$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/34352e36342e3130302e302f32322d3234203d3e203435373836.roa File: 34352e36342e3130302e302f32322d3234203d3e203435373836.roa (raw, json) Hash identifier: sLI9kyH4UUKtJ48DuSDvIEt/kI9PlelTvUCSLOep6GI= Subject key identifier: 99:4A:F8:DD:2C:AA:E9:C5:C0:DB:CB:56:0D:82:74:81:ED:AD:C3:FA Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 719807B5123D702FD8C94F2961F4FA31D06923CA Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/34352e36342e3130302e302f32322d3234203d3e203435373836.roa Signing time: Thu 24 Jul 2025 10:00:01 +0000 ROA not before: Thu 24 Jul 2025 09:55:01 +0000 ROA not after: Thu 23 Jul 2026 10:00:01 +0000 asID: 45786 IP address blocks: 45.64.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 22:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:98:07:b5:12:3d:70:2f:d8:c9:4f:29:61:f4:fa:31:d0:69:23:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Jul 24 09:55:01 2025 GMT Not After : Jul 23 10:00:01 2026 GMT Subject: CN=994AF8DD2CAAE9C5C0DBCB560D827481EDADC3FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:02:41:a6:74:96:ee:67:ab:a8:cc:b6:07:6e: 1d:b7:de:b2:2b:da:b9:a0:6a:e6:2c:9d:e8:7d:45: 04:68:bf:09:45:4a:fd:de:52:d7:f0:ca:2d:96:96: aa:d0:64:cf:cc:62:1f:c7:6b:90:d1:4c:84:c0:fc: f6:46:de:44:70:e6:ec:19:0e:a0:37:0a:cf:dd:37: e2:98:8b:88:ed:a1:c7:78:88:20:9a:f2:f7:b7:e1: 1a:ba:bb:53:db:74:91:74:b5:7a:5a:19:a6:5b:20: 86:ac:9e:a2:fa:f2:8b:da:39:7a:8a:19:88:35:1e: 8c:f7:2a:d6:58:9f:9f:9e:e7:64:aa:12:69:73:94: 02:e7:64:62:93:25:7c:5b:20:1c:ca:c4:8d:fe:e6: e6:52:06:c9:d1:a1:cc:c9:c7:60:53:3e:aa:ae:27: 66:c6:8e:08:e9:a1:c2:94:0d:a4:a7:b7:43:00:4d: af:d3:8d:ab:a9:27:e0:c2:6c:cd:e2:b7:ec:a5:e3: 12:40:f7:7d:16:51:9e:99:fc:77:de:f8:ed:03:d4: 81:2a:6f:c0:b4:ca:c3:27:10:f8:d3:d4:03:0e:d7: 59:6c:25:7c:e1:18:e7:4d:2b:72:a3:b6:46:ac:92: 8e:c4:59:a5:f8:30:3e:3d:02:7b:59:98:ea:95:55: 87:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:4A:F8:DD:2C:AA:E9:C5:C0:DB:CB:56:0D:82:74:81:ED:AD:C3:FA X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/34352e36342e3130302e302f32322d3234203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.100.0/22 Signature Algorithm: sha256WithRSAEncryption 45:ea:14:fe:d0:82:83:0d:b7:e0:25:2e:c8:76:29:54:37:10: 17:1c:30:d8:33:b9:16:c8:8f:80:ea:b5:de:8f:f4:ef:46:c5: 22:ea:d7:59:bc:87:a4:ad:63:61:76:ed:8c:d7:d0:40:e9:8f: 03:7a:d9:bf:13:c0:eb:13:f5:f7:c6:b6:bd:01:43:72:e1:74: d4:ed:a0:b0:51:5d:91:a0:c4:7e:07:97:ed:70:18:0c:f4:5f: f9:e5:33:ca:b2:00:81:37:9a:c2:29:03:55:db:70:43:c9:94: 68:59:46:b1:32:97:08:2b:37:02:22:77:b7:5c:67:bc:93:2c: 84:9b:46:2c:68:21:88:89:a9:2a:ba:91:b9:94:b0:26:f8:b0: 05:e8:c4:f2:56:56:0d:ba:55:8b:6d:68:48:6a:4c:02:5c:5f: c4:a3:01:08:20:1c:a2:89:80:03:25:41:41:e5:0f:8d:ed:10: 0d:ea:cc:29:0a:ee:ab:84:ba:7a:13:3c:48:92:16:e3:c2:50: ae:c0:c5:ea:09:a1:c8:35:17:14:0e:7c:b2:be:8c:65:c0:d4: b6:fb:c1:ef:2d:75:00:2f:3e:f3:c0:8b:b6:70:a7:98:dd:09: 57:50:10:28:01:77:23:00:4f:62:b3:08:1a:f5:ed:f9:d7:4b: 98:be:11:c1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcZgHtRI9cC/YyU8pYfT6MdBpI8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yNTA3MjQwOTU1MDFaFw0yNjA3MjMxMDAwMDFaMDMxMTAvBgNV BAMTKDk5NEFGOEREMkNBQUU5QzVDMERCQ0I1NjBEODI3NDgxRURBREMzRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVAkGmdJbuZ6uozLYHbh233rIr 2rmgauYsneh9RQRovwlFSv3eUtfwyi2WlqrQZM/MYh/Ha5DRTITA/PZG3kRw5uwZ DqA3Cs/dN+KYi4jtocd4iCCa8ve34Rq6u1PbdJF0tXpaGaZbIIasnqL68ovaOXqK GYg1Hoz3KtZYn5+e52SqEmlzlALnZGKTJXxbIBzKxI3+5uZSBsnRoczJx2BTPqqu J2bGjgjpocKUDaSnt0MATa/TjaupJ+DCbM3it+yl4xJA930WUZ6Z/Hfe+O0D1IEq b8C0ysMnEPjT1AMO11lsJXzhGOdNK3Kjtkasko7EWaX4MD49AntZmOqVVYdrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUmUr43Syq6cXA28tWDYJ0ge2tw/owHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzM0MzUyZTM2MzQyZTMxMzAzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzUzNzM4MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAItQGQwDQYJKoZIhvcN AQELBQADggEBAEXqFP7QgoMNt+AlLsh2KVQ3EBccMNgzuRbIj4Dqtd6P9O9GxSLq 11m8h6StY2F27YzX0EDpjwN62b8TwOsT9ffGtr0BQ3LhdNTtoLBRXZGgxH4Hl+1w GAz0X/nlM8qyAIE3msIpA1XbcEPJlGhZRrEylwgrNwIid7dcZ7yTLISbRixoIYiJ qSq6kbmUsCb4sAXoxPJWVg26VYttaEhqTAJcX8SjAQggHKKJgAMlQUHlD43tEA3q zCkK7quEunoTPEiSFuPCUK7AxeoJocg1FxQOfLK+jGXA1Lb7we8tdQAvPvPAi7Zw p5jdCVdQECgBdyMAT2KzCBr17fnXS5i+EcE= -----END CERTIFICATE-----Generated at Sat Aug 9 14:19:23 2025 by rpki-client