$ rpki-client -vvf repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234392e302f32342d3234203d3e20313331373430.roa File: 34332e3234352e3234392e302f32342d3234203d3e20313331373430.roa (raw, json) Hash identifier: jtOEt7E3nAQ6Fw9cITIUUkvRpfUDsJxH4CxbFv1xpGk= Subject key identifier: FD:36:F4:4C:78:68:D6:EE:C0:3C:1C:AE:C1:6D:E1:A7:29:EF:69:83 Certificate issuer: /CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Certificate serial: 06DB02D7F2FB6A98DF07F857315EA4CF89AB2122 Authority key identifier: AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234392e302f32342d3234203d3e20313331373430.roa Signing time: Sat 05 Jul 2025 03:00:01 +0000 ROA not before: Sat 05 Jul 2025 02:55:01 +0000 ROA not after: Sat 04 Jul 2026 03:00:01 +0000 asID: 131740 IP address blocks: 43.245.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:db:02:d7:f2:fb:6a:98:df:07:f8:57:31:5e:a4:cf:89:ab:21:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Validity Not Before: Jul 5 02:55:01 2025 GMT Not After : Jul 4 03:00:01 2026 GMT Subject: CN=FD36F44C7868D6EEC03C1CAEC16DE1A729EF6983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:02:c4:40:49:1f:f0:97:4b:e4:be:b1:20:64: a2:37:b3:90:e5:6f:98:a6:29:e1:a0:5a:58:51:19: 98:ca:db:71:92:b8:9c:84:ca:62:1a:8d:ab:a9:72: 50:bc:b5:55:56:43:a5:26:84:ae:d8:5d:fa:f8:e2: 75:a1:89:f8:19:f1:dd:d6:25:62:cb:d3:1b:91:1b: 2c:29:a1:86:61:a0:ed:db:56:5a:8d:4d:f1:fc:2a: aa:6d:9e:2c:10:dd:bb:45:b0:ce:34:07:82:53:1a: 06:d0:44:57:6e:dc:b3:50:ac:f8:18:a5:6d:58:7b: 77:50:1f:00:16:0e:48:14:57:7c:f1:e3:89:a4:38: 40:ed:38:58:86:f0:78:c6:b9:3f:cb:f1:22:a6:2b: c0:0a:6e:36:46:71:df:db:8a:a0:b5:29:c6:bd:5b: be:b0:05:81:fb:27:d0:39:9a:7f:48:44:93:05:17: 46:12:e6:8b:4d:af:79:ac:51:99:8e:1c:87:bb:3e: 17:ac:a0:63:59:20:08:62:a6:d0:ab:17:e1:92:de: e5:f2:4a:ab:02:8b:3b:87:c5:c9:9b:61:2f:2d:6b: 7c:09:c2:4c:fb:f0:87:2f:1d:0c:0b:da:fa:7f:27: fd:53:47:45:f3:44:c0:d3:25:8e:a6:b9:e1:60:a6: a7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:36:F4:4C:78:68:D6:EE:C0:3C:1C:AE:C1:6D:E1:A7:29:EF:69:83 X509v3 Authority Key Identifier: keyid:AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/34332e3234352e3234392e302f32342d3234203d3e20313331373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.249.0/24 Signature Algorithm: sha256WithRSAEncryption 35:9d:f1:70:0d:37:23:d9:89:ef:a4:27:7a:f4:1b:ea:ba:3c: 