$ rpki-client -vvf repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa File: 34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa (raw, json) Hash identifier: 78O1ueVQuFfOoEIhy2/u3I+vzcB/NPyQz3uKyD8I2xQ= Subject key identifier: 49:33:72:31:03:C7:EF:16:E5:F5:41:F0:2E:28:57:F6:16:56:29:10 Certificate issuer: /CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Certificate serial: 647BAAE052F21A63B2BB3C7D0F91FF62DFE0AA01 Authority key identifier: 12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa Signing time: Tue 03 Feb 2026 05:03:07 +0000 ROA not before: Tue 03 Feb 2026 04:58:07 +0000 ROA not after: Tue 02 Feb 2027 05:03:07 +0000 asID: 139396 IP address blocks: 45.113.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 01:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:7b:aa:e0:52:f2:1a:63:b2:bb:3c:7d:0f:91:ff:62:df:e0:aa:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Validity Not Before: Feb 3 04:58:07 2026 GMT Not After : Feb 2 05:03:07 2027 GMT Subject: CN=4933723103C7EF16E5F541F02E2857F616562910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7d:e0:b9:91:22:96:22:52:4c:0a:7d:54:dd: 4c:cd:89:e2:f6:16:ec:26:1e:6f:5e:17:e1:65:e7: b0:f2:c1:2c:09:1c:83:20:55:28:a3:76:ad:47:3c: b7:87:00:1b:88:90:9e:c4:de:ee:a4:a4:b0:3c:b5: fa:2f:53:66:44:8e:62:b5:ca:04:0e:76:7b:3f:dd: ff:2e:20:4a:ee:ef:b8:06:e7:39:7c:ac:bb:28:f5: 1b:ad:03:1e:bf:e9:04:d9:cc:90:f4:cb:00:2d:a3: 5b:9c:c4:c5:50:d0:16:5c:bb:c2:f2:e2:f6:58:b9: be:57:3e:72:3e:54:83:8e:b5:06:c0:ad:3c:cc:34: 3d:d2:da:d0:29:a9:ea:f6:93:d5:1f:63:ff:4b:1a: 2b:03:8e:4b:72:fe:51:fc:87:05:3c:a4:ea:ed:dc: 4b:bf:0d:b1:24:d4:aa:b8:58:b7:bb:92:fa:b4:62: 0a:ec:1b:a7:2b:d5:93:b1:1d:43:e9:81:ce:87:97: d8:18:1f:68:4c:5f:d9:af:28:6c:ea:31:48:4e:11: 61:54:f8:5b:a1:4b:40:df:66:b7:07:94:8f:e5:5a: 83:c0:65:86:da:9c:a9:57:00:2f:cc:4a:6e:02:69: 7f:00:f4:0c:71:9c:af:16:ff:24:47:ba:67:43:ec: 6a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:33:72:31:03:C7:EF:16:E5:F5:41:F0:2E:28:57:F6:16:56:29:10 X509v3 Authority Key Identifier: keyid:12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/34352e3131332e3232382e302f32322d3234203d3e20313339333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:60:8e:0a:eb:83:3e:24:f2:01:ce:b3:f5:8a:78:5e:a4:e5: 2f:83:6b:23:51:58:54:a7:a2:0d:6c:78:be:54:f9:2b:87:fb: 0c:34:8c:e7:43:ef:88:c5:93:7c:84:c8:f4:24:e7:a3:88:dd: af:21:aa:bd:18:a8:e7:f5:4a:ac:8f:5e:cc:5f:1b:12:f9:e4: fe:73:1e:90:51:2a:46:d2:94:ed:08:5a:90:a6:9a:61:44:9e: 01:5f:2b:89:25:76:9d:77:22:78:f1:89:f6:32:fd:55:f0:48: 32:9e:d0:58:e2:44:76:fd:ec:19:5b:90:6e:e1:a6:52:3b:05: fc:cc:0b:15:16:6e:71:81:c0:af:e1:6d:4d:c5:30:5a:1d:6d: 7c:c0:83:78:60:79:53:fb:fe:b1:bd:48:7c:c4:ca:a6:fb:3e: 62:0f:ca:ce:7d:cf:84:bc:15:cb:12:4a:16:fa:c7:91:7e:09: a1:78:9d:1a:b9:3a:57:11:a8:51:7d:b4:f3:e8:06:cd:db:1e: 95:d5:3f:4d:bd:49:42:06:6d:7d:b0:73:30:22:43:ea:d6:77: 63:8e:98:55:43:ea:90:d7:84:0e:2a:ab:0e:9e:22:be:46:bb: 0f:f8:c8:e9:68:80:3a:c5:a8:9d:24:0b:d6:d5:2a:54:8b:fa: 05:17:f1:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZHuq4FLyGmOyuzx9D5H/Yt/gqgEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERD M0NFNTdGOTAeFw0yNjAyMDMwNDU4MDdaFw0yNzAyMDIwNTAzMDdaMDMxMTAvBgNV BAMTKDQ5MzM3MjMxMDNDN0VGMTZFNUY1NDFGMDJFMjg1N0Y2MTY1NjI5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxfeC5kSKWIlJMCn1U3UzNieL2 FuwmHm9eF+Fl57DywSwJHIMgVSijdq1HPLeHABuIkJ7E3u6kpLA8tfovU2ZEjmK1 ygQOdns/3f8uIEru77gG5zl8rLso9RutAx6/6QTZzJD0ywAto1ucxMVQ0BZcu8Ly 4vZYub5XPnI+VIOOtQbArTzMND3S2tApqer2k9UfY/9LGisDjkty/lH8hwU8pOrt 3Eu/DbEk1Kq4WLe7kvq0YgrsG6cr1ZOxHUPpgc6Hl9gYH2hMX9mvKGzqMUhOEWFU +FuhS0DfZrcHlI/lWoPAZYbanKlXAC/MSm4CaX8A9AxxnK8W/yRHumdD7GqtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSTNyMQPH7xbl9UHwLihX9hZWKRAwHwYDVR0j BBgwFoAUEpqu/AjSBOm+VDnIB/+EDcPOV/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM2NTVmMS0zOGI2LTQ0MTUtOGZhZi0yYjViOTE1M2U1MmQvMC8xMjlBQUVGQzA4 RDIwNEU5QkU1NDM5QzgwN0ZGODQwREMzQ0U1N0Y5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTI5QUFFRkMwOEQyMDRFOUJFNTQzOUM4MDdGRjg0MERDM0NF NTdGOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzY1NWYxLTM4YjYtNDQxNS04 ZmFmLTJiNWI5MTUzZTUyZC8wLzM0MzUyZTMxMzEzMzJlMzIzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXHkMA0GCSqG SIb3DQEBCwUAA4IBAQB8YI4K64M+JPIBzrP1inhepOUvg2sjUVhUp6INbHi+VPkr h/sMNIznQ++IxZN8hMj0JOejiN2vIaq9GKjn9Uqsj17MXxsS+eT+cx6QUSpG0pTt CFqQppphRJ4BXyuJJXaddyJ48Yn2Mv1V8EgyntBY4kR2/ewZW5Bu4aZSOwX8zAsV Fm5xgcCv4W1NxTBaHW18wIN4YHlT+/6xvUh8xMqm+z5iD8rOfc+EvBXLEkoW+seR fgmheJ0auTpXEahRfbTz6AbN2x6V1T9NvUlCBm19sHMwIkPq1ndjjphVQ+qQ14QO KqsOniK+RrsP+MjpaIA6xaidJAvW1SpUi/oFF/Gt -----END CERTIFICATE-----Generated at Mon Mar 2 15:20:16 2026 by rpki-client