$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa File: 34332e3235322e382e302f32342d3234203d3e203436303233.roa (raw, json) Hash identifier: MylNbQ3pfEQjDh2i4KH5StS5aNisYTCYBgRMi9fa1v4= Subject key identifier: 2D:48:67:7C:43:2C:8E:40:A8:10:90:9D:B5:E3:EF:57:1C:D4:9E:46 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 79905A3148B663D71CC3508F7EFBEA4F1DC080BB Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa Signing time: Mon 14 Jul 2025 16:00:04 +0000 ROA not before: Mon 14 Jul 2025 15:55:04 +0000 ROA not after: Mon 13 Jul 2026 16:00:04 +0000 asID: 46023 IP address blocks: 43.252.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 07:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:90:5a:31:48:b6:63:d7:1c:c3:50:8f:7e:fb:ea:4f:1d:c0:80:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Jul 14 15:55:04 2025 GMT Not After : Jul 13 16:00:04 2026 GMT Subject: CN=2D48677C432C8E40A810909DB5E3EF571CD49E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f3:55:20:eb:f8:a2:f9:23:f7:b4:f0:55:fc: 40:de:63:8d:87:73:ef:e7:6a:47:83:82:37:1c:9d: d0:bb:2b:30:9d:a1:88:1b:93:f8:6d:47:37:a5:eb: dc:19:c3:47:36:3c:c5:07:4e:01:f0:bd:66:26:6a: 96:a2:6a:f1:d1:ad:96:0e:a9:a5:a9:32:87:9b:ad: c9:87:46:df:70:1c:c7:89:b8:93:b1:dd:58:8b:54: f0:f1:64:d1:dc:13:4f:49:dd:21:15:c8:c2:9e:18: 78:71:74:6b:43:b7:7d:b6:9d:25:7d:69:b1:81:3f: 9c:08:d2:ba:9f:e3:f5:19:59:ee:9b:2b:ed:8e:d4: 77:b7:7c:3c:a9:81:ca:6d:08:6b:28:30:8f:93:01: 20:36:80:1e:a7:fe:f5:ce:02:7b:2c:30:bf:a7:3f: f5:66:fe:3f:3f:30:14:9d:37:99:63:9e:27:2c:4b: 45:38:5c:a5:ae:90:01:41:88:63:e7:e3:5e:5e:b5: 46:75:d8:59:15:5a:5c:70:5a:a8:49:7c:c1:f9:66: 28:76:02:a9:fa:17:1d:5e:80:db:e7:18:bd:e0:90: 08:75:1d:28:b7:06:06:8d:49:e1:ba:aa:76:a5:e5: 9e:a4:86:e8:64:58:f0:bb:41:ab:ab:5a:b9:40:c8: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:48:67:7C:43:2C:8E:40:A8:10:90:9D:B5:E3:EF:57:1C:D4:9E:46 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.8.0/24 Signature Algorithm: sha256WithRSAEncryption bc:5c:2f:e2:d4:28:41:6b:78:0b:b6:ae:cc:8b:f9:9d:d5:bb: b0:dc:01:43:77:9f:ce:4b:ab:49:b5:3e:1c:da:1d:1b:15:8e: 33:8e:52:ce:12:7b:40:77:1c:7f:79:71:8e:e8:61:ae:a2:31: 26:5d:cd:b9:3d:09:06:76:85:73:ba:06:64:9f:f0:13:cf:1e: 07:10:d3:e2:25:85:95:ba:1e:14:22:56:16:41:f2:9b:58:9f: 93:ee:bf:5c:9a:bb:dc:e5:21:9b:49:6d:6a:8b:ac:e1:fe:d6: 0e:bc:8b:84:c1:2b:8c:86:f0:9d:54:a2:63:ca:cb:ab:8a:19: f9:41:68:c3:7a:0c:50:18:ff:c4:ed:c9:94:a2:c2:31:42:38: b9:aa:62:67:aa:11:56:58:01:46:29:42:bf:35:0a:de:17:54: e6:16:b3:20:63:15:e6:b1:c3:38:73:69:bd:c2:a8:cb:a7:65: b8:ef:54:c2:80:3a:47:64:4a:44:98:f0:42:e2:e6:f9:cd:05: 8f:e7:74:02:31:34:a0:74:50:41:4b:8f:0a:90:39:c2:83:04: d6:a2:66:1d:dc:0a:54:d4:b9:b9:4c:53:08:18:a8:e7:3d:3d: bb:00:4a:ef:2a:20:c8:f7:88:d7:06:d1:17:46:57:81:b9:27: 4f:1d:3c:93 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUeZBaMUi2Y9ccw1CPfvvqTx3AgLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTA3MTQxNTU1MDRaFw0yNjA3MTMxNjAwMDRaMDMxMTAvBgNV BAMTKDJENDg2NzdDNDMyQzhFNDBBODEwOTA5REI1RTNFRjU3MUNENDlFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz81Ug6/ii+SP3tPBV/EDeY42H c+/nakeDgjccndC7KzCdoYgbk/htRzel69wZw0c2PMUHTgHwvWYmapaiavHRrZYO qaWpMoebrcmHRt9wHMeJuJOx3ViLVPDxZNHcE09J3SEVyMKeGHhxdGtDt322nSV9 abGBP5wI0rqf4/UZWe6bK+2O1He3fDypgcptCGsoMI+TASA2gB6n/vXOAnssML+n P/Vm/j8/MBSdN5ljnicsS0U4XKWukAFBiGPn415etUZ12FkVWlxwWqhJfMH5Zih2 Aqn6Fx1egNvnGL3gkAh1HSi3BgaNSeG6qnal5Z6khuhkWPC7QaurWrlAyDLDAgMB AAGjggItMIICKTAdBgNVHQ4EFgQULUhnfEMsjkCoEJCdtePvVxzUnkYwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDBhOTg1YjAtZTE3YS00MjFiLTk2 NTUtMDMyNDVhMDFhZWY4LzAvMzQzMzJlMzIzNTMyMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr/AgwDQYJKoZIhvcNAQEL BQADggEBALxcL+LUKEFreAu2rsyL+Z3Vu7DcAUN3n85Lq0m1PhzaHRsVjjOOUs4S e0B3HH95cY7oYa6iMSZdzbk9CQZ2hXO6BmSf8BPPHgcQ0+IlhZW6HhQiVhZB8ptY n5Puv1yau9zlIZtJbWqLrOH+1g68i4TBK4yG8J1UomPKy6uKGflBaMN6DFAY/8Tt yZSiwjFCOLmqYmeqEVZYAUYpQr81Ct4XVOYWsyBjFeaxwzhzab3CqMunZbjvVMKA OkdkSkSY8ELi5vnNBY/ndAIxNKB0UEFLjwqQOcKDBNaiZh3cClTUublMUwgYqOc9 PbsASu8qIMj3iNcG0RdGV4G5J08dPJM= -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:39 2025 by rpki-client