$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31312e302f32342d3234203d3e203436303233.roa File: 34332e3235322e31312e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: HegjrvuZI5NfxN1PRZk5KKSgNGlgiBZ/cbpw7z37+iA= Subject key identifier: FC:50:E3:65:96:85:03:79:A6:D9:61:28:4C:04:49:86:E8:8D:4C:61 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 7323896D07E362BBE957325D1F8041A64976D4B0 Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31312e302f32342d3234203d3e203436303233.roa Signing time: Mon 14 Jul 2025 16:00:02 +0000 ROA not before: Mon 14 Jul 2025 15:55:02 +0000 ROA not after: Mon 13 Jul 2026 16:00:02 +0000 asID: 46023 IP address blocks: 43.252.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 07:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:23:89:6d:07:e3:62:bb:e9:57:32:5d:1f:80:41:a6:49:76:d4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Jul 14 15:55:02 2025 GMT Not After : Jul 13 16:00:02 2026 GMT Subject: CN=FC50E36596850379A6D961284C044986E88D4C61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:d2:d0:91:92:bd:34:55:96:2d:fa:63:09: a8:e6:37:45:9e:d8:a9:d7:78:4a:7f:5a:19:96:6d: aa:0f:11:ea:90:1a:a5:c0:a0:9c:13:75:e1:57:28: 41:ff:ae:5b:93:f9:7c:39:c9:3c:c6:8d:62:9f:a6: e0:09:a1:50:38:f3:4c:41:7a:c7:fa:ea:8f:1c:4d: 25:b4:63:60:36:80:b0:a8:d0:9b:40:20:27:9c:74: 0e:05:ae:ed:3e:0b:70:c3:ca:69:64:e4:3b:a8:a9: 90:03:b5:78:33:13:68:db:a6:a2:ce:c1:23:6b:5a: d5:4e:02:e7:46:4e:3a:86:eb:61:dc:89:26:c6:48: aa:09:99:68:b6:5e:4c:46:5d:c5:e2:1f:b0:be:36: af:37:97:7b:e1:c7:fa:f6:f0:eb:b8:65:c4:2c:3b: a0:7a:f8:75:a4:46:1a:44:79:d2:b1:dd:a5:24:c6: c9:36:9d:25:ff:14:8d:32:41:e4:6d:25:c1:5d:70: e0:3c:d5:38:6d:f2:7e:bf:c4:cc:8e:c9:77:12:73: 33:99:e0:a8:46:52:e5:d6:f9:62:64:5e:99:1d:c1: e6:e2:34:60:ef:34:a0:ff:37:15:f0:0a:1f:03:e0: d7:29:f3:a9:ac:0d:63:d5:a0:15:7e:cb:e3:07:4f: 0a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:50:E3:65:96:85:03:79:A6:D9:61:28:4C:04:49:86:E8:8D:4C:61 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e31312e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.11.0/24 Signature Algorithm: sha256WithRSAEncryption d2:53:5a:2a:5e:a1:a9:47:34:23:d3:2c:ed:26:d9:be:89:92: 28:70:b4:07:68:8e:80:4a:43:8c:85:e5:09:71:22:35:e3:66: c7:c3:ee:0c:f1:94:a1:8e:ab:67:27:54:fa:9c:5e:ea:fe:62: ad:ff:54:89:29:0e:7a:36:f4:a7:57:be:a3:5f:45:6d:62:ff: 33:9c:f2:f4:d4:1f:e7:ab:13:89:af:13:19:f2:49:a4:60:0c: 78:4f:ea:9d:68:d3:f4:b0:a6:6d:1d:ff:8a:0a:d3:84:37:00: 6c:fb:c3:b3:84:10:33:ea:5a:4a:4e:3f:fc:37:f7:ca:ac:ab: bc:60:cc:44:78:00:77:34:76:55:90:d7:a8:a0:ba:9e:8f:5d: 39:bc:21:d7:0f:66:16:0d:d3:c2:7e:1d:b1:f2:96:75:26:4f: 71:e7:4a:68:6c:33:c7:6e:0a:96:64:32:03:72:c4:cc:f2:65: c9:9e:ca:4b:a2:55:d5:24:5c:ab:3b:19:28:37:62:02:09:7f: ce:3e:61:1d:32:67:6f:a1:f2:42:df:8a:03:65:34:7f:53:01: 91:63:b3:9c:ee:78:a9:c8:bf:65:44:62:c8:8c:95:4f:07:50: d9:19:85:09:57:26:43:4e:10:ee:52:8f:cd:37:00:bf:01:ac: 1d:0e:1f:24 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcyOJbQfjYrvpVzJdH4BBpkl21LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTA3MTQxNTU1MDJaFw0yNjA3MTMxNjAwMDJaMDMxMTAvBgNV BAMTKEZDNTBFMzY1OTY4NTAzNzlBNkQ5NjEyODRDMDQ0OTg2RTg4RDRDNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQFtLQkZK9NFWWLfpjCajmN0We 2KnXeEp/WhmWbaoPEeqQGqXAoJwTdeFXKEH/rluT+Xw5yTzGjWKfpuAJoVA480xB esf66o8cTSW0Y2A2gLCo0JtAICecdA4Fru0+C3DDymlk5DuoqZADtXgzE2jbpqLO wSNrWtVOAudGTjqG62HciSbGSKoJmWi2XkxGXcXiH7C+Nq83l3vhx/r28Ou4ZcQs O6B6+HWkRhpEedKx3aUkxsk2nSX/FI0yQeRtJcFdcOA81Tht8n6/xMyOyXcSczOZ 4KhGUuXW+WJkXpkdwebiNGDvNKD/NxXwCh8D4Ncp86msDWPVoBV+y+MHTwrfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/FDjZZaFA3mm2WEoTARJhuiNTGEwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzM0MzMyZTMyMzUzMjJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr/AswDQYJKoZIhvcN AQELBQADggEBANJTWipeoalHNCPTLO0m2b6JkihwtAdojoBKQ4yF5QlxIjXjZsfD 7gzxlKGOq2cnVPqcXur+Yq3/VIkpDno29KdXvqNfRW1i/zOc8vTUH+erE4mvExny SaRgDHhP6p1o0/Swpm0d/4oK04Q3AGz7w7OEEDPqWkpOP/w398qsq7xgzER4AHc0 dlWQ16igup6PXTm8IdcPZhYN08J+HbHylnUmT3HnSmhsM8duCpZkMgNyxMzyZcme ykuiVdUkXKs7GSg3YgIJf84+YR0yZ2+h8kLfigNlNH9TAZFjs5zueKnIv2VEYsiM lU8HUNkZhQlXJkNOEO5Sj803AL8BrB0OHyQ= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:50 2025 by rpki-client