEkuJkNpil2WDB0EEe894+gNKea2DUBv9AtB2PvH/HgP2meExEBT9 y53HoEcgfhKOx+wP2YceXFIVdzx1KK4fW4/GsSFm -----END CERTIFICATE-----Generated at Mon Mar 2 22:48:58 2026 by rpki-client