$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34392e35302e352e302f32342d3234203d3e203436303234.roa File: 34392e35302e352e302f32342d3234203d3e203436303234.roa (raw, json) Hash identifier: +bXCaBbua6T2KBv/snNdo+ibMSi47YiRL7LuzmtTWcA= Subject key identifier: 8A:E0:9B:D0:20:EE:6B:78:F4:73:4E:2B:BA:A2:AE:A6:C9:14:F1:B8 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 4793952E4F07AF7775F4FB2465E7223B1BB4CED4 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34392e35302e352e302f32342d3234203d3e203436303234.roa Signing time: Thu 22 May 2025 04:33:00 +0000 ROA not before: Thu 22 May 2025 04:28:00 +0000 ROA not after: Thu 21 May 2026 04:33:00 +0000 asID: 46024 IP address blocks: 49.50.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:93:95:2e:4f:07:af:77:75:f4:fb:24:65:e7:22:3b:1b:b4:ce:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: May 22 04:28:00 2025 GMT Not After : May 21 04:33:00 2026 GMT Subject: CN=8AE09BD020EE6B78F4734E2BBAA2AEA6C914F1B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b8:72:ac:43:03:f2:8f:e3:62:c9:9e:0d:95: 7e:8a:8e:67:39:36:e1:5e:f4:df:b5:44:ef:e3:32: b2:89:26:7d:f9:fc:ef:74:c9:3a:a3:95:96:31:eb: 33:cd:66:7e:78:2e:68:99:c6:36:9d:1e:c7:3d:2e: 44:24:16:e5:d7:17:e0:00:37:fa:1e:0e:fc:92:11: a1:85:ea:88:0a:70:87:01:fc:c9:ab:36:27:cd:34: c9:b7:15:cc:46:4e:43:fe:53:f5:13:b7:ab:ed:1e: 89:73:3e:4f:4c:dd:29:3f:88:20:6b:02:26:96:96: 9d:05:71:c2:2c:e7:b9:9c:0b:60:a4:5a:81:a3:86: e4:99:50:16:63:d3:0e:7a:a0:a9:06:9f:33:be:46: 1a:28:15:25:32:54:f3:80:7d:6c:b2:28:18:9e:8f: 43:c6:34:5a:f0:db:2d:30:df:c1:e4:84:bf:99:2e: 8b:e0:a5:e3:33:8d:8b:bc:88:88:ea:f6:d1:94:2d: 69:38:42:29:27:81:dd:1a:c6:f9:88:93:b8:df:2f: bc:49:e0:3a:11:b5:c5:d6:fe:a4:40:f7:b3:e3:e3: f2:91:69:5b:8a:04:40:aa:c6:b8:fd:7b:53:99:c2: 39:01:cc:88:4a:03:59:94:27:cf:33:bb:0c:fb:cb: 96:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E0:9B:D0:20:EE:6B:78:F4:73:4E:2B:BA:A2:AE:A6:C9:14:F1:B8 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34392e35302e352e302f32342d3234203d3e203436303234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.50.5.0/24 Signature Algorithm: sha256WithRSAEncryption c2:a3:e5:3c:a9:fc:2d:23:24:e6:0b:42:6d:63:4e:43:23:62: a8:47:3e:38:78:c8:07:55:00:cd:0b:cb:ed:94:6d:9f:f7:5b: 94:3b:05:d0:c3:22:ee:71:31:d3:13:91:cd:6f:06:55:54:2d: 83:0e:45:5b:ce:50:91:c3:3a:75:86:45:c4:2c:f0:72:3a:78: 24:d9:cb:4d:5f:c7:94:7a:dd:46:b0:9e:82:d0:2f:f5:c0:2a: 8b:f0:fd:fa:f8:63:6e:81:ab:dd:73:8a:41:86:f9:0d:9a:c6: eb:4d:d6:15:4e:98:2f:aa:fb:2d:e2:47:41:64:04:b6:8a:c9: 90:82:b0:23:5a:8f:1f:e6:d0:1c:1d:5b:cc:91:4b:66:97:40: c4:2f:fc:54:3e:3a:3d:72:9b:3e:fe:f4:51:95:e7:3a:af:32: 0e:73:1c:01:8a:d9:07:cd:a3:0f:7d:c7:17:0a:e1:a2:45:a9: 6d:6c:c7:97:bb:66:ee:55:a6:bf:c7:36:c1:8d:91:48:1f:84: 93:6f:63:b6:93:b2:b6:58:21:00:2c:54:43:aa:4e:67:9a:bf: 52:c5:e5:71:4b:3a:cc:58:fc:d6:e4:91:7d:3f:7f:92:d5:b2: f4:33:be:9c:c6:71:a0:e6:5e:56:5d:a3:e2:cc:bc:99:1e:03: e3:fb:49:1f -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUR5OVLk8Hr3d19PskZeciOxu0ztQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTA1MjIwNDI4MDBaFw0yNjA1MjEwNDMzMDBaMDMxMTAvBgNV BAMTKDhBRTA5QkQwMjBFRTZCNzhGNDczNEUyQkJBQTJBRUE2QzkxNEYxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkuHKsQwPyj+NiyZ4NlX6Kjmc5 NuFe9N+1RO/jMrKJJn35/O90yTqjlZYx6zPNZn54LmiZxjadHsc9LkQkFuXXF+AA N/oeDvySEaGF6ogKcIcB/MmrNifNNMm3FcxGTkP+U/UTt6vtHolzPk9M3Sk/iCBr AiaWlp0FccIs57mcC2CkWoGjhuSZUBZj0w56oKkGnzO+RhooFSUyVPOAfWyyKBie j0PGNFrw2y0w38HkhL+ZLovgpeMzjYu8iIjq9tGULWk4Qikngd0axvmIk7jfL7xJ 4DoRtcXW/qRA97Pj4/KRaVuKBECqxrj9e1OZwjkBzIhKA1mUJ88zuwz7y5adAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUiuCb0CDua3j0c04ruqKupskU8bgwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVlYzI1ZTQtOWFhOC00YmVmLTkw OTctYzBiZWMwYjI2NmE3LzAvMzQzOTJlMzUzMDJlMzUyZTMwMmYzMjM0MmQzMjM0 MjAzZDNlMjAzNDM2MzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAMTIFMA0GCSqGSIb3DQEBCwUA A4IBAQDCo+U8qfwtIyTmC0JtY05DI2KoRz44eMgHVQDNC8vtlG2f91uUOwXQwyLu cTHTE5HNbwZVVC2DDkVbzlCRwzp1hkXELPByOngk2ctNX8eUet1GsJ6C0C/1wCqL 8P36+GNugavdc4pBhvkNmsbrTdYVTpgvqvst4kdBZAS2ismQgrAjWo8f5tAcHVvM kUtml0DEL/xUPjo9cps+/vRRlec6rzIOcxwBitkHzaMPfccXCuGiRaltbMeXu2bu Vaa/xzbBjZFIH4STb2O2k7K2WCEALFRDqk5nmr9SxeVxSzrMWPzW5JF9P3+S1bL0 M76cxnGg5l5WXaPizLyZHgPj+0kf -----END CERTIFICATE-----Generated at Tue Nov 4 19:46:53 2025 by rpki-client