$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa File: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (raw, json) Hash identifier: lJiN/1jPk6sVzBu+b+dWtXwNwMFWgXWbUliAdUar1AU= Subject key identifier: 81:6C:A6:F2:B5:35:C5:4A:70:CE:E1:44:F0:D3:5C:6F:98:B1:E5:78 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 20B937E8875536677E67117E010560B3EAD81800 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa Signing time: Sun 27 Jul 2025 05:00:02 +0000 ROA not before: Sun 27 Jul 2025 04:55:02 +0000 ROA not after: Sun 26 Jul 2026 05:00:02 +0000 asID: 58474 IP address blocks: 43.248.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 03:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:b9:37:e8:87:55:36:67:7e:67:11:7e:01:05:60:b3:ea:d8:18:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Jul 27 04:55:02 2025 GMT Not After : Jul 26 05:00:02 2026 GMT Subject: CN=816CA6F2B535C54A70CEE144F0D35C6F98B1E578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:88:5a:6b:05:bc:2a:11:f8:ee:42:0a:dd:40: 65:8a:a4:32:09:eb:19:26:6c:5f:54:07:74:db:90: 7a:ae:57:19:84:1b:ee:e9:08:10:3c:bf:ba:d1:24: 40:ae:30:e7:1f:a0:21:b0:89:85:69:df:ee:bf:84: 67:b9:5b:51:01:47:0e:b5:01:d6:49:1f:4c:1f:be: 72:98:a6:8e:45:9f:95:20:86:f8:c1:46:9c:b5:fd: 38:e9:8c:ca:05:f4:bb:b6:9d:d8:79:bf:7a:9d:6a: 12:0b:34:b8:51:ff:67:4f:16:54:f3:f0:09:45:2a: 14:b9:15:f5:46:1c:a7:e7:2d:5d:c2:97:37:15:57: ec:a1:af:77:c7:04:10:7a:55:5f:ad:4c:ff:c4:d5: 7f:46:6a:25:b4:e5:9d:a8:07:6a:a9:58:29:23:ad: 63:de:cd:73:e6:59:b9:5a:f5:83:fa:f8:09:2c:7b: 62:02:3b:4d:22:d4:08:4c:fb:f7:b3:ec:ec:2c:c6: 81:bd:3c:3f:07:af:d4:4f:f0:33:59:66:37:81:d8: 5a:79:ad:1a:20:07:fc:df:ed:74:be:0e:3a:71:1f: f8:b4:a9:dc:a3:d2:10:e1:2b:db:1c:44:36:13:2a: a5:c0:13:36:81:71:e3:c8:7c:a3:b4:56:6d:94:e4: 05:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6C:A6:F2:B5:35:C5:4A:70:CE:E1:44:F0:D3:5C:6F:98:B1:E5:78 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.212.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:f9:7c:1f:68:97:fa:07:75:47:91:49:06:fd:4a:84:6b:71: 06:a7:69:f1:ab:3d:46:35:a3:cd:8d:39:26:2d:34:ca:71:ba: 11:e6:52:53:75:3f:97:64:a6:78:94:b0:ab:94:35:49:bd:0c: 11:20:34:92:68:61:ae:84:af:f9:de:3e:d9:3c:6a:8c:29:63: 01:fa:89:b2:f1:c9:81:f7:a4:e1:b0:8f:52:82:00:af:14:9b: fb:7b:f0:8d:e4:4f:f8:a0:60:7f:45:91:37:11:f0:ff:cc:d6: a9:33:cd:14:f3:26:b2:c5:9d:28:b0:10:09:06:97:a3:67:e8: 82:23:3e:cd:75:1a:3f:0a:d0:65:aa:de:40:bc:74:90:3e:a4: e2:14:b8:4d:f5:4f:26:3f:21:63:42:79:8b:4d:8d:8d:53:6e: 28:5e:94:a0:d0:1c:72:b3:c2:2a:c3:f2:58:04:36:e6:bd:3e: d5:0b:3c:1b:ef:f3:3e:e5:e5:58:b5:53:c3:03:04:c8:57:60: a5:05:96:1a:df:0e:5e:aa:91:8c:9a:18:34:5c:9f:c4:59:a1: 03:4f:a9:43:2c:3e:03:e5:c4:03:10:bd:00:3e:1d:24:68:f2: 85:b4:26:60:1d:e2:33:3e:56:fd:80:79:40:5d:28:56:22:53: 9b:d5:42:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUILk36IdVNmd+ZxF+AQVgs+rYGAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTA3MjcwNDU1MDJaFw0yNjA3MjYwNTAwMDJaMDMxMTAvBgNV BAMTKDgxNkNBNkYyQjUzNUM1NEE3MENFRTE0NEYwRDM1QzZGOThCMUU1NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRiFprBbwqEfjuQgrdQGWKpDIJ 6xkmbF9UB3TbkHquVxmEG+7pCBA8v7rRJECuMOcfoCGwiYVp3+6/hGe5W1EBRw61 AdZJH0wfvnKYpo5Fn5UghvjBRpy1/TjpjMoF9Lu2ndh5v3qdahILNLhR/2dPFlTz 8AlFKhS5FfVGHKfnLV3ClzcVV+yhr3fHBBB6VV+tTP/E1X9GaiW05Z2oB2qpWCkj rWPezXPmWbla9YP6+Akse2ICO00i1AhM+/ez7OwsxoG9PD8Hr9RP8DNZZjeB2Fp5 rRogB/zf7XS+DjpxH/i0qdyj0hDhK9scRDYTKqXAEzaBcePIfKO0Vm2U5AU5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgWym8rU1xUpwzuFE8NNcb5ix5XgwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzMDUxNzdhLWE1MDAtNDk5Ni1i M2ZmLTcwYzE0NGVkZmVjZS8wLzM0MzMyZTMyMzQzODJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv41DANBgkqhkiG 9w0BAQsFAAOCAQEAXPl8H2iX+gd1R5FJBv1KhGtxBqdp8as9RjWjzY05Ji00ynG6 EeZSU3U/l2SmeJSwq5Q1Sb0MESA0kmhhroSv+d4+2TxqjCljAfqJsvHJgfek4bCP UoIArxSb+3vwjeRP+KBgf0WRNxHw/8zWqTPNFPMmssWdKLAQCQaXo2fogiM+zXUa PwrQZareQLx0kD6k4hS4TfVPJj8hY0J5i02NjVNuKF6UoNAccrPCKsPyWAQ25r0+ 1Qs8G+/zPuXlWLVTwwMEyFdgpQWWGt8OXqqRjJoYNFyfxFmhA0+pQyw+A+XEAxC9 AD4dJGjyhbQmYB3iMz5W/YB5QF0oViJTm9VCUQ== -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:51 2025 by rpki-client