$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa File: 34332e3234372e32302e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: H+RNVENUJYTTFsMWsgJwmtIem8PyNZc4K51/hdOdwYc= Subject key identifier: 1F:FF:51:3F:00:0A:42:4B:B2:E3:B4:18:C1:A1:02:42:7C:4C:6E:64 Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 52485BAD1B9BFFE44CA1B1EC2029811DFE637E3A Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa Signing time: Sat 03 May 2025 09:00:49 +0000 ROA not before: Sat 03 May 2025 08:55:49 +0000 ROA not after: Sat 02 May 2026 09:00:49 +0000 asID: 24523 IP address blocks: 43.247.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 17:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:48:5b:ad:1b:9b:ff:e4:4c:a1:b1:ec:20:29:81:1d:fe:63:7e:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: May 3 08:55:49 2025 GMT Not After : May 2 09:00:49 2026 GMT Subject: CN=1FFF513F000A424BB2E3B418C1A102427C4C6E64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:09:1f:1f:12:6c:32:98:25:e4:a7:28:3e: 80:0b:3f:3c:e8:ea:5c:9d:66:5c:11:e4:0a:27:a0: 19:69:3e:9c:88:b8:df:6d:81:3e:a6:6a:08:44:3a: b7:49:a7:3a:f2:78:ce:04:19:44:80:32:17:12:7a: 27:34:fd:cb:3c:0f:da:d0:0a:c8:e3:55:7e:3a:ed: 63:d5:a9:de:f6:2d:71:be:a2:41:e4:4d:dc:e3:6f: a3:bf:a5:04:45:13:aa:60:61:56:37:3e:b1:ca:89: b7:ce:d6:47:33:d5:0d:cb:15:28:5c:58:90:0e:54: 2c:92:ea:ed:49:1f:b3:c0:bc:69:52:92:8f:11:67: 57:26:5b:4c:45:60:e6:06:ce:05:80:ed:21:2a:2e: 82:15:3f:88:72:05:a4:da:5a:d1:c2:a8:6b:d6:6b: e6:83:ec:e8:73:c2:c4:98:a3:b0:d9:70:38:28:9b: c3:c0:2c:41:6c:8f:65:70:09:94:e1:86:32:58:3a: 19:a9:c1:fb:25:32:4b:aa:37:fc:4b:ca:5f:c9:f5: f0:6b:6f:20:da:72:74:59:bd:b0:c8:ab:ef:27:ab: 36:88:bb:e1:e8:55:55:b5:9e:9f:3f:2b:89:ac:2c: a9:5a:bf:06:55:fc:6a:79:8a:e8:e7:4e:68:d6:95: 3b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FF:51:3F:00:0A:42:4B:B2:E3:B4:18:C1:A1:02:42:7C:4C:6E:64 X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:7f:88:bc:24:d9:c8:83:53:2b:a1:7f:3f:a4:3e:2b:ea:56: c6:0d:4e:15:fd:81:bb:9a:aa:32:6c:d0:17:d4:3c:9c:21:68: 6e:fc:a6:31:68:c3:6d:8a:f9:c2:f6:a1:02:3b:e7:ae:94:98: f0:0c:c5:98:d3:09:68:c3:72:3a:40:e3:c9:10:10:23:12:e6: d2:a6:5a:39:92:53:8a:7e:c6:60:fd:cb:d6:fe:50:a1:4f:55: 30:3d:f6:0f:5f:58:81:18:d5:0a:78:33:f8:ec:46:9f:fb:6f: 39:72:74:36:fa:71:ba:33:53:d9:d0:01:60:1a:01:d7:79:ea: 51:28:98:40:83:30:24:a2:85:0a:d4:80:bc:11:d3:2f:f0:d6: 40:14:ff:6d:83:a0:ff:cd:ca:e5:e2:a5:77:d3:3c:17:b1:cb: 2b:4e:e2:ba:b4:b8:c8:45:85:e9:be:b9:27:f1:6d:59:ee:72: 9e:56:67:58:86:a0:bc:66:94:f4:7e:dd:f0:79:85:2e:75:c6: f6:1c:f4:69:aa:fc:c2:30:09:ae:d5:e4:35:8b:2e:08:55:5b: 12:3a:06:3a:24:c1:75:d7:39:0f:e5:84:15:5d:97:63:0e:4a: f8:2e:2a:74:7e:43:78:44:17:54:61:28:b3:71:6f:5f:33:a0: 42:40:b8:47 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUkhbrRub/+RMobHsICmBHf5jfjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yNTA1MDMwODU1NDlaFw0yNjA1MDIwOTAwNDlaMDMxMTAvBgNV BAMTKDFGRkY1MTNGMDAwQTQyNEJCMkUzQjQxOEMxQTEwMjQyN0M0QzZFNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHawkfHxJsMpgl5KcoPoALPzzo 6lydZlwR5AonoBlpPpyIuN9tgT6maghEOrdJpzryeM4EGUSAMhcSeic0/cs8D9rQ CsjjVX467WPVqd72LXG+okHkTdzjb6O/pQRFE6pgYVY3PrHKibfO1kcz1Q3LFShc WJAOVCyS6u1JH7PAvGlSko8RZ1cmW0xFYOYGzgWA7SEqLoIVP4hyBaTaWtHCqGvW a+aD7OhzwsSYo7DZcDgom8PALEFsj2VwCZThhjJYOhmpwfslMkuqN/xLyl/J9fBr byDacnRZvbDIq+8nqzaIu+HoVVW1np8/K4msLKlavwZV/Gp5iujnTmjWlTuvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUH/9RPwAKQkuy47QYwaECQnxMbmQwHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9xQwDQYJKoZIhvcN AQELBQADggEBAJ5/iLwk2ciDUyuhfz+kPivqVsYNThX9gbuaqjJs0BfUPJwhaG78 pjFow22K+cL2oQI7566UmPAMxZjTCWjDcjpA48kQECMS5tKmWjmSU4p+xmD9y9b+ UKFPVTA99g9fWIEY1Qp4M/jsRp/7bzlydDb6cbozU9nQAWAaAdd56lEomECDMCSi hQrUgLwR0y/w1kAU/22DoP/NyuXipXfTPBexyytO4rq0uMhFhem+uSfxbVnucp5W Z1iGoLxmlPR+3fB5hS51xvYc9Gmq/MIwCa7V5DWLLghVWxI6BjokwXXXOQ/lhBVd l2MOSvguKnR+Q3hEF1RhKLNxb18zoEJAuEc= -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:17 2025 by rpki-client