$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa File: 34332e3235322e3138372e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: u1OWVFREqAcpAaKhBDvotN6/FLB+6CJXG2VYGZmR91M= Subject key identifier: 54:5B:A6:1E:4E:E1:C8:21:AF:EE:C6:06:F0:F9:0C:C4:12:90:94:29 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 052F6945AE442FF865AA916BA9157D0AE4A8AEEE Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa Signing time: Thu 12 Feb 2026 11:02:02 +0000 ROA not before: Thu 12 Feb 2026 10:57:02 +0000 ROA not after: Thu 11 Feb 2027 11:02:02 +0000 asID: 58816 IP address blocks: 43.252.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 00:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:2f:69:45:ae:44:2f:f8:65:aa:91:6b:a9:15:7d:0a:e4:a8:ae:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Feb 12 10:57:02 2026 GMT Not After : Feb 11 11:02:02 2027 GMT Subject: CN=545BA61E4EE1C821AFEEC606F0F90CC412909429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:bf:bb:52:76:5b:d2:9d:2b:e8:a7:e3:cd: 24:a5:32:7a:da:28:dd:dd:78:1d:72:45:83:57:9f: 42:4b:6e:b9:9a:f1:ba:82:7d:e6:85:b0:14:3c:38: 04:48:61:d7:ef:ba:e5:57:29:f2:ec:93:6c:c5:ab: 4b:21:52:5b:7c:3c:67:31:57:ef:c8:3f:9e:d3:ba: 22:cf:86:e0:74:06:84:ae:fb:1c:d2:f6:5a:8a:41: 52:69:24:3f:cd:1e:97:88:ef:af:43:4f:92:98:a2: 1d:61:6e:80:37:f8:d9:34:58:30:7d:ba:98:16:fb: 8f:0d:70:98:3f:f3:1f:d4:83:b4:34:16:2c:90:1f: f1:30:fc:ba:e5:87:b8:3d:c4:63:81:06:24:62:9b: a2:14:5f:38:62:af:93:76:b6:0a:d4:d0:fb:12:39: b7:ff:96:ef:38:9d:ab:e7:51:c9:08:b4:8e:b1:84: 70:fe:c8:aa:3c:71:60:84:17:8c:39:8d:a4:5b:54: 77:20:22:cf:4e:aa:32:ec:5d:98:d0:9b:2c:c5:b8: 4b:f6:1d:30:da:8c:50:36:79:34:bb:a5:5b:3e:99: 4c:78:30:a4:d1:27:1b:f0:1b:82:c8:76:0f:75:70: 28:d9:46:b0:8c:d5:7b:85:8e:29:4b:e7:f5:65:22: c6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5B:A6:1E:4E:E1:C8:21:AF:EE:C6:06:F0:F9:0C:C4:12:90:94:29 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.187.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:f4:4d:0c:21:8a:df:f7:6c:47:74:b4:c0:32:94:04:8d:15: 13:36:c2:e0:a1:30:35:40:c0:62:b8:58:8d:b2:66:d2:01:8a: b2:78:0e:9d:30:14:d8:79:40:8d:58:62:67:a7:52:44:09:9b: f7:8e:a5:0f:c9:a6:d5:fb:0c:b6:b3:dc:20:79:80:93:ec:2c: d0:4c:7d:d3:a8:f7:96:a1:01:3f:47:13:69:25:16:13:d8:33: d1:a1:a2:cd:96:12:a8:4b:13:51:9a:10:27:f4:dc:92:c5:72: cb:42:ed:45:e8:11:bc:8a:c9:11:8e:36:ce:67:82:ca:d3:6e: cd:b4:16:4d:78:fd:ac:6f:df:05:42:d9:5d:08:be:05:7e:78: 74:4b:32:a1:a8:9d:be:6d:83:73:89:cc:fd:12:ef:31:84:56: cc:99:b3:c9:35:9b:f3:2f:02:87:1d:96:ae:82:cb:91:9e:14: cb:40:f5:6d:45:3f:a8:4f:87:f6:7d:85:e5:c9:54:41:b8:af: 83:d4:ff:00:12:fb:10:d2:0c:d5:2a:e5:93:ea:57:65:b7:84: 01:7b:9a:a3:0f:78:b0:6a:13:12:84:ab:c5:01:e8:16:26:19: 13:bf:66:ae:bf:68:ef:cc:13:f5:25:8a:d3:ef:ab:80:c7:19: 45:9a:7a:4f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBS9pRa5EL/hlqpFrqRV9CuSoru4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNjAyMTIxMDU3MDJaFw0yNzAyMTExMTAyMDJaMDMxMTAvBgNV BAMTKDU0NUJBNjFFNEVFMUM4MjFBRkVFQzYwNkYwRjkwQ0M0MTI5MDk0MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC197+7UnZb0p0r6KfjzSSlMnra KN3deB1yRYNXn0JLbrma8bqCfeaFsBQ8OARIYdfvuuVXKfLsk2zFq0shUlt8PGcx V+/IP57TuiLPhuB0BoSu+xzS9lqKQVJpJD/NHpeI769DT5KYoh1hboA3+Nk0WDB9 upgW+48NcJg/8x/Ug7Q0FiyQH/Ew/Lrlh7g9xGOBBiRim6IUXzhir5N2tgrU0PsS Obf/lu84navnUckItI6xhHD+yKo8cWCEF4w5jaRbVHcgIs9OqjLsXZjQmyzFuEv2 HTDajFA2eTS7pVs+mUx4MKTRJxvwG4LIdg91cCjZRrCM1XuFjilL5/VlIsajAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVFumHk7hyCGv7sYG8PkMxBKQlCkwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8uzANBgkqhkiG 9w0BAQsFAAOCAQEAHPRNDCGK3/dsR3S0wDKUBI0VEzbC4KEwNUDAYrhYjbJm0gGK sngOnTAU2HlAjVhiZ6dSRAmb946lD8mm1fsMtrPcIHmAk+ws0Ex906j3lqEBP0cT aSUWE9gz0aGizZYSqEsTUZoQJ/TcksVyy0LtRegRvIrJEY42zmeCytNuzbQWTXj9 rG/fBULZXQi+BX54dEsyoaidvm2Dc4nM/RLvMYRWzJmzyTWb8y8Chx2WroLLkZ4U y0D1bUU/qE+H9n2F5clUQbivg9T/ABL7ENIM1Srlk+pXZbeEAXuaow94sGoTEoSr xQHoFiYZE79mrr9o78wT9SWK0++rgMcZRZp6Tw== -----END CERTIFICATE-----Generated at Mon Mar 2 02:41:34 2026 by rpki-client