$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33332e302f32342d3234203d3e203435333132.roa File: 34332e3234372e33332e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: g8gtz3Y/z2Dh64c0vSxXPPz+1JvDvOcDEIweoPBYinA= Subject key identifier: B9:65:F1:FA:76:4D:85:02:7A:93:6E:5B:89:50:0F:CD:BE:39:6D:4B Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 05AFE8642539A65A4BA29C91C5006854939B16C7 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33332e302f32342d3234203d3e203435333132.roa Signing time: Mon 02 Jun 2025 02:03:15 +0000 ROA not before: Mon 02 Jun 2025 01:58:15 +0000 ROA not after: Mon 01 Jun 2026 02:03:15 +0000 asID: 45312 IP address blocks: 43.247.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 16:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:af:e8:64:25:39:a6:5a:4b:a2:9c:91:c5:00:68:54:93:9b:16:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jun 2 01:58:15 2025 GMT Not After : Jun 1 02:03:15 2026 GMT Subject: CN=B965F1FA764D85027A936E5B89500FCDBE396D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b2:82:00:17:cb:2b:64:c8:42:46:59:70:4b: 29:78:8b:2a:cb:27:d6:25:54:b4:16:bb:e9:6c:ed: 16:99:28:e7:4f:2d:0f:2e:d9:d1:9f:b2:1e:45:8c: 67:00:d9:87:e5:b6:ce:e1:99:f8:c7:d1:c1:97:91: d0:02:c6:ec:aa:fa:f5:83:d5:79:5f:26:44:fc:50: 66:99:c2:f6:dd:c4:a7:b9:20:a9:42:7f:e7:4a:d9: 60:16:9a:64:4d:99:25:1a:7c:49:50:a1:10:ec:65: 61:a8:50:0b:68:f5:18:3b:a3:33:cd:bb:0d:d8:26: 8b:d6:37:ed:0c:4b:1a:83:89:19:b3:ae:40:e1:2a: 5f:bc:12:18:54:7f:bb:43:38:8f:fd:69:3d:67:fc: 13:94:ba:36:8a:6a:6a:4e:4c:a5:ac:1a:cd:3a:ef: 60:89:ff:3f:47:06:0f:03:2c:ac:7d:52:98:b2:5b: 74:4e:1e:d2:34:8f:f4:01:d9:bd:66:ff:9a:d7:c5: 88:9c:d6:9b:8a:42:22:16:3b:ca:89:9c:9e:9b:33: 2c:e9:12:0f:96:9e:dd:c0:82:9b:67:07:61:26:72: e8:2e:8b:79:3d:8c:c6:a9:03:61:43:3a:d6:c6:c5: 6b:a2:08:48:cf:a6:a5:0b:7f:ee:c0:56:c0:7e:dc: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:65:F1:FA:76:4D:85:02:7A:93:6E:5B:89:50:0F:CD:BE:39:6D:4B X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33332e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.33.0/24 Signature Algorithm: sha256WithRSAEncryption 37:ff:95:c8:61:f7:8d:33:0d:0b:af:68:ab:d2:c5:cb:19:d5: 7d:19:e8:6e:20:8a:78:3c:7c:ba:08:78:81:e5:92:34:4f:b5: f7:ae:46:2c:ce:20:af:f4:51:71:26:72:31:23:2b:c2:e9:f8: 59:40:8a:17:eb:07:65:9e:9b:e6:02:10:a1:64:f0:1a:e8:91: b7:ee:af:07:86:07:92:8f:8a:25:51:8f:fa:e7:f0:d1:08:e2: 78:a5:98:04:e4:96:7f:d0:0d:a7:ee:9d:c4:e7:46:44:30:58: a8:8d:0e:80:8d:d4:98:4a:9a:e8:3d:b7:4c:f6:30:e5:70:91: f7:f9:8a:43:8a:a4:b8:c8:b6:cc:cc:95:c9:37:56:f7:50:45: 5e:58:4a:7b:89:26:72:44:f1:ab:c3:23:99:61:63:4f:47:20: 29:70:9b:da:63:ba:9f:62:45:3b:fa:2d:69:b6:80:a0:ad:15: 34:70:07:9a:d9:01:64:a2:63:87:8f:27:97:11:29:31:12:f4: 04:53:55:fe:5c:2d:09:f2:42:59:19:60:8b:e3:1b:5f:ac:cc: 42:6d:b0:75:36:f8:be:f8:91:67:e8:4c:bf:3c:28:3b:42:95: 38:8e:b1:03:e0:9a:68:d3:f1:7a:16:b2:e0:c1:60:8c:1d:c8: 96:d6:81:fe -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBa/oZCU5plpLopyRxQBoVJObFscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA2MDIwMTU4MTVaFw0yNjA2MDEwMjAzMTVaMDMxMTAvBgNV BAMTKEI5NjVGMUZBNzY0RDg1MDI3QTkzNkU1Qjg5NTAwRkNEQkUzOTZENEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2soIAF8srZMhCRllwSyl4iyrL J9YlVLQWu+ls7RaZKOdPLQ8u2dGfsh5FjGcA2Yflts7hmfjH0cGXkdACxuyq+vWD 1XlfJkT8UGaZwvbdxKe5IKlCf+dK2WAWmmRNmSUafElQoRDsZWGoUAto9Rg7ozPN uw3YJovWN+0MSxqDiRmzrkDhKl+8EhhUf7tDOI/9aT1n/BOUujaKampOTKWsGs06 72CJ/z9HBg8DLKx9UpiyW3ROHtI0j/QB2b1m/5rXxYic1puKQiIWO8qJnJ6bMyzp Eg+Wnt3AgptnB2Emcugui3k9jMapA2FDOtbGxWuiCEjPpqULf+7AVsB+3LgfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuWXx+nZNhQJ6k25biVAPzb45bUswHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr9yEwDQYJKoZIhvcN AQELBQADggEBADf/lchh940zDQuvaKvSxcsZ1X0Z6G4ging8fLoIeIHlkjRPtfeu RizOIK/0UXEmcjEjK8Lp+FlAihfrB2Wem+YCEKFk8BrokbfurweGB5KPiiVRj/rn 8NEI4nilmATkln/QDafuncTnRkQwWKiNDoCN1JhKmug9t0z2MOVwkff5ikOKpLjI tszMlck3VvdQRV5YSnuJJnJE8avDI5lhY09HIClwm9pjup9iRTv6LWm2gKCtFTRw B5rZAWSiY4ePJ5cRKTES9ARTVf5cLQnyQlkZYIvjG1+szEJtsHU2+L74kWfoTL88 KDtClTiOsQPgmmjT8XoWsuDBYIwdyJbWgf4= -----END CERTIFICATE-----Generated at Mon Jun 16 04:20:41 2025 by rpki-client