$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa File: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: u7MPei7+iN4f1OLKumfeRBmfOe2wgHqRvP7yaGUByuA= Subject key identifier: 20:62:A9:A5:AF:E6:4A:61:A8:2A:38:84:D2:AB:A0:F2:79:E6:4A:F4 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 280B6CA82808ACA6C05A93C26DE0B04F2D9FC3FA Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa Signing time: Mon 09 Jun 2025 12:00:48 +0000 ROA not before: Mon 09 Jun 2025 11:55:48 +0000 ROA not after: Mon 08 Jun 2026 12:00:48 +0000 asID: 56233 IP address blocks: 43.252.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 05:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0b:6c:a8:28:08:ac:a6:c0:5a:93:c2:6d:e0:b0:4f:2d:9f:c3:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jun 9 11:55:48 2025 GMT Not After : Jun 8 12:00:48 2026 GMT Subject: CN=2062A9A5AFE64A61A82A3884D2ABA0F279E64AF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:03:a8:f8:ab:15:d5:84:b8:13:31:ee:32:12: 94:70:3b:47:f7:0b:f8:4e:8f:f1:2e:3c:23:5c:ef: 2c:fe:83:cf:30:9d:98:16:6f:33:8a:ae:a2:98:dc: c6:34:3c:c1:b0:79:2b:17:7c:73:9d:cd:a4:a9:3e: 4f:d5:a9:de:0a:c6:b1:f0:2f:5c:dc:ae:e5:9b:ba: cc:09:eb:17:e9:6d:46:f8:0d:a6:35:eb:12:a0:54: 6a:38:ba:c5:88:32:4c:52:d8:de:29:d9:78:3c:37: 20:6f:ef:01:8d:18:fe:ea:9f:5c:d8:18:85:24:0a: 81:4b:02:d0:81:44:de:d7:cc:c2:ab:07:4d:db:95: c0:a2:13:c5:01:93:a2:b9:af:c1:36:eb:34:f2:16: 76:c7:37:c0:c7:10:75:aa:e7:45:54:e1:96:28:9c: 77:1e:f0:75:d4:3e:9e:c7:13:69:eb:69:fa:3e:99: a5:51:62:28:79:2a:2a:e9:66:95:7c:dc:22:73:61: 78:72:54:05:3f:21:8e:fb:93:b0:ae:c2:8c:09:24: 29:38:6f:57:f9:bf:00:c5:cd:7f:70:43:74:59:07: 74:2a:9f:71:a6:90:f8:df:ef:e6:e8:8d:fd:27:36: 4d:5f:81:7d:e3:cd:67:2f:8f:15:1a:94:4b:53:b1: f0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:62:A9:A5:AF:E6:4A:61:A8:2A:38:84:D2:AB:A0:F2:79:E6:4A:F4 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/34332e3235322e3134342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.144.0/23 Signature Algorithm: sha256WithRSAEncryption d6:0b:d1:d7:62:02:6f:5b:9e:c5:c8:4c:bd:6a:9b:fb:49:84: 11:97:93:17:59:78:98:06:d3:a4:73:36:c7:d6:90:9f:e2:b3: 80:74:0f:45:b4:fb:d5:81:f9:19:f4:32:91:3a:80:ff:f2:a5: 0e:3a:b3:d7:1a:0f:5b:b0:35:2d:7f:4a:8d:b7:6f:a1:be:07: 90:41:ee:91:e0:3a:13:3f:33:de:cd:26:c8:c8:76:df:b2:1a: 59:62:a5:f0:23:99:79:06:a4:03:da:2f:e1:d9:6f:8b:a8:13: 46:56:c3:0b:80:e6:3a:c5:23:0b:56:9a:66:35:85:80:70:55: e3:3e:7e:b3:86:7d:81:d7:1c:87:4c:82:19:58:39:b4:89:f6: 44:a9:2f:5f:1c:43:6d:c8:6c:84:4f:f8:c7:ac:af:3e:73:2c: 76:e8:a8:6b:bf:86:74:0b:3f:fa:f4:02:57:37:8a:9d:73:f8: d7:07:55:22:44:7c:c9:58:8d:97:fa:f0:fe:f5:da:eb:d0:f1: 36:6b:ae:9d:e2:bb:5a:eb:60:fe:e0:2c:9a:82:d7:b5:3e:23: 8b:80:c0:b7:11:0a:ca:fd:bc:d5:38:d9:ec:19:8a:47:7e:b0: b9:b5:7f:8d:9f:f8:78:68:96:5e:34:82:f4:33:b6:e5:b5:7c: 10:62:e2:a2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKAtsqCgIrKbAWpPCbeCwTy2fw/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTA2MDkxMTU1NDhaFw0yNjA2MDgxMjAwNDhaMDMxMTAvBgNV BAMTKDIwNjJBOUE1QUZFNjRBNjFBODJBMzg4NEQyQUJBMEYyNzlFNjRBRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYA6j4qxXVhLgTMe4yEpRwO0f3 C/hOj/EuPCNc7yz+g88wnZgWbzOKrqKY3MY0PMGweSsXfHOdzaSpPk/Vqd4KxrHw L1zcruWbuswJ6xfpbUb4DaY16xKgVGo4usWIMkxS2N4p2Xg8NyBv7wGNGP7qn1zY GIUkCoFLAtCBRN7XzMKrB03blcCiE8UBk6K5r8E26zTyFnbHN8DHEHWq50VU4ZYo nHce8HXUPp7HE2nrafo+maVRYih5KirpZpV83CJzYXhyVAU/IY77k7CuwowJJCk4 b1f5vwDFzX9wQ3RZB3Qqn3GmkPjf7+bojf0nNk1fgX3jzWcvjxUalEtTsfCbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIGKppa/mSmGoKjiE0qug8nnmSvQwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzM0MzMyZTMyMzUzMjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNjMyMzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv8kDANBgkqhkiG 9w0BAQsFAAOCAQEA1gvR12ICb1uexchMvWqb+0mEEZeTF1l4mAbTpHM2x9aQn+Kz gHQPRbT71YH5GfQykTqA//KlDjqz1xoPW7A1LX9Kjbdvob4HkEHukeA6Ez8z3s0m yMh237IaWWKl8COZeQakA9ov4dlvi6gTRlbDC4DmOsUjC1aaZjWFgHBV4z5+s4Z9 gdcch0yCGVg5tIn2RKkvXxxDbchshE/4x6yvPnMsduioa7+GdAs/+vQCVzeKnXP4 1wdVIkR8yViNl/rw/vXa69DxNmuuneK7Wutg/uAsmoLXtT4ji4DAtxEKyv281TjZ 7BmKR36wubV/jZ/4eGiWXjSC9DO25bV8EGLiog== -----END CERTIFICATE-----Generated at Tue Oct 28 20:19:39 2025 by rpki-client