2e:05:8a:ab:db:8a:08:33:31:20:5f:b0:98:88:18:f1:b5:73: 12:10:9c:40:b0:c6:39:a8:ac:27:2e:e6:91:e9:8e:57:73:10: 12:a6:f4:18:fe:a8:39:6f:9d:e3:b9:a8:a9:a8:d3:73:25:90: 09:c7:84:57:e8:96:dd:5b:a5:14:36:63:de:b8:a7:2c:bf:11: e0:61:b1:4f:80:bb:bc:8e:f5:6b:a5:b0:26:33:3b:cd:4d:b1: 03:d4:87:b8:38:8d:9f:a4:5f:ff:85:72:2c:55:19:87:ff:39: a5:50:ef:89:84:04:fc:32:4e:0b:b2:15:3e:28:dd:79:1f:77: c4:4c:8c:ab:0c:ef:d8:cc:fe:21:e3:87:63:80:06:36:ec:2a: 32:18:6f:4e:64:de:c6:b4:30:e4:d3:c0:19:3a:af:2c:e4:86: e8:c2:b5:ac:86:8c:1f:56:19:d2:72:6c:cd:9d:ec:fd:e0:bf: 11:e9:09:e3:2a:89:8c:2c:8e:cc:ca:2d:2d:1f:0c:60:4a:8b: a1:9b:25:3e:9d:56:1b:ed:a7:ca:04:c2:4f:51:9e:c0:f1:78: e6:9f:9a:82:2b:26:33:35:5f:03:6f:89:24:4c:1a:79:fe:10: 0e:be:7b:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBtsC1/L7apjfB/hXMV6kz4mrISIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5 MjMxMDUwNDAeFw0yNTA3MDUwMjU1MDFaFw0yNjA3MDQwMzAwMDFaMDMxMTAvBgNV BAMTKEZEMzZGNDRDNzg2OEQ2RUVDMDNDMUNBRUMxNkRFMUE3MjlFRjY5ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwAsRASR/wl0vkvrEgZKI3s5Dl b5imKeGgWlhRGZjK23GSuJyEymIajaupclC8tVVWQ6UmhK7YXfr44nWhifgZ8d3W JWLL0xuRGywpoYZhoO3bVlqNTfH8KqptniwQ3btFsM40B4JTGgbQRFdu3LNQrPgY pW1Ye3dQHwAWDkgUV3zx44mkOEDtOFiG8HjGuT/L8SKmK8AKbjZGcd/biqC1Kca9 W76wBYH7J9A5mn9IRJMFF0YS5otNr3msUZmOHIe7PhesoGNZIAhiptCrF+GS3uXy SqsCizuHxcmbYS8ta3wJwkz78IcvHQwL2vp/J/1TR0XzRMDTJY6mueFgpqehAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/Tb0THho1u7APByuwW3hpynvaYMwHwYDVR0j BBgwFoAUrrMv+gAHwKBn+4zp3XfP75IxBQQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzZmODMyYi01YTllLTRjYWEtYmRkNC0yNjM0NzI3YTllZDQvMC9BRUIzMkZGQTAw MDdDMEEwNjdGQjhDRTlERDc3Q0ZFRjkyMzEwNTA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5MjMx MDUwNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNmY4MzJiLTVhOWUtNGNhYS1i ZGQ0LTI2MzQ3MjdhOWVkNC8wLzM0MzMyZTMyMzQzNTJlMzIzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/X5MA0GCSqG SIb3DQEBCwUAA4IBAQA1nfFwDTcj2YnvpCd69BvqujwuBYqr24oIMzEgX7CYiBjx tXMSEJxAsMY5qKwnLuaR6Y5XcxASpvQY/qg5b53juaipqNNzJZAJx4RX6JbdW6UU NmPeuKcsvxHgYbFPgLu8jvVrpbAmMzvNTbED1Ie4OI2fpF//hXIsVRmH/zmlUO+J hAT8Mk4LshU+KN15H3fETIyrDO/YzP4h44djgAY27CoyGG9OZN7GtDDk08AZOq8s 5IbowrWshowfVhnScmzNnez94L8R6QnjKomMLI7Myi0tHwxgSouhmyU+nVYb7afK BMJPUZ7A8Xjmn5qCKyYzNV8Db4kkTBp5/hAOvnsJ -----END CERTIFICATE-----Generated at Fri Jul 25 01:03:15 2025 by rpki-client