$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32322e302f32342d3234203d3e20313331373830.roa File: 34332e3234372e32322e302f32342d3234203d3e20313331373830.roa (raw, json) Hash identifier: 5anZts+0bEon0rtEY8wdhQZ04blyk5ArSxY56Hko6LA= Subject key identifier: 06:53:B8:F4:A3:D0:21:14:F8:20:6C:42:DD:B7:AA:0B:82:99:36:CB Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 3319A4B277E3E642FD9FA0956AFA954BC79529B8 Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32322e302f32342d3234203d3e20313331373830.roa Signing time: Fri 25 Jul 2025 12:00:01 +0000 ROA not before: Fri 25 Jul 2025 11:55:01 +0000 ROA not after: Fri 24 Jul 2026 12:00:01 +0000 asID: 131780 IP address blocks: 43.247.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 12:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:19:a4:b2:77:e3:e6:42:fd:9f:a0:95:6a:fa:95:4b:c7:95:29:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Jul 25 11:55:01 2025 GMT Not After : Jul 24 12:00:01 2026 GMT Subject: CN=0653B8F4A3D02114F8206C42DDB7AA0B829936CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:00:2f:b8:6f:3e:18:5f:f9:fe:f8:00:78: 04:f3:99:00:50:27:73:12:5b:4e:8f:55:58:ea:da: fe:f8:b9:92:c8:f0:bb:75:3a:62:9d:35:f5:39:af: 28:f4:01:c6:30:34:4a:91:0e:92:31:9e:90:7c:0c: 6c:71:5d:2f:e6:71:30:0f:99:46:f3:b9:ce:00:85: 3c:09:6d:0c:26:c2:6f:99:6b:ed:b6:9b:57:41:60: 51:b6:7b:e9:fa:6c:5e:26:52:e2:33:07:0e:43:53: 0e:b1:47:2d:85:f3:bb:d1:89:6a:65:2d:62:c7:ad: ca:4c:44:20:47:38:9b:c7:ff:91:d1:91:90:9b:8d: 96:c7:44:11:2b:60:8b:96:99:f9:a6:75:af:ea:4f: 59:5e:a8:1c:68:18:01:fb:ef:0d:b9:9c:41:d2:9e: 21:ab:13:18:57:66:bb:c0:ba:9f:ea:43:5c:be:05: ae:79:b0:09:99:22:4b:90:37:38:bc:bd:08:81:30: df:a6:10:c9:2a:5f:72:5f:f3:45:d1:d0:84:5e:1b: d5:b8:84:db:19:e9:4d:ff:97:bb:ca:80:0b:51:2f: 30:52:41:39:00:95:3a:fe:cc:53:69:7f:1a:de:9d: 64:0d:c6:5c:b4:69:a9:13:12:25:5b:40:bc:8a:41: f5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:53:B8:F4:A3:D0:21:14:F8:20:6C:42:DD:B7:AA:0B:82:99:36:CB X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32322e302f32342d3234203d3e20313331373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.22.0/24 Signature Algorithm: sha256WithRSAEncryption a5:4d:c2:36:e5:c1:6b:1e:8b:09:fd:e4:41:bf:2d:e2:2a:a9: 05:9f:2b:9b:d7:2f:f8:20:e4:3c:f5:ea:46:72:06:93:92:ab: 15:64:ea:86:66:0e:0f:a2:01:f7:ae:83:09:c7:51:12:97:0c: be:5c:de:d3:8c:5f:82:6d:94:37:52:8e:d8:8f:f2:98:39:e1: 49:73:67:89:3d:86:15:aa:0e:fc:9b:7f:f5:6d:9a:2c:14:d5: 56:15:d2:80:79:03:af:85:4a:06:c6:3e:35:12:8d:09:a4:37: 5c:84:8b:b7:70:c3:6d:bd:6e:0d:79:bc:b3:ee:ae:f5:70:0c: 49:39:98:5c:f8:e1:19:74:b7:9a:4f:b8:05:f9:ae:dc:2a:47: 05:6b:70:41:e8:3b:8b:95:e3:6b:69:06:3f:81:d2:8c:4f:95: 98:ba:c8:11:88:43:a8:72:17:17:29:05:e0:36:71:c2:38:20: 91:d1:a9:c2:3e:6e:bf:1d:3a:2c:96:bd:27:04:d3:01:cc:cc: d7:d6:fc:51:ed:7b:3b:55:52:94:2c:0a:7d:15:cb:97:1a:0e: 09:90:99:a3:5a:9b:42:f7:f6:72:36:1d:45:00:ca:7a:dc:06: d7:d9:cf:59:91:35:80:32:8c:a5:b8:ac:26:75:ae:67:02:38: fa:26:9e:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMxmksnfj5kL9n6CVavqVS8eVKbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yNTA3MjUxMTU1MDFaFw0yNjA3MjQxMjAwMDFaMDMxMTAvBgNV BAMTKDA2NTNCOEY0QTNEMDIxMTRGODIwNkM0MkREQjdBQTBCODI5OTM2Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9owAvuG8+GF/5/vgAeATzmQBQ J3MSW06PVVjq2v74uZLI8Lt1OmKdNfU5ryj0AcYwNEqRDpIxnpB8DGxxXS/mcTAP mUbzuc4AhTwJbQwmwm+Za+22m1dBYFG2e+n6bF4mUuIzBw5DUw6xRy2F87vRiWpl LWLHrcpMRCBHOJvH/5HRkZCbjZbHRBErYIuWmfmmda/qT1leqBxoGAH77w25nEHS niGrExhXZrvAup/qQ1y+Ba55sAmZIkuQNzi8vQiBMN+mEMkqX3Jf80XR0IReG9W4 hNsZ6U3/l7vKgAtRLzBSQTkAlTr+zFNpfxrenWQNxly0aakTEiVbQLyKQfU9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBlO49KPQIRT4IGxC3beqC4KZNsswHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzM0MzMyZTMyMzQzNzJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv3FjANBgkqhkiG 9w0BAQsFAAOCAQEApU3CNuXBax6LCf3kQb8t4iqpBZ8rm9cv+CDkPPXqRnIGk5Kr FWTqhmYOD6IB966DCcdREpcMvlze04xfgm2UN1KO2I/ymDnhSXNniT2GFaoO/Jt/ 9W2aLBTVVhXSgHkDr4VKBsY+NRKNCaQ3XISLt3DDbb1uDXm8s+6u9XAMSTmYXPjh GXS3mk+4Bfmu3CpHBWtwQeg7i5Xja2kGP4HSjE+VmLrIEYhDqHIXFykF4DZxwjgg kdGpwj5uvx06LJa9JwTTAczM19b8Ue17O1VSlCwKfRXLlxoOCZCZo1qbQvf2cjYd RQDKetwG19nPWZE1gDKMpbisJnWuZwI4+iaeRA== -----END CERTIFICATE-----Generated at Wed Aug 13 08:47:11 2025 by rpki-client