$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa File: 34332e3233312e3132392e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: W5Zb76xYohKVMN4oDjg1HwPWp43mgnWE5orvLBb5SkM= Subject key identifier: D2:02:C1:52:E1:3A:9C:24:70:59:0D:87:AD:CD:5E:68:7C:9F:D5:2F Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 07DEEB800DC5FD7FFA798D9D75B330E9CB5570C8 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa Signing time: Sat 14 Jun 2025 06:00:03 +0000 ROA not before: Sat 14 Jun 2025 05:55:03 +0000 ROA not after: Sat 13 Jun 2026 06:00:03 +0000 asID: 38788 IP address blocks: 43.231.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 18:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:de:eb:80:0d:c5:fd:7f:fa:79:8d:9d:75:b3:30:e9:cb:55:70:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 14 05:55:03 2025 GMT Not After : Jun 13 06:00:03 2026 GMT Subject: CN=D202C152E13A9C2470590D87ADCD5E687C9FD52F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:94:67:4e:af:2e:03:07:98:22:54:d5:7d:15: 5e:db:84:35:56:b8:39:85:f5:8e:aa:3d:b5:c5:fe: 37:22:68:cd:9b:af:3a:1d:26:51:b8:37:d8:02:72: c6:ea:7f:a6:6a:31:81:69:e4:05:41:cb:e4:36:07: 33:8c:45:71:c2:67:1e:8b:f8:07:dd:86:0d:06:ca: 27:ea:ba:44:3d:9f:60:96:2c:f1:94:57:96:9f:5f: 17:d0:f2:53:f0:31:71:68:a4:b5:73:9d:6b:25:e0: 49:27:5f:b7:98:7d:8d:40:39:79:43:58:de:d9:8a: 91:c3:76:4f:32:51:a3:9e:d9:de:c3:b7:6a:99:ff: 3c:2e:9b:b8:f5:67:33:14:70:a2:f3:b3:20:15:1a: b4:ce:b2:b1:d0:04:cc:2c:b5:43:c8:9d:dd:99:04: ff:ae:25:9b:00:32:eb:11:30:48:07:ae:d9:b2:36: ad:c4:f1:bc:3e:19:23:2f:d4:46:a1:49:a4:e0:0c: 34:aa:6f:75:2e:19:a8:fe:7d:27:32:aa:7a:08:89: 45:35:85:b4:d9:7f:c9:09:ea:94:00:17:29:56:37: 09:06:1d:44:22:0f:82:ee:de:89:f1:7d:69:3b:e0: 43:26:4e:7a:e2:73:cb:a1:21:c7:a0:20:84:89:d0: c0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:02:C1:52:E1:3A:9C:24:70:59:0D:87:AD:CD:5E:68:7C:9F:D5:2F X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132392e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.129.0/24 Signature Algorithm: sha256WithRSAEncryption 62:d0:67:49:3f:18:07:80:80:17:7c:87:22:6e:25:6b:8f:b2: b6:43:c9:e5:c3:79:3f:4a:f8:85:48:98:64:29:f4:30:84:27: 57:f0:26:78:53:2f:91:0e:f7:74:69:73:00:99:62:a9:dc:b0: 80:bf:51:a4:fc:73:c0:b1:56:69:0e:27:02:ae:1b:2a:83:35: 17:cf:e1:1e:27:98:d1:3a:88:c7:fc:10:c8:f8:ed:48:ef:ea: fb:ad:a8:2f:d1:2c:83:a6:91:ac:83:32:31:31:aa:9c:f2:65: 7e:cc:6f:24:3b:cc:1a:e9:69:74:61:7a:60:42:d3:15:6c:bc: c5:c3:36:47:94:07:04:2a:79:26:3c:d7:21:c1:e2:0b:b5:f0: 15:ab:a1:41:45:d0:e0:ad:88:2c:c7:05:3f:38:bd:1d:96:0f: af:94:fc:9b:fd:36:dc:4d:ec:27:e4:95:8c:11:ee:4d:06:25: 50:75:39:c7:a9:18:c7:07:96:eb:61:e4:48:f6:66:02:19:60: 74:2f:2f:ef:69:4f:6e:83:97:e2:9d:3b:fb:73:f3:0e:83:4e: 24:f6:96:cf:30:89:60:da:1f:e0:9f:c7:56:14:3a:1d:ea:15: 5a:5a:0d:e6:7d:16:d2:21:da:47:12:01:9b:3f:17:59:09:40: fa:98:43:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB97rgA3F/X/6eY2ddbMw6ctVcMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MTQwNTU1MDNaFw0yNjA2MTMwNjAwMDNaMDMxMTAvBgNV BAMTKEQyMDJDMTUyRTEzQTlDMjQ3MDU5MEQ4N0FEQ0Q1RTY4N0M5RkQ1MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+lGdOry4DB5giVNV9FV7bhDVW uDmF9Y6qPbXF/jciaM2brzodJlG4N9gCcsbqf6ZqMYFp5AVBy+Q2BzOMRXHCZx6L +Afdhg0GyifqukQ9n2CWLPGUV5afXxfQ8lPwMXFopLVznWsl4EknX7eYfY1AOXlD WN7ZipHDdk8yUaOe2d7Dt2qZ/zwum7j1ZzMUcKLzsyAVGrTOsrHQBMwstUPInd2Z BP+uJZsAMusRMEgHrtmyNq3E8bw+GSMv1EahSaTgDDSqb3UuGaj+fScyqnoIiUU1 hbTZf8kJ6pQAFylWNwkGHUQiD4Lu3onxfWk74EMmTnric8uhIcegIISJ0MBbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0gLBUuE6nCRwWQ2Hrc1eaHyf1S8wHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvngTANBgkqhkiG 9w0BAQsFAAOCAQEAYtBnST8YB4CAF3yHIm4la4+ytkPJ5cN5P0r4hUiYZCn0MIQn V/AmeFMvkQ73dGlzAJliqdywgL9RpPxzwLFWaQ4nAq4bKoM1F8/hHieY0TqIx/wQ yPjtSO/q+62oL9Esg6aRrIMyMTGqnPJlfsxvJDvMGulpdGF6YELTFWy8xcM2R5QH BCp5JjzXIcHiC7XwFauhQUXQ4K2ILMcFPzi9HZYPr5T8m/023E3sJ+SVjBHuTQYl UHU5x6kYxweW62HkSPZmAhlgdC8v72lPboOX4p07+3PzDoNOJPaWzzCJYNof4J/H VhQ6HeoVWloN5n0W0iHaRxIBmz8XWQlA+phDeg== -----END CERTIFICATE-----Generated at Mon Jun 16 06:23:47 2025 by rpki-client