$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa File: 34332e3234332e3138372e302f32342d3234203d3e203633383237.roa (raw, json) Hash identifier: Df4ylZ+0W3N4EtnLalY+zYatkTr7lHaj8iG3DxNbv+w= Subject key identifier: 10:FB:F9:06:E5:73:6F:90:E4:94:6C:F7:56:B8:79:47:DA:1B:F6:3C Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 14C1A0F506DA2D39E38048F9CE8FF2DD884C1DBD Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa Signing time: Wed 22 Oct 2025 08:00:02 +0000 ROA not before: Wed 22 Oct 2025 07:55:02 +0000 ROA not after: Wed 21 Oct 2026 08:00:02 +0000 asID: 63827 IP address blocks: 43.243.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 10:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c1:a0:f5:06:da:2d:39:e3:80:48:f9:ce:8f:f2:dd:88:4c:1d:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Oct 22 07:55:02 2025 GMT Not After : Oct 21 08:00:02 2026 GMT Subject: CN=10FBF906E5736F90E4946CF756B87947DA1BF63C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c9:ca:2e:bb:d8:9a:90:05:1f:79:b9:f1:43: 09:b0:62:1b:73:5b:ee:8c:2e:a5:e3:0f:1e:ca:9e: 96:07:1c:f0:23:ce:dd:d5:0e:f6:37:f4:fe:dd:5c: 94:1f:b1:b9:40:93:bb:fb:89:b4:b9:2d:da:5a:ee: e3:fe:d5:00:7d:cd:2c:22:c1:22:0c:11:a1:dd:0b: fb:3c:7e:94:73:21:15:34:13:58:80:cc:f1:b3:a2: f9:5a:7c:71:c5:76:be:0a:a7:2e:11:a3:77:e0:ff: 60:69:46:7a:bf:e4:31:c7:4a:7b:f0:45:2c:37:c4: 8b:a9:a3:62:de:cd:80:d9:5a:a2:a6:41:34:38:36: c7:c1:94:13:4f:02:28:20:b9:d0:ef:f1:05:76:5f: 03:20:1c:17:e2:b8:6f:a1:08:05:2d:8d:eb:07:ad: 0d:00:57:03:1b:e8:da:47:f3:45:58:ad:1e:02:fe: 85:36:dd:1d:2d:93:b9:a4:79:95:f3:6b:3f:1a:97: 04:21:31:e3:ed:37:1f:36:18:9a:9c:97:89:ae:f3: d0:02:7a:db:18:af:d4:39:8f:d8:eb:7c:0c:a7:a3: 49:ba:21:3b:78:fa:d8:14:f5:0d:36:5d:6f:31:48: f8:f4:cf:ed:a3:db:48:96:96:81:cc:75:f0:10:6e: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FB:F9:06:E5:73:6F:90:E4:94:6C:F7:56:B8:79:47:DA:1B:F6:3C X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138372e302f32342d3234203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.187.0/24 Signature Algorithm: sha256WithRSAEncryption 02:f4:d9:6c:33:4b:ba:be:5a:4d:e3:01:cb:98:db:27:2d:07: 5a:7f:a6:b7:e3:b2:26:c7:77:3f:69:e1:be:2d:7f:93:03:ee: d8:03:7c:4d:92:5f:d2:30:67:8e:e2:c2:0f:c1:10:7c:57:47: 8e:d3:9b:35:7e:55:5d:82:79:c3:0e:ea:f0:db:1c:22:73:bf: 20:f0:c2:7c:c7:8f:02:fa:58:4c:80:07:81:38:2e:83:98:63: 20:31:90:4f:a5:8e:60:5b:55:2c:dd:d2:b2:c4:f6:66:2c:a4: 67:1a:c7:7c:e3:5f:30:09:bb:fa:bb:aa:12:75:c1:c2:79:f8: f4:60:d5:33:8a:5c:94:81:36:c1:73:2d:36:9f:fd:db:a2:b6: 9d:bf:f3:e8:05:08:3d:69:37:84:16:1b:83:b8:ba:c5:4d:18: 96:5e:cf:49:d9:23:d7:04:2b:4b:af:81:c9:5f:5a:09:01:34: 45:7b:4d:57:30:25:73:ce:ae:51:41:79:f6:a8:d2:54:06:9d: f7:f9:f8:8e:ec:65:83:eb:89:8a:52:75:0f:38:dd:12:be:82: 75:25:aa:80:0e:59:a0:b9:cd:40:db:c1:b4:48:be:7c:75:29: 15:93:28:8b:1b:64:d9:51:dd:01:ca:0c:82:77:9f:e8:2e:43: e3:97:c0:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFMGg9QbaLTnjgEj5zo/y3YhMHb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNTEwMjIwNzU1MDJaFw0yNjEwMjEwODAwMDJaMDMxMTAvBgNV BAMTKDEwRkJGOTA2RTU3MzZGOTBFNDk0NkNGNzU2Qjg3OTQ3REExQkY2M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVycouu9iakAUfebnxQwmwYhtz W+6MLqXjDx7KnpYHHPAjzt3VDvY39P7dXJQfsblAk7v7ibS5Ldpa7uP+1QB9zSwi wSIMEaHdC/s8fpRzIRU0E1iAzPGzovlafHHFdr4Kpy4Ro3fg/2BpRnq/5DHHSnvw RSw3xIupo2LezYDZWqKmQTQ4NsfBlBNPAiggudDv8QV2XwMgHBfiuG+hCAUtjesH rQ0AVwMb6NpH80VYrR4C/oU23R0tk7mkeZXzaz8alwQhMePtNx82GJqcl4mu89AC etsYr9Q5j9jrfAyno0m6ITt4+tgU9Q02XW8xSPj0z+2j20iWloHMdfAQbmhXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEPv5BuVzb5DklGz3Vrh5R9ob9jwwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvzuzANBgkqhkiG 9w0BAQsFAAOCAQEAAvTZbDNLur5aTeMBy5jbJy0HWn+mt+OyJsd3P2nhvi1/kwPu 2AN8TZJf0jBnjuLCD8EQfFdHjtObNX5VXYJ5ww7q8NscInO/IPDCfMePAvpYTIAH gTgug5hjIDGQT6WOYFtVLN3SssT2ZiykZxrHfONfMAm7+ruqEnXBwnn49GDVM4pc lIE2wXMtNp/926K2nb/z6AUIPWk3hBYbg7i6xU0Yll7PSdkj1wQrS6+ByV9aCQE0 RXtNVzAlc86uUUF59qjSVAad9/n4juxlg+uJilJ1DzjdEr6CdSWqgA5ZoLnNQNvB tEi+fHUpFZMoixtk2VHdAcoMgnef6C5D45fADA== -----END CERTIFICATE-----Generated at Wed Nov 5 09:40:47 2025 by rpki-client