$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138362e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: ihkQzGAO8DoG0WnuEPJGIoHev84I28N1A3HWiNGFa0Q= Subject key identifier: DE:23:E0:54:16:8B:F7:58:7C:2A:2D:C5:A9:20:63:9C:6C:23:D8:E5 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 59C71B50FD633825EEC7FC21F79B9CBF3D58CEA0 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa Signing time: Wed 22 Oct 2025 08:00:01 +0000 ROA not before: Wed 22 Oct 2025 07:55:01 +0000 ROA not after: Wed 21 Oct 2026 08:00:01 +0000 asID: 63827 IP address blocks: 43.243.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 10:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c7:1b:50:fd:63:38:25:ee:c7:fc:21:f7:9b:9c:bf:3d:58:ce:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Oct 22 07:55:01 2025 GMT Not After : Oct 21 08:00:01 2026 GMT Subject: CN=DE23E054168BF7587C2A2DC5A920639C6C23D8E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cd:e1:f6:98:6f:43:29:b8:0b:04:cb:2f:e6: d1:a3:08:77:fe:13:f8:d3:2d:78:4c:98:7c:3b:83: 1c:1f:d5:b0:c7:34:bb:6d:ba:ad:76:88:0a:f3:16: 3c:77:b2:5d:b6:12:ff:e8:aa:85:b1:db:42:a4:03: d2:98:fa:c2:d2:07:57:cd:84:ac:5c:c8:9e:6d:bd: a2:19:e6:c3:e6:8b:a6:1e:f7:43:bf:ae:b7:55:37: 64:93:10:d6:a2:cb:39:66:46:3f:41:43:66:58:2e: 01:2b:8a:6e:a8:7e:ce:de:d1:24:37:c7:84:ab:6a: cf:7e:8d:11:8f:46:54:ce:95:02:e7:6d:f3:45:82: 2b:14:54:06:83:82:47:de:6f:64:75:68:63:97:a2: 39:2f:90:23:14:27:11:23:59:ab:9d:27:e0:86:2f: 7f:7a:53:80:80:c2:18:1a:00:29:2a:fc:99:3c:99: 5d:d3:2a:ae:72:3e:64:eb:fd:55:c8:e2:45:ab:9c: 3c:7b:eb:e0:d2:26:23:3c:53:65:55:58:0b:af:9c: d5:0c:28:2d:eb:42:dd:1f:6d:48:db:35:22:e8:ae: 46:e2:f7:18:21:4c:e0:6a:57:9f:ad:13:15:a8:8c: 3b:ba:50:e8:7c:a5:98:79:14:fd:eb:57:4d:f9:b3: 54:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:23:E0:54:16:8B:F7:58:7C:2A:2D:C5:A9:20:63:9C:6C:23:D8:E5 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138362e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.186.0/24 Signature Algorithm: sha256WithRSAEncryption 98:46:f1:31:58:ef:23:02:c0:ca:7c:24:25:e7:4e:33:37:52: bf:53:6e:0d:06:71:f1:49:8d:34:2e:0a:34:28:6a:8a:c6:98: 4c:c1:72:f9:ac:05:67:e5:5c:a1:aa:98:63:63:07:d0:8e:93: 66:de:27:47:8f:b6:1d:d0:75:4a:20:16:95:af:0d:ed:3e:3f: 6d:76:c0:c0:1c:dc:ca:49:4b:5f:20:c3:6b:5f:31:64:2b:70: 00:ce:75:f7:71:c7:25:68:32:04:b4:47:b1:90:45:2b:83:f4: 4e:bc:6f:74:a1:59:f3:10:6c:24:bf:e9:87:17:93:25:1f:eb: 4e:79:01:fc:53:24:6c:86:aa:0c:43:42:1d:48:69:b5:69:ce: 76:50:8c:15:f8:11:42:cb:b6:4b:23:1e:1e:f8:8a:21:21:29: 18:32:69:fa:84:67:62:72:43:be:10:ba:44:09:3c:d5:e3:f4: 53:df:cb:7f:0a:10:08:d4:09:9e:b6:3f:19:ca:28:bc:6e:ae: 9a:6c:f4:30:f7:ec:18:c6:62:1a:61:08:d8:a7:ea:64:d6:17: a3:e9:47:4b:32:fa:26:60:f1:b5:a4:9c:74:50:5d:b5:01:7b: 82:79:a9:66:8e:f9:88:30:d5:b5:93:44:73:0a:40:d0:fe:f4: 24:1f:ed:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWccbUP1jOCXux/wh95ucvz1YzqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNTEwMjIwNzU1MDFaFw0yNjEwMjEwODAwMDFaMDMxMTAvBgNV BAMTKERFMjNFMDU0MTY4QkY3NTg3QzJBMkRDNUE5MjA2MzlDNkMyM0Q4RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKzeH2mG9DKbgLBMsv5tGjCHf+ E/jTLXhMmHw7gxwf1bDHNLttuq12iArzFjx3sl22Ev/oqoWx20KkA9KY+sLSB1fN hKxcyJ5tvaIZ5sPmi6Ye90O/rrdVN2STENaiyzlmRj9BQ2ZYLgErim6ofs7e0SQ3 x4Sras9+jRGPRlTOlQLnbfNFgisUVAaDgkfeb2R1aGOXojkvkCMUJxEjWaudJ+CG L396U4CAwhgaACkq/Jk8mV3TKq5yPmTr/VXI4kWrnDx76+DSJiM8U2VVWAuvnNUM KC3rQt0fbUjbNSLorkbi9xghTOBqV5+tExWojDu6UOh8pZh5FP3rV035s1SdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3iPgVBaL91h8Ki3FqSBjnGwj2OUwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzujANBgkqhkiG 9w0BAQsFAAOCAQEAmEbxMVjvIwLAynwkJedOMzdSv1NuDQZx8UmNNC4KNChqisaY TMFy+awFZ+VcoaqYY2MH0I6TZt4nR4+2HdB1SiAWla8N7T4/bXbAwBzcyklLXyDD a18xZCtwAM5193HHJWgyBLRHsZBFK4P0TrxvdKFZ8xBsJL/phxeTJR/rTnkB/FMk bIaqDENCHUhptWnOdlCMFfgRQsu2SyMeHviKISEpGDJp+oRnYnJDvhC6RAk81eP0 U9/LfwoQCNQJnrY/GcoovG6ummz0MPfsGMZiGmEI2KfqZNYXo+lHSzL6JmDxtaSc dFBdtQF7gnmpZo75iDDVtZNEcwpA0P70JB/tUw== -----END CERTIFICATE-----Generated at Wed Nov 5 20:51:31 2025 by rpki-client