$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa File: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (raw, json) Hash identifier: AI/USbQ/a0LFBdjZWtV22hxC6HEFmmDia8w1dNa/lbM= Subject key identifier: 23:41:51:D8:4F:51:9C:A1:82:CD:81:47:66:91:F8:8C:6E:78:DF:EA Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 2A9E80B39A9F46852829C14BE89A7C0FBFBB548C Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa Signing time: Mon 02 Jun 2025 02:03:32 +0000 ROA not before: Mon 02 Jun 2025 01:58:32 +0000 ROA not after: Mon 01 Jun 2026 02:03:32 +0000 asID: 58376 IP address blocks: 43.245.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 11:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9e:80:b3:9a:9f:46:85:28:29:c1:4b:e8:9a:7c:0f:bf:bb:54:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Jun 2 01:58:32 2025 GMT Not After : Jun 1 02:03:32 2026 GMT Subject: CN=234151D84F519CA182CD81476691F88C6E78DFEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bc:a4:59:87:47:c9:83:35:c0:43:00:d2:71: 39:da:b5:b9:a9:82:3c:50:e8:51:28:db:81:73:df: b9:bd:28:78:32:2f:a9:ed:cf:50:e6:ee:ba:d6:cd: a1:e5:87:45:39:48:dc:c3:bb:3e:45:f0:6c:d7:e2: ff:1e:75:3c:c7:09:02:24:05:87:78:8d:a8:bb:3a: 36:c2:11:52:a8:d3:53:02:79:63:20:e7:90:c9:85: 64:e9:cd:00:58:d5:bc:44:eb:ef:a3:87:d7:cc:3c: ee:80:9b:72:27:31:f9:29:65:a4:a6:ff:fd:31:92: e0:a7:0d:e3:d5:86:eb:5a:c4:0b:64:d5:b3:19:ea: 6f:79:05:21:e1:4f:00:cf:b9:43:ba:07:ec:16:6b: cf:91:d5:ba:6d:7c:99:35:55:be:e5:59:56:d3:00: 67:45:47:8e:55:c6:7f:09:22:a6:b1:89:09:fa:7b: 2d:ac:8f:bd:f5:44:25:a1:60:fa:cd:3d:b9:69:e4: b7:2a:97:01:6b:97:b3:26:95:4a:74:5d:53:d7:18: 13:af:96:03:41:c9:91:81:cc:0d:f3:3f:1a:5c:80: 40:d5:ed:9f:80:52:11:3f:2b:c3:e2:5c:d2:69:d7: 00:d3:b4:dc:95:ff:e9:aa:f4:7e:00:f0:c6:99:b4: 5a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:41:51:D8:4F:51:9C:A1:82:CD:81:47:66:91:F8:8C:6E:78:DF:EA X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/34332e3234352e3138382e302f32322d3234203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.188.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:40:e4:f8:16:b3:1e:c0:4d:ab:84:e7:72:c5:35:6e:a6:ac: 3c:db:e3:3b:c6:61:9d:ac:76:74:c5:a5:2f:e7:ad:cf:ea:81: 4e:df:9a:c6:dc:1c:54:ff:00:f3:32:68:e5:b1:30:e0:2a:f6: 43:1b:6a:3c:99:7b:8a:60:a6:26:5f:93:2b:96:bf:10:0d:27: c9:b4:03:21:d1:66:14:ce:e9:ff:e5:af:e6:c5:b3:a3:4d:c9: 10:ba:85:5e:c5:cc:1a:0e:3c:c4:58:6f:df:9a:cc:17:78:98: 47:0c:38:b5:08:e2:ed:05:f3:74:e0:e2:f4:70:f2:04:5c:cc: 20:1b:d0:59:09:a9:e7:27:a0:02:8d:76:87:de:5f:58:a5:05: 19:b5:23:e5:0d:4d:b8:75:e2:2a:10:6d:e0:6b:c3:cd:2f:9a: c7:fc:8c:57:95:1a:42:aa:48:8a:72:20:ac:1f:2a:b9:f9:42: ad:c7:4b:f6:76:f7:35:3a:96:9a:34:fc:cc:81:f3:53:8b:ba: d8:92:a1:84:cf:56:aa:0a:45:3e:b7:87:75:57:f7:92:bc:e6: d2:e1:50:08:fa:3e:fc:de:d9:61:af:51:f4:be:ad:a1:0c:88: 60:f1:bc:03:c9:2a:b1:91:6b:01:08:fe:c2:97:e2:ad:e3:80: c0:c7:df:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKp6As5qfRoUoKcFL6Jp8D7+7VIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNTA2MDIwMTU4MzJaFw0yNjA2MDEwMjAzMzJaMDMxMTAvBgNV BAMTKDIzNDE1MUQ4NEY1MTlDQTE4MkNEODE0NzY2OTFGODhDNkU3OERGRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCvKRZh0fJgzXAQwDScTnatbmp gjxQ6FEo24Fz37m9KHgyL6ntz1Dm7rrWzaHlh0U5SNzDuz5F8GzX4v8edTzHCQIk BYd4jai7OjbCEVKo01MCeWMg55DJhWTpzQBY1bxE6++jh9fMPO6Am3InMfkpZaSm //0xkuCnDePVhutaxAtk1bMZ6m95BSHhTwDPuUO6B+wWa8+R1bptfJk1Vb7lWVbT AGdFR45Vxn8JIqaxiQn6ey2sj731RCWhYPrNPblp5LcqlwFrl7MmlUp0XVPXGBOv lgNByZGBzA3zPxpcgEDV7Z+AUhE/K8PiXNJp1wDTtNyV/+mq9H4A8MaZtFqZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI0FR2E9RnKGCzYFHZpH4jG543+owHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8wLzM0MzMyZTMyMzQzNTJlMzEzODM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv1vDANBgkqhkiG 9w0BAQsFAAOCAQEAT0Dk+BazHsBNq4TncsU1bqasPNvjO8Zhnax2dMWlL+etz+qB Tt+axtwcVP8A8zJo5bEw4Cr2QxtqPJl7imCmJl+TK5a/EA0nybQDIdFmFM7p/+Wv 5sWzo03JELqFXsXMGg48xFhv35rMF3iYRww4tQji7QXzdODi9HDyBFzMIBvQWQmp 5yegAo12h95fWKUFGbUj5Q1NuHXiKhBt4GvDzS+ax/yMV5UaQqpIinIgrB8quflC rcdL9nb3NTqWmjT8zIHzU4u62JKhhM9WqgpFPreHdVf3krzm0uFQCPo+/N7ZYa9R 9L6toQyIYPG8A8kqsZFrAQj+wpfireOAwMffUw== -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:00 2025 by rpki-client