$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31302e302f32342d3234203d3e203436303233.roa File: 34332e3235322e31302e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: cWthNOM+z9qO9AV+rh20bciNyes/mcgidArsrV2N8iM= Subject key identifier: C9:8A:73:9E:B0:4C:E8:EB:FD:37:E9:20:17:33:32:F5:D4:2B:66:E3 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 5DAC83484EEC1946110930DBBC6D1DC16475F655 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31302e302f32342d3234203d3e203436303233.roa Signing time: Mon 14 Jul 2025 16:00:04 +0000 ROA not before: Mon 14 Jul 2025 15:55:04 +0000 ROA not after: Mon 13 Jul 2026 16:00:04 +0000 asID: 46023 IP address blocks: 43.252.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 07:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ac:83:48:4e:ec:19:46:11:09:30:db:bc:6d:1d:c1:64:75:f6:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Jul 14 15:55:04 2025 GMT Not After : Jul 13 16:00:04 2026 GMT Subject: CN=C98A739EB04CE8EBFD37E920173332F5D42B66E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:8e:62:0e:3f:dd:c8:7d:4a:2e:cf:7d:b6:d5: c3:8b:6d:43:3a:ed:69:a6:cd:fe:8f:b2:d4:e2:f3: 18:f2:e0:24:44:7f:b9:83:a3:bf:ca:70:2a:e1:8c: 5c:36:16:1e:d8:c6:c3:5a:6e:ff:f3:b3:58:03:64: 98:68:bc:94:da:63:84:34:6b:e7:d9:ca:04:45:3c: 34:88:76:50:a4:32:6f:48:c7:af:11:da:5e:ba:ee: 4d:d2:49:9b:24:29:7c:86:8e:9a:c9:5e:24:12:27: 8d:f2:7b:b5:4d:e1:e7:d5:3f:e4:bb:4b:5a:49:d7: b1:51:2e:91:14:b2:2e:66:40:ed:ab:7a:eb:22:d0: bc:db:dc:cc:e5:26:ab:df:b0:f2:b6:f5:63:54:dd: 02:63:6e:1b:68:60:eb:c0:94:e4:f0:e2:26:31:23: 98:18:90:6b:5c:93:9e:96:8f:3e:f6:1e:8d:8f:62: dc:72:df:04:b3:d8:ef:50:10:c6:b2:93:5b:1d:aa: 2a:07:16:c5:6d:0d:40:e7:d1:54:3b:94:37:9c:d9: c4:1c:e9:fe:9d:07:85:dc:ad:ff:63:18:d9:9d:1b: 72:83:90:f7:eb:91:f4:cd:c6:f3:25:43:e0:69:20: 29:48:e5:ba:8e:91:7c:04:a5:e4:0e:81:37:4b:d7: f2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8A:73:9E:B0:4C:E8:EB:FD:37:E9:20:17:33:32:F5:D4:2B:66:E3 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31302e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.10.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:81:a2:9b:31:d8:aa:6d:8b:41:ab:84:e6:4f:59:f6:a0:a0: d2:5f:5e:b5:99:46:cc:0f:bc:bb:00:db:8d:2d:36:19:3c:1e: 6d:20:6a:70:6b:f3:ca:7a:1c:5b:e5:50:d4:28:02:94:72:1e: 15:c9:f5:e5:7c:e2:fb:1c:7a:36:3f:d5:19:f8:e8:fe:49:64: b4:10:50:e6:2b:52:35:05:a6:66:59:e6:bb:bd:1e:a5:c4:88: 10:fc:7d:51:65:fc:7d:9a:f1:47:4b:00:14:f5:d4:30:43:3b: c8:00:ab:fb:cc:5f:72:8b:e5:0c:0d:a6:8c:a4:da:f7:e5:76: 64:cf:c2:de:81:28:b9:69:4f:58:ec:4d:bd:e7:68:3d:4b:0d: ed:2b:a7:84:b1:53:30:f3:a0:56:19:a3:37:dc:9b:7a:8e:3f: cb:97:6b:a1:90:7e:63:d5:55:db:49:6d:43:50:d3:c8:9d:e9: e2:9d:38:36:44:21:d4:e0:0e:54:0c:e7:c9:be:15:63:40:50: 5c:13:ea:ac:ee:bb:5e:85:08:94:a9:27:3f:57:e5:e6:77:bb: dc:12:62:9a:72:93:14:8b:2e:88:42:58:35:64:ae:78:35:b9: 59:ee:55:9c:42:da:04:43:76:6d:98:9f:69:9e:68:98:9f:07: 59:9f:79:a9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXayDSE7sGUYRCTDbvG0dwWR19lUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTA3MTQxNTU1MDRaFw0yNjA3MTMxNjAwMDRaMDMxMTAvBgNV BAMTKEM5OEE3MzlFQjA0Q0U4RUJGRDM3RTkyMDE3MzMzMkY1RDQyQjY2RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkjmIOP93IfUouz3221cOLbUM6 7Wmmzf6PstTi8xjy4CREf7mDo7/KcCrhjFw2Fh7YxsNabv/zs1gDZJhovJTaY4Q0 a+fZygRFPDSIdlCkMm9Ix68R2l667k3SSZskKXyGjprJXiQSJ43ye7VN4efVP+S7 S1pJ17FRLpEUsi5mQO2reusi0Lzb3MzlJqvfsPK29WNU3QJjbhtoYOvAlOTw4iYx I5gYkGtck56Wjz72Ho2PYtxy3wSz2O9QEMayk1sdqioHFsVtDUDn0VQ7lDec2cQc 6f6dB4Xcrf9jGNmdG3KDkPfrkfTNxvMlQ+BpIClI5bqOkXwEpeQOgTdL1/JDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyYpznrBM6Ov9N+kgFzMy9dQrZuMwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzM0MzMyZTMyMzUzMjJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr/AowDQYJKoZIhvcN AQELBQADggEBADqBopsx2Kpti0GrhOZPWfagoNJfXrWZRswPvLsA240tNhk8Hm0g anBr88p6HFvlUNQoApRyHhXJ9eV84vscejY/1Rn46P5JZLQQUOYrUjUFpmZZ5ru9 HqXEiBD8fVFl/H2a8UdLABT11DBDO8gAq/vMX3KL5QwNpoyk2vfldmTPwt6BKLlp T1jsTb3naD1LDe0rp4SxUzDzoFYZozfcm3qOP8uXa6GQfmPVVdtJbUNQ08id6eKd ODZEIdTgDlQM58m+FWNAUFwT6qzuu16FCJSpJz9X5eZ3u9wSYppykxSLLohCWDVk rng1uVnuVZxC2gRDdm2Yn2meaJifB1mfeak= -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:21 2025 by rpki-client