$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32322d3233203d3e203538343034.roa File: 34332e3235322e3133362e302f32322d3233203d3e203538343034.roa (raw, json) Hash identifier: m0WKFr7Q9JfSEuoay78BCi3cNgU52tNMlZWVG7Fhi1s= Subject key identifier: 04:00:7A:C5:10:61:5A:54:28:8E:1F:0A:0C:40:F7:79:1D:D4:57:7E Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 2947DCC1FF709D3C3CE46492ECFED6992EE9DCA2 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32322d3233203d3e203538343034.roa Signing time: Mon 07 Jul 2025 08:01:04 +0000 ROA not before: Mon 07 Jul 2025 07:56:04 +0000 ROA not after: Mon 06 Jul 2026 08:01:04 +0000 asID: 58404 IP address blocks: 43.252.136.0/22 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:47:dc:c1:ff:70:9d:3c:3c:e4:64:92:ec:fe:d6:99:2e:e9:dc:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Jul 7 07:56:04 2025 GMT Not After : Jul 6 08:01:04 2026 GMT Subject: CN=04007AC510615A54288E1F0A0C40F7791DD4577E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:72:9e:88:8c:5d:5a:28:ba:93:78:d3:db:2c: 87:03:0a:9a:84:ce:87:c6:da:54:c3:7b:f1:5e:6b: 37:a7:69:35:4e:55:0f:21:ff:d1:10:18:ab:9c:5e: fc:d5:9f:38:b7:37:ef:d2:c8:cd:53:83:3a:7a:1e: 25:09:34:6e:45:09:8b:ff:02:a5:02:90:9b:bc:6b: c9:37:50:01:e2:94:45:22:4c:46:b2:3b:3f:6a:8f: fc:70:40:47:f6:aa:3d:66:04:29:01:aa:97:58:79: 81:ee:48:4e:a2:7b:01:d1:05:27:bc:cd:6c:1a:63: c3:69:18:02:81:8f:d8:34:91:62:e7:bf:2c:b4:f0: e5:ab:5e:c5:b6:1c:fd:91:76:68:db:6b:1c:90:78: d7:5f:71:9e:ed:ba:62:7f:e8:91:ba:b1:4e:da:89: 40:24:29:a6:cb:bb:47:27:5e:9e:e6:fd:e8:af:01: f7:c9:14:a4:9a:5f:79:2c:a1:39:f4:76:cb:7e:4d: 79:3c:f5:95:cb:49:b7:5c:e4:df:85:cf:a6:f3:6a: ba:e3:18:8c:c7:95:39:1e:7a:d2:05:aa:f4:1e:3d: 07:69:95:d3:69:68:38:6f:b9:89:4d:fa:9f:11:a6: 94:9e:da:0e:50:98:9e:70:c6:39:b3:db:a6:70:f2: c0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:00:7A:C5:10:61:5A:54:28:8E:1F:0A:0C:40:F7:79:1D:D4:57:7E X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32322d3233203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.136.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:55:5f:3a:8a:ef:ab:3c:a9:86:98:67:55:95:c8:d3:1d:30: 1a:7b:b1:6c:7b:0d:65:6d:a6:4c:b3:3e:5c:7b:fc:f6:4f:de: 54:a3:2d:06:40:ea:45:fa:e2:c9:70:2b:31:5c:3b:ab:4e:28: 3f:af:36:ae:7b:f9:55:d2:11:d2:a0:d4:62:f3:1a:e0:21:21: bb:4c:39:c2:e8:45:c8:77:d7:e1:e5:19:c9:28:48:da:78:2f: aa:ac:4f:27:57:47:7b:0d:33:f4:52:03:bd:e6:30:9a:e8:3f: ba:62:51:0c:82:c7:6d:0a:82:a8:1c:3c:ae:84:6a:d3:f9:84: fa:5d:10:16:91:df:a0:7e:37:89:8a:94:92:a5:f7:e1:8b:89: b6:f6:f3:0c:c3:52:18:24:92:e7:6b:08:29:26:56:8c:0f:48: a6:d9:af:fd:93:e7:47:db:24:82:cd:8e:b0:47:8b:b1:57:a3: de:de:32:c4:e2:7c:d8:e1:3f:9c:06:2a:7f:66:89:0a:78:01: fc:d7:50:7d:a0:91:0b:4d:35:ba:ab:79:c8:0c:8c:ef:63:51: c9:05:3f:5b:7f:ff:21:54:89:26:d4:66:c6:8e:92:29:2c:e9: b2:f0:91:4e:e0:08:ff:23:f6:29:27:51:c7:c5:87:5b:ae:47: c1:45:29:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKUfcwf9wnTw85GSS7P7WmS7p3KIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNTA3MDcwNzU2MDRaFw0yNjA3MDYwODAxMDRaMDMxMTAvBgNV BAMTKDA0MDA3QUM1MTA2MTVBNTQyODhFMUYwQTBDNDBGNzc5MURENDU3N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClcp6IjF1aKLqTeNPbLIcDCpqE zofG2lTDe/FeazenaTVOVQ8h/9EQGKucXvzVnzi3N+/SyM1Tgzp6HiUJNG5FCYv/ AqUCkJu8a8k3UAHilEUiTEayOz9qj/xwQEf2qj1mBCkBqpdYeYHuSE6iewHRBSe8 zWwaY8NpGAKBj9g0kWLnvyy08OWrXsW2HP2RdmjbaxyQeNdfcZ7tumJ/6JG6sU7a iUAkKabLu0cnXp7m/eivAffJFKSaX3ksoTn0dst+TXk89ZXLSbdc5N+Fz6bzarrj GIzHlTkeetIFqvQePQdpldNpaDhvuYlN+p8RppSe2g5QmJ5wxjmz26Zw8sBhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBAB6xRBhWlQojh8KDED3eR3UV34wHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM2MmUzMDJmMzIz MjJkMzIzMzIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv8iDANBgkqhkiG 9w0BAQsFAAOCAQEAa1VfOorvqzyphphnVZXI0x0wGnuxbHsNZW2mTLM+XHv89k/e VKMtBkDqRfriyXArMVw7q04oP682rnv5VdIR0qDUYvMa4CEhu0w5wuhFyHfX4eUZ yShI2ngvqqxPJ1dHew0z9FIDveYwmug/umJRDILHbQqCqBw8roRq0/mE+l0QFpHf oH43iYqUkqX34YuJtvbzDMNSGCSS52sIKSZWjA9Iptmv/ZPnR9skgs2OsEeLsVej 3t4yxOJ82OE/nAYqf2aJCngB/NdQfaCRC001uqt5yAyM72NRyQU/W3//IVSJJtRm xo6SKSzpsvCRTuAI/yP2KSdRx8WHW65HwUUpHg== -----END CERTIFICATE-----Generated at Mon Jul 21 06:51:04 2025 by rpki-client